refactor: rename 'allow_change_password' to 'allow_modify_login_info' and update related logic across the application

2026-06-08 14:56:03 +00:00 · 2025-12-29 21:14:05 +08:00
parent 863b26c3fa
commit f11e01b549
7 changed files with 24 additions and 11 deletions
--- a/src/langbot/pkg/api/http/controller/groups/system.py
+++ b/src/langbot/pkg/api/http/controller/groups/system.py
@@ -23,8 +23,8 @@ class SystemRouterGroup(group.RouterGroup):
                        if 'cloud_service_url' in self.ap.instance_config.data.get('plugin', {})
                        else 'https://space.langbot.app'
                    ),
-                    'allow_change_password': self.ap.instance_config.data.get('system', {}).get(
-                        'allow_change_password', True
+                    'allow_modify_login_info': self.ap.instance_config.data.get('system', {}).get(
+                        'allow_modify_login_info', True
                    ),
                }
            )
--- a/src/langbot/pkg/api/http/controller/groups/user.py
+++ b/src/langbot/pkg/api/http/controller/groups/user.py
@@ -73,9 +73,11 @@ class UserRouterGroup(group.RouterGroup):
        @self.route('/change-password', methods=['POST'], auth_type=group.AuthType.USER_TOKEN)
        async def _(user_email: str) -> str:
            # Check if password change is allowed
-            allow_change_password = self.ap.instance_config.data.get('system', {}).get('allow_change_password', True)
-            if not allow_change_password:
-                return self.http_status(403, -1, 'Password change is disabled')
+            allow_modify_login_info = self.ap.instance_config.data.get('system', {}).get(
+                'allow_modify_login_info', True
+            )
+            if not allow_modify_login_info:
+                return self.http_status(403, -1, 'Modifying login info is disabled')

            json_data = await quart.request.json

@@ -199,6 +201,13 @@ class UserRouterGroup(group.RouterGroup):
        @self.route('/bind-space', methods=['POST'], auth_type=group.AuthType.NONE)
        async def _() -> str:
            """Bind Space account to existing local account"""
+            # Check if modifying login info is allowed
+            allow_modify_login_info = self.ap.instance_config.data.get('system', {}).get(
+                'allow_modify_login_info', True
+            )
+            if not allow_modify_login_info:
+                return self.http_status(403, -1, 'Modifying login info is disabled')
+
            json_data = await quart.request.json
            code = json_data.get('code')
            state = json_data.get('state')  # JWT token passed as state