summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--cmd/admin_user_generate_access_token.go21
1 files changed, 16 insertions, 5 deletions
diff --git a/cmd/admin_user_generate_access_token.go b/cmd/admin_user_generate_access_token.go
index 9971c2ec91..0febb91661 100644
--- a/cmd/admin_user_generate_access_token.go
+++ b/cmd/admin_user_generate_access_token.go
@@ -57,17 +57,28 @@ func runGenerateAccessToken(c *cli.Context) error {
return err
}
- accessTokenScope, err := auth_model.AccessTokenScope(c.String("scopes")).Normalize()
+ // construct token with name and user so we can make sure it is unique
+ t := &auth_model.AccessToken{
+ Name: c.String("token-name"),
+ UID: user.ID,
+ }
+
+ exist, err := auth_model.AccessTokenByNameExists(t)
if err != nil {
return err
}
+ if exist {
+ return fmt.Errorf("access token name has been used already")
+ }
- t := &auth_model.AccessToken{
- Name: c.String("token-name"),
- UID: user.ID,
- Scope: accessTokenScope,
+ // make sure the scopes are valid
+ accessTokenScope, err := auth_model.AccessTokenScope(c.String("scopes")).Normalize()
+ if err != nil {
+ return fmt.Errorf("invalid access token scope provided: %w", err)
}
+ t.Scope = accessTokenScope
+ // create the token
if err := auth_model.NewAccessToken(t); err != nil {
return err
}
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-11 12:52:17 +0000