commit ad803f86ba5d55da962366dfc8b69d28f1bc2edc
parent 7e19a39798af7337b46482e528480e4ab60db7b4
Author: vasyahacker <vasya@magicfreedom.com>
Date: Wed, 17 May 2023 14:02:38 +0400
lock new user by default (edit points.txt and set locked/no for unlock)
Diffstat:
1 file changed, 10 insertions(+), 1 deletion(-)
diff --git a/ii/db.go b/ii/db.go
@@ -934,6 +934,15 @@ func (db *UDB) Auth(User string, Passwd string) bool {
if !ok {
return false
}
+ locked, _ := ui.Tags.Get("locked")
+ if locked == "" {
+ Error.Printf("Can't get locked tag (%s)", User)
+ return false
+ }
+ if locked != "no" {
+ Info.Printf("Login locked user attempt (%s)", User)
+ return false
+ }
secret := sha256.Sum256([]byte(User+Passwd))
return bcrypt.CompareHashAndPassword([]byte(ui.Secret), secret[:]) == nil
}
@@ -1042,7 +1051,7 @@ func (db *UDB) Add(Name string, Mail string, Passwd string) error {
u.Name = Name
u.Mail = Mail
u.Secret = MakeSecret(Name + Passwd)
- u.Tags = NewTags("")
+ u.Tags = NewTags("locked/yes")
db.List = append(db.List, u.Name)
if err := append_file(db.Path, fmt.Sprintf("%d:%s:%s:%s:%s",
id, Name, Mail, u.Secret, u.Tags.String())); err != nil {
