Allow pastes to be seen in private

manifest.json

@@ -49,6 +49,10 @@
                     "en": "Is it a public Zerobin site ?",
                     "fr": "Est-ce un site public ?"
                 },
+                "help": {
+                    "en": "If private, only YunoHost users can create a paste, but everyone can read it.",
+                    "fr": "Si privé, seul les utilisateurs YunoHost peuvent créer un paste, mais tout le monde peut lire."
+                },
                 "default": true
             }
         ]

scripts/change_url

@@ -75,6 +75,24 @@ then
 	ynh_store_file_checksum --file="/etc/nginx/conf.d/$new_domain.d/$app.conf"
 fi
 
+#=================================================
+# UPDATE SSOWAT
+#=================================================
+ynh_script_progression --message="Reconfiguring SSOwat..."
+
+if [ $is_public -eq 0 ]
+then
+    # If the app is private, viewing images stays publicly accessible.
+    if [ "$new_path" == "/" ]; then
+        # If the path is /, clear it to prevent any error with the regex.
+        new_path=""
+    fi
+    # Modify the domain to be used in a regex
+    domain_regex=$(echo "$new_domain" | sed 's@-@.@g')
+    ynh_app_setting_set --app=$app --key=protected_regex --value="$domain_regex$new_path/$"
+    ynh_app_setting_set --app=$app --key=unprotected_regex --value="$domain_regex$new_path/.*$"
+fi
+
 #=================================================
 # GENERIC FINALISATION
 #=================================================

scripts/install

@@ -107,6 +107,12 @@ ynh_script_progression --message="Configuring SSOwat..."
 if [ $is_public -eq 1 ]; then
     # unprotected_uris allows SSO credentials to be passed anyway.
     ynh_app_setting_set --app=$app --key=unprotected_uris --value="/"
+else
+    # If the app is private, viewing paste stays publicly accessible.
+    # Modify the domain to be used in a regex
+    domain_regex=$(echo "$domain" | sed 's@-@.@g')
+    ynh_app_setting_set --app=$app --key=protected_regex --value="$domain_regex$path_url/$"
+    ynh_app_setting_set --app=$app --key=unprotected_regex --value="$domain_regex$path_url/.*$"
 fi
 
 #=================================================

scripts/upgrade

@@ -142,6 +142,12 @@ ynh_script_progression --message="Upgrading SSOwat configuration..."
 if [ $is_public -eq 1 ]; then
   # unprotected_uris allows SSO credentials to be passed anyway.
   ynh_app_setting_set --app=$app --key=unprotected_uris --value="/"
+else
+    # If the app is private, viewing paste stays publicly accessible.
+    # Modify the domain to be used in a regex
+    domain_regex=$(echo "$domain" | sed 's@-@.@g')
+    ynh_app_setting_set --app=$app --key=protected_regex --value="$domain_regex$path_url/$"
+    ynh_app_setting_set --app=$app --key=unprotected_regex --value="$domain_regex$path_url/.*$"
 fi
 
 #=================================================