From b0ec3af9bb18ecea89773d52c5390bd75afc3ac7 Mon Sep 17 00:00:00 2001 From: mstrhakr <37352843+mstrhakr@users.noreply.github.com> Date: Wed, 7 Sep 2022 10:31:02 -0400 Subject: [PATCH] Fix checking sub property before parent property fixes bug 4520 --- webserver.js | 26 ++++++++++++++------------ 1 file changed, 14 insertions(+), 12 deletions(-) diff --git a/webserver.js b/webserver.js index 5fb0fac9..111ad402 100644 --- a/webserver.js +++ b/webserver.js @@ -2673,19 +2673,21 @@ module.exports.CreateWebServer = function (parent, db, args, certificates, doneF if ((req.user.name != null) && (req.user.name != user.name)) { user.name = req.user.name; userChanged = true; } if ((req.user.email != null) && (req.user.email != user.email)) { user.email = req.user.email; user.emailVerified = true; userChanged = true; } - // Sync the user groups if enabled - if (domain.authstrategies[authStrategy].groups.sync.enabled === true) { syncExternalUserGroups(domain, user, userMemberships, authStrategy) } + if (typeof domain.authstrategies[authStrategy].groups == 'object') { + // Sync the user groups if enabled + if ((typeof domain.authstrategies[authStrategy].groups.sync == 'object') && (domain.authstrategies[authStrategy].groups.sync.enabled === true)) { syncExternalUserGroups(domain, user, userMemberships, authStrategy) } - // See if the user is a member of the site admin group. - if ((typeof domain.authstrategies[authStrategy].groups.siteadmin !== 'undefined') && (domain.authstrategies[authStrategy].groups.siteadmin !== null)) { - if ((typeof siteAdminGroup === 'string') && (user.siteadmin !== 0xFFFFFFFF)) { - parent.debug('authlog', `${authStrategy.toUpperCase()}: Granting site admin privilages to user "${user.name}" found in administrator group: ${siteAdminGroup}`); - user.siteadmin = 0xFFFFFFFF; - userChanged = true; - } else if ((siteAdminGroup === false) && (user.siteadmin === 0xFFFFFFFF)) { - parent.debug('authlog', `${authStrategy.toUpperCase()}: Revoking site admin privilages from user "${user.name}" since they are not found in any administrator groups.`); - delete user.siteadmin; - userChanged = true; + // See if the user is a member of the site admin group. + if ((typeof domain.authstrategies[authStrategy].groups.siteadmin !== 'undefined') && (domain.authstrategies[authStrategy].groups.siteadmin !== null)) { + if ((typeof siteAdminGroup === 'string') && (user.siteadmin !== 0xFFFFFFFF)) { + parent.debug('authlog', `${authStrategy.toUpperCase()}: Granting site admin privilages to user "${user.name}" found in administrator group: ${siteAdminGroup}`); + user.siteadmin = 0xFFFFFFFF; + userChanged = true; + } else if ((siteAdminGroup === false) && (user.siteadmin === 0xFFFFFFFF)) { + parent.debug('authlog', `${authStrategy.toUpperCase()}: Revoking site admin privilages from user "${user.name}" since they are not found in any administrator groups.`); + delete user.siteadmin; + userChanged = true; + } } }