Skip to content
Snippets Groups Projects
Commit fb8dc013 authored by Allen Gilliland's avatar Allen Gilliland
Browse files

Merge pull request #539 from metabase/fix_readd_user 

Allow creating a user when the account already exists
parents bf313c31 f530012d
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
src/metabase/api/user.clj
+ 15
4
View file @ fb8dc013
......@@ -6,7 +6,6 @@
[metabase.db :refer [sel upd upd-non-nil-keys exists?]]
(metabase.models [hydrate :refer [hydrate]]
[user :refer [User create-user set-user-password]])
[metabase.util.password :as password]
[ring.util.request :as req]))
(defn ^:private check-self-or-superuser
......@@ -30,9 +29,21 @@
last_name [Required NonEmptyString]
email [Required Email]}
(check-superuser)
(check-400 (not (exists? User :email email :is_active true)))
(let [password-reset-url (str (java.net.URL. (java.net.URL. (req/request-url request)) "/auth/forgot_password"))]
(-> (create-user first_name last_name email :send-welcome true :reset-url password-reset-url)
(let [existing-user (sel :one [User :id :is_active] :email email)
password-reset-url (str (java.net.URL. (java.net.URL. (req/request-url request)) "/auth/forgot_password"))]
(-> (cond
;; new user account, so create it
(nil? existing-user) (create-user first_name last_name email :send-welcome true :reset-url password-reset-url)
;; this user already exists but is inactive, so simply reactivate the account
(not (:is_active existing-user)) (do
(upd User (:id existing-user)
:first_name first_name
:last_name last_name
:is_active true
:is_superuser false)
(sel :one User :id (:id existing-user)))
;; account already exists and is active, so do nothing and just return the account
:else (sel :one User :id (:id existing-user)))
(hydrate :user :organization))))
......
test/metabase/api/user_test.clj
+ 22
0
View file @ fb8dc013
......@@ -82,6 +82,28 @@
:is_superuser false})
(create-user-api rand-name)))
;; Test that reactivating a disabled account works
(let [rand-name (random-name)]
(expect-eval-actual-first
(match-$ (sel :one User :first_name rand-name :is_active true)
{:id $
:email $
:first_name rand-name
:last_name "whatever"
:date_joined $
:last_login $
:common_name $
:is_superuser false})
(when-let [user (create-user-api rand-name)]
;; create a random user then set them to :inactive
(upd User (:id user)
:is_active false
:is_superuser true)
;; then try creating the same user again
((user->client :crowberto) :post 200 "user" {:first_name (:first_name user)
:last_name "whatever"
:email (:email user)}))))
;; Check that non-superusers are denied access
(expect "You don't have permissions to do that."
((user->client :rasta) :post 403 "user" {:first_name "whatever"
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment