focalboard/server/api/admin.go

package api

import (
	"encoding/json"
	"io"
	"net/http"
	"strings"

	"github.com/gorilla/mux"
	"github.com/mattermost/focalboard/server/model"
	"github.com/mattermost/focalboard/server/services/audit"

	"github.com/mattermost/mattermost-server/v6/shared/mlog"
)

type AdminSetPasswordData struct {
	Password string `json:"password"`
}

func (a *API) handleAdminSetPassword(w http.ResponseWriter, r *http.Request) {
	vars := mux.Vars(r)
	username := vars["username"]

	requestBody, err := io.ReadAll(r.Body)
	if err != nil {
		a.errorResponse(w, r, err)
		return
	}

	var requestData AdminSetPasswordData
	err = json.Unmarshal(requestBody, &requestData)
	if err != nil {
		a.errorResponse(w, r, err)
		return
	}

	auditRec := a.makeAuditRecord(r, "adminSetPassword", audit.Fail)
	defer a.audit.LogRecord(audit.LevelAuth, auditRec)
	auditRec.AddMeta("username", username)

	if !strings.Contains(requestData.Password, "") {
		a.errorResponse(w, r, model.NewErrBadRequest("password is required"))
		return
	}

	err = a.app.UpdateUserPassword(username, requestData.Password)
	if err != nil {
		a.errorResponse(w, r, err)
		return
	}

	a.logger.Debug("AdminSetPassword, username: %s", mlog.String("username", username))

	jsonStringResponse(w, http.StatusOK, "{}")
	auditRec.Success()
}
Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00			`package api`

			`import (`
			`"encoding/json"`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`"io"`
Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00			`"net/http"`
			`"strings"`

			`"github.com/gorilla/mux"`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`"github.com/mattermost/focalboard/server/model"`
Auditing (#542) * audit wip * finish API coverage * fix unit test * remove sample logging and audit config * default logger * fix go.mod and go.sum 2021-06-11 14:24:51 +02:00			`"github.com/mattermost/focalboard/server/services/audit"`
Replace mlog with server v6 mlog (#1088) * replace mlog with server v6 mlog * remove FB mlog from plugin 2021-08-25 22:08:01 +02:00
			`"github.com/mattermost/mattermost-server/v6/shared/mlog"`
Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00			`)`

			`type AdminSetPasswordData struct {`
			Password string `json:"password"`
			`}`

			`func (a API) handleAdminSetPassword(w http.ResponseWriter, r http.Request) {`
			`vars := mux.Vars(r)`
			`username := vars["username"]`

Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`requestBody, err := io.ReadAll(r.Body)`
Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00			`if err != nil {`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`a.errorResponse(w, r, err)`
Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00			`return`
			`}`

			`var requestData AdminSetPasswordData`
			`err = json.Unmarshal(requestBody, &requestData)`
			`if err != nil {`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`a.errorResponse(w, r, err)`
Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00			`return`
			`}`

Auditing (#542) * audit wip * finish API coverage * fix unit test * remove sample logging and audit config * default logger * fix go.mod and go.sum 2021-06-11 14:24:51 +02:00			`auditRec := a.makeAuditRecord(r, "adminSetPassword", audit.Fail)`
			`defer a.audit.LogRecord(audit.LevelAuth, auditRec)`
			`auditRec.AddMeta("username", username)`

Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00			`if !strings.Contains(requestData.Password, "") {`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`a.errorResponse(w, r, model.NewErrBadRequest("password is required"))`
Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00			`return`
			`}`

Refactor App lifecycle (#590) * remove Server dep from App * remove appbuilder 2021-06-18 16:03:42 +02:00			`err = a.app.UpdateUserPassword(username, requestData.Password)`
Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00			`if err != nil {`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`a.errorResponse(w, r, err)`
Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00			`return`
			`}`

Logger for FocalBoard server (#466) - structured, asynchronous logging - supports discreet log levels, including custom levels - supports output to console, files, and all common log aggregators. - supports JSON, plain text and GELF formats - lazy formatting and writing 2021-05-29 08:23:10 +02:00			`a.logger.Debug("AdminSetPassword, username: %s", mlog.String("username", username))`
Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00
Add Swagger / OpenAPI docs 2021-02-17 20:29:20 +01:00			`jsonStringResponse(w, http.StatusOK, "{}")`
Auditing (#542) * audit wip * finish API coverage * fix unit test * remove sample logging and audit config * default logger * fix go.mod and go.sum 2021-06-11 14:24:51 +02:00			`auditRec.Success()`
Local server on unix port, admin set password 2021-01-20 22:52:25 +01:00			`}`