arian/navidrome
1
0
Fork 0
Code Issues Pull Requests 1 Packages Projects Releases Wiki Activity

Only allow Admins to login to the UI (for now)

Browse Source
This commit is contained in:
Deluan
2020-01-20 13:52:55 -05:00
parent 43b0a9dadd
commit 4e8cb5ffef
1 changed files with 4 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
server/app/auth.go
+4
View File
@@ -72,6 +72,10 @@ func validateLogin(userRepo model.UserRepository, userName, password string) (*m
if u.Password != password { if u.Password != password {
return nil, nil return nil, nil
} }
if !u.IsAdmin {
log.Warn("Non-admin user tried to login", "user", userName)
return nil, nil
}
err = userRepo.UpdateLastLoginAt(u.ID) err = userRepo.UpdateLastLoginAt(u.ID)
if err != nil { if err != nil {
log.Error("Could not update LastLoginAt", "user", userName) log.Error("Could not update LastLoginAt", "user", userName)