mirror of
https://github.com/binwiederhier/ntfy.git
synced 2025-12-03 05:40:09 +01:00
Predefined users
This commit is contained in:
binwiederhier
parent
efef587671
commit
c0b5151bae
8 changed files with 157 additions and 67 deletions
|
|
@ -449,13 +449,13 @@ type Manager struct {
|
|||
}
|
||||
|
||||
type Config struct {
|
||||
Filename string
|
||||
StartupQueries string
|
||||
Filename string // Database filename, e.g. "/var/lib/ntfy/user.db"
|
||||
StartupQueries string // Queries to run on startup, e.g. to create initial users or tiers
|
||||
DefaultAccess Permission // Default permission if no ACL matches
|
||||
ProvisionedUsers []*User // Predefined users to create on startup
|
||||
ProvisionedAccess map[string][]*Grant // Predefined access grants to create on startup
|
||||
BcryptCost int // Makes testing easier
|
||||
QueueWriterInterval time.Duration
|
||||
QueueWriterInterval time.Duration // Interval for the async queue writer to flush stats and token updates to the database
|
||||
BcryptCost int // Cost of generated passwords; lowering makes testing faster
|
||||
}
|
||||
|
||||
var _ Auther = (*Manager)(nil)
|
||||
|
|
@ -469,7 +469,6 @@ func NewManager(config *Config) (*Manager, error) {
|
|||
if config.QueueWriterInterval.Seconds() <= 0 {
|
||||
config.QueueWriterInterval = DefaultUserStatsQueueWriterInterval
|
||||
}
|
||||
|
||||
// Open DB and run setup queries
|
||||
db, err := sql.Open("sqlite3", config.Filename)
|
||||
if err != nil {
|
||||
|
|
@ -487,6 +486,9 @@ func NewManager(config *Config) (*Manager, error) {
|
|||
statsQueue: make(map[string]*Stats),
|
||||
tokenQueue: make(map[string]*TokenUpdate),
|
||||
}
|
||||
if err := manager.provisionUsers(); err != nil {
|
||||
return nil, err
|
||||
}
|
||||
go manager.asyncQueueWriter(config.QueueWriterInterval)
|
||||
return manager, nil
|
||||
}
|
||||
|
|
@ -1522,6 +1524,22 @@ func (a *Manager) Close() error {
|
|||
return a.db.Close()
|
||||
}
|
||||
|
||||
func (a *Manager) provisionUsers() error {
|
||||
for _, user := range a.config.ProvisionedUsers {
|
||||
if err := a.AddUser(user.Name, user.Hash, user.Role, true); err != nil && !errors.Is(err, ErrUserExists) {
|
||||
return err
|
||||
}
|
||||
}
|
||||
for username, grants := range a.config.ProvisionedAccess {
|
||||
for _, grant := range grants {
|
||||
if err := a.AllowAccess(username, grant.TopicPattern, grant.Allow); err != nil {
|
||||
return err
|
||||
}
|
||||
}
|
||||
}
|
||||
return nil
|
||||
}
|
||||
|
||||
// toSQLWildcard converts a wildcard string to a SQL wildcard string. It only allows '*' as wildcards,
|
||||
// and escapes '_', assuming '\' as escape character.
|
||||
func toSQLWildcard(s string) string {
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue