2020-07-01 12:34:53 +02:00
|
|
|
package commands
|
|
|
|
|
|
|
|
import (
|
|
|
|
"bufio"
|
|
|
|
"context"
|
|
|
|
"errors"
|
|
|
|
"fmt"
|
|
|
|
"os"
|
|
|
|
"os/signal"
|
|
|
|
"strings"
|
|
|
|
"syscall"
|
|
|
|
|
2021-09-22 19:33:41 +02:00
|
|
|
"github.com/urfave/cli"
|
|
|
|
|
2020-07-01 12:34:53 +02:00
|
|
|
"github.com/photoprism/photoprism/internal/entity"
|
2022-04-15 09:42:07 +02:00
|
|
|
"github.com/photoprism/photoprism/pkg/clean"
|
2022-12-29 23:41:43 +01:00
|
|
|
"github.com/photoprism/photoprism/pkg/rnd"
|
2023-06-19 17:24:02 +02:00
|
|
|
"github.com/photoprism/photoprism/pkg/txt"
|
2020-07-01 12:34:53 +02:00
|
|
|
)
|
|
|
|
|
2022-12-29 23:41:43 +01:00
|
|
|
// PasswdCommand configures the command name, flags, and action.
|
2020-07-01 12:34:53 +02:00
|
|
|
var PasswdCommand = cli.Command{
|
2022-12-29 23:41:43 +01:00
|
|
|
Name: "passwd",
|
|
|
|
Usage: "Changes the password of the user specified as argument",
|
|
|
|
ArgsUsage: "[username]",
|
2023-04-13 17:21:18 +02:00
|
|
|
Flags: []cli.Flag{
|
|
|
|
cli.BoolFlag{
|
|
|
|
Name: "show, s",
|
|
|
|
Usage: "show bcrypt password hash",
|
|
|
|
},
|
|
|
|
},
|
|
|
|
Action: passwdAction,
|
2020-07-01 12:34:53 +02:00
|
|
|
}
|
|
|
|
|
2022-12-29 23:41:43 +01:00
|
|
|
// passwdAction changes the password of the user specified as command argument.
|
2020-07-01 12:34:53 +02:00
|
|
|
func passwdAction(ctx *cli.Context) error {
|
2022-12-29 23:41:43 +01:00
|
|
|
id := clean.Username(ctx.Args().First())
|
|
|
|
|
|
|
|
// Name or UID provided?
|
|
|
|
if id == "" {
|
|
|
|
return cli.ShowSubcommandHelp(ctx)
|
|
|
|
}
|
|
|
|
|
2022-10-04 12:27:40 +02:00
|
|
|
conf, err := InitConfig(ctx)
|
2020-07-01 12:34:53 +02:00
|
|
|
|
2020-10-08 08:52:03 +02:00
|
|
|
_, cancel := context.WithCancel(context.Background())
|
2020-07-01 12:34:53 +02:00
|
|
|
defer cancel()
|
2020-10-08 08:52:03 +02:00
|
|
|
|
2022-10-04 12:27:40 +02:00
|
|
|
if err != nil {
|
2020-07-01 12:34:53 +02:00
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
conf.InitDb()
|
2022-09-28 09:01:17 +02:00
|
|
|
defer conf.Shutdown()
|
2020-07-01 12:34:53 +02:00
|
|
|
|
2022-12-29 23:41:43 +01:00
|
|
|
// Find user record.
|
|
|
|
var m *entity.User
|
|
|
|
|
|
|
|
if rnd.IsUID(id, entity.UserUID) {
|
|
|
|
m = entity.FindUserByUID(id)
|
|
|
|
} else {
|
|
|
|
m = entity.FindUserByName(id)
|
|
|
|
}
|
|
|
|
|
|
|
|
if m == nil {
|
|
|
|
return fmt.Errorf("user %s not found", clean.LogQuote(id))
|
2023-02-20 20:24:04 +01:00
|
|
|
} else if m.Deleted() {
|
|
|
|
return fmt.Errorf("user %s has been deleted", clean.LogQuote(id))
|
2022-12-29 23:41:43 +01:00
|
|
|
}
|
2020-07-01 12:34:53 +02:00
|
|
|
|
2023-06-19 17:24:02 +02:00
|
|
|
log.Infof("please enter a new password for %s (%d-%d characters)\n", clean.Log(m.Username()), entity.PasswordLength, txt.ClipPassword)
|
2020-07-01 12:34:53 +02:00
|
|
|
|
|
|
|
newPassword := getPassword("New Password: ")
|
|
|
|
|
2023-06-19 17:24:02 +02:00
|
|
|
if len([]rune(newPassword)) < entity.PasswordLength {
|
|
|
|
return fmt.Errorf("password must have at least %d characters", entity.PasswordLength)
|
|
|
|
} else if len(newPassword) > txt.ClipPassword {
|
|
|
|
return fmt.Errorf("password must have less than %d characters", txt.ClipPassword)
|
2020-07-01 12:34:53 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
retypePassword := getPassword("Retype Password: ")
|
|
|
|
|
|
|
|
if newPassword != retypePassword {
|
|
|
|
return errors.New("passwords did not match, please try again")
|
|
|
|
}
|
|
|
|
|
2022-12-29 23:41:43 +01:00
|
|
|
if err = m.SetPassword(newPassword); err != nil {
|
2020-07-01 12:34:53 +02:00
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
2023-04-13 17:21:18 +02:00
|
|
|
// Show bcrypt password hash?
|
|
|
|
if pw := entity.FindPassword(m.UserUID); ctx.Bool("show") && pw != nil {
|
|
|
|
log.Infof("password for %s successfully changed to %s\n", clean.Log(m.Username()), pw.Hash)
|
|
|
|
} else {
|
|
|
|
log.Infof("password for %s successfully changed\n", clean.Log(m.Username()))
|
|
|
|
}
|
2020-07-01 12:34:53 +02:00
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// License: MIT Open Source
|
|
|
|
// Copyright (c) Joe Linoff 2016
|
|
|
|
// Go code to prompt for password using only standard packages by utilizing syscall.ForkExec() and syscall.Wait4().
|
|
|
|
// Correctly resets terminal echo after ^C interrupts.
|
|
|
|
//
|
|
|
|
// techEcho() - turns terminal echo on or off.
|
|
|
|
func termEcho(on bool) {
|
|
|
|
// Common settings and variables for both stty calls.
|
|
|
|
attrs := syscall.ProcAttr{
|
|
|
|
Dir: "",
|
|
|
|
Env: []string{},
|
|
|
|
Files: []uintptr{os.Stdin.Fd(), os.Stdout.Fd(), os.Stderr.Fd()},
|
|
|
|
Sys: nil}
|
|
|
|
var ws syscall.WaitStatus
|
|
|
|
cmd := "echo"
|
|
|
|
if on == false {
|
|
|
|
cmd = "-echo"
|
|
|
|
}
|
|
|
|
|
|
|
|
// Enable/disable echoing.
|
|
|
|
pid, err := syscall.ForkExec(
|
|
|
|
"/bin/stty",
|
|
|
|
[]string{"stty", cmd},
|
|
|
|
&attrs)
|
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Wait for the stty process to complete.
|
|
|
|
_, err = syscall.Wait4(pid, &ws, 0, nil)
|
|
|
|
if err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// getPassword - Prompt for password.
|
|
|
|
func getPassword(prompt string) string {
|
|
|
|
fmt.Print(prompt)
|
|
|
|
|
|
|
|
// Catch a ^C interrupt.
|
|
|
|
// Make sure that we reset term echo before exiting.
|
|
|
|
signalChannel := make(chan os.Signal, 1)
|
|
|
|
signal.Notify(signalChannel, os.Interrupt)
|
|
|
|
go func() {
|
2022-01-08 12:12:00 +01:00
|
|
|
for range signalChannel {
|
2020-07-01 12:34:53 +02:00
|
|
|
fmt.Println("")
|
|
|
|
termEcho(true)
|
|
|
|
os.Exit(1)
|
|
|
|
}
|
|
|
|
}()
|
|
|
|
|
|
|
|
// Echo is disabled, now grab the data.
|
|
|
|
termEcho(false) // disable terminal echo
|
|
|
|
reader := bufio.NewReader(os.Stdin)
|
|
|
|
text, err := reader.ReadString('\n')
|
|
|
|
termEcho(true) // always re-enable terminal echo
|
|
|
|
fmt.Println("")
|
|
|
|
if err != nil {
|
|
|
|
// The terminal has been reset, go ahead and exit.
|
|
|
|
fmt.Println("ERROR:", err.Error())
|
|
|
|
os.Exit(1)
|
|
|
|
}
|
|
|
|
return strings.TrimSpace(text)
|
|
|
|
}
|