romfast/clawd
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Fix API symlink handling: allow workspace/ files access via clawd/workspace symlink

Browse Source
This commit is contained in:
Echo
2026-02-09 10:38:32 +00:00
parent b12eeaff96
commit f896cef01c
1 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
dashboard/api.py
View File

@@ -122,7 +122,8 @@ class TaskBoardHandler(SimpleHTTPRequestHandler):
for base in allowed_dirs: for base in allowed_dirs:
try: try:
candidate = (base / path).resolve() candidate = (base / path).resolve()
if str(candidate).startswith(str(base)): # Check if candidate is within ANY allowed directory (handles symlinks)
if any(str(candidate).startswith(str(d)) for d in allowed_dirs):
target = candidate target = candidate
workspace = base workspace = base
break break
@@ -669,7 +670,8 @@ class TaskBoardHandler(SimpleHTTPRequestHandler):
for base in allowed_dirs: for base in allowed_dirs:
try: try:
candidate = (base / path).resolve() candidate = (base / path).resolve()
if str(candidate).startswith(str(base)): # Check if candidate is within ANY allowed directory (handles symlinks)
if any(str(candidate).startswith(str(d)) for d in allowed_dirs):
target = candidate target = candidate
workspace = base workspace = base
break break