chore: make very first user have admin privileges

2023-08-10 21:12:56 +03:00 · 2021-02-12 18:49:47 +01:00 · 2021-02-12 18:49:47 +01:00 · 8191a52ce1
commit 8191a52ce1
parent 5b3e88247e
9 changed files with 45 additions and 10 deletions
--- a/mocks/user_service.go
+++ b/mocks/user_service.go
@ -24,8 +24,13 @@ func (m *UserServiceMock) GetAll() ([]*models.User, error) {
 	return args.Get(0).([]*models.User), args.Error(1)
 }

-func (m *UserServiceMock) CreateOrGet(signup *models.Signup) (*models.User, bool, error) {
-	args := m.Called(signup)
+func (m *UserServiceMock) Count() (int64, error) {
+	args := m.Called()
+	return int64(args.Int(0)), args.Error(1)
+}
+
+func (m *UserServiceMock) CreateOrGet(signup *models.Signup, isAdmin bool) (*models.User, bool, error) {
+	args := m.Called(signup, isAdmin)
 	return args.Get(0).(*models.User), args.Bool(1), args.Error(2)
 }

--- a/models/view/login.go
+++ b/models/view/login.go
@ -1,8 +1,9 @@
 package view

 type LoginViewModel struct {
-	Success string
-	Error   string
+	Success    string
+	Error      string
+	TotalUsers int
 }

 func (s *LoginViewModel) WithSuccess(m string) *LoginViewModel {
--- a/repositories/repositories.go
+++ b/repositories/repositories.go
@ -48,6 +48,7 @@ type IUserRepository interface {
 	GetById(string) (*models.User, error)
 	GetByApiKey(string) (*models.User, error)
 	GetAll() ([]*models.User, error)
+	Count() (int64, error)
 	InsertOrGet(*models.User) (*models.User, bool, error)
 	Update(*models.User) (*models.User, error)
 	UpdateField(*models.User, string, interface{}) (*models.User, error)
--- a/repositories/user.go
+++ b/repositories/user.go
@ -40,6 +40,16 @@ func (r *UserRepository) GetAll() ([]*models.User, error) {
 	return users, nil
 }

+func (r *UserRepository) Count() (int64, error) {
+	var count int64
+	if err := r.db.
+		Model(&models.User{}).
+		Count(&count).Error; err != nil {
+		return 0, err
+	}
+	return count, nil
+}
+
 func (r *UserRepository) InsertOrGet(user *models.User) (*models.User, bool, error) {
 	result := r.db.FirstOrCreate(user, &models.User{ID: user.ID})
 	if err := result.Error; err != nil {
--- a/routes/login.go
+++ b/routes/login.go
@ -150,7 +150,9 @@ func (h *LoginHandler) PostSignup(w http.ResponseWriter, r *http.Request) {
 		return
 	}

-	_, created, err := h.userSrvc.CreateOrGet(&signup)
+	numUsers, _ := h.userSrvc.Count()
+
+	_, created, err := h.userSrvc.CreateOrGet(&signup, numUsers == 0)
 	if err != nil {
 		w.WriteHeader(http.StatusInternalServerError)
 		templates[conf.SignupTemplate].Execute(w, h.buildViewModel(r).WithError("failed to create new user"))
@ -166,8 +168,11 @@ func (h *LoginHandler) PostSignup(w http.ResponseWriter, r *http.Request) {
 }

 func (h *LoginHandler) buildViewModel(r *http.Request) *view.LoginViewModel {
+	numUsers, _ := h.userSrvc.Count()
+
 	return &view.LoginViewModel{
-		Success: r.URL.Query().Get("success"),
-		Error:   r.URL.Query().Get("error"),
+		Success:    r.URL.Query().Get("success"),
+		Error:      r.URL.Query().Get("error"),
+		TotalUsers: int(numUsers),
 	}
 }
--- a/services/services.go
+++ b/services/services.go
@ -63,7 +63,8 @@ type IUserService interface {
 	GetUserById(string) (*models.User, error)
 	GetUserByKey(string) (*models.User, error)
 	GetAll() ([]*models.User, error)
-	CreateOrGet(*models.Signup) (*models.User, bool, error)
+	Count() (int64, error)
+	CreateOrGet(*models.Signup, bool) (*models.User, bool, error)
 	Update(*models.User) (*models.User, error)
 	Delete(*models.User) error
 	ResetApiKey(*models.User) (*models.User, error)
--- a/services/user.go
+++ b/services/user.go
@ -56,11 +56,16 @@ func (srv *UserService) GetAll() ([]*models.User, error) {
 	return srv.repository.GetAll()
 }

-func (srv *UserService) CreateOrGet(signup *models.Signup) (*models.User, bool, error) {
+func (srv *UserService) Count() (int64, error) {
+	return srv.repository.Count()
+}
+
+func (srv *UserService) CreateOrGet(signup *models.Signup, isAdmin bool) (*models.User, bool, error) {
 	u := &models.User{
 		ID:       signup.Username,
 		ApiKey:   uuid.NewV4().String(),
 		Password: signup.Password,
+		IsAdmin:  isAdmin,
 	}

 	if hash, err := utils.HashBcrypt(u.Password, srv.Config.Security.PasswordSalt); err != nil {
--- a/version.txt
+++ b/version.txt
@ -1 +1 @@
-1.23.6
+1.23.7
--- a/views/signup.tpl.html
+++ b/views/signup.tpl.html
@ -49,6 +49,13 @@
                       type="password" id="password_repeat"
                       name="password_repeat" placeholder="Repeat your password" minlength="6" required>
            </div>
+
+            {{ if eq .TotalUsers 0 }}
+            <p class="text-sm text-gray-300 mt-4 mb-8">
+                ⚠️ <strong>Please note: </strong> Since there are no users registered in the system, yet, the first user will have administrative privileges, while additional users won't.
+            </p>
+            {{ end }}
+
            <div class="flex justify-between float-right">
                <button type="submit" class="py-1 px-3 rounded bg-green-700 hover:bg-green-800 text-white text-sm">
                    Create Account
 @ -1 +1 @@
 .23.6
 .23.7