Revert "Unify password changing and invalidate auth tokens (go-gitea#27625)"

earl-warren · earl-warren · commit 1951c51c8e08 · 2024-02-05T14:43:35.000+01:00
This reverts commit 688d4a1.
diff --git a/models/auth/auth_token.go b/models/auth/auth_token.go
@@ -54,11 +54,6 @@ func DeleteAuthTokenByID(ctx context.Context, id string) error {
 	return err
 }
 
-func DeleteAuthTokensByUserID(ctx context.Context, uid int64) error {
-	_, err := db.GetEngine(ctx).Where(builder.Eq{"user_id": uid}).Delete(&AuthToken{})
-	return err
-}
-
 func DeleteExpiredAuthTokens(ctx context.Context) error {
 	_, err := db.GetEngine(ctx).Where(builder.Lt{"expires_unix": timeutil.TimeStampNow()}).Delete(&AuthToken{})
 	return err
diff --git a/services/user/delete.go b/services/user/delete.go
@@ -187,10 +187,6 @@ func deleteUser(ctx context.Context, u *user_model.User, purge bool) (err error)
 	}
 	// ***** END: ExternalLoginUser *****
 
-	if err := auth_model.DeleteAuthTokensByUserID(ctx, u.ID); err != nil {
-		return fmt.Errorf("DeleteAuthTokensByUserID: %w", err)
-	}
-
 	if _, err = db.DeleteByID[user_model.User](ctx, u.ID); err != nil {
 		return fmt.Errorf("delete: %w", err)
 	}
diff --git a/services/user/update.go b/services/user/update.go
@@ -183,7 +183,6 @@ func UpdateAuth(ctx context.Context, u *user_model.User, opts *UpdateAuthOptions
 		u.LoginName = opts.LoginName.Value()
 	}
 
-	deleteAuthTokens := false
 	if opts.Password.Has() && (u.IsLocal() || u.IsOAuth2()) {
 		password := opts.Password.Value()
 
@@ -200,8 +199,6 @@ func UpdateAuth(ctx context.Context, u *user_model.User, opts *UpdateAuthOptions
 		if err := u.SetPassword(password); err != nil {
 			return err
 		}
-
-		deleteAuthTokens = true
 	}
 
 	if opts.MustChangePassword.Has() {
@@ -211,12 +208,5 @@ func UpdateAuth(ctx context.Context, u *user_model.User, opts *UpdateAuthOptions
 		u.ProhibitLogin = opts.ProhibitLogin.Value()
 	}
 
-	if err := user_model.UpdateUserCols(ctx, u, "login_type", "login_source", "login_name", "passwd", "passwd_hash_algo", "salt", "must_change_password", "prohibit_login"); err != nil {
-		return err
-	}
-
-	if deleteAuthTokens {
-		return auth_model.DeleteAuthTokensByUserID(ctx, u.ID)
-	}
-	return nil
+	return user_model.UpdateUserCols(ctx, u, "login_type", "login_source", "login_name", "passwd", "passwd_hash_algo", "salt", "must_change_password", "prohibit_login")
 }

Original file line number	Diff line number	Diff line change
`@@ -187,10 +187,6 @@ func deleteUser(ctx context.Context, u *user_model.User, purge bool) (err error)`
`187`	`187`	`}`
`188`	`188`	`// *** END: ExternalLoginUser ***`
`189`	`189`
`190`		`- if err := auth_model.DeleteAuthTokensByUserID(ctx, u.ID); err != nil {`
`191`		`- return fmt.Errorf("DeleteAuthTokensByUserID: %w", err)`
`192`		`- }`
`193`		`-`
`194`	`190`	`if _, err = db.DeleteByID[user_model.User](ctx, u.ID); err != nil {`
`195`	`191`	`return fmt.Errorf("delete: %w", err)`
`196`	`192`	`}`
Original file line number	Diff line number	Diff line change
`@@ -183,7 +183,6 @@ func UpdateAuth(ctx context.Context, u user_model.User, opts UpdateAuthOptions`
`183`	`183`	`u.LoginName = opts.LoginName.Value()`
`184`	`184`	`}`
`185`	`185`
`186`		`- deleteAuthTokens := false`
`187`	`186`	`if opts.Password.Has() && (u.IsLocal() \|\| u.IsOAuth2()) {`
`188`	`187`	`password := opts.Password.Value()`
`189`	`188`
`@@ -200,8 +199,6 @@ func UpdateAuth(ctx context.Context, u user_model.User, opts UpdateAuthOptions`
`200`	`199`	`if err := u.SetPassword(password); err != nil {`
`201`	`200`	`return err`
`202`	`201`	`}`
`203`		`-`
`204`		`- deleteAuthTokens = true`
`205`	`202`	`}`
`206`	`203`
`207`	`204`	`if opts.MustChangePassword.Has() {`
`@@ -211,12 +208,5 @@ func UpdateAuth(ctx context.Context, u user_model.User, opts UpdateAuthOptions`
`211`	`208`	`u.ProhibitLogin = opts.ProhibitLogin.Value()`
`212`	`209`	`}`
`213`	`210`
`214`		`- if err := user_model.UpdateUserCols(ctx, u, "login_type", "login_source", "login_name", "passwd", "passwd_hash_algo", "salt", "must_change_password", "prohibit_login"); err != nil {`
`215`		`- return err`
`216`		`- }`
`217`		`-`
`218`		`- if deleteAuthTokens {`
`219`		`- return auth_model.DeleteAuthTokensByUserID(ctx, u.ID)`
`220`		`- }`
`221`		`- return nil`
	`211`	`+ return user_model.UpdateUserCols(ctx, u, "login_type", "login_source", "login_name", "passwd", "passwd_hash_algo", "salt", "must_change_password", "prohibit_login")`
`222`	`212`	`}`