TyleoDvDelaware3217/Kuma
1
0
Fork 0
mirror of https://github.com/louislam/uptime-kuma.git synced 2025-07-19 15:44:02 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
Kuma/server/model/user.js
google-labs-jules[bot] d94126dce6 feat: Implement user management with user types 
Adds a user management module allowing administrators to assign types (roles) to users.

- Adds `user_type` column to the `user` table (default 'admin').
- Updates user model and adds backend logic for managing user types.
- Introduces a new 'User Management' section in Settings UI for admins.
- Admins can now view all users and change their user types.
- Access to user management functions is restricted to admin users.
2025-06-29 19:13:06 +00:00

83 lines
3 KiB
JavaScript
Raw Blame History

const { BeanModel } = require("redbean-node/dist/bean-model");
const passwordHash = require("../password-hash");
const { R } = require("redbean-node");
const jwt = require("jsonwebtoken");
const { shake256, SHAKE256_LENGTH } = require("../util-server");
class User extends BeanModel {
/**
* Reset user password
* Fix #1510, as in the context reset-password.js, there is no auto model mapping. Call this static function instead.
* @param {number} userID ID of user to update
* @param {string} newPassword Users new password
* @returns {Promise<void>}
*/
static async resetPassword(userID, newPassword) {
await R.exec("UPDATE `user` SET password = ? WHERE id = ? ", [
await passwordHash.generate(newPassword),
userID
]);
}
/**
* Reset this users password
* @param {string} newPassword Users new password
* @returns {Promise<void>}
*/
async resetPassword(newPassword) {
const hashedPassword = await passwordHash.generate(newPassword);
await R.exec("UPDATE `user` SET password = ? WHERE id = ? ", [
hashedPassword,
this.id
]);
this.password = hashedPassword;
}
/**
* Create a new JWT for a user
* @param {User} user The User to create a JsonWebToken for
* @param {string} jwtSecret The key used to sign the JsonWebToken
* @returns {string} the JsonWebToken as a string
*/
static createJWT(user, jwtSecret) {
return jwt.sign({
username: user.username,
// Include user_type in the JWT payload if needed for frontend/client-side checks,
// but remember that JWTs can be decoded by the client.
// For sensitive authorization, always re-check user_type on the server-side.
user_type: user.user_type,
h: shake256(user.password, SHAKE256_LENGTH),
}, jwtSecret);
}
/**
* Returns the user type.
* Note: This assumes the 'user_type' field is populated in the bean.
* If you load a user bean partially, ensure 'user_type' is selected.
* @returns {string | null} The user type string or null if not set/loaded.
*/
getUserType() {
return this.user_type || null;
}
/**
* Sets the user type.
* Remember to save the bean after setting the type for changes to persist.
* @param {string} newUserType The new type for the user.
* @returns {Promise<void>}
*/
async setUserType(newUserType) {
// Basic validation can be added here if desired, e.g.,
// const allowedTypes = ['admin', 'editor', 'viewer'];
// if (!allowedTypes.includes(newUserType)) {
// throw new Error(`Invalid user type: ${newUserType}`);
// }
this.user_type = newUserType;
// Note: This only updates the property on the model instance.
// You need to call R.store(userBean) to persist the change to the database.
}
}
module.exports = User;
Reference in a new issue View git blame Copy permalink