aiolabs/lnbits
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity Actions

Don't create user if allowed users is set (#1822)

Browse source 
* dont allow creating of users when allowed users are set
* add info to .env.example

---------

Co-authored-by: dni  <office@dnilabs.com>
This commit is contained in:
Tiago Vasconcelos 2023-09-26 07:08:36 +01:00 committed by GitHub
parent 5b16f54857
commit d79a55b4c6
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 6 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
.env.example
View file

@ -15,6 +15,7 @@ LNBITS_ALLOWED_IPS=""
LNBITS_BLOCKED_IPS="" LNBITS_BLOCKED_IPS=""
# Allow users and admins by user IDs (comma separated list) # Allow users and admins by user IDs (comma separated list)
# if set new users will not be able to create accounts
LNBITS_ALLOWED_USERS="" LNBITS_ALLOWED_USERS=""
LNBITS_ADMIN_USERS="" LNBITS_ADMIN_USERS=""
# Extensions only admin can access # Extensions only admin can access

5
lnbits/core/views/api.py
View file

@ -172,6 +172,11 @@ async def api_create_wallet(
@api_router.post("/api/v1/account", response_model=Wallet) @api_router.post("/api/v1/account", response_model=Wallet)
async def api_create_account(data: CreateWallet) -> Wallet: async def api_create_account(data: CreateWallet) -> Wallet:
if len(settings.lnbits_allowed_users) > 0:
raise HTTPException(
status_code=HTTPStatus.BAD_REQUEST,
detail="Account creation is disabled.",
)
account = await create_account() account = await create_account()
return await create_wallet(user_id=account.id, wallet_name=data.name) return await create_wallet(user_id=account.id, wallet_name=data.name)