12 lines
823 B
PHP
12 lines
823 B
PHP
<?php
|
|
$uri = $_SERVER['HTTP_X_ORIGINAL_URI'] ?? $_SERVER['REQUEST_URI'] ?? 'NONE';
|
|
error_log("AUTH_CHECK uri=$uri");
|
|
$public_exact = ['/', '/index.html', '/login.html', '/login', '/register.html', '/wevia-widget.html', '/wevia.html', '/enterprise-model.html'];
|
|
$public_prefixes = ['/products/', '/blog/', '/service/', '/api/'];
|
|
$is_public = in_array($uri, $public_exact);
|
|
if (!$is_public) { foreach ($public_prefixes as $p) { if (strpos($uri, $p) === 0) { $is_public = true; break; } } }
|
|
if (!$is_public && preg_match('/\.(css|js|png|jpg|svg|ico|woff2?|ttf|gif|webp)$/', $uri)) { $is_public = true; }
|
|
if ($is_public) { http_response_code(200); echo 'PUBLIC'; exit; }
|
|
require __DIR__ . '/weval-auth.php';
|
|
if (weval_check_auth()) { http_response_code(200); echo 'OK'; } else { http_response_code(401); echo 'UNAUTHORIZED'; }
|