Home Explore Help
Sign In
yosoyhendrix
/
hestiacp
mirror of https://github.com/hestiacp/hestiacp
1
0
Fork 0
Files Issues 0 Wiki
Browse Source

Merge pull request #4195 from Aartsie/fix/4181-username-digits-check

Fix: #4181 Checks for usernames starting with a alphabetic character.
Jaap Marcus 2 years ago
parent
81db1b0f96 fe4ae48f98
commit
ae7c9f4126
3 changed files with 74 additions and 3 deletions
Split View Show Diff Stats
  1. 3 0
      bin/v-add-user
  2. 33 3
      func/main.sh
  3. 38 0
      test/test.bats

+ 3 - 0
bin/v-add-user
View File 

@@ -21,6 +21,9 @@ name=$5
 
 if [ -n "$6" ]; then
 
 	name="$name $6"
 
 fi
 
+
 
+FROM_V_ADD_USER=true
 
+
 
 # Includes
 
 # shellcheck source=/etc/hestiacp/hestia.conf
 
 source /etc/hestiacp/hestia.conf

+ 33 - 3
func/main.sh
View File 

@@ -704,7 +704,30 @@ sync_cron_jobs() {
 
 	chmod 600 $crontab
 
 }
 
 
-# User format validator
 
+# Validates Local part email and mail alias
 
+is_localpart_format_valid() {
 
+	if [ ${#1} -eq 1 ]; then
 
+		if ! [[ "$1" =~ ^^[[:alnum:]]$ ]]; then
 
+			check_result "$E_INVALID" "invalid $2 format :: $1"
 
+		fi
 
+	else
 
+		if [ -n "$3" ]; then
 
+			maxlenght=$(($3 - 2))
 
+			if ! [[ "$1" =~ ^[[:alnum:]][-|\.|_[:alnum:]]{0,$maxlenght}[[:alnum:]]$ ]]; then
 
+				check_result "$E_INVALID" "invalid $2 format :: $1"
 
+			fi
 
+		else
 
+			if ! [[ "$1" =~ ^[[:alnum:]][-|\.|_[:alnum:]]{0,28}[[:alnum:]]$ ]]; then
 
+				check_result "$E_INVALID" "invalid $2 format :: $1"
 
+			fi
 
+		fi
 
+	fi
 
+	if [ "$1" != "${1//[^[:ascii:]]/}" ]; then
 
+		check_result "$E_INVALID" "invalid $2 format :: $1"
 
+	fi
 
+}
 
+
 
+# Username / ftp username format validator
 
 is_user_format_valid() {
 
 	if [ ${#1} -eq 1 ]; then
 
 		if ! [[ "$1" =~ ^^[[:alnum:]]$ ]]; then
 
@@ -725,6 +748,13 @@ is_user_format_valid() {
 
 	if [ "$1" != "${1//[^[:ascii:]]/}" ]; then
 
 		check_result "$E_INVALID" "invalid $2 format :: $1"
 
 	fi
 
+
 
+	# Only for new users
 
+	if [[ "$FROM_V_ADD_USER" == "true" ]]; then
 
+		if ! [[ "$1" =~ ^[a-zA-Z][-|.|_[:alnum:]]{0,28}[[:alnum:]]$ ]]; then
 
+			check_result "$E_INVALID" "invalid $2 format :: $1"
 
+		fi
 
+	fi
 
 }
 
 
 # Domain format validator
 
@@ -1185,7 +1215,7 @@ is_format_valid() {
 
 		if [ -n "$arg" ]; then
 
 			case $arg_name in
 
 				access_key_id) is_access_key_id_format_valid "$arg" "$arg_name" ;;
 
-				account) is_user_format_valid "$arg" "$arg_name" '64' ;;
 
+				account) is_localpart_format_valid "$arg" "$arg_name" '64' ;;
 
 				action) is_fw_action_format_valid "$arg" ;;
 
 				active) is_boolean_format_valid "$arg" 'active' ;;
 
 				aliases) is_alias_format_valid "$arg" ;;
 
@@ -1226,7 +1256,7 @@ is_format_valid() {
 
 				ip_status) is_ip_status_format_valid "$arg" ;;
 
 				job) is_int_format_valid "$arg" 'job' ;;
 
 				key) is_common_format_valid "$arg" "$arg_name" ;;
 
-				malias) is_user_format_valid "$arg" "$arg_name" '64' ;;
 
+				malias) is_localpart_format_valid "$arg" "$arg_name" '64' ;;
 
 				max_db) is_int_format_valid "$arg" 'max db' ;;
 
 				min) is_cron_format_valid "$arg" $arg_name ;;
 
 				month) is_cron_format_valid "$arg" $arg_name ;;

+ 38 - 0
test/test.bats
View File 

@@ -384,6 +384,30 @@ function check_ip_not_banned(){
 
 	assert_output --partial 'Error: invalid user format'
 
 }
 
 
+@test "User: Add new user Failed 4" {
 
+	run v-add-user '1234'  $user $user@hestiacp2.com default "Super Test"
 
+	assert_failure $E_INVALID
 
+	assert_output --partial 'Error: invalid user format'
 
+}
 
+
 
+@test "User: Add new user Failed 5" {
 
+	run v-add-user '1aap'  $user $user@hestiacp2.com default "Super Test"
 
+	assert_failure $E_INVALID
 
+	assert_output --partial 'Error: invalid user format'
 
+}
 
+
 
+@test "User: Add new user Success 1" {
 
+	run v-add-user 'jaap01'  $user $user@hestiacp2.com default "Super Test"
 
+	assert_success
 
+	refute_output
 
+}
 
+
 
+@test "User: Add new user Success 1 Delete" {
 
+	run v-delete-user jaap01
 
+	assert_success
 
+	refute_output
 
+}
 
+
 
 @test "User: Change user password" {
 
     run v-change-user-password "$user" "$userpass2"
 
     assert_success
 
@@ -1644,6 +1668,19 @@ function check_ip_not_banned(){
 
 	refute_output
 
 }
 
 
+@test "MAIL: Add account 5" {
 
+		run v-add-mail-account $user $domain 01 "$userpass2"
 
+		assert_success
 
+		assert_file_contains /etc/exim4/domains/$domain/limits "01@$domain"
 
+		refute_output
 
+}
 
+
 
+@test "MAIL: Add account 6" {
 
+		run v-add-mail-account $user $domain "0aa" "$userpass2"
 
+		assert_success
 
+		assert_file_contains /etc/exim4/domains/$domain/limits "0aa@$domain"
 
+		refute_output
 
+}
 
 
 @test "MAIL: Add account alias Invalid length" {
 
 	run v-add-mail-account-alias $user $domain test 'hestiacp-realy-rocks-but-i-want-to-have-feature-xyz-and-i-want-it-now'
 
@@ -1854,6 +1891,7 @@ function check_ip_not_banned(){
 
     # validate_database mysql database_name database_user password
 
     validate_database mysql $database $dbuser 1234
 
 }
 
+
 
 @test "MYSQL: Add Database (Duplicate)" {
 
     run v-add-database $user database dbuser 1234 mysql
 
     assert_failure $E_EXISTS