New: Require password confirmation when setting or changing password

(cherry picked from commit b248163df598dc611ee919d525eb7357256d73d5) Closes #4315
6 months ago · 1361492bf5
parent 8c1ac91342
commit 1361492bf5
6 changed files with 58 additions and 7 deletions
--- a/frontend/src/FirstRun/AuthenticationRequiredModalContent.js
+++ b/frontend/src/FirstRun/AuthenticationRequiredModalContent.js
@ -34,7 +34,8 @@ function AuthenticationRequiredModalContent(props) {
    authenticationMethod,
    authenticationRequired,
    username,
-    password
+    password,
    passwordConfirmation
  } = settings;
  const authenticationEnabled = authenticationMethod && authenticationMethod.value !== 'none';
@ -120,6 +121,18 @@ function AuthenticationRequiredModalContent(props) {
                  {...password}
                />
              </FormGroup>
              <FormGroup>
                <FormLabel>{translate('PasswordConfirmation')}</FormLabel>
                <FormInputGroup
                  type={inputTypes.PASSWORD}
                  name="passwordConfirmation"
                  onChange={onInputChange}
                  helpTextWarning={passwordConfirmation?.value ? undefined : translate('AuthenticationRequiredPasswordConfirmationHelpTextWarning')}
                  {...passwordConfirmation}
                />
              </FormGroup>
            </div> :
            null
        }
--- a/frontend/src/Settings/General/SecuritySettings.js
+++ b/frontend/src/Settings/General/SecuritySettings.js
@ -124,6 +124,7 @@ class SecuritySettings extends Component {
      authenticationRequired,
      username,
      password,
      passwordConfirmation,
      apiKey,
      certificateValidation
    } = settings;
@ -199,6 +200,21 @@ class SecuritySettings extends Component {
            null
        }
        {
          authenticationEnabled ?
            <FormGroup>
              <FormLabel>{translate('PasswordConfirmation')}</FormLabel>
              <FormInputGroup
                type={inputTypes.PASSWORD}
                name="passwordConfirmation"
                onChange={onInputChange}
                {...passwordConfirmation}
              />
            </FormGroup> :
            null
        }
        <FormGroup>
          <FormLabel>
            {translate('APIKey')}
--- a/src/Lidarr.Api.V1/Config/HostConfigController.cs
+++ b/src/Lidarr.Api.V1/Config/HostConfigController.cs
@ -47,6 +47,9 @@ namespace Lidarr.Api.V1.Config
            SharedValidator.RuleFor(c => c.Password).NotEmpty().When(c => c.AuthenticationMethod == AuthenticationType.Basic ||
                                                                          c.AuthenticationMethod == AuthenticationType.Forms);
            SharedValidator.RuleFor(c => c.PasswordConfirmation)
                .Must((resource, p) => IsMatchingPassword(resource)).WithMessage("Must match Password");
            SharedValidator.RuleFor(c => c.SslPort).ValidPort().When(c => c.EnableSsl);
            SharedValidator.RuleFor(c => c.SslPort).NotEqual(c => c.Port).When(c => c.EnableSsl);
@ -81,6 +84,23 @@ namespace Lidarr.Api.V1.Config
            return cert != null;
        }
        private bool IsMatchingPassword(HostConfigResource resource)
        {
            var user = _userService.FindUser();
            if (user != null && user.Password == resource.Password)
            {
                return true;
            }
            if (resource.Password == resource.PasswordConfirmation)
            {
                return true;
            }
            return false;
        }
        public override HostConfigResource GetResourceById(int id)
        {
            return GetHostConfig();
@ -93,11 +113,10 @@ namespace Lidarr.Api.V1.Config
            resource.Id = 1;
            var user = _userService.FindUser();
-            if (user != null)
+
-            {
+            resource.Username = user?.Username ?? string.Empty;
-                resource.Username = user.Username;
+            resource.Password = user?.Password ?? string.Empty;
-                resource.Password = user.Password;
+            resource.PasswordConfirmation = string.Empty;
            }
            return resource;
        }
--- a/src/Lidarr.Api.V1/Config/HostConfigResource.cs
+++ b/src/Lidarr.Api.V1/Config/HostConfigResource.cs
@ -19,6 +19,7 @@ namespace Lidarr.Api.V1.Config
        public bool AnalyticsEnabled { get; set; }
        public string Username { get; set; }
        public string Password { get; set; }
        public string PasswordConfirmation { get; set; }
        public string LogLevel { get; set; }
        public string ConsoleLogLevel { get; set; }
        public string Branch { get; set; }
--- a/src/NzbDrone.Core/Localization/Core/en.json
+++ b/src/NzbDrone.Core/Localization/Core/en.json
@ -125,6 +125,7 @@
  "AuthenticationMethodHelpTextWarning": "Please select a valid authentication method",
  "AuthenticationRequired": "Authentication Required",
  "AuthenticationRequiredHelpText": "Change which requests authentication is required for. Do not change unless you understand the risks.",
  "AuthenticationRequiredPasswordConfirmationHelpTextWarning": "Confirm new password",
  "AuthenticationRequiredPasswordHelpTextWarning": "Enter a new password",
  "AuthenticationRequiredUsernameHelpTextWarning": "Enter a new username",
  "AuthenticationRequiredWarning": "To prevent remote access without authentication, {appName} now requires authentication to be enabled. You can optionally disable authentication from local addresses.",
@ -730,6 +731,7 @@
  "PageSize": "Page Size",
  "PageSizeHelpText": "Number of items to show on each page",
  "Password": "Password",
  "PasswordConfirmation": "Password Confirmation",
  "PastDays": "Past Days",
  "PastDaysHelpText": "Days for iCal feed to look into the past",
  "Path": "Path",
--- a/src/NzbDrone.Core/Validation/Paths/FileExistsValidator.cs
+++ b/src/NzbDrone.Core/Validation/Paths/FileExistsValidator.cs
@ -1,4 +1,4 @@
-using FluentValidation.Validators;
+using FluentValidation.Validators;
 using NzbDrone.Common.Disk;
 namespace NzbDrone.Core.Validation.Paths