mirror of
https://github.com/0rangebananaspy/authelia.git
synced 2024-09-14 22:47:21 +07:00
8aade7f40e
* added regulation validator * made regulations find_time and ban_time values duration notation strings * added DefaultRegulationConfiguration for the validator * made session expiration and inactivity values duration notation strings * TOTP period does not need to be converted because adjustment should be discouraged * moved TOTP defaults to DefaultTOTPConfiguration and removed the consts * arranged the root config validator in configuration file order * adjusted tests for the changes * moved duration notation docs to root of configuration * added references to duration notation where applicable * project wide gofmt and goimports: * run gofmt * run goimports -local github.com/authelia/authelia -w on all files * Make jwt_secret error uniform and add tests * now at 100% coverage for internal/configuration/validator/configuration.go
154 lines
3.5 KiB
Go
154 lines
3.5 KiB
Go
package commands
|
|
|
|
import (
|
|
"bufio"
|
|
"encoding/json"
|
|
"log"
|
|
"os"
|
|
"path"
|
|
"time"
|
|
|
|
"github.com/spf13/cobra"
|
|
|
|
"github.com/authelia/authelia/internal/models"
|
|
"github.com/authelia/authelia/internal/storage"
|
|
)
|
|
|
|
var configurationPath string
|
|
var localDatabasePath string
|
|
|
|
// MigrateLocalCmd migration command
|
|
var MigrateLocalCmd = &cobra.Command{
|
|
Use: "localdb",
|
|
Short: "Migrate data from v3 local database into database configured in v4 configuration file",
|
|
Run: migrateLocal,
|
|
}
|
|
|
|
func init() {
|
|
MigrateLocalCmd.PersistentFlags().StringVarP(&localDatabasePath, "db-path", "p", "", "The path to the v3 local database")
|
|
MigrateLocalCmd.MarkPersistentFlagRequired("db-path")
|
|
|
|
MigrateLocalCmd.PersistentFlags().StringVarP(&configurationPath, "config", "c", "", "The configuration file of Authelia v4")
|
|
MigrateLocalCmd.MarkPersistentFlagRequired("config")
|
|
}
|
|
|
|
// migrateLocal data from v3 to v4
|
|
func migrateLocal(cmd *cobra.Command, args []string) {
|
|
dbProvider := createDBProvider(configurationPath)
|
|
|
|
migrateLocalTOTPSecret(dbProvider)
|
|
migrateLocalU2FSecret(dbProvider)
|
|
migrateLocalPreferences(dbProvider)
|
|
migrateLocalAuthenticationTraces(dbProvider)
|
|
// We don't need to migrate identity tokens
|
|
|
|
log.Println("Migration done!")
|
|
}
|
|
|
|
func migrateLocalTOTPSecret(dbProvider storage.Provider) {
|
|
file, err := os.Open(path.Join(localDatabasePath, "totp_secrets"))
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
defer file.Close()
|
|
scanner := bufio.NewScanner(file)
|
|
scanner.Split(bufio.ScanLines)
|
|
|
|
for scanner.Scan() {
|
|
data := scanner.Text()
|
|
|
|
entry := TOTPSecretsV3{}
|
|
json.Unmarshal([]byte(data), &entry)
|
|
err := dbProvider.SaveTOTPSecret(entry.UserID, entry.Secret.Base32)
|
|
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
}
|
|
}
|
|
|
|
func migrateLocalU2FSecret(dbProvider storage.Provider) {
|
|
file, err := os.Open(path.Join(localDatabasePath, "u2f_registrations"))
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
defer file.Close()
|
|
scanner := bufio.NewScanner(file)
|
|
scanner.Split(bufio.ScanLines)
|
|
|
|
for scanner.Scan() {
|
|
data := scanner.Text()
|
|
|
|
entry := U2FDeviceHandleV3{}
|
|
json.Unmarshal([]byte(data), &entry)
|
|
|
|
kH, err := decodeWebsafeBase64(entry.Registration.KeyHandle)
|
|
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
|
|
pK, err := decodeWebsafeBase64(entry.Registration.PublicKey)
|
|
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
|
|
err = dbProvider.SaveU2FDeviceHandle(entry.UserID, kH, pK)
|
|
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
}
|
|
}
|
|
|
|
func migrateLocalPreferences(dbProvider storage.Provider) {
|
|
file, err := os.Open(path.Join(localDatabasePath, "prefered_2fa_method"))
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
defer file.Close()
|
|
scanner := bufio.NewScanner(file)
|
|
scanner.Split(bufio.ScanLines)
|
|
|
|
for scanner.Scan() {
|
|
data := scanner.Text()
|
|
|
|
entry := PreferencesV3{}
|
|
json.Unmarshal([]byte(data), &entry)
|
|
err := dbProvider.SavePreferred2FAMethod(entry.UserID, entry.Method)
|
|
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
}
|
|
}
|
|
|
|
func migrateLocalAuthenticationTraces(dbProvider storage.Provider) {
|
|
file, err := os.Open(path.Join(localDatabasePath, "authentication_traces"))
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
defer file.Close()
|
|
scanner := bufio.NewScanner(file)
|
|
scanner.Split(bufio.ScanLines)
|
|
|
|
for scanner.Scan() {
|
|
data := scanner.Text()
|
|
|
|
entry := AuthenticationTraceV3{}
|
|
json.Unmarshal([]byte(data), &entry)
|
|
|
|
attempt := models.AuthenticationAttempt{
|
|
Username: entry.UserID,
|
|
Successful: entry.Successful,
|
|
Time: time.Unix(entry.Date.Date/1000.0, 0),
|
|
}
|
|
err := dbProvider.AppendAuthenticationLog(attempt)
|
|
|
|
if err != nil {
|
|
log.Fatal(err)
|
|
}
|
|
}
|
|
}
|