chore: add config option to disable user registrations (resolve #113)

Dockerfile

@@ -40,6 +40,7 @@ ENV WAKAPI_DB_NAME=/data/wakapi.db
 ENV WAKAPI_PASSWORD_SALT ''
 ENV WAKAPI_LISTEN_IPV4 '0.0.0.0'
 ENV WAKAPI_INSECURE_COOKIES 'true'
+ENV WAKAPI_ALLOW_SIGNUP 'true
 
 COPY --from=build-env /app .
 

config.default.yml

@@ -28,4 +28,5 @@ db:
 security:
   password_salt:            # CHANGE !
   insecure_cookies: false
-  cookie_max_age: 172800
+  cookie_max_age: 172800
+  allow_signup: true

config/config.go

@@ -48,6 +48,7 @@ type appConfig struct {
 }
 
 type securityConfig struct {
+	AllowSignup bool `yaml:"allow_signup" default:"true" env:"WAKAPI_ALLOW_SIGNUP"`
 	// this is actually a pepper (https://en.wikipedia.org/wiki/Pepper_(cryptography))
 	PasswordSalt    string                     `yaml:"password_salt" default:"" env:"WAKAPI_PASSWORD_SALT"`
 	InsecureCookies bool                       `yaml:"insecure_cookies" default:"false" env:"WAKAPI_INSECURE_COOKIES"`

routes/login.go

@@ -121,6 +121,12 @@ func (h *LoginHandler) PostSignup(w http.ResponseWriter, r *http.Request) {
 		loadTemplates()
 	}
 
+	if !h.config.IsDev() && !h.config.Security.AllowSignup {
+		w.WriteHeader(http.StatusForbidden)
+		templates[conf.SignupTemplate].Execute(w, h.buildViewModel(r).WithError("registration is disabled on this server"))
+		return
+	}
+
 	if cookie, err := r.Cookie(models.AuthCookieKey); err == nil && cookie.Value != "" {
 		http.Redirect(w, r, fmt.Sprintf("%s/summary", h.config.Server.BasePath), http.StatusFound)
 		return

version.txt

@@ -1 +1 @@
-1.22.4
+1.22.5