IT4Change/gradido
3
0
Fork 0
mirror of https://github.com/IT4Change/gradido.git synced 2025-12-13 07:45:54 +00:00
Code Issues Packages Projects Releases Wiki Activity

plug holes in login_user_backups

Browse Source
This commit is contained in:
Ulf Gebhardt 2022-01-20 14:02:16 +01:00
parent 2b9a7020c7
commit af8bc01df1
Signed by: ulfgebhardt
GPG Key ID: DA6B843E748679C9
1 changed files with 19 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
database/migrations/0011-login_user_backups_plug_holes.ts Normal file
View File

@ -0,0 +1,19 @@
/* MIGRATION TO CLEAN PRODUCTION DATA
*
* cleanup the login_user_backups table as far a possible.
* Since the passphrase changed and its type is not detectable
* this whole thing is a pitfall
*/
export async function upgrade(queryFn: (query: string, values?: any[]) => Promise<Array<any>>) {
// Delete data with no reference in login_users table
await queryFn(`DELETE FROM login_user_backups WHERE user_id NOT IN (SELECT id FROM login_users)`)
// Searching for users with a missing password and a backup entry
// `SELECT * FROM login_user_backups WHERE user_id IN (SELECT id FROM login_users WHERE password = 0)`
// results in only new users with the proper passphrase scheme - luckily we seem to be good on this one
// 142 entries in total are found and every entry has type 2 (new one).
}
export async function downgrade(queryFn: (query: string, values?: any[]) => Promise<Array<any>>) {
return [] // cannot undelete things
}