Merge pull request #137 from joeatwork/dont-create-users-with-bad-urls

api: don't create a user if you can't send them an email
This commit is contained in:
Joe Bowers 2015-09-25 17:31:34 -07:00
commit 72fa4127d0
2 changed files with 34 additions and 16 deletions

View file

@ -132,6 +132,16 @@ func (u *UsersAPI) CreateUser(creds Creds, usr schema.User, redirURL url.URL) (s
return schema.UserCreateResponse{}, mapError(err)
}
metadata, err := u.clientIdentityRepo.Metadata(creds.ClientID)
if err != nil {
return schema.UserCreateResponse{}, mapError(err)
}
validRedirURL, err := client.ValidRedirectURL(&redirURL, metadata.RedirectURLs)
if err != nil {
return schema.UserCreateResponse{}, ErrorInvalidRedirectURL
}
id, err := u.manager.CreateUser(schemaUserToUser(usr), user.Password(hash), u.localConnectorID)
if err != nil {
return schema.UserCreateResponse{}, mapError(err)
@ -144,16 +154,6 @@ func (u *UsersAPI) CreateUser(creds Creds, usr schema.User, redirURL url.URL) (s
usr = userToSchemaUser(userUser)
metadata, err := u.clientIdentityRepo.Metadata(creds.ClientID)
if err != nil {
return schema.UserCreateResponse{}, mapError(err)
}
validRedirURL, err := client.ValidRedirectURL(&redirURL, metadata.RedirectURLs)
if err != nil {
return schema.UserCreateResponse{}, ErrorInvalidRedirectURL
}
url, err := u.emailer.SendResetPasswordEmail(usr.Email, validRedirURL, creds.ClientID)
// An email is sent only if we don't get a link and there's no error.

View file

@ -238,7 +238,7 @@ func TestCreateUser(t *testing.T) {
{
creds: goodCreds,
usr: schema.User{
Email: "newuser@example.com",
Email: "newuser01@example.com",
DisplayName: "New User",
EmailVerified: true,
Admin: false,
@ -248,7 +248,7 @@ func TestCreateUser(t *testing.T) {
wantResponse: schema.UserCreateResponse{
EmailSent: true,
User: &schema.User{
Email: "newuser@example.com",
Email: "newuser01@example.com",
DisplayName: "New User",
EmailVerified: true,
Admin: false,
@ -259,7 +259,7 @@ func TestCreateUser(t *testing.T) {
{
creds: goodCreds,
usr: schema.User{
Email: "newuser@example.com",
Email: "newuser02@example.com",
DisplayName: "New User",
EmailVerified: true,
Admin: false,
@ -269,7 +269,7 @@ func TestCreateUser(t *testing.T) {
wantResponse: schema.UserCreateResponse{
User: &schema.User{
Email: "newuser@example.com",
Email: "newuser02@example.com",
DisplayName: "New User",
EmailVerified: true,
Admin: false,
@ -281,7 +281,7 @@ func TestCreateUser(t *testing.T) {
{
creds: goodCreds,
usr: schema.User{
Email: "newuser@example.com",
Email: "newuser03@example.com",
DisplayName: "New User",
EmailVerified: true,
Admin: false,
@ -293,7 +293,7 @@ func TestCreateUser(t *testing.T) {
{
creds: badCreds,
usr: schema.User{
Email: "newuser@example.com",
Email: "newuser04@example.com",
DisplayName: "New User",
EmailVerified: true,
Admin: false,
@ -313,6 +313,24 @@ func TestCreateUser(t *testing.T) {
if err != tt.wantErr {
t.Errorf("case %d: want=%q, got=%q", i, tt.wantErr, err)
}
tok := ""
for {
list, tok, err := api.ListUsers(goodCreds, 100, tok)
if err != nil {
t.Fatalf("case %d: unexpected error: %v", i, err)
break
}
for _, u := range list {
if u.Email == tt.usr.Email {
t.Errorf("case %d: got an error but user was still created", i)
}
}
if tok == "" {
break
}
}
continue
}
if err != nil {