Enforce authentication on all endpoints

2025-03-07 10:53:50 -05:00
parent 12e0acf5bd
commit 9a606ab59f
9 changed files with 38 additions and 2 deletions
--- a/upload.php
+++ b/upload.php
@@ -2,8 +2,10 @@
 require_once 'config.php';
 header('Content-Type: application/json');

+// Ensure user is authenticated
 if (!isset($_SESSION['authenticated']) || $_SESSION['authenticated'] !== true) {
    echo json_encode(["error" => "Unauthorized"]);
+    http_response_code(401);
    exit;
 }