Yavook.de/kiwi-vpn
1
0
Fork 1
Code Issues Pull requests Projects Releases Wiki Activity

User creation/deletion

Browse source
This commit is contained in:
Jörn-Michael Miehe 2022-03-23 13:25:00 +00:00
parent f886f9e9dc
commit 673c91bc33
4 changed files with 62 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
api/kiwi_vpn_api/db/models.py
View file

@ -20,9 +20,15 @@ class User(ORMBaseModel):
name = Column(String, primary_key=True, index=True) name = Column(String, primary_key=True, index=True)
password = Column(String) password = Column(String)
capabilities = relationship("UserCapability", lazy="joined") capabilities: list[UserCapability] = relationship(
certificates = relationship("Certificate", lazy="select") "UserCapability", lazy="joined", cascade="all, delete-orphan"
distinguished_names = relationship("DistinguishedName", lazy="select") )
certificates: list[Certificate] = relationship(
"Certificate", lazy="select"
)
distinguished_names: list[DistinguishedName] = relationship(
"DistinguishedName", lazy="select"
)
@classmethod @classmethod
def load(cls, db: Session, name: str) -> User | None: def load(cls, db: Session, name: str) -> User | None:

16
api/kiwi_vpn_api/db/schemas.py
View file

@ -209,3 +209,19 @@ class User(UserBase):
db.delete(capability) db.delete(capability)
db.commit() db.commit()
def delete(
self,
db: Session,
) -> bool:
"""
Delete this user from the database.
"""
if (db_user := models.User.load(db, self.name)) is None:
# nonexistent user
return False
db.delete(db_user)
db.commit()
return True

4
api/kiwi_vpn_api/routers/_common.py
View file

@ -44,6 +44,10 @@ class Responses:
"description": "Entry exists in database", "description": "Entry exists in database",
"content": None, "content": None,
} }
ENTRY_DOESNT_EXIST = {
"description": "Entry does not exist in database",
"content": None,
}
async def get_current_user( async def get_current_user(

35
api/kiwi_vpn_api/routers/user.py
View file

@ -69,7 +69,7 @@ async def get_current_user(
@router.post( @router.post(
"/new", "/",
responses={ responses={
status.HTTP_200_OK: Responses.OK, status.HTTP_200_OK: Responses.OK,
status.HTTP_400_BAD_REQUEST: Responses.NOT_INSTALLED, status.HTTP_400_BAD_REQUEST: Responses.NOT_INSTALLED,
@ -86,7 +86,7 @@ async def add_user(
db: Session | None = Depends(Connection.get), db: Session | None = Depends(Connection.get),
): ):
""" """
POST ./new: Create a new user in the database. POST ./: Create a new user in the database.
""" """
# actually create the new user # actually create the new user
@ -104,6 +104,37 @@ async def add_user(
return new_user return new_user
@router.delete(
"/{user_name}",
responses={
status.HTTP_200_OK: Responses.OK,
status.HTTP_400_BAD_REQUEST: Responses.NOT_INSTALLED,
status.HTTP_401_UNAUTHORIZED: Responses.NEEDS_USER,
status.HTTP_403_FORBIDDEN: Responses.NEEDS_ADMIN,
status.HTTP_409_CONFLICT: Responses.ENTRY_DOESNT_EXIST,
},
response_model=User,
)
async def remove_user(
user_name: str,
_: User = Depends(get_current_user_if_admin),
db: Session | None = Depends(Connection.get),
):
"""
DELETE ./{user_name}: Remove a user from the database.
"""
# get the user
user = User.from_db(
db=db,
name=user_name,
)
# fail if deletion was unsuccessful
if not user.delete():
raise HTTPException(status_code=status.HTTP_409_CONFLICT)
@router.post( @router.post(
"/{user_name}/capabilities", "/{user_name}/capabilities",
responses={ responses={