Michael Mayer 884dea17de Security: Use individual preview tokens for each user account #98
Signed-off-by: Michael Mayer <michael@photoprism.app>
2022-10-13 22:11:02 +02:00

75 lines
1.5 KiB
Go

package commands
import (
"fmt"
"github.com/photoprism/photoprism/pkg/rnd"
"github.com/urfave/cli"
"github.com/photoprism/photoprism/internal/config"
"github.com/photoprism/photoprism/internal/entity"
"github.com/photoprism/photoprism/pkg/clean"
)
// UsersModCommand configures the command name, flags, and action.
var UsersModCommand = cli.Command{
Name: "mod",
Usage: "Modifies an existing user account",
ArgsUsage: "[username]",
Flags: UserFlags,
Action: usersModAction,
}
// usersModAction modifies an existing user account.
func usersModAction(ctx *cli.Context) error {
return CallWithDependencies(ctx, func(conf *config.Config) error {
conf.MigrateDb(false, nil)
id := clean.Username(ctx.Args().First())
// Name or UID provided?
if id == "" {
return cli.ShowSubcommandHelp(ctx)
}
// Find user record.
var m *entity.User
if rnd.IsUID(id, entity.UserUID) {
m = entity.FindUserByUID(id)
} else {
m = entity.FindUserByName(id)
}
if m == nil {
return fmt.Errorf("user %s not found", clean.LogQuote(id))
}
// Set values.
if err := m.SetValuesFromCli(ctx); err != nil {
return err
}
// Change password?
if val := clean.Password(ctx.String("password")); ctx.IsSet("password") && val != "" {
err := m.SetPassword(val)
if err != nil {
return err
}
log.Warnf("password has been changed")
}
// Save values.
if err := m.Save(); err != nil {
return err
}
log.Infof("user %s has been updated", m.String())
return nil
})
}