Changeset - 995254e30c7b
Parent rev.
Child rev.
[Not reviewed]
default
0 1 0
Mads Kiilerich - 9 years ago 2016-09-12 17:41:19
madski@unity3d.com
user: when updating a user, never set the password to None - the field is not nullable

We also don't allow setting empty password. Setting the database value to empty
string is secure but will never match any password.
1 file changed with 1 insertions and 1 deletions:
kallithea/model/user.py
1
1
0 comments (0 inline, 0 general)
kallithea/model/user.py
Show inline comments
 
@@ -70,193 +70,193 @@ class UserModel(BaseModel):
 

			




	
	
	
		
 
        from kallithea.lib.hooks import log_create_user, \

			




	
	
	
		
 
            check_allowed_create_user

			




	
	
	
		
 
        _fd = form_data

			




	
	
	
		
 
        user_data = {

			




	
	
	
		
 
            'username': _fd['username'],

			




	
	
	
		
 
            'password': _fd['password'],

			




	
	
	
		
 
            'email': _fd['email'],

			




	
	
	
		
 
            'firstname': _fd['firstname'],

			




	
	
	
		
 
            'lastname': _fd['lastname'],

			




	
	
	
		
 
            'active': _fd['active'],

			




	
	
	
		
 
            'admin': False

			




	
	
	
		
 
        }

			




	
	
	
		
 
        # raises UserCreationError if it's not allowed

			




	
	
	
		
 
        check_allowed_create_user(user_data, cur_user)

			




	
	
	
		
 
        from kallithea.lib.auth import get_crypt_password

			




	
	
	
		
 

			




	
	
	
		
 
        new_user = User()

			




	
	
	
		
 
        for k, v in form_data.items():

			




	
	
	
		
 
            if k == 'password':

			




	
	
	
		
 
                v = get_crypt_password(v)

			




	
	
	
		
 
            if k == 'firstname':

			




	
	
	
		
 
                k = 'name'

			




	
	
	
		
 
            setattr(new_user, k, v)

			




	
	
	
		
 

			




	
	
	
		
 
        new_user.api_key = generate_api_key()

			




	
	
	
		
 
        self.sa.add(new_user)

			




	
	
	
		
 

			




	
	
	
		
 
        log_create_user(new_user.get_dict(), cur_user)

			




	
	
	
		
 
        return new_user

			




	
	
	
		
 

			




	
	
	
		
 
    def create_or_update(self, username, password, email, firstname=u'',

			




	
	
	
		
 
                         lastname=u'', active=True, admin=False,

			




	
	
	
		
 
                         extern_type=None, extern_name=None, cur_user=None):

			




	
	
	
		
 
        """

			




	
	
	
		
 
        Creates a new instance if not found, or updates current one

			




	
	
	
		
 

			




	
	
	
		
 
        :param username:

			




	
	
	
		
 
        :param password:

			




	
	
	
		
 
        :param email:

			




	
	
	
		
 
        :param active:

			




	
	
	
		
 
        :param firstname:

			




	
	
	
		
 
        :param lastname:

			




	
	
	
		
 
        :param active:

			




	
	
	
		
 
        :param admin:

			




	
	
	
		
 
        :param extern_name:

			




	
	
	
		
 
        :param extern_type:

			




	
	
	
		
 
        :param cur_user:

			




	
	
	
		
 
        """

			




	
	
	
		
 
        if not cur_user:

			




	
	
	
		
 
            cur_user = getattr(get_current_authuser(), 'username', None)

			




	
	
	
		
 

			




	
	
	
		
 
        from kallithea.lib.auth import get_crypt_password, check_password

			




	
	
	
		
 
        from kallithea.lib.hooks import log_create_user, \

			




	
	
	
		
 
            check_allowed_create_user

			




	
	
	
		
 
        user_data = {

			




	
	
	
		
 
            'username': username, 'password': password,

			




	
	
	
		
 
            'email': email, 'firstname': firstname, 'lastname': lastname,

			




	
	
	
		
 
            'active': active, 'admin': admin

			




	
	
	
		
 
        }

			




	
	
	
		
 
        # raises UserCreationError if it's not allowed

			




	
	
	
		
 
        check_allowed_create_user(user_data, cur_user)

			




	
	
	
		
 

			




	
	
	
		
 
        log.debug('Checking for %s account in Kallithea database', username)

			




	
	
	
		
 
        user = User.get_by_username(username, case_insensitive=True)

			




	
	
	
		
 
        if user is None:

			




	
	
	
		
 
            log.debug('creating new user %s', username)

			




	
	
	
		
 
            new_user = User()

			




	
	
	
		
 
            edit = False

			




	
	
	
		
 
        else:

			




	
	
	
		
 
            log.debug('updating user %s', username)

			




	
	
	
		
 
            new_user = user

			




	
	
	
		
 
            edit = True

			




	
	
	
		
 

			




	
	
	
		
 
        try:

			




	
	
	
		
 
            new_user.username = username

			




	
	
	
		
 
            new_user.admin = admin

			




	
	
	
		
 
            new_user.email = email

			




	
	
	
		
 
            new_user.active = active

			




	
	
	
		
 
            new_user.extern_name = safe_str(extern_name) \

			




	
	
	
		
 
                if extern_name else None

			




	
	
	
		
 
            new_user.extern_type = safe_str(extern_type) \

			




	
	
	
		
 
                if extern_type else None

			




	
	
	
		
 
            new_user.name = firstname

			




	
	
	
		
 
            new_user.lastname = lastname

			




	
	
	
		
 

			




	
	
	
		
 
            if not edit:

			




	
	
	
		
 
                new_user.api_key = generate_api_key()

			




	
	
	
		
 

			




	
	
	
		
 
            # set password only if creating an user or password is changed

			




	
	
	
		
 
            password_change = new_user.password and \

			




	
	
	
		
 
                not check_password(password, new_user.password)

			




	
	
	
		
 
            if not edit or password_change:

			




	
	
	
		
 
                reason = 'new password' if edit else 'new user'

			




	
	
	
		
 
                log.debug('Updating password reason=>%s', reason)

			




	
	
	
		
 
                new_user.password = get_crypt_password(password) \

			




	
	
	
		
 
                    if password else None

			




	
	
	
		
 
                    if password else ''

			




	
	
	
		
 

			




	
	
	
		
 
            self.sa.add(new_user)

			




	
	
	
		
 

			




	
	
	
		
 
            if not edit:

			




	
	
	
		
 
                log_create_user(new_user.get_dict(), cur_user)

			




	
	
	
		
 
            return new_user

			




	
	
	
		
 
        except (DatabaseError,):

			




	
	
	
		
 
            log.error(traceback.format_exc())

			




	
	
	
		
 
            raise

			




	
	
	
		
 

			




	
	
	
		
 
    def create_registration(self, form_data):

			




	
	
	
		
 
        from kallithea.model.notification import NotificationModel

			




	
	
	
		
 
        import kallithea.lib.helpers as h

			




	
	
	
		
 

			




	
	
	
		
 
        form_data['admin'] = False

			




	
	
	
		
 
        form_data['extern_name'] = EXTERN_TYPE_INTERNAL

			




	
	
	
		
 
        form_data['extern_type'] = EXTERN_TYPE_INTERNAL

			




	
	
	
		
 
        new_user = self.create(form_data)

			




	
	
	
		
 

			




	
	
	
		
 
        self.sa.add(new_user)

			




	
	
	
		
 
        self.sa.flush()

			




	
	
	
		
 

			




	
	
	
		
 
        # notification to admins

			




	
	
	
		
 
        subject = _('New user registration')

			




	
	
	
		
 
        body = (

			




	
	
	
		
 
            u'New user registration\n'

			




	
	
	
		
 
            '---------------------\n'

			




	
	
	
		
 
            '- Username: {user.username}\n'

			




	
	
	
		
 
            '- Full Name: {user.full_name}\n'

			




	
	
	
		
 
            '- Email: {user.email}\n'

			




	
	
	
		
 
            ).format(user=new_user)

			




	
	
	
		
 
        edit_url = h.canonical_url('edit_user', id=new_user.user_id)

			




	
	
	
		
 
        email_kwargs = {

			




	
	
	
		
 
            'registered_user_url': edit_url,

			




	
	
	
		
 
            'new_username': new_user.username,

			




	
	
	
		
 
            'new_email': new_user.email,

			




	
	
	
		
 
            'new_full_name': new_user.full_name}

			




	
	
	
		
 
        NotificationModel().create(created_by=new_user, subject=subject,

			




	
	
	
		
 
                                   body=body, recipients=None,

			




	
	
	
		
 
                                   type_=Notification.TYPE_REGISTRATION,

			




	
	
	
		
 
                                   email_kwargs=email_kwargs)

			




	
	
	
		
 

			




	
	
	
		
 
    def update(self, user_id, form_data, skip_attrs=None):

			




	
	
	
		
 
        from kallithea.lib.auth import get_crypt_password

			




	
	
	
		
 
        skip_attrs = skip_attrs or []

			




	
	
	
		
 
        user = self.get(user_id, cache=False)

			




	
	
	
		
 
        if user.username == User.DEFAULT_USER:

			




	
	
	
		
 
            raise DefaultUserException(

			




	
	
	
		
 
                            _("You can't edit this user since it's "

			




	
	
	
		
 
                              "crucial for entire application"))

			




	
	
	
		
 

			




	
	
	
		
 
        for k, v in form_data.items():

			




	
	
	
		
 
            if k in skip_attrs:

			




	
	
	
		
 
                continue

			




	
	
	
		
 
            if k == 'new_password' and v:

			




	
	
	
		
 
                user.password = get_crypt_password(v)

			




	
	
	
		
 
            else:

			




	
	
	
		
 
                # old legacy thing orm models store firstname as name,

			




	
	
	
		
 
                # need proper refactor to username

			




	
	
	
		
 
                if k == 'firstname':

			




	
	
	
		
 
                    k = 'name'

			




	
	
	
		
 
                setattr(user, k, v)

			




	
	
	
		
 
        self.sa.add(user)

			




	
	
	
		
 

			




	
	
	
		
 
    def update_user(self, user, **kwargs):

			




	
	
	
		
 
        from kallithea.lib.auth import get_crypt_password

			




	
	
	
		
 

			




	
	
	
		
 
        user = self._get_user(user)

			




	
	
	
		
 
        if user.username == User.DEFAULT_USER:

			




	
	
	
		
 
            raise DefaultUserException(

			




	
	
	
		
 
                _("You can't edit this user since it's"

			




	
	
	
		
 
                  " crucial for entire application")

			




	
	
	
		
 
            )

			




	
	
	
		
 

			




	
	
	
		
 
        for k, v in kwargs.items():

			




	
	
	
		
 
            if k == 'password' and v:

			




	
	
	
		
 
                v = get_crypt_password(v)

			




	
	
	
		
 

			




	
	
	
		
 
            setattr(user, k, v)

			




	
	
	
		
 
        self.sa.add(user)

			




	
	
	
		
 
        return user

			




	
	
	
		
 

			




	
	
	
		
 
    def delete(self, user, cur_user=None):

			




	
	
	
		
 
        if cur_user is None:

			




	
	
	
		
 
            cur_user = getattr(get_current_authuser(), 'username', None)

			




	
	
	
		
 
        user = self._get_user(user)

			




	
	
	
		
 

			




	
	
	
		
 
        if user.username == User.DEFAULT_USER:

			




	
	
	
		
 
            raise DefaultUserException(

			




	
	
	
		
 
                _("You can't remove this user since it is"

			




	
	
	
		
 
                  " crucial for the entire application"))

			




	
	
	
		
 
        if user.repositories:

			




	
	
	
		
 
            repos = [x.repo_name for x in user.repositories]

			




	
	
	
		
 
            raise UserOwnsReposException(

			




	
	
	
		
 
                _('User "%s" still owns %s repositories and cannot be '

			




	
	
	
		
 
                  'removed. Switch owners or remove those repositories: %s')

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.