diff --git a/cmd/admin_user_generate_access_token.go b/cmd/admin_user_generate_access_token.go

index 822bc5c2bc77be0278cb0b5863a3d270696b493f..c3b2f7d9a4455535bf2123f5627c9afe6c61451e 100644 (file)
--- a/cmd/admin_user_generate_access_token.go
+++ b/cmd/admin_user_generate_access_token.go
@@ -55,17 +55,28 @@ func runGenerateAccessToken(c *cli.Context) error {
                 return err
         }
  
-       accessTokenScope, err := auth_model.AccessTokenScope(c.String("scopes")).Normalize()
+       // construct token with name and user so we can make sure it is unique
+       t := &auth_model.AccessToken{
+               Name: c.String("token-name"),
+               UID:  user.ID,
+       }
+
+       exist, err := auth_model.AccessTokenByNameExists(t)
         if err != nil {
                 return err
         }
+       if exist {
+               return fmt.Errorf("access token name has been used already")
+       }
  
-       t := &auth_model.AccessToken{
-               Name:  c.String("token-name"),
-               UID:   user.ID,
-               Scope: accessTokenScope,
+       // make sure the scopes are valid
+       accessTokenScope, err := auth_model.AccessTokenScope(c.String("scopes")).Normalize()
+       if err != nil {
+               return fmt.Errorf("invalid access token scope provided: %w", err)
         }
+       t.Scope = accessTokenScope
  
+       // create the token
         if err := auth_model.NewAccessToken(t); err != nil {
                 return err
         }
author	Giteabot <teabot@gitea.io>
	Wed, 26 Jul 2023 01:30:50 +0000 (21:30 -0400)
committer	GitHub <noreply@github.com>
	Wed, 26 Jul 2023 01:30:50 +0000 (01:30 +0000)