afan
/
gitea
关注 1
点赞 0
派生 0
代码 工单 0 合并请求 0 版本发布 0 百科 动态
gitea源码
1 提交
2 分支
目录树: 61128e8e94
分支列表 标签列表
${ item.name }
创建分支 ${ searchTerm }
从 '61128e8e94'
${ noResults }
gitea/services/user/update.go

update.go 7.0KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247 
  1. // Copyright 2024 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package user

  5. 

  6. import (

  7. 	"context"

  8. 	"fmt"

  9. 

  10. 	auth_model "code.gitea.io/gitea/models/auth"

  11. 	user_model "code.gitea.io/gitea/models/user"

  12. 	password_module "code.gitea.io/gitea/modules/auth/password"

  13. 	"code.gitea.io/gitea/modules/optional"

  14. 	"code.gitea.io/gitea/modules/setting"

  15. 	"code.gitea.io/gitea/modules/structs"

  16. )

  17. 

  18. type UpdateOptionField[T any] struct {

  19. 	FieldValue T

  20. 	FromSync   bool

  21. }

  22. 

  23. func UpdateOptionFieldFromValue[T any](value T) optional.Option[UpdateOptionField[T]] {

  24. 	return optional.Some(UpdateOptionField[T]{FieldValue: value})

  25. }

  26. 

  27. func UpdateOptionFieldFromSync[T any](value T) optional.Option[UpdateOptionField[T]] {

  28. 	return optional.Some(UpdateOptionField[T]{FieldValue: value, FromSync: true})

  29. }

  30. 

  31. func UpdateOptionFieldFromPtr[T any](value *T) optional.Option[UpdateOptionField[T]] {

  32. 	if value == nil {

  33. 		return optional.None[UpdateOptionField[T]]()

  34. 	}

  35. 	return UpdateOptionFieldFromValue(*value)

  36. }

  37. 

  38. type UpdateOptions struct {

  39. 	KeepEmailPrivate             optional.Option[bool]

  40. 	FullName                     optional.Option[string]

  41. 	Website                      optional.Option[string]

  42. 	Location                     optional.Option[string]

  43. 	Description                  optional.Option[string]

  44. 	AllowGitHook                 optional.Option[bool]

  45. 	AllowImportLocal             optional.Option[bool]

  46. 	MaxRepoCreation              optional.Option[int]

  47. 	IsRestricted                 optional.Option[bool]

  48. 	Visibility                   optional.Option[structs.VisibleType]

  49. 	KeepActivityPrivate          optional.Option[bool]

  50. 	Language                     optional.Option[string]

  51. 	Theme                        optional.Option[string]

  52. 	DiffViewStyle                optional.Option[string]

  53. 	AllowCreateOrganization      optional.Option[bool]

  54. 	IsActive                     optional.Option[bool]

  55. 	IsAdmin                      optional.Option[UpdateOptionField[bool]]

  56. 	EmailNotificationsPreference optional.Option[string]

  57. 	SetLastLogin                 bool

  58. 	RepoAdminChangeTeamAccess    optional.Option[bool]

  59. }

  60. 

  61. func UpdateUser(ctx context.Context, u *user_model.User, opts *UpdateOptions) error {

  62. 	cols := make([]string, 0, 20)

  63. 

  64. 	if opts.KeepEmailPrivate.Has() {

  65. 		u.KeepEmailPrivate = opts.KeepEmailPrivate.Value()

  66. 

  67. 		cols = append(cols, "keep_email_private")

  68. 	}

  69. 

  70. 	if opts.FullName.Has() {

  71. 		u.FullName = opts.FullName.Value()

  72. 

  73. 		cols = append(cols, "full_name")

  74. 	}

  75. 	if opts.Website.Has() {

  76. 		u.Website = opts.Website.Value()

  77. 

  78. 		cols = append(cols, "website")

  79. 	}

  80. 	if opts.Location.Has() {

  81. 		u.Location = opts.Location.Value()

  82. 

  83. 		cols = append(cols, "location")

  84. 	}

  85. 	if opts.Description.Has() {

  86. 		u.Description = opts.Description.Value()

  87. 

  88. 		cols = append(cols, "description")

  89. 	}

  90. 	if opts.Language.Has() {

  91. 		u.Language = opts.Language.Value()

  92. 

  93. 		cols = append(cols, "language")

  94. 	}

  95. 	if opts.Theme.Has() {

  96. 		u.Theme = opts.Theme.Value()

  97. 

  98. 		cols = append(cols, "theme")

  99. 	}

  100. 	if opts.DiffViewStyle.Has() {

  101. 		u.DiffViewStyle = opts.DiffViewStyle.Value()

  102. 

  103. 		cols = append(cols, "diff_view_style")

  104. 	}

  105. 

  106. 	if opts.AllowGitHook.Has() {

  107. 		u.AllowGitHook = opts.AllowGitHook.Value()

  108. 

  109. 		cols = append(cols, "allow_git_hook")

  110. 	}

  111. 	if opts.AllowImportLocal.Has() {

  112. 		u.AllowImportLocal = opts.AllowImportLocal.Value()

  113. 

  114. 		cols = append(cols, "allow_import_local")

  115. 	}

  116. 

  117. 	if opts.MaxRepoCreation.Has() {

  118. 		u.MaxRepoCreation = opts.MaxRepoCreation.Value()

  119. 

  120. 		cols = append(cols, "max_repo_creation")

  121. 	}

  122. 

  123. 	if opts.IsActive.Has() {

  124. 		u.IsActive = opts.IsActive.Value()

  125. 

  126. 		cols = append(cols, "is_active")

  127. 	}

  128. 	if opts.IsRestricted.Has() {

  129. 		u.IsRestricted = opts.IsRestricted.Value()

  130. 

  131. 		cols = append(cols, "is_restricted")

  132. 	}

  133. 	if opts.IsAdmin.Has() {

  134. 		if opts.IsAdmin.Value().FieldValue /* true */ {

  135. 			u.IsAdmin = opts.IsAdmin.Value().FieldValue // set IsAdmin=true

  136. 			cols = append(cols, "is_admin")

  137. 		} else if !user_model.IsLastAdminUser(ctx, u) /* not the last admin */ {

  138. 			u.IsAdmin = opts.IsAdmin.Value().FieldValue // it's safe to change it from false to true (not the last admin)

  139. 			cols = append(cols, "is_admin")

  140. 		} else /* IsAdmin=false but this is the last admin user */ { //nolint:gocritic // make it easier to read

  141. 			if !opts.IsAdmin.Value().FromSync {

  142. 				return user_model.ErrDeleteLastAdminUser{UID: u.ID}

  143. 			}

  144. 			// else: syncing from external-source, this user is the last admin, so skip the "IsAdmin=false" change

  145. 		}

  146. 	}

  147. 

  148. 	if opts.Visibility.Has() {

  149. 		if !u.IsOrganization() && !setting.Service.AllowedUserVisibilityModesSlice.IsAllowedVisibility(opts.Visibility.Value()) {

  150. 			return fmt.Errorf("visibility mode not allowed: %s", opts.Visibility.Value().String())

  151. 		}

  152. 		u.Visibility = opts.Visibility.Value()

  153. 

  154. 		cols = append(cols, "visibility")

  155. 	}

  156. 	if opts.KeepActivityPrivate.Has() {

  157. 		u.KeepActivityPrivate = opts.KeepActivityPrivate.Value()

  158. 

  159. 		cols = append(cols, "keep_activity_private")

  160. 	}

  161. 

  162. 	if opts.AllowCreateOrganization.Has() {

  163. 		u.AllowCreateOrganization = opts.AllowCreateOrganization.Value()

  164. 

  165. 		cols = append(cols, "allow_create_organization")

  166. 	}

  167. 	if opts.RepoAdminChangeTeamAccess.Has() {

  168. 		u.RepoAdminChangeTeamAccess = opts.RepoAdminChangeTeamAccess.Value()

  169. 

  170. 		cols = append(cols, "repo_admin_change_team_access")

  171. 	}

  172. 

  173. 	if opts.EmailNotificationsPreference.Has() {

  174. 		u.EmailNotificationsPreference = opts.EmailNotificationsPreference.Value()

  175. 

  176. 		cols = append(cols, "email_notifications_preference")

  177. 	}

  178. 

  179. 	if opts.SetLastLogin {

  180. 		u.SetLastLogin()

  181. 

  182. 		cols = append(cols, "last_login_unix")

  183. 	}

  184. 

  185. 	return user_model.UpdateUserCols(ctx, u, cols...)

  186. }

  187. 

  188. type UpdateAuthOptions struct {

  189. 	LoginSource        optional.Option[int64]

  190. 	LoginName          optional.Option[string]

  191. 	Password           optional.Option[string]

  192. 	MustChangePassword optional.Option[bool]

  193. 	ProhibitLogin      optional.Option[bool]

  194. }

  195. 

  196. func UpdateAuth(ctx context.Context, u *user_model.User, opts *UpdateAuthOptions) error {

  197. 	if opts.LoginSource.Has() {

  198. 		source, err := auth_model.GetSourceByID(ctx, opts.LoginSource.Value())

  199. 		if err != nil {

  200. 			return err

  201. 		}

  202. 

  203. 		u.LoginType = source.Type

  204. 		u.LoginSource = source.ID

  205. 	}

  206. 	if opts.LoginName.Has() {

  207. 		u.LoginName = opts.LoginName.Value()

  208. 	}

  209. 

  210. 	deleteAuthTokens := false

  211. 	if opts.Password.Has() && (u.IsLocal() || u.IsOAuth2()) {

  212. 		password := opts.Password.Value()

  213. 

  214. 		if len(password) < setting.MinPasswordLength {

  215. 			return password_module.ErrMinLength

  216. 		}

  217. 		if !password_module.IsComplexEnough(password) {

  218. 			return password_module.ErrComplexity

  219. 		}

  220. 		if err := password_module.IsPwned(ctx, password); err != nil {

  221. 			return err

  222. 		}

  223. 

  224. 		if err := u.SetPassword(password); err != nil {

  225. 			return err

  226. 		}

  227. 

  228. 		deleteAuthTokens = true

  229. 	}

  230. 

  231. 	if opts.MustChangePassword.Has() {

  232. 		u.MustChangePassword = opts.MustChangePassword.Value()

  233. 	}

  234. 	if opts.ProhibitLogin.Has() {

  235. 		u.ProhibitLogin = opts.ProhibitLogin.Value()

  236. 	}

  237. 

  238. 	if err := user_model.UpdateUserCols(ctx, u, "login_type", "login_source", "login_name", "passwd", "passwd_hash_algo", "salt", "must_change_password", "prohibit_login"); err != nil {

  239. 		return err

  240. 	}

  241. 

  242. 	if deleteAuthTokens {

  243. 		return auth_model.DeleteAuthTokensByUserID(ctx, u.ID)

  244. 	}

  245. 	return nil

  246. }