Fixing ldap ability to modify user fields (#2868)

2025-02-25 18:55:24 -06:00 · 2016-05-03 15:27:00 -04:00
parent d4a708ce19
commit 5d7e34c94b
1 changed files with 3 additions and 3 deletions
--- a/store/sql_user_store.go
+++ b/store/sql_user_store.go
@@ -95,7 +95,7 @@ func (us SqlUserStore) Save(user *model.User) StoreChannel {
 	return storeChannel
 }

-func (us SqlUserStore) Update(user *model.User, allowActiveUpdate bool) StoreChannel {
+func (us SqlUserStore) Update(user *model.User, trustedUpdateData bool) StoreChannel {

 	storeChannel := make(StoreChannel)

@@ -129,14 +129,14 @@ func (us SqlUserStore) Update(user *model.User, allowActiveUpdate bool) StoreCha
 			user.MfaSecret = oldUser.MfaSecret
 			user.MfaActive = oldUser.MfaActive

-			if !allowActiveUpdate {
+			if !trustedUpdateData {
 				user.Roles = oldUser.Roles
 				user.DeleteAt = oldUser.DeleteAt
 			}

 			if user.IsOAuthUser() {
 				user.Email = oldUser.Email
-			} else if user.IsLDAPUser() {
+			} else if user.IsLDAPUser() && !trustedUpdateData {
 				if user.Username != oldUser.Username ||
 					user.FirstName != oldUser.FirstName ||
 					user.LastName != oldUser.LastName ||