Skip to content

C
canifa_note
Unverified Commit 043357d7 authored by Athurg Gooth's avatar Athurg Gooth Committed by GitHub
Browse files
Options

fix: list token for others failed (#2440) 

Fix list token for others failed
parent 3a5deefe
Show whitespace changes
Inline Side-by-side
Showing with 15 additions and 4 deletions
api/v2/user_service.go
View file @ 043357d7
...@@ -160,12 +160,23 @@ func (s *UserService) ListUserAccessTokens(ctx context.Context, request *apiv2pb ...@@ -160,12 +160,23 @@ func (s *UserService) ListUserAccessTokens(ctx context.Context, request *apiv2pb
return nil, status.Errorf(codes.PermissionDenied, "permission denied") return nil, status.Errorf(codes.PermissionDenied, "permission denied")
} }
userID := user.ID
// List access token for other users need to be verified.
if user.Username != request.Username {
// Normal users can only list their access tokens. // Normal users can only list their access tokens.
if user.Role == store.RoleUser && user.Username != request.Username { if user.Role == store.RoleUser {
return nil, status.Errorf(codes.PermissionDenied, "permission denied") return nil, status.Errorf(codes.PermissionDenied, "permission denied")
} }
userAccessTokens, err := s.Store.GetUserAccessTokens(ctx, user.ID) // The request user must be exist.
requestUser, err := s.Store.GetUser(ctx, &store.FindUser{Username: &request.Username})
if requestUser == nil || err != nil {
return nil, status.Errorf(codes.NotFound, "fail to find user %s", request.Username)
}
userID = requestUser.ID
}
userAccessTokens, err := s.Store.GetUserAccessTokens(ctx, userID)
if err != nil { if err != nil {
return nil, status.Errorf(codes.Internal, "failed to list access tokens: %v", err) return nil, status.Errorf(codes.Internal, "failed to list access tokens: %v", err)
} }
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment