mirrors
/
gitea
дзеркало https://github.com/go-gitea/gitea.git
Слідкувати 1
В обрані 0
Форк 0
Код Проблеми 0 Релізи 211 Вікі Активність
Ви не можете вибрати більше 25 тем Теми мають розпочинатися з літери або цифри, можуть містити дефіси (-) і не повинні перевищувати 35 символів.
9501 Коміти
17 Гілки
Дерево: 9a2e47b23a
Гілки Теги
${ item.name }
Створити гілку ${ searchTerm }
з '9a2e47b23a'
${ noResults }
gitea/routers/admin/users.go

users.go 8.3KB
Неформатований Blame Історія

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Copyright 2020 The Gitea Authors.

  3. // Use of this source code is governed by a MIT-style

  4. // license that can be found in the LICENSE file.

  5. 

  6. package admin

  7. 

  8. import (

  9. 	"strings"

  10. 

  11. 	"code.gitea.io/gitea/models"

  12. 	"code.gitea.io/gitea/modules/auth"

  13. 	"code.gitea.io/gitea/modules/base"

  14. 	"code.gitea.io/gitea/modules/context"

  15. 	"code.gitea.io/gitea/modules/log"

  16. 	"code.gitea.io/gitea/modules/password"

  17. 	"code.gitea.io/gitea/modules/setting"

  18. 	"code.gitea.io/gitea/routers"

  19. 	"code.gitea.io/gitea/services/mailer"

  20. 

  21. 	"github.com/unknwon/com"

  22. )

  23. 

  24. const (

  25. 	tplUsers    base.TplName = "admin/user/list"

  26. 	tplUserNew  base.TplName = "admin/user/new"

  27. 	tplUserEdit base.TplName = "admin/user/edit"

  28. )

  29. 

  30. // Users show all the users

  31. func Users(ctx *context.Context) {

  32. 	ctx.Data["Title"] = ctx.Tr("admin.users")

  33. 	ctx.Data["PageIsAdmin"] = true

  34. 	ctx.Data["PageIsAdminUsers"] = true

  35. 

  36. 	routers.RenderUserSearch(ctx, &models.SearchUserOptions{

  37. 		Type: models.UserTypeIndividual,

  38. 		ListOptions: models.ListOptions{

  39. 			PageSize: setting.UI.Admin.UserPagingNum,

  40. 		},

  41. 		SearchByEmail: true,

  42. 	}, tplUsers)

  43. }

  44. 

  45. // NewUser render adding a new user page

  46. func NewUser(ctx *context.Context) {

  47. 	ctx.Data["Title"] = ctx.Tr("admin.users.new_account")

  48. 	ctx.Data["PageIsAdmin"] = true

  49. 	ctx.Data["PageIsAdminUsers"] = true

  50. 

  51. 	ctx.Data["login_type"] = "0-0"

  52. 

  53. 	sources, err := models.LoginSources()

  54. 	if err != nil {

  55. 		ctx.ServerError("LoginSources", err)

  56. 		return

  57. 	}

  58. 	ctx.Data["Sources"] = sources

  59. 

  60. 	ctx.Data["CanSendEmail"] = setting.MailService != nil

  61. 	ctx.HTML(200, tplUserNew)

  62. }

  63. 

  64. // NewUserPost response for adding a new user

  65. func NewUserPost(ctx *context.Context, form auth.AdminCreateUserForm) {

  66. 	ctx.Data["Title"] = ctx.Tr("admin.users.new_account")

  67. 	ctx.Data["PageIsAdmin"] = true

  68. 	ctx.Data["PageIsAdminUsers"] = true

  69. 

  70. 	sources, err := models.LoginSources()

  71. 	if err != nil {

  72. 		ctx.ServerError("LoginSources", err)

  73. 		return

  74. 	}

  75. 	ctx.Data["Sources"] = sources

  76. 

  77. 	ctx.Data["CanSendEmail"] = setting.MailService != nil

  78. 

  79. 	if ctx.HasError() {

  80. 		ctx.HTML(200, tplUserNew)

  81. 		return

  82. 	}

  83. 

  84. 	u := &models.User{

  85. 		Name:      form.UserName,

  86. 		Email:     form.Email,

  87. 		Passwd:    form.Password,

  88. 		IsActive:  true,

  89. 		LoginType: models.LoginPlain,

  90. 	}

  91. 

  92. 	if len(form.LoginType) > 0 {

  93. 		fields := strings.Split(form.LoginType, "-")

  94. 		if len(fields) == 2 {

  95. 			u.LoginType = models.LoginType(com.StrTo(fields[0]).MustInt())

  96. 			u.LoginSource = com.StrTo(fields[1]).MustInt64()

  97. 			u.LoginName = form.LoginName

  98. 		}

  99. 	}

  100. 	if u.LoginType == models.LoginNoType || u.LoginType == models.LoginPlain {

  101. 		if len(form.Password) < setting.MinPasswordLength {

  102. 			ctx.Data["Err_Password"] = true

  103. 			ctx.RenderWithErr(ctx.Tr("auth.password_too_short", setting.MinPasswordLength), tplUserNew, &form)

  104. 			return

  105. 		}

  106. 		if !password.IsComplexEnough(form.Password) {

  107. 			ctx.Data["Err_Password"] = true

  108. 			ctx.RenderWithErr(password.BuildComplexityError(ctx), tplUserNew, &form)

  109. 			return

  110. 		}

  111. 		u.MustChangePassword = form.MustChangePassword

  112. 	}

  113. 	if err := models.CreateUser(u); err != nil {

  114. 		switch {

  115. 		case models.IsErrUserAlreadyExist(err):

  116. 			ctx.Data["Err_UserName"] = true

  117. 			ctx.RenderWithErr(ctx.Tr("form.username_been_taken"), tplUserNew, &form)

  118. 		case models.IsErrEmailAlreadyUsed(err):

  119. 			ctx.Data["Err_Email"] = true

  120. 			ctx.RenderWithErr(ctx.Tr("form.email_been_used"), tplUserNew, &form)

  121. 		case models.IsErrNameReserved(err):

  122. 			ctx.Data["Err_UserName"] = true

  123. 			ctx.RenderWithErr(ctx.Tr("user.form.name_reserved", err.(models.ErrNameReserved).Name), tplUserNew, &form)

  124. 		case models.IsErrNamePatternNotAllowed(err):

  125. 			ctx.Data["Err_UserName"] = true

  126. 			ctx.RenderWithErr(ctx.Tr("user.form.name_pattern_not_allowed", err.(models.ErrNamePatternNotAllowed).Pattern), tplUserNew, &form)

  127. 		case models.IsErrNameCharsNotAllowed(err):

  128. 			ctx.Data["Err_UserName"] = true

  129. 			ctx.RenderWithErr(ctx.Tr("user.form.name_chars_not_allowed", err.(models.ErrNameCharsNotAllowed).Name), tplUserNew, &form)

  130. 		default:

  131. 			ctx.ServerError("CreateUser", err)

  132. 		}

  133. 		return

  134. 	}

  135. 	log.Trace("Account created by admin (%s): %s", ctx.User.Name, u.Name)

  136. 

  137. 	// Send email notification.

  138. 	if form.SendNotify {

  139. 		mailer.SendRegisterNotifyMail(ctx.Locale, u)

  140. 	}

  141. 

  142. 	ctx.Flash.Success(ctx.Tr("admin.users.new_success", u.Name))

  143. 	ctx.Redirect(setting.AppSubURL + "/admin/users/" + com.ToStr(u.ID))

  144. }

  145. 

  146. func prepareUserInfo(ctx *context.Context) *models.User {

  147. 	u, err := models.GetUserByID(ctx.ParamsInt64(":userid"))

  148. 	if err != nil {

  149. 		ctx.ServerError("GetUserByID", err)

  150. 		return nil

  151. 	}

  152. 	ctx.Data["User"] = u

  153. 

  154. 	if u.LoginSource > 0 {

  155. 		ctx.Data["LoginSource"], err = models.GetLoginSourceByID(u.LoginSource)

  156. 		if err != nil {

  157. 			ctx.ServerError("GetLoginSourceByID", err)

  158. 			return nil

  159. 		}

  160. 	} else {

  161. 		ctx.Data["LoginSource"] = &models.LoginSource{}

  162. 	}

  163. 

  164. 	sources, err := models.LoginSources()

  165. 	if err != nil {

  166. 		ctx.ServerError("LoginSources", err)

  167. 		return nil

  168. 	}

  169. 	ctx.Data["Sources"] = sources

  170. 

  171. 	return u

  172. }

  173. 

  174. // EditUser show editting user page

  175. func EditUser(ctx *context.Context) {

  176. 	ctx.Data["Title"] = ctx.Tr("admin.users.edit_account")

  177. 	ctx.Data["PageIsAdmin"] = true

  178. 	ctx.Data["PageIsAdminUsers"] = true

  179. 	ctx.Data["DisableRegularOrgCreation"] = setting.Admin.DisableRegularOrgCreation

  180. 

  181. 	prepareUserInfo(ctx)

  182. 	if ctx.Written() {

  183. 		return

  184. 	}

  185. 

  186. 	ctx.HTML(200, tplUserEdit)

  187. }

  188. 

  189. // EditUserPost response for editting user

  190. func EditUserPost(ctx *context.Context, form auth.AdminEditUserForm) {

  191. 	ctx.Data["Title"] = ctx.Tr("admin.users.edit_account")

  192. 	ctx.Data["PageIsAdmin"] = true

  193. 	ctx.Data["PageIsAdminUsers"] = true

  194. 

  195. 	u := prepareUserInfo(ctx)

  196. 	if ctx.Written() {

  197. 		return

  198. 	}

  199. 

  200. 	if ctx.HasError() {

  201. 		ctx.HTML(200, tplUserEdit)

  202. 		return

  203. 	}

  204. 

  205. 	fields := strings.Split(form.LoginType, "-")

  206. 	if len(fields) == 2 {

  207. 		loginType := models.LoginType(com.StrTo(fields[0]).MustInt())

  208. 		loginSource := com.StrTo(fields[1]).MustInt64()

  209. 

  210. 		if u.LoginSource != loginSource {

  211. 			u.LoginSource = loginSource

  212. 			u.LoginType = loginType

  213. 		}

  214. 	}

  215. 

  216. 	if len(form.Password) > 0 {

  217. 		var err error

  218. 		if len(form.Password) < setting.MinPasswordLength {

  219. 			ctx.Data["Err_Password"] = true

  220. 			ctx.RenderWithErr(ctx.Tr("auth.password_too_short", setting.MinPasswordLength), tplUserEdit, &form)

  221. 			return

  222. 		}

  223. 		if !password.IsComplexEnough(form.Password) {

  224. 			ctx.RenderWithErr(password.BuildComplexityError(ctx), tplUserEdit, &form)

  225. 			return

  226. 		}

  227. 		if u.Salt, err = models.GetUserSalt(); err != nil {

  228. 			ctx.ServerError("UpdateUser", err)

  229. 			return

  230. 		}

  231. 		u.HashPassword(form.Password)

  232. 	}

  233. 

  234. 	u.LoginName = form.LoginName

  235. 	u.FullName = form.FullName

  236. 	u.Email = form.Email

  237. 	u.Website = form.Website

  238. 	u.Location = form.Location

  239. 	u.MaxRepoCreation = form.MaxRepoCreation

  240. 	u.IsActive = form.Active

  241. 	u.IsAdmin = form.Admin

  242. 	u.IsRestricted = form.Restricted

  243. 	u.AllowGitHook = form.AllowGitHook

  244. 	u.AllowImportLocal = form.AllowImportLocal

  245. 	u.AllowCreateOrganization = form.AllowCreateOrganization

  246. 

  247. 	// skip self Prohibit Login

  248. 	if ctx.User.ID == u.ID {

  249. 		u.ProhibitLogin = false

  250. 	} else {

  251. 		u.ProhibitLogin = form.ProhibitLogin

  252. 	}

  253. 

  254. 	if err := models.UpdateUser(u); err != nil {

  255. 		if models.IsErrEmailAlreadyUsed(err) {

  256. 			ctx.Data["Err_Email"] = true

  257. 			ctx.RenderWithErr(ctx.Tr("form.email_been_used"), tplUserEdit, &form)

  258. 		} else {

  259. 			ctx.ServerError("UpdateUser", err)

  260. 		}

  261. 		return

  262. 	}

  263. 	log.Trace("Account profile updated by admin (%s): %s", ctx.User.Name, u.Name)

  264. 

  265. 	ctx.Flash.Success(ctx.Tr("admin.users.update_profile_success"))

  266. 	ctx.Redirect(setting.AppSubURL + "/admin/users/" + ctx.Params(":userid"))

  267. }

  268. 

  269. // DeleteUser response for deleting a user

  270. func DeleteUser(ctx *context.Context) {

  271. 	u, err := models.GetUserByID(ctx.ParamsInt64(":userid"))

  272. 	if err != nil {

  273. 		ctx.ServerError("GetUserByID", err)

  274. 		return

  275. 	}

  276. 

  277. 	if err = models.DeleteUser(u); err != nil {

  278. 		switch {

  279. 		case models.IsErrUserOwnRepos(err):

  280. 			ctx.Flash.Error(ctx.Tr("admin.users.still_own_repo"))

  281. 			ctx.JSON(200, map[string]interface{}{

  282. 				"redirect": setting.AppSubURL + "/admin/users/" + ctx.Params(":userid"),

  283. 			})

  284. 		case models.IsErrUserHasOrgs(err):

  285. 			ctx.Flash.Error(ctx.Tr("admin.users.still_has_org"))

  286. 			ctx.JSON(200, map[string]interface{}{

  287. 				"redirect": setting.AppSubURL + "/admin/users/" + ctx.Params(":userid"),

  288. 			})

  289. 		default:

  290. 			ctx.ServerError("DeleteUser", err)

  291. 		}

  292. 		return

  293. 	}

  294. 	log.Trace("Account deleted by admin (%s): %s", ctx.User.Name, u.Name)

  295. 

  296. 	ctx.Flash.Success(ctx.Tr("admin.users.deletion_success"))

  297. 	ctx.JSON(200, map[string]interface{}{

  298. 		"redirect": setting.AppSubURL + "/admin/users",

  299. 	})

  300. }