diff --git a/src/lib/protected/p1.png b/src/lib/protected/p1.png new file mode 100644 index 0000000..33bd541 Binary files /dev/null and b/src/lib/protected/p1.png differ diff --git a/src/lib/protected/p2.png b/src/lib/protected/p2.png new file mode 100644 index 0000000..c8676bd Binary files /dev/null and b/src/lib/protected/p2.png differ diff --git a/src/routes/api/login/+server.js b/src/routes/api/login/+server.js index 054e707..13b29d1 100644 --- a/src/routes/api/login/+server.js +++ b/src/routes/api/login/+server.js @@ -723,6 +723,144 @@ USE_SSL=false # majd ha lesz rá idő` }); } + // Pearoo case + if (username === 'pearoo' && password === 'pearoo') { + return json({ + success: true, + type: 'admin', + content: { + html: ` +
+ +
+
+
+

pearoo

+
+
+
+ P1 + P2 +
+
+
+ `, + css: ` + .logo-container { + margin-bottom: 2rem; + text-align: center; + padding: 0 1rem; + } + + .logo { + max-width: 100%; + height: auto; + width: auto; + max-height: 120px; + } + + .admin-panel { + background-color: white; + border-radius: 4px; + box-shadow: 0 2px 10px rgba(0, 0, 0, 0.1); + width: 100%; + max-width: 800px; + overflow: hidden; + margin: 0 1rem; + } + + .login-header { + background-color: #30b0d5; + color: white; + padding: 1rem; + text-align: center; + } + + .login-header h2 { + font-size: clamp(1rem, 4vw, 1.2rem); + font-weight: normal; + margin: 0; + line-height: 1.3; + } + + .pearoo-images { + display: flex; + align-items: center; + justify-content: center; + gap: 1rem; + padding: 1rem; + background-color: white; + } + + .pearoo-image { + max-width: calc(50% - 0.5rem); + height: auto; + object-fit: contain; + display: block; + } + + @media (max-width: 640px) { + .logo-container { + margin-bottom: 1.5rem; + } + + .admin-panel { + margin: 0 0.5rem; + } + + .pearoo-images { + flex-direction: column; + } + + .pearoo-image { + max-width: 100%; + } + } + `, + js: ` + // Load images with authentication + const [img1, img2] = document.querySelectorAll('.pearoo-image'); + + // Load first image + fetch('/api/protected-image?image=p1.png', { + headers: { + 'x-auth': 'pearoo-authenticated' + } + }) + .then(response => response.blob()) + .then(blob => { + img1.src = URL.createObjectURL(blob); + }) + .catch(error => { + console.error('Error loading image 1:', error); + img1.style.display = 'none'; + }); + + // Load second image + fetch('/api/protected-image?image=p2.png', { + headers: { + 'x-auth': 'pearoo-authenticated' + } + }) + .then(response => response.blob()) + .then(blob => { + img2.src = URL.createObjectURL(blob); + }) + .catch(error => { + console.error('Error loading image 2:', error); + img2.style.display = 'none'; + }); + ` + } + }); + } + // Failed login - return success: false return json({ success: false diff --git a/src/routes/api/protected-image/+server.js b/src/routes/api/protected-image/+server.js index 7b2d35b..0414fa0 100644 --- a/src/routes/api/protected-image/+server.js +++ b/src/routes/api/protected-image/+server.js @@ -8,14 +8,16 @@ export async function GET({ request, url }) { const imageName = url.searchParams.get('image'); // Validate image name to prevent directory traversal - if (!imageName || !['skelly.jpg', 'klima.png'].includes(imageName)) { + if (!imageName || !['skelly.jpg', 'klima.png', 'p1.png', 'p2.png'].includes(imageName)) { throw redirect(307, '/'); } // Check for proper authentication const validAuth = { 'skelly.jpg': 'skelly-authenticated', - 'klima.png': 'klima-authenticated' + 'klima.png': 'klima-authenticated', + 'p1.png': 'pearoo-authenticated', + 'p2.png': 'pearoo-authenticated' }; if (!authHeader || authHeader !== validAuth[imageName]) {