Add a setting to allow anonymous access to individual gists while still RequireLogin everywhere else (#229)

* Add a setting to allow accessing individual gists without auth This is a middle ground between the existing setting "Require Login", which requires login to do anything at all, and having it off, which shows a public list of gists and more generally allows discovering info about the users/gists of the instance without login. The idea of this setting is that it is "require login" for everything except individual gists. Fixes #228. Co-authored-by: Thomas Miceli <tho.miceli@gmail.com>
2025-07-08 17:08:04 +02:00 · 2024-05-12 14:40:11 -07:00
parent 2fd053a077
commit 22052bd38f
20 changed files with 187 additions and 37 deletions
--- a/internal/db/admin_setting.go
+++ b/internal/db/admin_setting.go
@ -10,10 +10,11 @@ type AdminSetting struct {
 }

 const (
-	SettingDisableSignup    = "disable-signup"
-	SettingRequireLogin     = "require-login"
-	SettingDisableLoginForm = "disable-login-form"
-	SettingDisableGravatar  = "disable-gravatar"
+	SettingDisableSignup          = "disable-signup"
+	SettingRequireLogin           = "require-login"
+	SettingAllowGistsWithoutLogin = "allow-gists-without-login"
+	SettingDisableLoginForm       = "disable-login-form"
+	SettingDisableGravatar        = "disable-gravatar"
 )

 func GetSetting(key string) (string, error) {
@ -62,3 +63,21 @@ func initAdminSettings(settings map[string]string) error {

 	return nil
 }
+
+type DBAuthInfo struct{}
+
+func (auth DBAuthInfo) RequireLogin() (bool, error) {
+	s, err := GetSetting(SettingRequireLogin)
+	if err != nil {
+		return true, err
+	}
+	return s == "1", nil
+}
+
+func (auth DBAuthInfo) AllowGistsWithoutLogin() (bool, error) {
+	s, err := GetSetting(SettingAllowGistsWithoutLogin)
+	if err != nil {
+		return false, err
+	}
+	return s == "1", nil
+}
--- a/internal/db/db.go
+++ b/internal/db/db.go
@ -52,10 +52,11 @@ func Setup(dbPath string, sharedCache bool) error {

 	// Default admin setting values
 	return initAdminSettings(map[string]string{
-		SettingDisableSignup:    "0",
-		SettingRequireLogin:     "0",
-		SettingDisableLoginForm: "0",
-		SettingDisableGravatar:  "0",
+		SettingDisableSignup:          "0",
+		SettingRequireLogin:           "0",
+		SettingAllowGistsWithoutLogin: "0",
+		SettingDisableLoginForm:       "0",
+		SettingDisableGravatar:        "0",
 	})
 }