Mirrored_Repos/crafty-4
1
0
Fork 0
mirror of https://gitlab.com/crafty-controller/crafty-4.git synced 2024-08-30 18:23:09 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add permissions checks for quantity for users/role

Browse Source 
Remove the ability to add quantities for general users.
This commit is contained in:
amcmanu3 2022-05-18 14:33:22 -04:00
parent e3248e8657
commit 12390306fd
4 changed files with 48 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

26
app/classes/controllers/crafty_perms_controller.py
View File

@ -35,20 +35,18 @@ class CraftyPermsController:
) )
@staticmethod @staticmethod
def can_add_user(): # Add back argument 'user_id' when you work on this def can_add_user(user_id): # Add back argument 'user_id' when you work on this
return True
# TODO: Complete if we need a User Addition limit # TODO: Complete if we need a User Addition limit
# return crafty_permissions.can_add_in_crafty( return PermissionsCrafty.can_add_in_crafty(
# user_id, Enum_Permissions_Crafty.User_Config user_id, EnumPermissionsCrafty.USER_CONFIG
# ) )
@staticmethod @staticmethod
def can_add_role(): # Add back argument 'user_id' when you work on this def can_add_role(user_id): # Add back argument 'user_id' when you work on this
return True
# TODO: Complete if we need a Role Addition limit # TODO: Complete if we need a Role Addition limit
# return crafty_permissions.can_add_in_crafty( return PermissionsCrafty.can_add_in_crafty(
# user_id, Enum_Permissions_Crafty.Roles_Config user_id, EnumPermissionsCrafty.ROLES_CONFIG
# ) )
@staticmethod @staticmethod
def list_all_crafty_permissions_quantity_limits(): def list_all_crafty_permissions_quantity_limits():
@ -68,6 +66,14 @@ class CraftyPermsController:
def add_server_creation(user_id): def add_server_creation(user_id):
return PermissionsCrafty.add_server_creation(user_id) return PermissionsCrafty.add_server_creation(user_id)
@staticmethod
def add_user_creation(user_id):
return PermissionsCrafty.add_user_creation(user_id)
@staticmethod
def add_role_creation(user_id):
return PermissionsCrafty.add_role_creation(user_id)
@staticmethod @staticmethod
def get_api_key_permissions_list(key: ApiKeys): def get_api_key_permissions_list(key: ApiKeys):
return PermissionsCrafty.get_api_key_permissions_list(key) return PermissionsCrafty.get_api_key_permissions_list(key)

14
app/classes/models/crafty_permissions.py
View File

@ -193,6 +193,20 @@ class PermissionsCrafty:
UserCrafty.save(user_crafty) UserCrafty.save(user_crafty)
return user_crafty.created_server return user_crafty.created_server
@staticmethod
def add_user_creation(user_id):
user_crafty = PermissionsCrafty.get_user_crafty(user_id)
user_crafty.created_user += 1
UserCrafty.save(user_crafty)
return user_crafty.created_user
@staticmethod
def add_role_creation(user_id):
user_crafty = PermissionsCrafty.get_user_crafty(user_id)
user_crafty.created_role += 1
UserCrafty.save(user_crafty)
return user_crafty.created_role
@staticmethod @staticmethod
def get_api_key_permissions_list(key: ApiKeys): def get_api_key_permissions_list(key: ApiKeys):
user = HelperUsers.get_user(key.user_id) user = HelperUsers.get_user(key.user_id)

15
app/classes/web/panel_handler.py
View File

@ -768,6 +768,7 @@ class PanelHandler(BaseHandler):
page_data["user"]["last_update"] = "N/A" page_data["user"]["last_update"] = "N/A"
page_data["user"]["roles"] = set() page_data["user"]["roles"] = set()
page_data["user"]["hints"] = True page_data["user"]["hints"] = True
page_data["superuser"] = superuser
if EnumPermissionsCrafty.USER_CONFIG not in exec_user_crafty_permissions: if EnumPermissionsCrafty.USER_CONFIG not in exec_user_crafty_permissions:
self.redirect( self.redirect(
@ -955,6 +956,7 @@ class PanelHandler(BaseHandler):
page_data["role-servers"] = page_role_servers page_data["role-servers"] = page_role_servers
page_data["roles_all"] = self.controller.roles.get_all_roles() page_data["roles_all"] = self.controller.roles.get_all_roles()
page_data["servers_all"] = self.controller.list_defined_servers() page_data["servers_all"] = self.controller.list_defined_servers()
page_data["superuser"] = superuser
page_data[ page_data[
"permissions_all" "permissions_all"
] = self.controller.crafty_perms.list_defined_crafty_permissions() ] = self.controller.crafty_perms.list_defined_crafty_permissions()
@ -1927,6 +1929,12 @@ class PanelHandler(BaseHandler):
"/panel/error?error=Unauthorized access: not a user editor" "/panel/error?error=Unauthorized access: not a user editor"
) )
return return
if not self.controller.crafty_perms.can_add_user(exec_user["user_id"]):
self.redirect(
"/panel/error?error=Unauthorized access: quantity limit reached"
)
return
elif username is None or username == "": elif username is None or username == "":
self.redirect("/panel/error?error=Invalid username") self.redirect("/panel/error?error=Invalid username")
return return
@ -1971,6 +1979,7 @@ class PanelHandler(BaseHandler):
server_id=0, server_id=0,
source_ip=self.get_remote_ip(), source_ip=self.get_remote_ip(),
) )
self.controller.crafty_perms.add_user_creation(exec_user["user_id"])
self.redirect("/panel/panel_config") self.redirect("/panel/panel_config")
elif page == "edit_role": elif page == "edit_role":
@ -2018,6 +2027,11 @@ class PanelHandler(BaseHandler):
"/panel/error?error=Unauthorized access: not a role editor" "/panel/error?error=Unauthorized access: not a role editor"
) )
return return
elif not self.controller.crafty_perms.can_add_role(exec_user["user_id"]):
self.redirect(
"/panel/error?error=Unauthorized access: quantity limit reached"
)
return
elif role_name is None or role_name == "": elif role_name is None or role_name == "":
self.redirect("/panel/error?error=Invalid role name") self.redirect("/panel/error?error=Invalid role name")
return return
@ -2047,6 +2061,7 @@ class PanelHandler(BaseHandler):
server_id=0, server_id=0,
source_ip=self.get_remote_ip(), source_ip=self.get_remote_ip(),
) )
self.controller.crafty_perms.add_role_creation(exec_user["user_id"])
self.redirect("/panel/panel_config") self.redirect("/panel/panel_config")
else: else:

5
app/frontend/templates/panel/panel_edit_user.html
View File

@ -158,13 +158,14 @@
</div> </div>
<!-- Put Permissions Crafty part here --> <!-- Put Permissions Crafty part here -->
{% if data['superuser'] %}
<div class="card"> <div class="card">
<div class="card-header header-sm d-flex justify-content-between align-items-center"> <div class="card-header header-sm d-flex justify-content-between align-items-center">
<h4 class="card-title"><i class="fas fa-user-lock"></i> {{ translate('userConfig', 'craftyPerms', <h4 class="card-title"><i class="fas fa-user-lock"></i> {{ translate('userConfig', 'craftyPerms',
data['lang']) }} <small class="text-muted ml-1"> - {{ translate('userConfig', 'craftyPermDesc', data['lang']) }} <small class="text-muted ml-1"> - {{ translate('userConfig', 'craftyPermDesc',
data['lang']) }}</small></h4> data['lang']) }}</small></h4>
</div> </div>
<div class="card-body"> <div class="card-body">
<div class="form-group"> <div class="form-group">
<div class="table-responsive"> <div class="table-responsive">
@ -200,7 +201,7 @@
</div> </div>
</div> </div>
</div> </div>
{% end %}
<div class="form-check-flat"> <div class="form-check-flat">
<label for="enabled" class="form-check-label ml-4 mb-4"> <label for="enabled" class="form-check-label ml-4 mb-4">
{% if data['user']['enabled'] %} {% if data['user']['enabled'] %}