rust/neon
1
0
Fork 0
mirror of https://github.com/neondatabase/neon.git synced 2026-01-15 09:22:55 +00:00
Code Issues Packages Projects Releases Wiki Activity

Allow only post connection to sql url (#4035)

Browse Source
This commit is contained in:
Eduard Dyckman
2023-04-15 20:06:57 +09:00
committed by GitHub
parent 1233923c3a
commit 373ae7672b
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
proxy/src/http/websocket.rs
View File

@@ -9,7 +9,7 @@ use hashbrown::HashMap;
use hyper::{
server::{accept, conn::AddrIncoming},
upgrade::Upgraded,
Body, Request, Response, StatusCode,
Body, Method, Request, Response, StatusCode,
};
use hyper_tungstenite::{tungstenite::Message, HyperWebsocket, WebSocketStream};
use pin_project_lite::pin_project;
@@ -188,7 +188,7 @@ async fn ws_handler(
// Return the response so the spawned future can continue.
Ok(response)
} else if request.uri().path() == "/sql" {
} else if request.uri().path() == "/sql" && request.method() == Method::POST {
match handle_sql(config, request).await {
Ok(resp) => json_response(StatusCode::OK, resp).map(|mut r| {
r.headers_mut().insert(