Refactor user auth models and permission checks.

- Move user models from `/models` to `internal/auth`.
- Move and refactor various permission check functions into `User.()`
- Refactor awkward `get, manage bool` function args into `Get|Manage` bitflags.

Author: knadh

cmd/auth.go

@@ -12,7 +12,6 @@ import (
 
 	"github.com/knadh/listmonk/internal/auth"
 	"github.com/knadh/listmonk/internal/utils"
-	"github.com/knadh/listmonk/models"
 	"github.com/labstack/echo/v4"
 	"github.com/zerodha/simplesessions/v3"
 	"gopkg.in/volatiletech/null.v6"
@@ -361,8 +360,8 @@ func doLoginSetup(c echo.Context) error {
 	}
 
 	// Create the default "Super Admin".
-	r := models.Role{
-		Type: models.RoleTypeUser,
+	r := auth.Role{
+		Type: auth.RoleTypeUser,
 		Name: null.NewString("Super Admin", true),
 	}
 	for p := range app.constants.Permissions {
@@ -374,16 +373,16 @@ func doLoginSetup(c echo.Context) error {
 	}
 
 	// Create the super admin user.
-	u := models.User{
-		Type:          models.UserTypeUser,
+	u := auth.User{
+		Type:          auth.UserTypeUser,
 		HasPassword:   true,
 		PasswordLogin: true,
 		Username:      username,
 		Name:          username,
 		Password:      null.NewString(password, true),
 		Email:         null.NewString(email, true),
 		UserRoleID:    role.ID,
-		Status:        models.UserStatusEnabled,
+		Status:        auth.UserStatusEnabled,
 	}
 	if _, err := app.core.CreateUser(u); err != nil {
 		return err

cmd/campaigns.go

@@ -54,7 +54,7 @@ var (
 func handleGetCampaigns(c echo.Context) error {
 	var (
 		app  = c.Get("app").(*App)
-		user = c.Get(auth.UserKey).(models.User)
+		user = c.Get(auth.UserKey).(auth.User)
 		pg   = app.paginator.NewFromURL(c.Request().URL.Query())
 
 		status    = c.QueryParams()["status"]
@@ -66,14 +66,14 @@ func handleGetCampaigns(c echo.Context) error {
 	)
 
 	var (
-		hasAllPerm     = user.HasPerm(models.PermCampaignsGetAll)
+		hasAllPerm     = user.HasPerm(auth.PermCampaignsGetAll)
 		permittedLists []int
 	)
 
 	if !hasAllPerm {
 		// Either the user has campaigns:get_all permissions and can view all campaigns,
 		// or the campaigns are filtered by the lists the user has get|manage access to.
-		hasAllPerm, permittedLists = user.GetPermittedLists(true, true)
+		hasAllPerm, permittedLists = user.GetPermittedLists(auth.PermTypeGet | auth.PermTypeManage)
 	}
 
 	// Query and retrieve the campaigns.
@@ -120,7 +120,7 @@ func handleGetCampaign(c echo.Context) error {
 	}
 
 	// Check if the user has access to the campaign.
-	if err := checkCampaignPerm(id, true, c); err != nil {
+	if err := checkCampaignPerm(auth.PermTypeGet, id, c); err != nil {
 		return err
 	}
 
@@ -151,7 +151,7 @@ func handlePreviewCampaign(c echo.Context) error {
 	}
 
 	// Check if the user has access to the campaign.
-	if err := checkCampaignPerm(id, true, c); err != nil {
+	if err := checkCampaignPerm(auth.PermTypeGet, id, c); err != nil {
 		return err
 	}
 
@@ -278,7 +278,7 @@ func handleUpdateCampaign(c echo.Context) error {
 	}
 
 	// Check if the user has access to the campaign.
-	if err := checkCampaignPerm(id, false, c); err != nil {
+	if err := checkCampaignPerm(auth.PermTypeManage, id, c); err != nil {
 		return err
 	}
 
@@ -326,7 +326,7 @@ func handleUpdateCampaignStatus(c echo.Context) error {
 	}
 
 	// Check if the user has access to the campaign.
-	if err := checkCampaignPerm(id, false, c); err != nil {
+	if err := checkCampaignPerm(auth.PermTypeManage, id, c); err != nil {
 		return err
 	}
 
@@ -359,7 +359,7 @@ func handleUpdateCampaignArchive(c echo.Context) error {
 	)
 
 	// Check if the user has access to the campaign.
-	if err := checkCampaignPerm(id, false, c); err != nil {
+	if err := checkCampaignPerm(auth.PermTypeManage, id, c); err != nil {
 		return err
 	}
 
@@ -401,7 +401,7 @@ func handleDeleteCampaign(c echo.Context) error {
 	}
 
 	// Check if the user has access to the campaign.
-	if err := checkCampaignPerm(id, false, c); err != nil {
+	if err := checkCampaignPerm(auth.PermTypeManage, id, c); err != nil {
 		return err
 	}
 
@@ -467,7 +467,7 @@ func handleTestCampaign(c echo.Context) error {
 	}
 
 	// Check if the user has access to the campaign.
-	if err := checkCampaignPerm(id, false, c); err != nil {
+	if err := checkCampaignPerm(auth.PermTypeManage, id, c); err != nil {
 		return err
 	}
 
@@ -707,32 +707,32 @@ func makeOptinCampaignMessage(o campaignReq, app *App) (campaignReq, error) {
 }
 
 // checkCampaignPerm checks if the user has get or manage access to the given campaign.
-func checkCampaignPerm(id int, isGet bool, c echo.Context) error {
+func checkCampaignPerm(types auth.PermType, id int, c echo.Context) error {
 	var (
 		app  = c.Get("app").(*App)
-		user = c.Get(auth.UserKey).(models.User)
+		user = c.Get(auth.UserKey).(auth.User)
 	)
 
-	perm := models.PermCampaignsGet
-	if isGet {
+	perm := auth.PermCampaignsGet
+	if types&auth.PermTypeGet != 0 {
 		// It's a get request and there's a blanket get all permission.
-		if user.HasPerm(models.PermCampaignsGetAll) {
+		if user.HasPerm(auth.PermCampaignsGetAll) {
 			return nil
 		}
 	} else {
 		// It's a manage request and there's a blanket manage_all permission.
-		if user.HasPerm(models.PermCampaignsManageAll) {
+		if user.HasPerm(auth.PermCampaignsManageAll) {
 			return nil
 		}
 
-		perm = models.PermCampaignsManage
+		perm = auth.PermCampaignsManage
 	}
 
 	// There are no *_all campaign permissions. Instead, check if the user access
 	// blanket get_all/manage_all list permissions. If yes, then the user can access
 	// all campaigns. If there are no *_all permissions, then ensure that the
 	// campaign belongs to the lists that the user has access to.
-	if hasAllPerm, permittedListIDs := user.GetPermittedLists(true, true); !hasAllPerm {
+	if hasAllPerm, permittedListIDs := user.GetPermittedLists(auth.PermTypeGet | auth.PermTypeManage); !hasAllPerm {
 		if ok, err := app.core.CampaignHasLists(id, permittedListIDs); err != nil {
 			return err
 		} else if !ok {

cmd/init.go

@@ -977,7 +977,7 @@ func initAuth(db *sql.DB, ko *koanf.Koanf, co *core.Core) (bool, *auth.Auth) {
 			c.SetCookie(cookie)
 			return nil
 		},
-		GetUser: func(id int) (models.User, error) {
+		GetUser: func(id int) (auth.User, error) {
 			return co.GetUser(id, "", "")
 		},
 	}
@@ -1005,15 +1005,15 @@ func initAuth(db *sql.DB, ko *koanf.Koanf, co *core.Core) (bool, *auth.Auth) {
 		password = ko.String("app.admin_password")
 	)
 	if len(username) > 2 && len(password) > 6 {
-		u := models.User{
+		u := auth.User{
 			Username:      username,
 			Password:      null.String{Valid: true, String: password},
 			PasswordLogin: true,
 			HasPassword:   true,
-			Status:        models.UserStatusEnabled,
-			Type:          models.UserTypeAPI,
+			Status:        auth.UserStatusEnabled,
+			Type:          auth.UserTypeAPI,
 		}
-		u.UserRole.ID = models.SuperAdminRoleID
+		u.UserRole.ID = auth.SuperAdminRoleID
 		a.CacheAPIUser(u)
 
 		lo.Println(`WARNING: Remove the admin_username and admin_password fields from the TOML configuration file. If you are using APIs, create and use new credentials. Users are now managed via the Admin -> Settings -> Users dashboard.`)

cmd/lists.go

@@ -14,7 +14,7 @@ import (
 func handleGetLists(c echo.Context) error {
 	var (
 		app  = c.Get("app").(*App)
-		user = c.Get(auth.UserKey).(models.User)
+		user = c.Get(auth.UserKey).(auth.User)
 		pg   = app.paginator.NewFromURL(c.Request().URL.Query())
 
 		query      = strings.TrimSpace(c.FormValue("query"))
@@ -29,7 +29,7 @@ func handleGetLists(c echo.Context) error {
 	)
 
 	// Get the list IDs (or blanket permission) the user has access to.
-	hasAllPerm, permittedIDs := user.GetPermittedLists(true, false)
+	hasAllPerm, permittedIDs := user.GetPermittedLists(auth.PermTypeGet)
 
 	// Minimal query simply returns the list of all lists without JOIN subscriber counts. This is fast.
 	if minimal {
@@ -69,7 +69,9 @@ func handleGetLists(c echo.Context) error {
 // It's permission checked by the listPerm middleware.
 func handleGetList(c echo.Context) error {
 	var (
-		app   = c.Get("app").(*App)
+		app  = c.Get("app").(*App)
+		user = c.Get(auth.UserKey).(auth.User)
+
 		id, _ = strconv.Atoi(c.Param("id"))
 	)
 
@@ -78,7 +80,7 @@ func handleGetList(c echo.Context) error {
 	}
 
 	// Check if the user has access to the list.
-	if err := checkListPerm(true, false, c, id); err != nil {
+	if err := user.HasListPerm(auth.PermTypeGet, id); err != nil {
 		return err
 	}
 
@@ -119,7 +121,9 @@ func handleCreateList(c echo.Context) error {
 // It's permission checked by the listPerm middleware.
 func handleUpdateList(c echo.Context) error {
 	var (
-		app   = c.Get("app").(*App)
+		app  = c.Get("app").(*App)
+		user = c.Get(auth.UserKey).(auth.User)
+
 		id, _ = strconv.Atoi(c.Param("id"))
 	)
 
@@ -128,7 +132,7 @@ func handleUpdateList(c echo.Context) error {
 	}
 
 	// Check if the user has access to the list.
-	if err := checkListPerm(false, true, c, id); err != nil {
+	if err := user.HasListPerm(auth.PermTypeManage, id); err != nil {
 		return err
 	}
 
@@ -155,7 +159,9 @@ func handleUpdateList(c echo.Context) error {
 // It's permission checked by the listPerm middleware.
 func handleDeleteLists(c echo.Context) error {
 	var (
-		app   = c.Get("app").(*App)
+		app  = c.Get("app").(*App)
+		user = c.Get(auth.UserKey).(auth.User)
+
 		id, _ = strconv.ParseInt(c.Param("id"), 10, 64)
 		ids   []int
 	)
@@ -169,7 +175,7 @@ func handleDeleteLists(c echo.Context) error {
 	}
 
 	// Check if the user has access to the list.
-	if err := checkListPerm(true, false, c, ids...); err != nil {
+	if err := user.HasListPerm(auth.PermTypeManage, ids...); err != nil {
 		return err
 	}
 
@@ -180,35 +186,3 @@ func handleDeleteLists(c echo.Context) error {
 
 	return c.JSON(http.StatusOK, okResp{true})
 }
-
-// checkListPerm checks if the user has get or manage access to the given list.
-func checkListPerm(get, manage bool, c echo.Context, listIDs ...int) error {
-	var (
-		app  = c.Get("app").(*App)
-		user = c.Get(auth.UserKey).(models.User)
-	)
-
-	var permAll, perm string
-	if get {
-		permAll = models.PermListGetAll
-		perm = models.PermListGet
-	} else if manage {
-		permAll = models.PermListManageAll
-		perm = models.PermListManage
-	}
-
-	// Check if the user has permissions for all lists or the specific list.
-	if user.HasPerm(permAll) {
-		return nil
-	}
-
-	for _, id := range listIDs {
-		if id > 0 {
-			if user.HasListPerm(id, perm) {
-				return nil
-			}
-		}
-	}
-
-	return echo.NewHTTPError(http.StatusBadRequest, app.i18n.Ts("globals.messages.permissionDenied", "name", "list"))
-}

cmd/roles.go

@@ -6,7 +6,7 @@ import (
 	"strconv"
 	"strings"
 
-	"github.com/knadh/listmonk/models"
+	"github.com/knadh/listmonk/internal/auth"
 	"github.com/labstack/echo/v4"
 )
 
@@ -44,7 +44,7 @@ func handleGeListRoles(c echo.Context) error {
 func handleCreateUserRole(c echo.Context) error {
 	var (
 		app = c.Get("app").(*App)
-		r   = models.Role{}
+		r   = auth.Role{}
 	)
 
 	if err := c.Bind(&r); err != nil {
@@ -67,7 +67,7 @@ func handleCreateUserRole(c echo.Context) error {
 func handleCreateListRole(c echo.Context) error {
 	var (
 		app = c.Get("app").(*App)
-		r   = models.ListRole{}
+		r   = auth.ListRole{}
 	)
 
 	if err := c.Bind(&r); err != nil {
@@ -98,7 +98,7 @@ func handleUpdateUserRole(c echo.Context) error {
 	}
 
 	// Incoming params.
-	var r models.Role
+	var r auth.Role
 	if err := c.Bind(&r); err != nil {
 		return err
 	}
@@ -135,7 +135,7 @@ func handleUpdateListRole(c echo.Context) error {
 	}
 
 	// Incoming params.
-	var r models.ListRole
+	var r auth.ListRole
 	if err := c.Bind(&r); err != nil {
 		return err
 	}
@@ -183,7 +183,7 @@ func handleDeleteRole(c echo.Context) error {
 	return c.JSON(http.StatusOK, okResp{true})
 }
 
-func validateUserRole(r models.Role, app *App) error {
+func validateUserRole(r auth.Role, app *App) error {
 	// Validate fields.
 	if !strHasLen(r.Name.String, 1, stdInputMaxLen) {
 		return echo.NewHTTPError(http.StatusBadRequest, app.i18n.Ts("globals.messages.invalidFields", "name", "name"))
@@ -198,7 +198,7 @@ func validateUserRole(r models.Role, app *App) error {
 	return nil
 }
 
-func validateListRole(r models.ListRole, app *App) error {
+func validateListRole(r auth.ListRole, app *App) error {
 	// Validate fields.
 	if !strHasLen(r.Name.String, 1, stdInputMaxLen) {
 		return echo.NewHTTPError(http.StatusBadRequest, app.i18n.Ts("globals.messages.invalidFields", "name", "name"))