update user if it already exists in the database

stonith404 · Jan 15, 2025 · 49df727 · 49df727
1 parent 6ec1f98
commit 49df727
Show file tree

Hide file tree

Showing 8 changed files with 33 additions and 27 deletions.
diff --git a/backend/.env.example b/backend/.env.example
@@ -11,5 +11,6 @@ LDAP_BIND_USER=CN=user,DC=example,DC=com
 LDAP_BIND_PASSWORD=securepasswordhere
 LDAP_SEARCH_BASE=OU=Stuff,DC=example,DC=com
 LDAP_TLS_VERIFY=false
+LDAP_USER_ID_ATTRIBUTE=uid
 LDAP_USERNAME_ATTRIBUTE=uid
 LDAP_GROUP_ATTRIBUTE=uid
diff --git a/backend/internal/common/env_config.go b/backend/internal/common/env_config.go
@@ -30,6 +30,7 @@ type EnvConfigSchema struct {
 	LDAPBindPassword         string     `env:"LDAP_BIND_PASSWORD"`
 	LDAPSearchBase           string     `env:"LDAP_SEARCH_BASE"`
 	LDAPTLSVerify            bool       `env:"LDAP_TLS_VERIFY"`
+	LDAPUserIdAttribute      string     `env:"LDAP_USER_ID_ATTRIBUTE"`
 	LDAPUsernameAttribute    string     `env:"LDAP_USERNAME_ATTRIBUTE"`
 	LDAPGroupAttribute       string     `env:"LDAP_GROUP_ATTRIBUTE"`
 }
@@ -50,6 +51,7 @@ var EnvConfig = &EnvConfigSchema{
 	LDAPBindPassword:         "",
 	LDAPSearchBase:           "",
 	LDAPTLSVerify:            false,
+	LDAPUserIdAttribute:      "",
 	LDAPUsernameAttribute:    "",
 	LDAPGroupAttribute:       "",
 }

diff --git a/backend/internal/dto/user_dto.go b/backend/internal/dto/user_dto.go
@@ -18,6 +18,7 @@ type UserCreateDto struct {
 	FirstName string `json:"firstName" binding:"required,min=1,max=50"`
 	LastName  string `json:"lastName" binding:"required,min=1,max=50"`
 	IsAdmin   bool   `json:"isAdmin"`
+	LdapID    string `json:"-"`
 }
 
 type OneTimeAccessTokenCreateDto struct {

diff --git a/backend/internal/model/user.go b/backend/internal/model/user.go
@@ -14,6 +14,7 @@ type User struct {
 	FirstName string `sortable:"true"`
 	LastName  string `sortable:"true"`
 	IsAdmin   bool   `sortable:"true"`
+	LdapID    *string
 
 	CustomClaims []CustomClaim
 	UserGroups   []UserGroup `gorm:"many2many:user_groups_users;"`

diff --git a/backend/internal/service/ldap_service.go b/backend/internal/service/ldap_service.go
@@ -3,6 +3,7 @@ package service
 import (
 	"crypto/tls"
 	"fmt"
+	"log"
 
 	"github.com/go-ldap/ldap/v3"
 	"github.com/stonith404/pocket-id/backend/internal/common"
@@ -100,41 +101,38 @@ func (s *LdapService) GetLdapUsers() error {
 		fmt.Println(fmt.Errorf("failed to query LDAP: %w", err))
 	}
 
-	var userError error
+	for _, value := range result.Entries {
+		ldapId := value.GetAttributeValue(common.EnvConfig.LDAPUserIdAttribute)
 
-	if len(result.Entries) >= 1 {
+		// Get the user from the database
+		var databaseUser model.User
+		s.db.Where("ldap_id = ?", ldapId).First(&databaseUser)
 
-		for _, value := range result.Entries {
+		newUser := dto.UserCreateDto{
+			Username:  value.GetAttributeValue(common.EnvConfig.LDAPUsernameAttribute),
+			Email:     value.GetAttributeValue("mail"),
+			FirstName: value.GetAttributeValue("givenName"),
+			LastName:  value.GetAttributeValue("sn"),
+			IsAdmin:   false,
+			LdapID:    ldapId,
+		}
 
-			newUserModel := model.User{
-				Username:  value.GetAttributeValue(common.EnvConfig.LDAPUsernameAttribute),
-				Email:     value.GetAttributeValue("mail"),
-				FirstName: value.GetAttributeValue("givenName"),
-				LastName:  value.GetAttributeValue("sn"),
-				IsAdmin:   false,
+		if databaseUser.ID == "" {
+			_, err = s.userService.CreateUser(newUser)
+			if err != nil {
+				log.Printf("Error syncing user %s: %s", newUser.Username, err)
 			}
-
-			if s.userService.checkDuplicatedFields(newUserModel) == nil {
-				newUser := dto.UserCreateDto{
-					Username:  value.GetAttributeValue(common.EnvConfig.LDAPUsernameAttribute),
-					Email:     value.GetAttributeValue("mail"),
-					FirstName: value.GetAttributeValue("givenName"),
-					LastName:  value.GetAttributeValue("sn"),
-					IsAdmin:   false,
-				}
-				_, userError = s.userService.CreateUser(newUser)
-			} else {
-				// Update Exsisting User Entry Logic here.
+		} else {
+			_, err = s.userService.UpdateUser(databaseUser.ID, newUser, false)
+			if err != nil {
+				log.Printf("Error syncing user %s: %s", newUser.Username, err)
 			}
 
 		}
 
-		client.Close()
-		return userError
-
-	} else {
-		fmt.Println("No Users Found")
-		return userError
 	}
 
+	client.Close()
+	return nil
+
 }
diff --git a/backend/internal/service/user_service.go b/backend/internal/service/user_service.go
@@ -56,6 +56,7 @@ func (s *UserService) CreateUser(input dto.UserCreateDto) (model.User, error) {
 		Email:     input.Email,
 		Username:  input.Username,
 		IsAdmin:   input.IsAdmin,
+		LdapID:    &input.LdapID,
 	}
 	if err := s.db.Create(&user).Error; err != nil {
 		if errors.Is(err, gorm.ErrDuplicatedKey) {

diff --git a/backend/resources/migrations/sqlite/20250115155817_ldap.down.sql b/backend/resources/migrations/sqlite/20250115155817_ldap.down.sql
@@ -0,0 +1 @@
+ALTER TABLE users DROP COLUMN ldap_id;
diff --git a/backend/resources/migrations/sqlite/20250115155817_ldap.up.sql b/backend/resources/migrations/sqlite/20250115155817_ldap.up.sql
@@ -0,0 +1 @@
+ALTER TABLE users ADD COLUMN ldap_id TEXT;