请告诉我如何才能只允许管理员访问特定的路径
这是我的MongoDB数据库
{
"_id": {
"$oid": "640e16b3186c0b1910c1dedf"
},
"isAdmin": true,
"name": "sample name",
"email": "bb@gmail.com",
"password": "$2a$10$tbi9fblLS9NXai3Osb7H7OdLVqq34I0OTKgvB5BmVBEASabvX/ybu",
"__v": 0
}
IsAdmin设置为True我希望admin是唯一可以访问此路由的人
router.post(`/categories`, async (req, res) => {
if(req.body.isAdmin){
try {
let category = new Category();
category.type = req.body.type;
category.description = req.body.description;
await category.save();
res.json({
status: true,
message: "save succes"
});
} catch (error) {
res.status(500).json({ success: false, message: error.message });
}}
else{
console.log("auth")
}
});
每次我try 上面的代码时,它都会跳过if语句并转到Else