feat: support local login for non-built-in users (#911 )

Signed-off-by: Yixiang Zhao <seriouszyx@foxmail.com>
fix: send code missing parameter & show more detail responseError (#910 )
2025-07-08 09:01:00 +08:00 · 2022-07-26 19:27:24 +08:00 · 2022-07-25 23:46:38 +08:00 · 2022-07-24 23:36:55 +08:00
5 changed files with 53 additions and 5 deletions
--- a/controllers/verification.go
+++ b/controllers/verification.go
@ -49,8 +49,24 @@ func (c *ApiController) SendVerificationCode() {
 	applicationId := c.Ctx.Request.Form.Get("applicationId")
 	remoteAddr := util.GetIPFromRequest(c.Ctx.Request)
-	if destType == "" || dest == "" || applicationId == "" || !strings.Contains(applicationId, "/") || checkType == "" {
+	if destType == "" {
-		c.ResponseError("Missing parameter.")
+		c.ResponseError("Missing parameter: type.")
 		return
 	}
 	if dest == "" {
 		c.ResponseError("Missing parameter: dest.")
 		return
 	}
 	if applicationId == "" {
 		c.ResponseError("Missing parameter: applicationId.")
 		return
 	}
 	if !strings.Contains(applicationId, "/") {
 		c.ResponseError("Wrong parameter: applicationId.")
 		return
 	}
 	if checkType == "" {
 		c.ResponseError("Missing parameter: checkType.")
 		return
 	}
--- a/object/check.go
+++ b/object/check.go
@ -236,7 +236,7 @@ func CheckAccessPermission(userId string, application *Application) (bool, error
 	allowed := true
 	var err error
 	for _, permission := range permissions {
-		if !permission.IsEnabled {
+		if !permission.IsEnabled || len(permission.Users) == 0 {
 			continue
 		}
--- a/object/init.go
+++ b/object/init.go
@ -25,6 +25,7 @@ import (
 func InitDb() {
 	existed := initBuiltInOrganization()
 	if !existed {
 		initBuiltInPermission()
 		initBuiltInProvider()
 		initBuiltInUser()
 		initBuiltInApplication()
@ -230,3 +231,25 @@ func initBuiltInProvider() {
 func initWebAuthn() {
 	gob.Register(webauthn.SessionData{})
 }
 func initBuiltInPermission() {
 	permission := GetPermission("built-in/permission-built-in")
 	if permission != nil {
 		return
 	}
 	permission = &Permission{
 		Owner:        "built-in",
 		Name:         "permission-built-in",
 		CreatedTime:  util.GetCurrentTime(),
 		DisplayName:  "Built-in Permission",
 		Users:        []string{"built-in/admin"},
 		Roles:        []string{},
 		ResourceType: "Application",
 		Resources:    []string{"app-built-in"},
 		Actions:      []string{"Read", "Write", "Admin"},
 		Effect:       "Allow",
 		IsEnabled:    true,
 	}
 	AddPermission(permission)
 }
--- a/web/src/App.js
+++ b/web/src/App.js
@ -235,6 +235,8 @@ class App extends Component {
    AuthBackend.logout()
      .then((res) => {
        if (res.status === "ok") {
          const owner = this.state.account.owner;
          this.setState({
            account: null
          });
@ -243,7 +245,9 @@ class App extends Component {
          let redirectUri = res.data2;
          if (redirectUri !== null && redirectUri !== undefined && redirectUri !== "") {
            Setting.goToLink(redirectUri);
-          }else{
+          } else if (owner !== "built-in") {
            Setting.goToLink(`${window.location.origin}/login/${owner}`);
          } else {
            Setting.goToLinkSoft(this, "/");
          }
        } else {
@ -669,6 +673,7 @@ class App extends Component {
            <Route exact path="/signup" render={(props) => this.renderHomeIfLoggedIn(<SignupPage account={this.state.account} {...props} />)} />
            <Route exact path="/signup/:applicationName" render={(props) => this.renderHomeIfLoggedIn(<SignupPage account={this.state.account} {...props} onUpdateAccount={(account) => {this.onUpdateAccount(account);}} />)} />
            <Route exact path="/login" render={(props) => this.renderHomeIfLoggedIn(<SelfLoginPage account={this.state.account} {...props} />)} />
            <Route exact path="/login/:owner" render={(props) => this.renderHomeIfLoggedIn(<SelfLoginPage account={this.state.account} {...props} />)} />
            <Route exact path="/auto-signup/oauth/authorize" render={(props) => <LoginPage account={this.state.account} type={"code"} mode={"signup"} {...props} onUpdateAccount={(account) => {this.onUpdateAccount(account);}} />} />
            <Route exact path="/signup/oauth/authorize" render={(props) => <SignupPage account={this.state.account} {...props} onUpdateAccount={(account) => {this.onUpdateAccount(account);}} />} />
            <Route exact path="/login/oauth/authorize" render={(props) => <LoginPage account={this.state.account} type={"code"} mode={"signin"} {...props} onUpdateAccount={(account) => {this.onUpdateAccount(account);}} />} />
--- a/web/src/auth/LoginPage.js
+++ b/web/src/auth/LoginPage.js
@ -191,6 +191,10 @@ class LoginPage extends React.Component {
        values["type"] = "saml";
      }
      if (this.state.owner != null) {
        values["organization"] = this.state.owner;
      }
      AuthBackend.login(values, oAuthParams)
        .then((res) => {
          if (res.status === "ok") {
@ -692,7 +696,7 @@ class LoginPage extends React.Component {
        >
          <CountDownInput
            disabled={this.state.username?.length === 0 || !this.state.validEmailOrPhone}
-            onButtonClickArgs={[this.state.username, "", Setting.getApplicationOrgName(application), true]}
+            onButtonClickArgs={[this.state.username, this.state.validEmail ? "email" : "phone", Setting.getApplicationName(application)]}
          />
        </Form.Item>
      ) : (