lock new user by default (edit points.txt and set locked/no for unlock)
parent
7e19a39798
commit
ad803f86ba
11
ii/db.go
11
ii/db.go
|
|
@ -934,6 +934,15 @@ func (db *UDB) Auth(User string, Passwd string) bool {
|
|||
if !ok {
|
||||
return false
|
||||
}
|
||||
locked, _ := ui.Tags.Get("locked")
|
||||
if locked == "" {
|
||||
Error.Printf("Can't get locked tag (%s)", User)
|
||||
return false
|
||||
}
|
||||
if locked != "no" {
|
||||
Info.Printf("Login locked user attempt (%s)", User)
|
||||
return false
|
||||
}
|
||||
secret := sha256.Sum256([]byte(User+Passwd))
|
||||
return bcrypt.CompareHashAndPassword([]byte(ui.Secret), secret[:]) == nil
|
||||
}
|
||||
|
|
@ -1042,7 +1051,7 @@ func (db *UDB) Add(Name string, Mail string, Passwd string) error {
|
|||
u.Name = Name
|
||||
u.Mail = Mail
|
||||
u.Secret = MakeSecret(Name + Passwd)
|
||||
u.Tags = NewTags("")
|
||||
u.Tags = NewTags("locked/yes")
|
||||
db.List = append(db.List, u.Name)
|
||||
if err := append_file(db.Path, fmt.Sprintf("%d:%s:%s:%s:%s",
|
||||
id, Name, Mail, u.Secret, u.Tags.String())); err != nil {
|
||||
|
|
|
|||
Loading…
Reference in New Issue