interesting
/
PeerTube
mirror of https://github.com/Chocobozzz/PeerTube.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Check banned status for external auths

This commit is contained in:
Chocobozzz 2021-02-01 09:24:14 +01:00
parent e01146559a
commit 33c7131be5
No known key found for this signature in database
GPG Key ID: 583A612D890159BE
2 changed files with 24 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
server/lib/oauth-model.ts
View File

@ -119,6 +119,8 @@ async function getUser (usernameOrEmail?: string, password?: string) {
// This user does not belong to this plugin, skip it // This user does not belong to this plugin, skip it
if (user.pluginAuth !== obj.pluginName) return null if (user.pluginAuth !== obj.pluginName) return null
checkUserValidityOrThrow(user)
return user return user
} }
} }
@ -132,7 +134,7 @@ async function getUser (usernameOrEmail?: string, password?: string) {
const passwordMatch = await user.isPasswordMatch(password) const passwordMatch = await user.isPasswordMatch(password)
if (passwordMatch !== true) return null if (passwordMatch !== true) return null
if (user.blocked) throw new AccessDeniedError('User is blocked.') checkUserValidityOrThrow(user)
if (CONFIG.SIGNUP.REQUIRES_EMAIL_VERIFICATION && user.emailVerified === false) { if (CONFIG.SIGNUP.REQUIRES_EMAIL_VERIFICATION && user.emailVerified === false) {
throw new AccessDeniedError('User email is not verified.') throw new AccessDeniedError('User email is not verified.')
@ -238,3 +240,7 @@ async function createUserFromExternal (pluginAuth: string, options: {
return user return user
} }
function checkUserValidityOrThrow (user: MUser) {
if (user.blocked) throw new AccessDeniedError('User is blocked.')
}

17
server/tests/external-plugins/auth-ldap.ts
View File

@ -4,9 +4,11 @@ import 'mocha'
import { expect } from 'chai' import { expect } from 'chai'
import { User } from '@shared/models/users/user.model' import { User } from '@shared/models/users/user.model'
import { import {
blockUser,
getMyUserInformation, getMyUserInformation,
installPlugin, installPlugin,
setAccessTokensToServers, setAccessTokensToServers,
unblockUser,
uninstallPlugin, uninstallPlugin,
updatePluginSettings, updatePluginSettings,
uploadVideo, uploadVideo,
@ -17,6 +19,7 @@ import { cleanupTests, flushAndRunServer, ServerInfo } from '../../../shared/ext
describe('Official plugin auth-ldap', function () { describe('Official plugin auth-ldap', function () {
let server: ServerInfo let server: ServerInfo
let accessToken: string let accessToken: string
let userId: number
before(async function () { before(async function () {
this.timeout(30000) this.timeout(30000)
@ -90,12 +93,26 @@ describe('Official plugin auth-ldap', function () {
expect(body.username).to.equal('fry') expect(body.username).to.equal('fry')
expect(body.email).to.equal('fry@planetexpress.com') expect(body.email).to.equal('fry@planetexpress.com')
userId = body.id
}) })
it('Should upload a video', async function () { it('Should upload a video', async function () {
await uploadVideo(server.url, accessToken, { name: 'my super video' }) await uploadVideo(server.url, accessToken, { name: 'my super video' })
}) })
it('Should not be able to login if the user is banned', async function () {
await blockUser(server.url, userId, server.accessToken)
await userLogin(server, { username: 'fry@planetexpress.com', password: 'fry' }, 400)
})
it('Should be able to login if the user is unbanned', async function () {
await unblockUser(server.url, userId, server.accessToken)
await userLogin(server, { username: 'fry@planetexpress.com', password: 'fry' })
})
it('Should not login if the plugin is uninstalled', async function () { it('Should not login if the plugin is uninstalled', async function () {
await uninstallPlugin({ url: server.url, accessToken: server.accessToken, npmName: 'peertube-plugin-auth-ldap' }) await uninstallPlugin({ url: server.url, accessToken: server.accessToken, npmName: 'peertube-plugin-auth-ldap' })