user can not be deleted in LDAP authentication mode

2024-06-24 13:55:05 +02:00 · 2016-10-28 14:47:19 +08:00 · 2016-10-28 14:47:19 +08:00 · 8fe0a333a8
commit 8fe0a333a8
parent ce40b26ff2
1 changed files with 6 additions and 0 deletions
--- a/src/ui/api/user.go
+++ b/src/ui/api/user.go
@ -241,6 +241,12 @@ func (ua *UserAPI) Delete() {
 		return
 	}

+	// TODO read from conifg
+	authMode := os.Getenv("AUTH_MODE")
+	if authMode == "ldap_auth" {
+		ua.CustomAbort(http.StatusForbidden, "user can not be deleted in LDAP authentication mode")
+	}
+
 	if ua.currentUserID == ua.userID {
 		ua.CustomAbort(http.StatusForbidden, "can not delete yourself")
 	}