settings: do not create a user if he has no password field, or if his password is null.

This will be used by the settings.json in the default Dockerfile to eschew creating an admin user when no password is set. Closes #3648.
2025-04-22 08:26:16 -04:00 · 2019-10-19 00:54:56 +02:00 · 2019-10-19 00:54:56 +02:00 · 7c099fef5e
commit 7c099fef5e
parent 4e758a9f4a
2 changed files with 28 additions and 2 deletions
--- a/src/node/utils/Settings.js
+++ b/src/node/utils/Settings.js
@ -629,6 +629,27 @@ exports.reloadSettings = function reloadSettings() {
    console.info(`Using skin "${exports.skinName}" in dir: ${skinPath}`);
  }

+  if (exports.users) {
+    /*
+     * Prune from export.users any user that has no password attribute, or whose
+     * password attribute is "null".
+     *
+     * This is used by the settings.json in the default Dockerfile to eschew
+     * creating an admin user if no password is set.
+     */
+    var filteredUsers = _.filter(exports.users, function(user, username) {
+      if ((user.hasOwnProperty("password")) || user.password !== null) {
+        return true;
+      }
+
+      console.warn(`The password for ${username} is null. This means the user must not be created. Removing it.`);
+
+      return false;
+    });
+
+    exports.users = filteredUsers;
+  }
+
  if (exports.abiword) {
    // Check abiword actually exists
    if (exports.abiword != null) {