Semaphore/api/users.go

package api

import (
	"database/sql"
	"net/http"
	"time"

	log "github.com/Sirupsen/logrus"
	"github.com/ansible-semaphore/semaphore/db"
	"github.com/ansible-semaphore/semaphore/util"
	"github.com/ansible-semaphore/semaphore/mulekick"
	"github.com/gorilla/context"
	"golang.org/x/crypto/bcrypt"
)

func getUsers(w http.ResponseWriter, r *http.Request) {
	var users []db.User
	if _, err := db.Mysql.Select(&users, "select * from user"); err != nil {
		panic(err)
	}

	mulekick.WriteJSON(w, http.StatusOK, users)
}

func addUser(w http.ResponseWriter, r *http.Request) {
	var user db.User
	if err := mulekick.Bind(w, r, &user); err != nil {
		w.WriteHeader(http.StatusBadRequest)
		return
	}

	editor := context.Get(r, "user").(*db.User)
	if !editor.Admin {
		log.Warn(editor.Username + " is not permitted to create users")
		w.WriteHeader(http.StatusUnauthorized)
		return
	}

	user.Created = db.GetParsedTime(time.Now())

	if err := db.Mysql.Insert(&user); err != nil {
		panic(err)
	}

	mulekick.WriteJSON(w, http.StatusCreated, user)
}

func getUserMiddleware(w http.ResponseWriter, r *http.Request) {
	userID, err := util.GetIntParam("user_id", w, r)
	if err != nil {
		return
	}

	var user db.User
	if err := db.Mysql.SelectOne(&user, "select * from user where id=?", userID); err != nil {
		if err == sql.ErrNoRows {
			w.WriteHeader(http.StatusNotFound)
			return
		}

		panic(err)
	}

	editor := context.Get(r, "user").(*db.User)
	if !editor.Admin && editor.ID != user.ID {
		log.Warn(editor.Username + " is not permitted to edit users")
		w.WriteHeader(http.StatusUnauthorized)
		return
	}

	context.Set(r, "_user", user)
}

func updateUser(w http.ResponseWriter, r *http.Request) {
	oldUser := context.Get(r, "_user").(db.User)
	editor := context.Get(r, "user").(*db.User)

	var user db.User
	if err := mulekick.Bind(w, r, &user); err != nil {
		return
	}

	if !editor.Admin && editor.ID != oldUser.ID {
		log.Warn(editor.Username + " is not permitted to edit users")
		w.WriteHeader(http.StatusUnauthorized)
		return
	}

	if editor.ID == oldUser.ID && oldUser.Admin != user.Admin {
		log.Warn("User can't edit his own role")
		w.WriteHeader(http.StatusUnauthorized)
		return
	}

	if oldUser.External && oldUser.Username != user.Username {
		log.Warn("Username is not editable for external LDAP users")
		w.WriteHeader(http.StatusBadRequest)
		return
	}

	if _, err := db.Mysql.Exec("update user set name=?, username=?, email=?, alert=?, admin=? where id=?", user.Name, user.Username, user.Email, user.Alert, user.Admin, oldUser.ID); err != nil {
		panic(err)
	}

	w.WriteHeader(http.StatusNoContent)
}

func updateUserPassword(w http.ResponseWriter, r *http.Request) {
	user := context.Get(r, "_user").(db.User)
	editor := context.Get(r, "user").(*db.User)

	var pwd struct {
		Pwd string `json:"password"`
	}

	if !editor.Admin && editor.ID != user.ID {
		log.Warn(editor.Username + " is not permitted to edit users")
		w.WriteHeader(http.StatusUnauthorized)
		return
	}

	if user.External {
		log.Warn("Password is not editable for external LDAP users")
		w.WriteHeader(http.StatusBadRequest)
		return
	}

	if err := mulekick.Bind(w, r, &pwd); err != nil {
		return
	}

	password, err := bcrypt.GenerateFromPassword([]byte(pwd.Pwd), 11)
	util.LogWarning(err)
	if _, err := db.Mysql.Exec("update user set password=? where id=?", string(password), user.ID); err != nil {
		panic(err)
	}

	w.WriteHeader(http.StatusNoContent)
}

func deleteUser(w http.ResponseWriter, r *http.Request) {
	user := context.Get(r, "_user").(db.User)
	editor := context.Get(r, "user").(*db.User)

	if !editor.Admin && editor.ID != user.ID {
		log.Warn(editor.Username + " is not permitted to delete users")
		w.WriteHeader(http.StatusUnauthorized)
		return
	}

	if _, err := db.Mysql.Exec("delete from project__user where user_id=?", user.ID); err != nil {
		panic(err)
	}
	if _, err := db.Mysql.Exec("delete from user where id=?", user.ID); err != nil {
		panic(err)
	}

	w.WriteHeader(http.StatusNoContent)
}
refactoring 2016-05-24 11:55:48 +02:00			`package api`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00
			`import (`
			`"database/sql"`
moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`"net/http"`
Fix SQL - for strict mode 2016-04-29 09:33:08 +02:00			`"time"`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00
add logrus logging, disable LDAP username and password editing on backend 2017-03-28 03:38:53 +02:00			`log "github.com/Sirupsen/logrus"`
merge models -> db 2017-02-23 06:12:16 +01:00			`"github.com/ansible-semaphore/semaphore/db"`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`"github.com/ansible-semaphore/semaphore/util"`
Set version on windows taskfile It doesn't otherwise build on windows since by default it's `1`: ```powershell Taskfiles versions should match. First is "2" but second is "1" ``` backup 2019-07-09 09:21:49 +02:00			`"github.com/ansible-semaphore/semaphore/mulekick"`
moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`"github.com/gorilla/context"`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`"golang.org/x/crypto/bcrypt"`
			`)`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`func getUsers(w http.ResponseWriter, r *http.Request) {`
merge models -> db 2017-02-23 06:12:16 +01:00			`var users []db.User`
			`if _, err := db.Mysql.Select(&users, "select * from user"); err != nil {`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`panic(err)`
			`}`

moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`mulekick.WriteJSON(w, http.StatusOK, users)`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`func addUser(w http.ResponseWriter, r *http.Request) {`
merge models -> db 2017-02-23 06:12:16 +01:00			`var user db.User`
moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`if err := mulekick.Bind(w, r, &user); err != nil {`
use dredd for api testing add ci context docker deployment update api docs add some small fixes 2018-04-11 20:05:38 +02:00			`w.WriteHeader(http.StatusBadRequest)`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`return`
			`}`

add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`editor := context.Get(r, "user").(*db.User)`
add gometalinter to tools and run it in circle. extract some error checking and logging in places where linting needed or errors not checked 2018-03-27 22:12:47 +02:00			`if !editor.Admin {`
another minor grammar fixes 2018-02-20 01:12:19 +01:00			`log.Warn(editor.Username + " is not permitted to create users")`
add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`w.WriteHeader(http.StatusUnauthorized)`
			`return`
			`}`

use dredd for api testing add ci context docker deployment update api docs add some small fixes 2018-04-11 20:05:38 +02:00			`user.Created = db.GetParsedTime(time.Now())`
Fix SQL - for strict mode 2016-04-29 09:33:08 +02:00
merge models -> db 2017-02-23 06:12:16 +01:00			`if err := db.Mysql.Insert(&user); err != nil {`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`panic(err)`
			`}`

moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`mulekick.WriteJSON(w, http.StatusCreated, user)`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`func getUserMiddleware(w http.ResponseWriter, r *http.Request) {`
🎉 gin -> net/http 2017-02-23 00:21:49 +01:00			`userID, err := util.GetIntParam("user_id", w, r)`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`if err != nil {`
			`return`
			`}`

merge models -> db 2017-02-23 06:12:16 +01:00			`var user db.User`
			`if err := db.Mysql.SelectOne(&user, "select * from user where id=?", userID); err != nil {`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`if err == sql.ErrNoRows {`
begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`w.WriteHeader(http.StatusNotFound)`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`return`
			`}`

			`panic(err)`
			`}`

add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`editor := context.Get(r, "user").(*db.User)`
add gometalinter to tools and run it in circle. extract some error checking and logging in places where linting needed or errors not checked 2018-03-27 22:12:47 +02:00			`if !editor.Admin && editor.ID != user.ID {`
another minor fixes after review 2018-02-18 23:49:40 +01:00			`log.Warn(editor.Username + " is not permitted to edit users")`
add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`w.WriteHeader(http.StatusUnauthorized)`
			`return`
			`}`

moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`context.Set(r, "_user", user)`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`func updateUser(w http.ResponseWriter, r *http.Request) {`
merge models -> db 2017-02-23 06:12:16 +01:00			`oldUser := context.Get(r, "_user").(db.User)`
add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`editor := context.Get(r, "user").(*db.User)`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00
fixes resulting from master merge 2017-04-18 15:58:48 +02:00			`var user db.User`
			`if err := mulekick.Bind(w, r, &user); err != nil {`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`return`
			`}`

add gometalinter to tools and run it in circle. extract some error checking and logging in places where linting needed or errors not checked 2018-03-27 22:12:47 +02:00			`if !editor.Admin && editor.ID != oldUser.ID {`
another minor grammar fixes 2018-02-20 01:12:19 +01:00			`log.Warn(editor.Username + " is not permitted to edit users")`
add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`w.WriteHeader(http.StatusUnauthorized)`
			`return`
			`}`

			`if editor.ID == oldUser.ID && oldUser.Admin != user.Admin {`
			`log.Warn("User can't edit his own role")`
			`w.WriteHeader(http.StatusUnauthorized)`
			`return`
			`}`

add gometalinter to tools and run it in circle. extract some error checking and logging in places where linting needed or errors not checked 2018-03-27 22:12:47 +02:00			`if oldUser.External && oldUser.Username != user.Username {`
add logrus logging, disable LDAP username and password editing on backend 2017-03-28 03:38:53 +02:00			`log.Warn("Username is not editable for external LDAP users")`
fixes resulting from master merge 2017-04-18 15:58:48 +02:00			`w.WriteHeader(http.StatusBadRequest)`
add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`return`
fixes resulting from master merge 2017-04-18 15:58:48 +02:00			`}`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00
add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`if _, err := db.Mysql.Exec("update user set name=?, username=?, email=?, alert=?, admin=? where id=?", user.Name, user.Username, user.Email, user.Alert, user.Admin, oldUser.ID); err != nil {`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`panic(err)`
			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`w.WriteHeader(http.StatusNoContent)`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`func updateUserPassword(w http.ResponseWriter, r *http.Request) {`
merge models -> db 2017-02-23 06:12:16 +01:00			`user := context.Get(r, "_user").(db.User)`
add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`editor := context.Get(r, "user").(*db.User)`

Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`var pwd struct {`
			Pwd string `json:"password"`
			`}`

add gometalinter to tools and run it in circle. extract some error checking and logging in places where linting needed or errors not checked 2018-03-27 22:12:47 +02:00			`if !editor.Admin && editor.ID != user.ID {`
another minor grammar fixes 2018-02-20 01:12:19 +01:00			`log.Warn(editor.Username + " is not permitted to edit users")`
add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`w.WriteHeader(http.StatusUnauthorized)`
			`return`
			`}`

add gometalinter to tools and run it in circle. extract some error checking and logging in places where linting needed or errors not checked 2018-03-27 22:12:47 +02:00			`if user.External {`
add logrus logging, disable LDAP username and password editing on backend 2017-03-28 03:38:53 +02:00			`log.Warn("Password is not editable for external LDAP users")`
fixes resulting from master merge 2017-04-18 15:58:48 +02:00			`w.WriteHeader(http.StatusBadRequest)`
add logrus logging, disable LDAP username and password editing on backend 2017-03-28 03:38:53 +02:00			`return`
			`}`

moar refactor - c.MustGet( -> context.Get(r, - c.Get( -> context.GetOk(r, 2017-02-22 23:21:52 +01:00			`if err := mulekick.Bind(w, r, &pwd); err != nil {`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`return`
			`}`

add gometalinter to tools and run it in circle. extract some error checking and logging in places where linting needed or errors not checked 2018-03-27 22:12:47 +02:00			`password, err := bcrypt.GenerateFromPassword([]byte(pwd.Pwd), 11)`
			`util.LogWarning(err)`
merge models -> db 2017-02-23 06:12:16 +01:00			`if _, err := db.Mysql.Exec("update user set password=? where id=?", string(password), user.ID); err != nil {`
Improve setup, upgrade, new API - Improve upgrade process (fixes #106) - Improve upgrade UI - Delete Users API - Get user API - User update API - Security improvement (does not spill secret over api) - Improve setup (fixes #100) 2016-05-23 21:29:38 +02:00			`panic(err)`
			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`w.WriteHeader(http.StatusNoContent)`
Improve setup, upgrade, new API - Improve upgrade process (fixes #106) - Improve upgrade UI - Delete Users API - Get user API - User update API - Security improvement (does not spill secret over api) - Improve setup (fixes #100) 2016-05-23 21:29:38 +02:00			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`func deleteUser(w http.ResponseWriter, r *http.Request) {`
merge models -> db 2017-02-23 06:12:16 +01:00			`user := context.Get(r, "_user").(db.User)`
add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`editor := context.Get(r, "user").(*db.User)`

add gometalinter to tools and run it in circle. extract some error checking and logging in places where linting needed or errors not checked 2018-03-27 22:12:47 +02:00			`if !editor.Admin && editor.ID != user.ID {`
another minor grammar fixes 2018-02-20 01:12:19 +01:00			`log.Warn(editor.Username + " is not permitted to delete users")`
add admin role, restrict users without it 2017-07-26 07:55:34 +02:00			`w.WriteHeader(http.StatusUnauthorized)`
			`return`
			`}`
Improve setup, upgrade, new API - Improve upgrade process (fixes #106) - Improve upgrade UI - Delete Users API - Get user API - User update API - Security improvement (does not spill secret over api) - Improve setup (fixes #100) 2016-05-23 21:29:38 +02:00
merge models -> db 2017-02-23 06:12:16 +01:00			`if _, err := db.Mysql.Exec("delete from project__user where user_id=?", user.ID); err != nil {`
Improve setup, upgrade, new API - Improve upgrade process (fixes #106) - Improve upgrade UI - Delete Users API - Get user API - User update API - Security improvement (does not spill secret over api) - Improve setup (fixes #100) 2016-05-23 21:29:38 +02:00			`panic(err)`
			`}`
merge models -> db 2017-02-23 06:12:16 +01:00			`if _, err := db.Mysql.Exec("delete from user where id=?", user.ID); err != nil {`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`panic(err)`
			`}`

begin refactor gin -> net/http 2017-02-22 23:17:36 +01:00			`w.WriteHeader(http.StatusNoContent)`
Users API, Users UI - Improved login failing 2016-04-10 20:03:12 +02:00			`}`