X-Git-Url: https://git.auder.net/?a=blobdiff_plain;f=server%2Futils%2Faccess.js;h=11753a0a718b0e4ee9bdf4e1529b4054f3dfd33b;hb=dcd68c4108412f45b8ce119ae80ce8f6e296800b;hp=20f3f791ae554e55fd2f7ddf3952676ebd3df8bb;hpb=625022fdcf750f0aff8fcd699f7e9b89730e1d10;p=vchess.git

diff --git a/server/utils/access.js b/server/utils/access.js
index 20f3f791..11753a0a 100644
--- a/server/utils/access.js
+++ b/server/utils/access.js
@@ -6,7 +6,7 @@ module.exports =
 	logged: function(req, res, next) {
 		const callback = () => {
 			if (!loggedIn)
-				return res.redirect("/");
+				return res.json({errmsg: "Not logged in"});
 			next();
 		};
 		let loggedIn = undefined;
@@ -42,13 +42,13 @@ module.exports =
 		// Just a quick heuristic, which should be enough
 		const loggedIn = !!req.cookies.token;
 		if (loggedIn)
-			return res.redirect("/");
+			return res.json({errmsg: "Already logged in"});
 		next();
 	},
 
 	// Prevent direct access to AJAX results
 	ajax: function(req, res, next) {
-		if (!req.xhr)
+    if (!req.xhr)
 			return res.json({errmsg: "Unauthorized access"});
 		next();
 	},