feat: Move the account parse calls to a method

2025-06-14 20:16:05 +00:00 · 2021-12-31 09:51:12 +01:00
parent eb13b37e09
commit a87b931520
4 changed files with 58 additions and 38 deletions
--- a/powerdnsadmin/routes/api.py
+++ b/powerdnsadmin/routes/api.py
@ -23,7 +23,7 @@ from ..lib.errors import (
    AccountCreateFail, AccountUpdateFail, AccountDeleteFail,
    AccountCreateDuplicate, AccountNotExists,
    UserCreateFail, UserCreateDuplicate, UserUpdateFail, UserDeleteFail,
-    UserUpdateFailEmail
+    UserUpdateFailEmail, InvalidAccountNameException
 )
 from ..decorators import (
    api_basic_auth, api_can_create_domain, is_json, apikey_auth,
@ -870,12 +870,15 @@ def api_create_account():
    contact = data['contact'] if 'contact' in data else None
    mail = data['mail'] if 'mail' in data else None
    if not name:
-        current_app.logger.debug("Account name missing")
-        abort(400)
+        current_app.logger.debug("Account creation failed: name missing")
+        raise InvalidAccountNameException(message="Account name missing")
+
+    sanitized_name = Account.sanitize_name(name)
+    account_exists = Account.query.filter(Account.name == sanitized_name).all()

-    account_exists = [] or Account.query.filter(Account.name == name).all()
    if len(account_exists) > 0:
-        msg = "Account {} already exists".format(name)
+        msg = ("Requested Account {} would be translated to {}"
+               " which already exists").format(name, sanitized_name)
        current_app.logger.debug(msg)
        raise AccountCreateDuplicate(message=msg)

@ -913,8 +916,9 @@ def api_update_account(account_id):
    if not account:
        abort(404)

-    if name and name != account.name:
-        abort(400)
+    if name and Account.sanitize_name(name) != account.name:
+        msg = "Account name is immutable"
+        raise AccountUpdateFail(message=msg)

    if current_user.role.name not in ['Administrator', 'Operator']:
        msg = "User role update accounts"
@ -1212,13 +1216,13 @@ def sync_domains():
 def health():
    domain = Domain()
    domain_to_query = domain.query.first()
-    
+
    if not domain_to_query:
        current_app.logger.error("No domain found to query a health check")
        return make_response("Unknown", 503)

    try:
-        domain.get_domain_info(domain_to_query.name)                                
+        domain.get_domain_info(domain_to_query.name)
    except Exception as e:
        current_app.logger.error("Health Check - Failed to query authoritative server for domain {}".format(domain_to_query.name))
        return make_response("Down", 503)
--- a/powerdnsadmin/routes/index.py
+++ b/powerdnsadmin/routes/index.py
@ -323,8 +323,8 @@ def login():
                            # Regexp didn't match, continue to next iteration
                            continue

-                    account = Account()
-                    account_id = account.get_id_by_name(account_name=group_name)
+                    sanitized_group_name = Account.sanitize_name(group_name)
+                    account_id = account.get_id_by_name(account_name=sanitized_group_name)

                    if account_id:
                        account = Account.query.get(account_id)
@ -345,10 +345,12 @@ def login():
                            current_app.logger.info('User {} added to Account {}'.format(
                                user.username, account.name))
                    else:
-                        account.name = group_name
-                        account.description = group_description
-                        account.contact = ''
-                        account.mail = ''
+                        account = Account(
+                            name=sanitized_group_name,
+                            description=group_description,
+                            contact='',
+                            mail=''
+                        )
                        account.create_account()
                        history = History(msg='Create account {0}'.format(
                            account.name),
@ -1092,18 +1094,10 @@ def create_group_to_account_mapping():


 def handle_account(account_name, account_description=""):
-    if Setting().get('account_name_extra_chars'):
-        char_list = "abcdefghijklmnopqrstuvwxyz0123456789_-."
-    else:
-        char_list = "abcdefghijklmnopqrstuvwxyz0123456789"
-    clean_name = ''.join(c for c in account_name.lower()
-                         if c in char_list)
-    if len(clean_name) > Account.name.type.length:
-        current_app.logger.error(
-            "Account name {0} too long. Truncated.".format(clean_name))
+    clean_name = Account.sanitize_name(account_name)
    account = Account.query.filter_by(name=clean_name).first()
    if not account:
-        account = Account(name=clean_name.lower(),
+        account = Account(name=clean_name,
                          description=account_description,
                          contact='',
                          mail='')