git.squeep.com Git - akkoma/blob - lib/pleroma/plugs/admin_secret_authentication_plug.ex

   1 # Pleroma: A lightweight social networking server
   2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
   3 # SPDX-License-Identifier: AGPL-3.0-only
   4
   5 defmodule Pleroma.Plugs.AdminSecretAuthenticationPlug do
   6   import Plug.Conn
   7   alias Pleroma.User
   8
   9   def init(options) do
  10     options
  11   end
  12
  13   def secret_token do
  14     Pleroma.Config.get(:admin_token)
  15   end
  16
  17   def call(%{assigns: %{user: %User{}}} = conn, _), do: conn
  18
  19   def call(conn, _) do
  20     if secret_token() do
  21       authenticate(conn)
  22     else
  23       conn
  24     end
  25   end
  26
  27   def authenticate(%{params: %{"admin_token" => admin_token}} = conn) do
  28     if admin_token == secret_token() do
  29       assign(conn, :user, %User{is_admin: true})
  30     else
  31       conn
  32     end
  33   end
  34
  35   def authenticate(conn) do
  36     token = secret_token()
  37
  38     case get_req_header(conn, "x-admin-token") do
  39       [^token] -> assign(conn, :user, %User{is_admin: true})
  40       _ -> conn
  41     end
  42   end
  43 end