chore: check if SESSION_SECRET equals to random_string

2023-12-20 22:50:50 +08:00
3 changed files with 18 additions and 14 deletions
--- a/.github/workflows/docker-image-amd64.yml
+++ b/.github/workflows/docker-image-amd64.yml
@@ -9,8 +9,6 @@ on:
      name:
        description: 'reason'
        required: false
-permissions:
-  packages: write
 jobs:
  push_to_registries:
    name: Push Docker image to multiple registries
@@ -27,6 +25,12 @@ jobs:
          git describe --tags > VERSION 

      - name: Log in to Docker Hub
+        uses: docker/login-action@v2
+        with:
+          username: ${{ secrets.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+
+      - name: Log in to the Container registry
        uses: docker/login-action@v2
        with:
          registry: ghcr.io
@@ -37,7 +41,9 @@ jobs:
        id: meta
        uses: docker/metadata-action@v4
        with:
-          images: ghcr.io/${{ github.repository }}
+          images: |
+            justsong/one-api
+            ghcr.io/${{ github.repository }}

      - name: Build and push Docker images
        uses: docker/build-push-action@v3
@@ -45,4 +51,4 @@ jobs:
          context: .
          push: true
          tags: ${{ steps.meta.outputs.tags }}
-          labels: ${{ steps.meta.outputs.labels }}
+          labels: ${{ steps.meta.outputs.labels }}
--- a/common/init.go
+++ b/common/init.go
@@ -36,7 +36,11 @@ func init() {
 	}

 	if os.Getenv("SESSION_SECRET") != "" {
-		SessionSecret = os.Getenv("SESSION_SECRET")
+		if os.Getenv("SESSION_SECRET") == "random_string" {
+			SysError("SESSION_SECRET is set to an example value, please change it to a random string.")
+		} else {
+			SessionSecret = os.Getenv("SESSION_SECRET")
+		}
 	}
 	if os.Getenv("SQLITE_PATH") != "" {
 		SQLitePath = os.Getenv("SQLITE_PATH")
--- a/model/user.go
+++ b/model/user.go
@@ -6,15 +6,14 @@ import (
 	"gorm.io/gorm"
 	"one-api/common"
 	"strings"
-	"strconv"
 )

 // User if you add sensitive fields, don't forget to clean them in setupLogin function.
 // Otherwise, the sensitive information will be saved on local storage in plain text!
 type User struct {
 	Id               int    `json:"id"`
-	Username         string `json:"username" gorm:"unique;index" validate:"max=30"`
-	Password         string `json:"password" gorm:"not null;" validate:"min=8,max=30"`
+	Username         string `json:"username" gorm:"unique;index" validate:"max=12"`
+	Password         string `json:"password" gorm:"not null;" validate:"min=8,max=20"`
 	DisplayName      string `json:"display_name" gorm:"index" validate:"max=20"`
 	Role             int    `json:"role" gorm:"type:int;default:1"`   // admin, common
 	Status           int    `json:"status" gorm:"type:int;default:1"` // enabled, disabled
@@ -43,12 +42,7 @@ func GetAllUsers(startIdx int, num int) (users []*User, err error) {
 }

 func SearchUsers(keyword string) (users []*User, err error) {
-	if uid, ok := strconv.Atoi(keyword); ok == nil {
-		err = DB.Omit("password").Where("id = ? or username LIKE ? or email LIKE ? or display_name LIKE ?", uid, keyword+"%", keyword+"%", keyword+"%").Find(&users).Error
-	} else {
-		err = DB.Omit("password").Where("username LIKE ? or email LIKE ? or display_name LIKE ?", keyword+"%", keyword+"%", keyword+"%").Find(&users).Error
-	}
-
+	err = DB.Omit("password").Where("id = ? or username LIKE ? or email LIKE ? or display_name LIKE ?", keyword, keyword+"%", keyword+"%", keyword+"%").Find(&users).Error
 	return users, err
 }