beenull/sftpgo-mirror
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2024-11-22 07:30:25 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
sftpgo-mirror/internal/cmd/resetpwd.go
Nicola Murino 4edecc5c77
Some checks failed
Code scanning - action / CodeQL-Build (push) Has been cancelled
Details
Docker / Build (alpine, false, ubuntu-latest) (push) Has been cancelled
Details
Docker / Build (alpine, true, ubuntu-latest) (push) Has been cancelled
Details
Docker / Build (debian, false, ubuntu-latest) (push) Has been cancelled
Details
Docker / Build (debian, true, ubuntu-latest) (push) Has been cancelled
Details
CI / Test and deploy (1.22, macos-latest, true) (push) Has been cancelled
Details
CI / Test and deploy (1.22, ubuntu-latest, true) (push) Has been cancelled
Details
CI / Test and deploy (1.22, windows-latest, false) (push) Has been cancelled
Details
CI / Test build flags (push) Has been cancelled
Details
CI / Test with PgSQL/MySQL/Cockroach (push) Has been cancelled
Details
CI / Build Linux packages (aarch64, ubuntu18.04, latest, arm64) (push) Has been cancelled
Details
CI / Build Linux packages (amd64, ubuntu:18.04, latest, amd64) (push) Has been cancelled
Details
CI / Build Linux packages (armv7, ubuntu18.04, latest, arm7) (push) Has been cancelled
Details
CI / Build Linux packages (ppc64le, ubuntu18.04, latest, ppc64le) (push) Has been cancelled
Details
CI / golangci-lint (push) Has been cancelled
Details
Docker / Build (debian-plugins, true, ubuntu-latest) (push) Has been cancelled
Details
Docker / Build (distroless, false, ubuntu-latest) (push) Has been cancelled
Details
resetpwd: also disable two-factor authentication 
Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
2024-08-04 21:27:47 +02:00

118 lines
3.9 KiB
Go
Raw Blame History

// Copyright (C) 2019 Nicola Murino
//
// This program is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published
// by the Free Software Foundation, version 3.
//
// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with this program. If not, see <https://www.gnu.org/licenses/>.
package cmd
import (
"bytes"
"fmt"
"os"
"github.com/rs/zerolog"
"github.com/spf13/cobra"
"github.com/spf13/viper"
"golang.org/x/term"
"github.com/drakkan/sftpgo/v2/internal/config"
"github.com/drakkan/sftpgo/v2/internal/dataprovider"
"github.com/drakkan/sftpgo/v2/internal/logger"
"github.com/drakkan/sftpgo/v2/internal/util"
)
var (
resetPwdAdmin string
resetPwdCmd = &cobra.Command{
Use: "resetpwd",
Short: "Reset the password for the specified administrator",
Long: `This command reads the data provider connection details from the specified
configuration file and resets the password for the specified administrator.
Two-factor authentication is also disabled.
This command is not supported for the memory provider.
For embedded providers like bolt and SQLite you should stop the running SFTPGo
instance to avoid database corruption.
Please take a look at the usage below to customize the options.`,
Run: func(_ *cobra.Command, _ []string) {
logger.DisableLogger()
logger.EnableConsoleLogger(zerolog.DebugLevel)
configDir = util.CleanDirInput(configDir)
err := config.LoadConfig(configDir, configFile)
if err != nil {
logger.WarnToConsole("Unable to load configuration: %v", err)
os.Exit(1)
}
kmsConfig := config.GetKMSConfig()
err = kmsConfig.Initialize()
if err != nil {
logger.ErrorToConsole("unable to initialize KMS: %v", err)
os.Exit(1)
}
mfaConfig := config.GetMFAConfig()
err = mfaConfig.Initialize()
if err != nil {
logger.ErrorToConsole("Unable to initialize MFA: %v", err)
os.Exit(1)
}
providerConf := config.GetProviderConf()
if providerConf.Driver == dataprovider.MemoryDataProviderName {
logger.ErrorToConsole("memory provider is not supported")
os.Exit(1)
}
logger.InfoToConsole("Initializing provider: %q config file: %q", providerConf.Driver, viper.ConfigFileUsed())
err = dataprovider.Initialize(providerConf, configDir, false)
if err != nil {
logger.ErrorToConsole("Unable to initialize data provider: %v", err)
os.Exit(1)
}
admin, err := dataprovider.AdminExists(resetPwdAdmin)
if err != nil {
logger.ErrorToConsole("Unable to get admin %q: %v", resetPwdAdmin, err)
os.Exit(1)
}
fmt.Printf("Enter Password: ")
pwd, err := term.ReadPassword(int(os.Stdin.Fd()))
if err != nil {
logger.ErrorToConsole("Unable to read the password: %v", err)
os.Exit(1)
}
fmt.Println("")
fmt.Printf("Confirm Password: ")
confirmPwd, err := term.ReadPassword(int(os.Stdin.Fd()))
if err != nil {
logger.ErrorToConsole("Unable to read the password: %v", err)
os.Exit(1)
}
fmt.Println("")
if !bytes.Equal(pwd, confirmPwd) {
logger.ErrorToConsole("Passwords do not match")
os.Exit(1)
}
admin.Password = string(pwd)
admin.Filters.TOTPConfig.Enabled = false
if err := dataprovider.UpdateAdmin(&admin, dataprovider.ActionExecutorSystem, "", ""); err != nil {
logger.ErrorToConsole("Unable to update password: %v", err)
os.Exit(1)
}
logger.InfoToConsole("Password updated for admin %q", resetPwdAdmin)
},
}
)
func init() {
addConfigFlags(resetPwdCmd)
resetPwdCmd.Flags().StringVar(&resetPwdAdmin, "admin", "", `Administrator username whose password to reset`)
resetPwdCmd.MarkFlagRequired("admin") //nolint:errcheck
rootCmd.AddCommand(resetPwdCmd)
}
Reference in a new issue View git blame Copy permalink