自动检查管理员弱密码并提醒

2025-11-28 23:40:26 +08:00 · 2023-04-04 17:26:28 +08:00
parent 09a0846fb6
commit 5daa0d6108
9 changed files with 87 additions and 34 deletions
--- a/internal/web/actions/default/admins/admin.go
+++ b/internal/web/actions/default/admins/admin.go
@@ -45,6 +45,7 @@ func (this *AdminAction) RunGet(params struct {
 		"isOn":            admin.IsOn,
 		"isSuper":         admin.IsSuper,
 		"canLogin":        admin.CanLogin,
 		"hasWeakPassword": admin.HasWeakPassword,
 		"countAccessKeys": countAccessKeys,
 	}
--- a/internal/web/actions/default/admins/index.go
+++ b/internal/web/actions/default/admins/index.go
@@ -15,16 +15,27 @@ func (this *IndexAction) Init() {
 	this.Nav("", "", "")
 }
-func (this *IndexAction) RunGet(params struct{}) {
+func (this *IndexAction) RunGet(params struct {
-	countResp, err := this.RPC().AdminRPC().CountAllEnabledAdmins(this.AdminContext(), &pb.CountAllEnabledAdminsRequest{})
+	Keyword         string
 	HasWeakPassword bool
 }) {
 	this.Data["keyword"] = params.Keyword
 	this.Data["hasWeakPassword"] = params.HasWeakPassword
 	countResp, err := this.RPC().AdminRPC().CountAllEnabledAdmins(this.AdminContext(), &pb.CountAllEnabledAdminsRequest{
 		Keyword:         params.Keyword,
 		HasWeakPassword: params.HasWeakPassword,
 	})
 	if err != nil {
 		this.ErrorPage(err)
 		return
 	}
-	page := this.NewPage(countResp.Count)
+	var page = this.NewPage(countResp.Count)
 	this.Data["page"] = page.AsHTML()
 	adminsResp, err := this.RPC().AdminRPC().ListEnabledAdmins(this.AdminContext(), &pb.ListEnabledAdminsRequest{
 		Keyword:         params.Keyword,
 		HasWeakPassword: params.HasWeakPassword,
 		Offset:          page.Offset,
 		Size:            page.Size,
 	})
@@ -32,7 +43,7 @@ func (this *IndexAction) RunGet(params struct{}) {
 		this.ErrorPage(err)
 		return
 	}
-	adminMaps := []maps.Map{}
+	var adminMaps = []maps.Map{}
 	for _, admin := range adminsResp.Admins {
 		adminMaps = append(adminMaps, maps.Map{
 			"id":              admin.Id,
@@ -43,6 +54,7 @@ func (this *IndexAction) RunGet(params struct{}) {
 			"createdTime":     timeutil.FormatTime("Y-m-d H:i:s", admin.CreatedAt),
 			"otpLoginIsOn":    admin.OtpLogin != nil && admin.OtpLogin.IsOn,
 			"canLogin":        admin.CanLogin,
 			"hasWeakPassword": admin.HasWeakPassword,
 		})
 	}
 	this.Data["admins"] = adminMaps
--- a/internal/web/actions/default/dashboard/index.go
+++ b/internal/web/actions/default/dashboard/index.go
@@ -276,5 +276,13 @@ func (this *IndexAction) RunPost(params struct{}) {
 		}
 	}
 	// 弱密码提示
 	countWeakAdminsResp, err := this.RPC().AdminRPC().CountAllEnabledAdmins(this.AdminContext(), &pb.CountAllEnabledAdminsRequest{HasWeakPassword: true})
 	if err != nil {
 		this.ErrorPage(err)
 		return
 	}
 	this.Data["countWeakAdmins"] = countWeakAdminsResp.Count
 	this.Success()
 }
--- a/web/views/@default/admins/createPopup.html
+++ b/web/views/@default/admins/createPopup.html
@@ -33,17 +33,17 @@
 			</td>
 		</tr>
        <tr>
-            <td>是否允许登录</td>
+            <td>允许登录</td>
            <td>
                <checkbox name="canLogin" value="1"></checkbox>
-                <p class="comment">选中后才可以登录当前的管理平台。</p>
+                <p class="comment">选中后，当前管理员才可以登录当前的管理平台。</p>
            </td>
        </tr>
 		<tr>
-			<td>是否为超级管理员</td>
+			<td>超级管理员</td>
 			<td>
 				<checkbox name="isSuper" v-model="isSuper"></checkbox>
-				<p class="comment">超级管理员自动拥有所有的管理权限。</p>
+				<p class="comment">选中后，表示当前管理员为超级管理员；超级管理员自动拥有所有的管理权限。</p>
 			</td>
 		</tr>
 		<tr v-show="!isSuper">
--- a/web/views/@default/admins/index.html
+++ b/web/views/@default/admins/index.html
@@ -1,7 +1,30 @@
 {$layout}
 {$template "menu"}
-<table class="ui table selectable">
+<div class="margin"></div>
 <form class="ui form" method="get" action="/admins" v-show="!hasWeakPassword">
    <div class="ui fields inline">
        <div class="ui field">
            <input type="text" name="keyword" placeholder="用户名、全名 ..." v-model="keyword"/>
        </div>
        <div class="ui field">
            <button class="ui button" type="submit">搜索</button>
            &nbsp;
            <a href="/admins" v-if="keyword.length > 0">[清除条件]</a>
        </div>
    </div>
 </form>
 <div v-if="admins.length == 0">
    <div class="margin"></div>
    <p class="comment">暂时还没有<span v-if="keyword.length > 0">跟关键词匹配</span>管理员。</p>
 </div>
 <div v-if="hasWeakPassword">
    <span class="ui label small basic blue">当前正在筛选弱密码管理员 <a href="/admins"><i class="icon remove small"></i></a></span>
 </div>
 <table class="ui table selectable" v-show="admins.length > 0">
 	<thead>
 		<tr>
 			<th>用户名</th>
@@ -13,12 +36,13 @@
 		</tr>
 	</thead>
 	<tr v-for="admin in admins">
-        <td :class="{disabled:!admin.isOn}"><a :href="'/admins/admin?adminId=' + admin.id">{{admin.username}}</a>
+        <td :class="{disabled:!admin.isOn}"><a :href="'/admins/admin?adminId=' + admin.id"><keyword :v-word="keyword">{{admin.username}}</keyword></a>
-			<div v-if="admin.isSuper" style="margin-top: 0.5em">
+			<div v-if="admin.isSuper || admin.hasWeakPassword" style="margin-top: 0.5em">
-				<tiny-basic-label class="olive">超级管理员</tiny-basic-label>
+				<tiny-basic-label class="olive" v-if="admin.isSuper">超级管理员</tiny-basic-label>
                <a :href="'/admins/update?adminId=' + admin.id" v-if="admin.hasWeakPassword"><tiny-basic-label class="red" title="当前管理员已设置密码为弱密码，有极大的安全风险，请及时修改">弱密码</tiny-basic-label></a>
 			</div>
 		</td>
-		<td :class="{disabled:!admin.isOn}">{{admin.fullname}}</td>
+		<td :class="{disabled:!admin.isOn}"><keyword :v-word="keyword">{{admin.fullname}}</keyword></td>
        <td>
            <span v-if="admin.canLogin" class="green">Y</span>
            <span v-else class="disabled">N</span>
--- a/web/views/@default/admins/index.js
+++ b/web/views/@default/admins/index.js
@@ -1,7 +1,7 @@
 Tea.context(function () {
 	this.createAdmin = function () {
 		teaweb.popup("/admins/createPopup", {
-			height: "22em",
+			height: "30em",
 			callback: function () {
 				teaweb.success("保存成功", function () {
 					teaweb.reload()
--- a/web/views/@default/admins/update.html
+++ b/web/views/@default/admins/update.html
@@ -33,17 +33,17 @@
            </td>
        </tr>
        <tr>
-            <td>是否允许登录</td>
+            <td>允许登录</td>
            <td>
                <checkbox name="canLogin" value="1" v-model="admin.canLogin"></checkbox>
-                <p class="comment">选中后才可以登录当前的管理平台。</p>
+                <p class="comment">选中后，当前管理员才可以登录当前的管理平台。</p>
            </td>
        </tr>
        <tr>
-            <td>是否为超级管理员</td>
+            <td>超级管理员</td>
            <td>
                <checkbox name="isSuper" v-model="admin.isSuper"></checkbox>
-                <p class="comment">超级管理员自动拥有所有的管理权限。</p>
+                <p class="comment">选中后，表示当前管理员为超级管理员；超级管理员自动拥有所有的管理权限。</p>
            </td>
        </tr>
        <tr v-show="!admin.isSuper">
--- a/web/views/@default/dashboard/index.html
+++ b/web/views/@default/dashboard/index.html
@@ -50,6 +50,13 @@
    <a href="" title="关闭" @click.prevent="closeMessage"><i class="ui icon remove small"></i></a>
 </div>
 <!-- 弱密码提示 -->
 <div class="ui icon message error" v-if="countWeakAdmins > 0">
    <i class="icon warning circle"></i>
    <a href="/admins?hasWeakPassword=1">安全提醒：有 {{countWeakAdmins}} 个管理员登录账号正在使用弱密码，请及时修改密码，避免产生安全风险。</a>
    <a href="" title="关闭" @click.prevent="closeMessage"><i class="ui icon remove small"></i></a>
 </div>
 <!-- 统计图表 -->
 <columns-grid v-if="!isLoading">
    <div class="ui column">
--- a/web/views/@default/dashboard/index.js
+++ b/web/views/@default/dashboard/index.js
@@ -4,6 +4,7 @@ Tea.context(function () {
 	this.metricCharts = []
 	this.dashboard = {}
 	this.localLowerVersionAPINode = null
 	this.countWeakAdmins = 0
 	this.$delay(function () {
 		this.$post("$")