Merge pull request #3034 from jumpserver/dev_bai

[Update] 是否允许用户更改/使用密钥登录，根据settings配置进行控制

Merge pull request #3034 from jumpserver/dev_bai
[Update] 是否允许用户更改/使用密钥登录，根据settings配置进行控制
28f0302e · BaiJiangJie · GitHub · 69841a41 · 947f16e3 · 28f0302e
Unverified Commit 28f0302e authored Jul 26, 2019 by BaiJiangJie Committed by GitHub Jul 26, 2019
Hide whitespace changes
Inline Side-by-side

Showing with 5 additions and 2 deletions

user.py apps/users/models/user.py +4 -1

utils.py apps/users/utils.py +1 -1

No files found.
--- a/apps/users/models/user.py
+++ b/apps/users/models/user.py
@@ -55,7 +55,10 @@ class AuthMixin:
        return self.is_local

    def can_update_ssh_key(self):
-        return self.is_local
+        return self.can_use_ssh_key_login()
+
+    def can_use_ssh_key_login(self):
+        return settings.TERMINAL_PUBLIC_KEY_AUTH

    def check_otp(self, code):
        from ..utils import check_otp_code

--- a/apps/users/utils.py
+++ b/apps/users/utils.py
@@ -198,7 +198,7 @@ def check_user_valid(**kwargs):
    if password and authenticate(username=username, password=password):
        return user, ''

-    if public_key and user.public_key and user.is_local:
+    if public_key and user.public_key and user.can_use_ssh_key_login():
        public_key_saved = user.public_key.split()
        if len(public_key_saved) == 1:
            if public_key == public_key_saved[0]: