namespace BookStack\Console\Commands;
+use BookStack\Auth\Role;
use BookStack\Auth\UserRepo;
+use BookStack\Exceptions\NotFoundException;
use Illuminate\Console\Command;
use Illuminate\Support\Facades\Validator;
+use Illuminate\Support\Str;
use Illuminate\Validation\Rules\Password;
use Illuminate\Validation\Rules\Unique;
use Symfony\Component\Console\Command\Command as SymfonyCommand;
protected $signature = 'bookstack:create-admin
{--email= : The email address for the new admin user}
{--name= : The name of the new admin user}
- {--password= : The password to assign to the new admin user}';
+ {--password= : The password to assign to the new admin user}
+ {--external-auth-id= : The external authentication system id for the new admin user (SAML2/LDAP/OIDC)}';
/**
* The console command description.
/**
* Execute the console command.
*
- * @throws \BookStack\Exceptions\NotFoundException
+ * @throws NotFoundException
*
* @return mixed
*/
public function handle()
{
- $details = $this->options();
+ $details = $this->snakeCaseOptions();
if (empty($details['email'])) {
$details['email'] = $this->ask('Please specify an email address for the new admin user');
}
+
if (empty($details['name'])) {
$details['name'] = $this->ask('Please specify a name for the new admin user');
}
+
if (empty($details['password'])) {
- $details['password'] = $this->ask('Please specify a password for the new admin user (8 characters min)');
+ if (empty($details['external_auth_id'])) {
+ $details['password'] = $this->ask('Please specify a password for the new admin user (8 characters min)');
+ } else {
+ $details['password'] = Str::random(32);
+ }
}
$validator = Validator::make($details, [
- 'email' => ['required', 'email', 'min:5', new Unique('users', 'email')],
- 'name' => ['required', 'min:2'],
- 'password' => ['required', Password::default()],
+ 'email' => ['required', 'email', 'min:5', new Unique('users', 'email')],
+ 'name' => ['required', 'min:2'],
+ 'password' => ['required_without:external_auth_id', Password::default()],
+ 'external_auth_id' => ['required_without:password'],
]);
if ($validator->fails()) {
return SymfonyCommand::FAILURE;
}
- $user = $this->userRepo->create($validator->validated());
- $this->userRepo->attachSystemRole($user, 'admin');
- $this->userRepo->downloadAndAssignUserAvatar($user);
+ $user = $this->userRepo->createWithoutActivity($validator->validated());
+ $user->attachRole(Role::getSystemRole('admin'));
$user->email_confirmed = true;
$user->save();
return SymfonyCommand::SUCCESS;
}
+
+ protected function snakeCaseOptions(): array
+ {
+ $returnOpts = [];
+ foreach ($this->options() as $key => $value) {
+ $returnOpts[str_replace('-', '_', $key)] = $value;
+ }
+
+ return $returnOpts;
+ }
}