Merge branch 'master' of https://github.com/getferdi/ferdi-server

19 files changed, 222 insertions, 128 deletions

diff --git a/.env.example b/.env.example
index c175cd1..bcc4c7c 100644
--- a/.env.example
+++ b/.env.example
@@ -19,4 +19,6 @@ DB_DATABASE=adonis
 HASH_DRIVER=bcrypt
 
 IS_CREATION_ENABLED=true
+IS_DASHBOARD_ENABLED=true
+IS_REGISTRATION_ENABLED=true
 CONNECT_WITH_FRANZ=true
\ No newline at end of file
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
new file mode 100644
index 0000000..e21943b
--- /dev/null
+++ b/.github/workflows/main.yml
@@ -0,0 +1,18 @@
+name: Trigger Docker Hub build
+
+on:
+  release:
+    types: [published]
+
+jobs:
+  build:
+
+    runs-on: ubuntu-latest
+
+    steps:
+    - name: Install HTTPie
+      run: sudo apt-get install httpie
+
+    - name: Send request to Docker Hub to trigger a build
+      run: >
+        http post https://hub.docker.com/api/build/v1/source/83564f19-c21a-4dae-9690-971aee3b2a3b/trigger/${{ env.HUB_TRIGGER_ID }}/call/'
diff --git a/.gitignore b/.gitignore
index f0a5147..12fc024 100644
--- a/.gitignore
+++ b/.gitignore
@@ -19,4 +19,5 @@ public/terms.html
 public/privacy.html
 
 resources/announcements/*.json
-!resources/announcements/version.json
\ No newline at end of file
+!resources/announcements/version.json
+npm-debug.log
diff --git a/README.md b/README.md
index 6aa2d02..b0424c2 100644
--- a/README.md
+++ b/README.md
@@ -3,16 +3,25 @@
 </p>
 
 # ferdi-server
-Unofficial Franz server replacement for use with the Ferdi Client.
-
-## Looking for a smaller alternative?
-[ferdi-slim-server](https://github.com/vantezzen/ferdi-slim-server) is a slim alternative to this project. Opposed to ferdi-server, ferdi-slim-server is only a wrapper around the Franz API that allows you to add custom recipes while still using the original Franz API.
-
-## Why use a custom ferdi-server?
-A custom ferdi-server allows you to experience the full potential of the Ferdi client. It allows you to use all Premium features (e.g. Workspaces and custom URL recipes) and [adding your own recipes](#creating-and-using-custom-recipes).
-
-## Demo
-You can find Ferdi's official API running this software at <https://api.getferdi.com>
+Official Server software for the [Ferdi Messaging Browser](https://getferdi.com)
+
+- [ferdi-server](#ferdi-server)
+  - [Why use a custom Ferdi server?](#why-use-a-custom-ferdi-server)
+  - [Features](#features)
+  - [Setup](#setup)
+    - [with Docker](#with-docker)
+    - [Manual setup](#manual-setup)
+  - [Configuration](#configuration)
+  - [Importing your Franz account](#importing-your-franz-account)
+  - [Transferring user data](#transferring-user-data)
+  - [Creating and using custom recipes](#creating-and-using-custom-recipes)
+    - [Listing custom recipes](#listing-custom-recipes)
+  - [License](#license)
+
+## Why use a custom Ferdi server?
+A custom server allows you to manage the data of all registered users yourself and add your own recipes to the repository.
+
+If you are not interested in doing this you can use our official instance of Ferdi server at <https://api.getferdi.com>.
 
 ## Features
 - [x] User registration and login
@@ -20,13 +29,13 @@ You can find Ferdi's official API running this software at <https://api.getferdi
 - [x] Workspace support
 - [x] Functioning service store
 - [x] User dashboard
+- [x] Export/import data to other ferdi-servers
 - [ ] Password recovery
-- [ ] Export/import data to other ferdi-servers
 - [ ] Recipe update
 
 ## Setup
 ### with Docker
-The easiest way to set up ferdi-server on your server is with Docker.
+The easiest way to set up Ferdi server on your server is with Docker.
 
 The Docker image can be run as is, with the default sqlite database or you can modifying your ENV variables to use an external database (e.g. MySQL, MariaDB, Postgres, etc). 
 After setting up the docker container we recommend you to set up an NGINX reverse proxy to access ferdi-server outside of your home network and protect it with an SSL certificate.
@@ -76,7 +85,9 @@ After setting up the docker container we recommend you to set up an NGINX revers
         - DB_PASSWORD=<yourdbpass>
         - DB_DATABASE=<yourdbdatabase>
         - IS_CREATION_ENABLED=true/false
-        - CONNECT_WITH_FRANZ=true/flase  
+        - CONNECT_WITH_FRANZ=true/false  
+        - IS_REGISTRATION_ENABLED=true/false  
+        - IS_DASHBOARD_ENABLED=true/false  
         volumes:
         - <path to data>:/config
         - <path to database>:/usr/src/app/database
@@ -106,6 +117,8 @@ For more information on configuring the Docker image, visit the Docker image rep
 ## Configuration
 franz-server's configuration is saved inside the `.env` file. Besides AdonisJS's settings, ferdi-server has the following custom settings:
 - `IS_CREATION_ENABLED` (`true` or `false`, default: `true`): Whether to enable the [creation of custom recipes](#creating-and-using-custom-recipes)
+- `IS_REGISTRATION_ENABLED` (`true` or `false`, default: `true`): Whether to enable the creation of new user accounts
+- `IS_DASHBOARD_ENABLED` (`true` or `false`, default: `true`): Whether to enable the user dashboard
 - `CONNECT_WITH_FRANZ` (`true` or `false`, default: `true`): Whether to enable connections to the Franz server. By enabling this option, ferdi-server can:
   - Show the full Franz recipe library instead of only custom recipes
   - Import Franz accounts
@@ -115,6 +128,9 @@ ferdi-server allows you to import your full Franz account, including all its set
 
 To import your Franz account, open `http://[YOUR FERDI-SERVER]/import` in your browser and login using your Franz account details. ferdi-server will create a new user with the same credentials and copy your Franz settings, services and workspaces.
 
+## Transferring user data
+Please refer to <https://github.com/getferdi/ferdi/wiki/Transferring-data-between-servers>
+
 ## Creating and using custom recipes
 ferdi-server allows to extends the Franz recipe catalogue with custom Ferdi recipes.
 
diff --git a/app/Controllers/Http/DashboardController.js b/app/Controllers/Http/DashboardController.js
index fe179c9..86cfa74 100644
--- a/app/Controllers/Http/DashboardController.js
+++ b/app/Controllers/Http/DashboardController.js
@@ -166,7 +166,7 @@ class DashboardController {
     session,
     response,
   }) {
-    let validation = await validateAll(request.all(), {
+    const validation = await validateAll(request.all(), {
       file: 'required',
     });
     if (validation.fails()) {
@@ -177,14 +177,13 @@ class DashboardController {
     let file;
     try {
       file = JSON.parse(request.input('file'));
-    } catch(e) {
-      session.flash({ type: 'danger', message: 'Invalid Ferdi account file' })
+    } catch (e) {
+      session.flash({ type: 'danger', message: 'Invalid Ferdi account file' });
       return response.redirect('back');
     }
-    console.log(file);
 
-    if(!file || !file.services || !file.workspaces) {
-      session.flash({ type: 'danger', message: 'Invalid Ferdi account file (2)' })
+    if (!file || !file.services || !file.workspaces) {
+      session.flash({ type: 'danger', message: 'Invalid Ferdi account file (2)' });
       return response.redirect('back');
     }
 
diff --git a/app/Controllers/Http/RecipeController.js b/app/Controllers/Http/RecipeController.js
index 6c8aa21..9bfd92e 100644
--- a/app/Controllers/Http/RecipeController.js
+++ b/app/Controllers/Http/RecipeController.js
@@ -35,7 +35,7 @@ class RecipeController {
     const customRecipes = customRecipesArray.map((recipe) => ({
       id: recipe.recipeId,
       name: recipe.name,
-      ...typeof recipe.data === "string" ? JSON.parse(recipe.data) : recipe.data,
+      ...typeof recipe.data === 'string' ? JSON.parse(recipe.data) : recipe.data,
     }));
 
     const recipes = [
@@ -144,7 +144,7 @@ class RecipeController {
       results = dbResults.map((recipe) => ({
         id: recipe.recipeId,
         name: recipe.name,
-        ...typeof recipe.data === "string" ? JSON.parse(recipe.data) : recipe.data,
+        ...typeof recipe.data === 'string' ? JSON.parse(recipe.data) : recipe.data,
       }));
     } else {
       let remoteResults = [];
@@ -155,7 +155,7 @@ class RecipeController {
       const localResults = localResultsArray.map((recipe) => ({
         id: recipe.recipeId,
         name: recipe.name,
-        ...typeof recipe.data === "string" ? JSON.parse(recipe.data) : recipe.data,
+        ...typeof recipe.data === 'string' ? JSON.parse(recipe.data) : recipe.data,
       }));
 
       results = [
@@ -194,7 +194,8 @@ class RecipeController {
     // Check if recipe exists in recipes folder
     if (await Drive.exists(`${service}.tar.gz`)) {
       return response.send(await Drive.get(`${service}.tar.gz`));
-    } else if (Env.get('CONNECT_WITH_FRANZ') == 'true') { // eslint-disable-line eqeqeq
+    }
+    if (Env.get('CONNECT_WITH_FRANZ') == 'true') { // eslint-disable-line eqeqeq
       return response.redirect(`https://api.franzinfra.com/v1/recipes/download/${service}`);
     }
     return response.status(400).send({
diff --git a/app/Controllers/Http/ServiceController.js b/app/Controllers/Http/ServiceController.js
index 90055b6..a1d26cb 100644
--- a/app/Controllers/Http/ServiceController.js
+++ b/app/Controllers/Http/ServiceController.js
@@ -86,7 +86,7 @@ class ServiceController {
     const services = (await auth.user.services().fetch()).rows;
     // Convert to array with all data Franz wants
     const servicesArray = services.map((service) => {
-      const settings = typeof service.settings === "string" ? JSON.parse(service.settings) : service.settings;
+      const settings = typeof service.settings === 'string' ? JSON.parse(service.settings) : service.settings;
 
       return {
         customRecipe: false,
@@ -105,7 +105,7 @@ class ServiceController {
         name: service.name,
         recipeId: service.recipeId,
         userId: auth.user.id,
-      }
+      };
     });
 
     return response.send(servicesArray);
@@ -127,7 +127,7 @@ class ServiceController {
       // Upload custom service icon
       const icon = request.file('icon', {
         types: ['image'],
-        size: '2mb'
+        size: '2mb',
       });
       const {
         id,
@@ -135,17 +135,17 @@ class ServiceController {
       const service = (await Service.query()
         .where('serviceId', id)
         .where('userId', auth.user.id).fetch()).rows[0];
-      const settings = typeof service.settings === "string" ? JSON.parse(service.settings) : service.settings;
+      const settings = typeof service.settings === 'string' ? JSON.parse(service.settings) : service.settings;
 
       let iconId;
       do {
         iconId = uuid() + uuid();
-      } while(await fs.exists(path.join(Helpers.tmpPath('uploads'), iconId)));
-      
+      } while (await fs.exists(path.join(Helpers.tmpPath('uploads'), iconId)));
+
       await icon.move(Helpers.tmpPath('uploads'), {
         name: iconId,
-        overwrite: true
-      })
+        overwrite: true,
+      });
 
       if (!icon.moved()) {
         return response.status(500).send(icon.error());
@@ -175,49 +175,48 @@ class ServiceController {
           iconUrl: `${Env.get('APP_URL')}/v1/icon/${newSettings.iconId}`,
           userId: auth.user.id,
         },
-        status: ["updated"]
+        status: ['updated'],
       });
-    } else {
-      // Update service info
-      const data = request.all();
-      const {
-        id,
-      } = params;
+    }
+    // Update service info
+    const data = request.all();
+    const {
+      id,
+    } = params;
 
-      // Get current settings from db
-      const serviceData = (await Service.query()
-        .where('serviceId', id)
-        .where('userId', auth.user.id).fetch()).rows[0];
+    // Get current settings from db
+    const serviceData = (await Service.query()
+      .where('serviceId', id)
+      .where('userId', auth.user.id).fetch()).rows[0];
 
-      const settings = {
-        ...typeof serviceData.settings === "string" ? JSON.parse(serviceData.settings) : serviceData.settings,
-        ...data,
-      };
+    const settings = {
+      ...typeof serviceData.settings === 'string' ? JSON.parse(serviceData.settings) : serviceData.settings,
+      ...data,
+    };
 
-      // Update data in database
-      await (Service.query()
-        .where('serviceId', id)
-        .where('userId', auth.user.id)).update({
-        name: data.name,
-        settings: JSON.stringify(settings),
-      });
+    // Update data in database
+    await (Service.query()
+      .where('serviceId', id)
+      .where('userId', auth.user.id)).update({
+      name: data.name,
+      settings: JSON.stringify(settings),
+    });
 
-      // Get updated row
-      const service = (await Service.query()
-        .where('serviceId', id)
-        .where('userId', auth.user.id).fetch()).rows[0];
+    // Get updated row
+    const service = (await Service.query()
+      .where('serviceId', id)
+      .where('userId', auth.user.id).fetch()).rows[0];
 
-      return response.send({
-        data: {
-          id,
-          name: service.name,
-          ...settings,
-          iconUrl: `${Env.get('APP_URL')}/v1/icon/${settings.iconId}`,
-          userId: auth.user.id,
-        },
-        status: ["updated"]
-      });
-    }
+    return response.send({
+      data: {
+        id,
+        name: service.name,
+        ...settings,
+        iconUrl: `${Env.get('APP_URL')}/v1/icon/${settings.iconId}`,
+        userId: auth.user.id,
+      },
+      status: ['updated'],
+    });
   }
 
   async icon({
@@ -231,7 +230,7 @@ class ServiceController {
     const iconPath = path.join(Helpers.tmpPath('uploads'), id);
     if (!await fs.exists(iconPath)) {
       return response.status(404).send({
-        status: 'Icon doesn\'t exist'
+        status: 'Icon doesn\'t exist',
       });
     }
 
@@ -252,7 +251,7 @@ class ServiceController {
         .where('userId', auth.user.id).fetch()).rows[0];
 
       const settings = {
-        ...typeof serviceData.settings === "string" ? JSON.parse(serviceData.settings) : serviceData.settings,
+        ...typeof serviceData.settings === 'string' ? JSON.parse(serviceData.settings) : serviceData.settings,
         order: data[service],
       };
 
@@ -260,16 +259,16 @@ class ServiceController {
       await (Service.query() // eslint-disable-line no-await-in-loop
         .where('serviceId', service)
         .where('userId', auth.user.id))
-      .update({
-        settings: JSON.stringify(settings),
-      });
+        .update({
+          settings: JSON.stringify(settings),
+        });
     }
 
     // Get new services
     const services = (await auth.user.services().fetch()).rows;
     // Convert to array with all data Franz wants
     const servicesArray = services.map((service) => {
-      const settings = typeof service.settings === "string" ? JSON.parse(service.settings) : service.settings;
+      const settings = typeof service.settings === 'string' ? JSON.parse(service.settings) : service.settings;
 
       return {
         customRecipe: false,
@@ -288,7 +287,7 @@ class ServiceController {
         name: service.name,
         recipeId: service.recipeId,
         userId: auth.user.id,
-      }
+      };
     });
 
     return response.send(servicesArray);
diff --git a/app/Controllers/Http/StaticController.js b/app/Controllers/Http/StaticController.js
index 265578f..cd38b13 100644
--- a/app/Controllers/Http/StaticController.js
+++ b/app/Controllers/Http/StaticController.js
@@ -31,44 +31,44 @@ class StaticController {
       isTeamManagementIncludedInCurrentPlan: true,
       isTodosEnabled: true,
       isTodosIncludedInCurrentPlan: true,
-      defaultTrialPlan: "franz-pro-yearly",
-      subscribeURL: "https://getferdi.com",
-      planSelectionURL: "https://getferdi.com",
+      defaultTrialPlan: 'franz-pro-yearly',
+      subscribeURL: 'https://getferdi.com',
+      planSelectionURL: 'https://getferdi.com',
       isMagicBarEnabled: true,
       hasInlineCheckout: true,
       isPlanSelectionEnabled: false,
       isTrialStatusBarEnabled: false,
       canSkipTrial: true,
       pricingConfig: {
-        currency: "$",
-        currencyID: "USD",
+        currency: '$',
+        currencyID: 'USD',
         plans: {
           personal: {
             monthly: {
-              id: "ferdi-free",
+              id: 'ferdi-free',
               price: 0,
-              billed: 0
+              billed: 0,
             },
             yearly: {
-              id: "ferdi-completely-free",
+              id: 'ferdi-completely-free',
               price: 0,
-              billed: 0
-            }
+              billed: 0,
+            },
           },
           pro: {
             monthly: {
-              id: "ferdi-still-free",
+              id: 'ferdi-still-free',
               price: 0,
-              billed: 0
+              billed: 0,
             },
             yearly: {
-              id: "ferdi-forever-free",
+              id: 'ferdi-forever-free',
               price: 0,
-              billed: 0
-            }
-          }
-        }
-      }
+              billed: 0,
+            },
+          },
+        },
+      },
     });
   }
 
diff --git a/app/Controllers/Http/UserController.js b/app/Controllers/Http/UserController.js
index edfccf2..e580e49 100644
--- a/app/Controllers/Http/UserController.js
+++ b/app/Controllers/Http/UserController.js
@@ -38,6 +38,13 @@ class UserController {
     response,
     auth,
   }) {
+    if (Env.get('IS_REGISTRATION_ENABLED') == 'false') { // eslint-disable-line eqeqeq
+      return response.status(401).send({
+        message: 'Registration is disabled on this server',
+        status: 401,
+      });
+    }
+
     // Validate user input
     const validation = await validateAll(request.all(), {
       firstname: 'required',
@@ -155,17 +162,17 @@ class UserController {
   async updateMe({
     request,
     response,
-    auth
+    auth,
   }) {
     let settings = auth.user.settings || {};
     if (typeof settings === 'string') {
       settings = JSON.parse(settings);
     }
 
-    let newSettings = {
+    const newSettings = {
       ...settings,
       ...request.all(),
-    }
+    };
 
     auth.user.settings = JSON.stringify(newSettings);
     await auth.user.save();
@@ -188,7 +195,7 @@ class UserController {
       },
       status: [
         'data-updated',
-      ]
+      ],
     });
   }
 
@@ -197,6 +204,13 @@ class UserController {
     request,
     response,
   }) {
+    if (Env.get('IS_REGISTRATION_ENABLED') == 'false') { // eslint-disable-line eqeqeq
+      return response.status(401).send({
+        message: 'Registration is disabled on this server',
+        status: 401,
+      });
+    }
+
     // Validate user input
     const validation = await validateAll(request.all(), {
       email: 'required|email|unique:users,email',
diff --git a/app/Controllers/Http/WorkspaceController.js b/app/Controllers/Http/WorkspaceController.js
index a2200a9..cbb6873 100644
--- a/app/Controllers/Http/WorkspaceController.js
+++ b/app/Controllers/Http/WorkspaceController.js
@@ -168,7 +168,7 @@ class WorkspaceController {
         id: workspace.workspaceId,
         name: workspace.name,
         order: workspace.order,
-        services: typeof workspace.services === "string" ? JSON.parse(workspace.services) : workspace.services,
+        services: typeof workspace.services === 'string' ? JSON.parse(workspace.services) : workspace.services,
         userId: auth.user.id,
       }));
     }
diff --git a/app/Exceptions/Handler.js b/app/Exceptions/Handler.js
index cb9e10b..14b840e 100644
--- a/app/Exceptions/Handler.js
+++ b/app/Exceptions/Handler.js
@@ -1,5 +1,6 @@
 
 const BaseExceptionHandler = use('BaseExceptionHandler');
+const Sentry = require('@sentry/node');
 
 /**
  * This class handles all exceptions thrown during
@@ -39,7 +40,8 @@ class ExceptionHandler extends BaseExceptionHandler {
    *
    * @return {void}
    */
-  async report() {
+  async report(error) {
+    Sentry.captureException(error);
     return true;
   }
 }
diff --git a/app/Middleware/HandleDoubleSlash.js b/app/Middleware/HandleDoubleSlash.js
new file mode 100644
index 0000000..456b774
--- /dev/null
+++ b/app/Middleware/HandleDoubleSlash.js
@@ -0,0 +1,24 @@
+'use strict'
+/** @typedef {import('@adonisjs/framework/src/Request')} Request */
+/** @typedef {import('@adonisjs/framework/src/Response')} Response */
+/** @typedef {import('@adonisjs/framework/src/View')} View */
+
+class HandleDoubleSlash {
+  /**
+   * @param {object} ctx
+   * @param {Request} ctx.request
+   * @param {Function} next
+   */
+  async handle ({ request, response }, next) {
+    // Redirect requests that contain duplicate slashes to the right path
+    if (request.url().includes('//')) {
+      return response.redirect(
+        request.url().replace(/\/{2,}/g, '/'),
+      );
+    }
+
+    await next();
+  }
+}
+
+module.exports = HandleDoubleSlash
diff --git a/package-lock.json b/package-lock.json
index 23a9522..b2e96f7 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -1,6 +1,6 @@
 {
   "name": "ferdi-server",
-  "version": "1.0.2",
+  "version": "1.0.5",
   "lockfileVersion": 1,
   "requires": true,
   "dependencies": {
@@ -518,9 +518,9 @@
       }
     },
     "acorn": {
-      "version": "7.0.0",
-      "resolved": "https://registry.npmjs.org/acorn/-/acorn-7.0.0.tgz",
-      "integrity": "sha512-PaF/MduxijYYt7unVGRuds1vBC9bFxbNf+VWqhOClfdgy7RlVkQqt610ig1/yxTgsDIfW1cWDel5EBbOy3jdtQ=="
+      "version": "7.1.1",
+      "resolved": "https://registry.npmjs.org/acorn/-/acorn-7.1.1.tgz",
+      "integrity": "sha512-add7dgA5ppRPxCFJoAGfMDi7PIBXq1RtGo7BhbLaxwrXPOmw8gq48Y9ozT01hUKy9byMjlR20EJhu5zlkErEkg=="
     },
     "acorn-jsx": {
       "version": "5.0.2",
diff --git a/package.json b/package.json
index 3bcae53..3932b49 100644
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "ferdi-server",
-  "version": "1.0.2",
+  "version": "1.0.5",
   "adonis-version": "4.1.0",
   "description": "Ferdi server to replace the default Franz server.",
   "main": "index.js",
diff --git a/public/js/transfer.js b/public/js/transfer.js
index d3d23b3..c04a6d3 100644
--- a/public/js/transfer.js
+++ b/public/js/transfer.js
@@ -11,4 +11,4 @@ fileInput.addEventListener('change', () => {
     submitBtn.disabled = false;
   };
   reader.readAsText(fileInput.files[0]);
-})
+});
diff --git a/resources/views/others/index.edge b/resources/views/others/index.edge
index ef3bbfa..9c90fb0 100644
--- a/resources/views/others/index.edge
+++ b/resources/views/others/index.edge
@@ -88,9 +88,17 @@
     margin: 0.5rem 0;
   }
 
+  img {
+    height: 200px;
+    margin: 0;
+  }
+
 </style>
-<h1>ferdi-server</h1>
-<p>You are accessing a custom <a href="https://github.com/kytwb/ferdi">Ferdi</a> server.</p>
+
+<img src="https://github.com/getferdi/ferdi/raw/develop/build-helpers/images/icon.png" alt="Ferdi logo">
+
+<h1>Ferdi Server</h1>
+<p>You are accessing a custom <a href="https://github.com/getferdi/ferdi">Ferdi</a> server.</p>
 <p>
   To use this server in your Ferdi client, <a href="ferdi://settings/app">open Ferdi's settings</a> and as the
   <code>server</code>, enter <code id="server"></code>
@@ -101,7 +109,7 @@
 
 <br />
 <small>
-  <a href="https://github.com/vantezzen/ferdi-server">ferdi-server</a> is a project by <a
-    href="https://vantezzen.io">vantezzen</a>.
+  <a href="https://github.com/getferdi/server">ferdi-server</a> is a project by <a
+    href="https://getferdi.com">the Ferdi Team</a>.
 </small>
 @endsection
diff --git a/server.js b/server.js
index 81f8e73..921df97 100644
--- a/server.js
+++ b/server.js
@@ -1,4 +1,5 @@
 const Sentry = require('@sentry/node');
+
 Sentry.init({ dsn: 'https://34e9a42c1de24048b7bfc980211dd7c8@sentry.io/1838449' });
 
 /*
diff --git a/start/kernel.js b/start/kernel.js
index b54fc29..077151a 100644
--- a/start/kernel.js
+++ b/start/kernel.js
@@ -54,6 +54,7 @@ const namedMiddleware = {
 const serverMiddleware = [
   'Adonis/Middleware/Static',
   'Adonis/Middleware/Cors',
+  'App/Middleware/HandleDoubleSlash',
 ];
 
 Server
diff --git a/start/routes.js b/start/routes.js
index b5674fd..6385ca5 100644
--- a/start/routes.js
+++ b/start/routes.js
@@ -60,24 +60,32 @@ Route.group(() => {
 }).prefix('v1');
 
 // User dashboard
-Route.group(() => {
-  // Auth
-  Route.get('login', ({ view }) => view.render('dashboard.login')).middleware('guest');
-  Route.post('login', 'DashboardController.login').middleware('guest');
-
-  // Dashboard
-  Route.get('account', 'DashboardController.account').middleware('auth:session');
-  Route.post('account', 'DashboardController.edit').middleware('auth:session');
-  Route.get('data', 'DashboardController.data').middleware('auth:session');
-  Route.get('export', 'DashboardController.export').middleware('auth:session');
-  Route.post('transfer', 'DashboardController.import').middleware('auth:session');
-  Route.get('transfer', ({ view }) => view.render('dashboard.transfer')).middleware('auth:session');
-  Route.get('delete', ({ view }) => view.render('dashboard.delete')).middleware('auth:session');
-  Route.post('delete', 'DashboardController.delete').middleware('auth:session');
-  Route.get('logout', 'DashboardController.logout').middleware('auth:session');
-
-  Route.get('*', ({ response }) => response.redirect('/user/account'));
-}).prefix('user').middleware('shield');
+if (Env.get('IS_DASHBOARD_ENABLED') != 'false') {
+  Route.group(() => {
+    // Auth
+    Route.get('login', ({ view }) => view.render('dashboard.login')).middleware('guest');
+    Route.post('login', 'DashboardController.login').middleware('guest');
+  
+    // Dashboard
+    Route.get('account', 'DashboardController.account').middleware('auth:session');
+    Route.post('account', 'DashboardController.edit').middleware('auth:session');
+    Route.get('data', 'DashboardController.data').middleware('auth:session');
+    Route.get('export', 'DashboardController.export').middleware('auth:session');
+    Route.post('transfer', 'DashboardController.import').middleware('auth:session');
+    Route.get('transfer', ({ view }) => view.render('dashboard.transfer')).middleware('auth:session');
+    Route.get('delete', ({ view }) => view.render('dashboard.delete')).middleware('auth:session');
+    Route.post('delete', 'DashboardController.delete').middleware('auth:session');
+    Route.get('logout', 'DashboardController.logout').middleware('auth:session');
+  
+    Route.get('*', ({ response }) => response.redirect('/user/account'));
+  }).prefix('user').middleware('shield');
+} else {
+  Route.group(() => {
+    Route.get('*', ({
+      response,
+    }) => response.send('The user dashboard is disabled on this server\n\nIf you are the server owner, please set IS_DASHBOARD_ENABLED to true to enable the dashboard.'))
+  }).prefix('user');
+}
 
 // Recipe creation
 Route.post('new', 'RecipeController.create');