alist/internal/bootstrap/data/user.go

package data

import (
	"os"

	"github.com/alist-org/alist/v3/cmd/flags"
	"github.com/alist-org/alist/v3/internal/db"
	"github.com/alist-org/alist/v3/internal/model"
	"github.com/alist-org/alist/v3/internal/op"
	"github.com/alist-org/alist/v3/pkg/utils"
	"github.com/alist-org/alist/v3/pkg/utils/random"
	"github.com/pkg/errors"
	"gorm.io/gorm"
)

func initUser() {
	admin, err := op.GetAdmin()
	adminPassword := random.String(8)
	envpass := os.Getenv("ALIST_ADMIN_PASSWORD")
	if flags.Dev {
		adminPassword = "admin"
	} else if len(envpass) > 0 {
		adminPassword = envpass
	}
	if err != nil {
		if errors.Is(err, gorm.ErrRecordNotFound) {
			salt := random.String(16)
			admin = &model.User{
				Username: "admin",
				Salt:     salt,
				PwdHash:  model.TwoHashPwd(adminPassword, salt),
				Role:     model.ADMIN,
				BasePath: "/",
			}
			if err := op.CreateUser(admin); err != nil {
				panic(err)
			} else {
				utils.Log.Infof("Successfully created the admin user and the initial password is: %s", adminPassword)
			}
		} else {
			utils.Log.Fatalf("[init user] Failed to get admin user: %v", err)
		}
	}
	guest, err := op.GetGuest()
	if err != nil {
		if errors.Is(err, gorm.ErrRecordNotFound) {
			salt := random.String(16)
			guest = &model.User{
				Username:   "guest",
				PwdHash:    model.TwoHashPwd("guest", salt),
				Role:       model.GUEST,
				BasePath:   "/",
				Permission: 0,
				Disabled:   true,
			}
			if err := db.CreateUser(guest); err != nil {
				utils.Log.Fatalf("[init user] Failed to create guest user: %v", err)
			}
		} else {
			utils.Log.Fatalf("[init user] Failed to get guest user: %v", err)
		}
	}
	hashPwdForOldVersion()
}

func hashPwdForOldVersion() {
	users, _, err := op.GetUsers(1, -1)
	if err != nil {
		utils.Log.Fatalf("[hash pwd for old version] failed get users: %v", err)
	}
	for i := range users {
		user := users[i]
		if user.PwdHash == "" {
			user.SetPassword(user.Password)
			user.Password = ""
			if err := db.UpdateUser(&user); err != nil {
				utils.Log.Fatalf("[hash pwd for old version] failed update user: %v", err)
			}
		}
	}
}
feat: initial setting items 2022-06-27 07:51:02 +00:00			`package data`
chore: init users 2022-06-25 14:05:02 +00:00
			`import (`
feat(user): set default password of init user from env (#2058) add init user default password Signed-off-by: ysicing <i@ysicing.me> Signed-off-by: ysicing <i@ysicing.me> 2022-10-19 12:06:06 +00:00			`"os"`

feat: use cobra and add some command 2022-08-07 05:09:59 +00:00			`"github.com/alist-org/alist/v3/cmd/flags"`
chore: init users 2022-06-25 14:05:02 +00:00			`"github.com/alist-org/alist/v3/internal/db"`
			`"github.com/alist-org/alist/v3/internal/model"`
refactor: split the db package hook and cache to the op package (#2747) * refactor:separate the setting method from the db package to the op package and add the cache * refactor:separate the meta method from the db package to the op package * fix:setting not load database data * refactor:separate the user method from the db package to the op package * refactor:remove user JoinPath error * fix:op package user cache * refactor:fs package list method * fix:tile virtual paths (close #2743) * Revert "refactor:remove user JoinPath error" This reverts commit 4e20daaf9e700da047000d4fd4900abbe05c3848. * clean path directly may lead to unknown behavior * fix: The path of the meta passed in must be prefix of reqPath * chore: rename all virtualPath to mountPath * fix: `getStoragesByPath` and `GetStorageVirtualFilesByPath` is_sub_path: /a/b isn't subpath of /a/bc * fix: don't save setting if hook error Co-authored-by: Noah Hsu <i@nn.ci> 2022-12-18 11:51:20 +00:00			`"github.com/alist-org/alist/v3/internal/op"`
fix: use `utils.Log` in some places 2022-08-30 08:13:01 +00:00			`"github.com/alist-org/alist/v3/pkg/utils"`
chore: init users 2022-06-25 14:05:02 +00:00			`"github.com/alist-org/alist/v3/pkg/utils/random"`
			`"github.com/pkg/errors"`
			`"gorm.io/gorm"`
			`)`

			`func initUser() {`
refactor: split the db package hook and cache to the op package (#2747) * refactor:separate the setting method from the db package to the op package and add the cache * refactor:separate the meta method from the db package to the op package * fix:setting not load database data * refactor:separate the user method from the db package to the op package * refactor:remove user JoinPath error * fix:op package user cache * refactor:fs package list method * fix:tile virtual paths (close #2743) * Revert "refactor:remove user JoinPath error" This reverts commit 4e20daaf9e700da047000d4fd4900abbe05c3848. * clean path directly may lead to unknown behavior * fix: The path of the meta passed in must be prefix of reqPath * chore: rename all virtualPath to mountPath * fix: `getStoragesByPath` and `GetStorageVirtualFilesByPath` is_sub_path: /a/b isn't subpath of /a/bc * fix: don't save setting if hook error Co-authored-by: Noah Hsu <i@nn.ci> 2022-12-18 11:51:20 +00:00			`admin, err := op.GetAdmin()`
feat: meta manage api 2022-06-26 11:09:28 +00:00			`adminPassword := random.String(8)`
feat(user): set default password of init user from env (#2058) add init user default password Signed-off-by: ysicing <i@ysicing.me> Signed-off-by: ysicing <i@ysicing.me> 2022-10-19 12:06:06 +00:00			`envpass := os.Getenv("ALIST_ADMIN_PASSWORD")`
feat: use cobra and add some command 2022-08-07 05:09:59 +00:00			`if flags.Dev {`
feat: meta manage api 2022-06-26 11:09:28 +00:00			`adminPassword = "admin"`
feat(user): set default password of init user from env (#2058) add init user default password Signed-off-by: ysicing <i@ysicing.me> Signed-off-by: ysicing <i@ysicing.me> 2022-10-19 12:06:06 +00:00			`} else if len(envpass) > 0 {`
			`adminPassword = envpass`
feat: meta manage api 2022-06-26 11:09:28 +00:00			`}`
chore: init users 2022-06-25 14:05:02 +00:00			`if err != nil {`
			`if errors.Is(err, gorm.ErrRecordNotFound) {`
feat: rehash password with a unique salt for each user 2023-08-07 07:46:19 +00:00			`salt := random.String(16)`
chore: init users 2022-06-25 14:05:02 +00:00			`admin = &model.User{`
			`Username: "admin",`
feat: rehash password with a unique salt for each user 2023-08-07 07:46:19 +00:00			`Salt: salt,`
			`PwdHash: model.TwoHashPwd(adminPassword, salt),`
chore: init users 2022-06-25 14:05:02 +00:00			`Role: model.ADMIN,`
			`BasePath: "/",`
			`}`
refactor: split the db package hook and cache to the op package (#2747) * refactor:separate the setting method from the db package to the op package and add the cache * refactor:separate the meta method from the db package to the op package * fix:setting not load database data * refactor:separate the user method from the db package to the op package * refactor:remove user JoinPath error * fix:op package user cache * refactor:fs package list method * fix:tile virtual paths (close #2743) * Revert "refactor:remove user JoinPath error" This reverts commit 4e20daaf9e700da047000d4fd4900abbe05c3848. * clean path directly may lead to unknown behavior * fix: The path of the meta passed in must be prefix of reqPath * chore: rename all virtualPath to mountPath * fix: `getStoragesByPath` and `GetStorageVirtualFilesByPath` is_sub_path: /a/b isn't subpath of /a/bc * fix: don't save setting if hook error Co-authored-by: Noah Hsu <i@nn.ci> 2022-12-18 11:51:20 +00:00			`if err := op.CreateUser(admin); err != nil {`
chore: init users 2022-06-25 14:05:02 +00:00			`panic(err)`
feat: use cobra and add some command 2022-08-07 05:09:59 +00:00			`} else {`
perf: sha256 for user's password (close #3552) 2023-08-06 14:09:17 +00:00			`utils.Log.Infof("Successfully created the admin user and the initial password is: %s", adminPassword)`
chore: init users 2022-06-25 14:05:02 +00:00			`}`
			`} else {`
perf: sha256 for user's password (close #3552) 2023-08-06 14:09:17 +00:00			`utils.Log.Fatalf("[init user] Failed to get admin user: %v", err)`
chore: init users 2022-06-25 14:05:02 +00:00			`}`
			`}`
refactor: split the db package hook and cache to the op package (#2747) * refactor:separate the setting method from the db package to the op package and add the cache * refactor:separate the meta method from the db package to the op package * fix:setting not load database data * refactor:separate the user method from the db package to the op package * refactor:remove user JoinPath error * fix:op package user cache * refactor:fs package list method * fix:tile virtual paths (close #2743) * Revert "refactor:remove user JoinPath error" This reverts commit 4e20daaf9e700da047000d4fd4900abbe05c3848. * clean path directly may lead to unknown behavior * fix: The path of the meta passed in must be prefix of reqPath * chore: rename all virtualPath to mountPath * fix: `getStoragesByPath` and `GetStorageVirtualFilesByPath` is_sub_path: /a/b isn't subpath of /a/bc * fix: don't save setting if hook error Co-authored-by: Noah Hsu <i@nn.ci> 2022-12-18 11:51:20 +00:00			`guest, err := op.GetGuest()`
chore: init users 2022-06-25 14:05:02 +00:00			`if err != nil {`
			`if errors.Is(err, gorm.ErrRecordNotFound) {`
feat: rehash password with a unique salt for each user 2023-08-07 07:46:19 +00:00			`salt := random.String(16)`
chore: init users 2022-06-25 14:05:02 +00:00			`guest = &model.User{`
chore: user permissions 2022-06-29 10:03:12 +00:00			`Username: "guest",`
feat: rehash password with a unique salt for each user 2023-08-07 07:46:19 +00:00			`PwdHash: model.TwoHashPwd("guest", salt),`
chore: user permissions 2022-06-29 10:03:12 +00:00			`Role: model.GUEST,`
			`BasePath: "/",`
chore: set initial guest permission 0 2022-07-27 13:53:21 +00:00			`Permission: 0,`
feat!: allow disable user (close #3241) From this commit, the guest user will be disabled by default 2023-02-04 03:44:17 +00:00			`Disabled: true,`
chore: init users 2022-06-25 14:05:02 +00:00			`}`
			`if err := db.CreateUser(guest); err != nil {`
perf: sha256 for user's password (close #3552) 2023-08-06 14:09:17 +00:00			`utils.Log.Fatalf("[init user] Failed to create guest user: %v", err)`
chore: init users 2022-06-25 14:05:02 +00:00			`}`
			`} else {`
perf: sha256 for user's password (close #3552) 2023-08-06 14:09:17 +00:00			`utils.Log.Fatalf("[init user] Failed to get guest user: %v", err)`
			`}`
			`}`
			`hashPwdForOldVersion()`
			`}`

			`func hashPwdForOldVersion() {`
			`users, _, err := op.GetUsers(1, -1)`
			`if err != nil {`
			`utils.Log.Fatalf("[hash pwd for old version] failed get users: %v", err)`
			`}`
			`for i := range users {`
			`user := users[i]`
			`if user.PwdHash == "" {`
feat: rehash password with a unique salt for each user 2023-08-07 07:46:19 +00:00			`user.SetPassword(user.Password)`
			`user.Password = ""`
perf: sha256 for user's password (close #3552) 2023-08-06 14:09:17 +00:00			`if err := db.UpdateUser(&user); err != nil {`
			`utils.Log.Fatalf("[hash pwd for old version] failed update user: %v", err)`
			`}`
chore: init users 2022-06-25 14:05:02 +00:00			`}`
			`}`
			`}`