diff options
| author | kaniini <nenolod@gmail.com> | 2018-12-19 00:12:39 +0000 |
|---|---|---|
| committer | kaniini <nenolod@gmail.com> | 2018-12-19 00:12:39 +0000 |
| commit | f98ee9402fcafff362ab2446f386214d7a5c41c7 (patch) | |
| tree | e7a93a0440d613d8e8dcf2cd5173bc9c824884c2 /lib | |
| parent | a3da8a56b6a49be273e47026badfcd1c100abd6a (diff) | |
| parent | f3eb414e282dd0e3bd5c60838e45c69cf21541e4 (diff) | |
| download | pleroma-f98ee9402fcafff362ab2446f386214d7a5c41c7.tar.gz | |
Merge branch 'userless-admin' into 'develop'
Add a way to use the admin api without a user.
See merge request pleroma/pleroma!576
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/pleroma/plugs/admin_secret_authentication_plug.ex | 25 | ||||
| -rw-r--r-- | lib/pleroma/web/router.ex | 1 |
2 files changed, 26 insertions, 0 deletions
diff --git a/lib/pleroma/plugs/admin_secret_authentication_plug.ex b/lib/pleroma/plugs/admin_secret_authentication_plug.ex new file mode 100644 index 000000000..f61a6ee24 --- /dev/null +++ b/lib/pleroma/plugs/admin_secret_authentication_plug.ex @@ -0,0 +1,25 @@ +defmodule Pleroma.Plugs.AdminSecretAuthenticationPlug do + import Plug.Conn + alias Pleroma.User + + def init(options) do + options + end + + def secret_token do + Pleroma.Config.get(:admin_token) + end + + def call(%{assigns: %{user: %User{}}} = conn, _), do: conn + + def call(%{params: %{"admin_token" => admin_token}} = conn, _) do + if secret_token() && admin_token == secret_token() do + conn + |> assign(:user, %User{info: %{is_admin: true}}) + else + conn + end + end + + def call(conn, _), do: conn +end diff --git a/lib/pleroma/web/router.ex b/lib/pleroma/web/router.ex index dd1985d6e..e988f1088 100644 --- a/lib/pleroma/web/router.ex +++ b/lib/pleroma/web/router.ex @@ -38,6 +38,7 @@ defmodule Pleroma.Web.Router do plug(Pleroma.Plugs.SessionAuthenticationPlug) plug(Pleroma.Plugs.LegacyAuthenticationPlug) plug(Pleroma.Plugs.AuthenticationPlug) + plug(Pleroma.Plugs.AdminSecretAuthenticationPlug) plug(Pleroma.Plugs.UserEnabledPlug) plug(Pleroma.Plugs.SetUserSessionIdPlug) plug(Pleroma.Plugs.EnsureAuthenticatedPlug) |