From bdfc1591bdc5c3414e8e79518243bb0fb87b55a1 Mon Sep 17 00:00:00 2001
From: itsHenry <2671230065@qq.com>
Date: Sun, 10 Mar 2024 16:48:25 +0800
Subject: [PATCH] fix: webauthn logspam (#6181)

---
 internal/bootstrap/data/user.go | 19 +++++++++++++++++++
 server/handles/user.go          |  1 +
 2 files changed, 20 insertions(+)

diff --git a/internal/bootstrap/data/user.go b/internal/bootstrap/data/user.go
index 451c60a3..3b71e498 100644
--- a/internal/bootstrap/data/user.go
+++ b/internal/bootstrap/data/user.go
@@ -31,6 +31,7 @@ func initUser() {
 				PwdHash:  model.TwoHashPwd(adminPassword, salt),
 				Role:     model.ADMIN,
 				BasePath: "/",
+				Authn:    "[]",
 			}
 			if err := op.CreateUser(admin); err != nil {
 				panic(err)
@@ -53,6 +54,7 @@ func initUser() {
 				BasePath:   "/",
 				Permission: 0,
 				Disabled:   true,
+				Authn:      "[]",
 			}
 			if err := db.CreateUser(guest); err != nil {
 				utils.Log.Fatalf("[init user] Failed to create guest user: %v", err)
@@ -62,6 +64,7 @@ func initUser() {
 		}
 	}
 	hashPwdForOldVersion()
+	updateAuthnForOldVersion()
 }
 
 func hashPwdForOldVersion() {
@@ -80,3 +83,19 @@ func hashPwdForOldVersion() {
 		}
 	}
 }
+
+func updateAuthnForOldVersion() {
+	users, _, err := op.GetUsers(1, -1)
+	if err != nil {
+		utils.Log.Fatalf("[update authn for old version] failed get users: %v", err)
+	}
+	for i := range users {
+		user := users[i]
+		if user.Authn == "" {
+			user.Authn = "[]"
+			if err := db.UpdateUser(&user); err != nil {
+				utils.Log.Fatalf("[update authn for old version] failed update user: %v", err)
+			}
+		}
+	}
+}
diff --git a/server/handles/user.go b/server/handles/user.go
index 2220648f..4d404a4c 100644
--- a/server/handles/user.go
+++ b/server/handles/user.go
@@ -41,6 +41,7 @@ func CreateUser(c *gin.Context) {
 	}
 	req.SetPassword(req.Password)
 	req.Password = ""
+	req.Authn = "[]"
 	if err := op.CreateUser(&req); err != nil {
 		common.ErrorResp(c, err, 500, true)
 	} else {