Home Explore Help
Register Sign In
Apq
/
sftpgo
mirror of https://github.com/drakkan/sftpgo.git
1
0
Fork 0
Files Issues 0 Wiki
Tree: 81433e00d1
Branches Tags
sftpgo
/
internal
/
dataprovider
/
bolt.go

bolt.go 98 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111211311411511611711811912012112212312412512612712812913013113213313413513613713813914014114214314414514614714814915015115215315415515615715815916016116216316416516616716816917017117217317417517617717817918018118218318418518618718818919019119219319419519619719819920020120220320420520620720820921021121221321421521621721821922022122222322422522622722822923023123223323423523623723823924024124224324424524624724824925025125225325425525625725825926026126226326426526626726826927027127227327427527627727827928028128228328428528628728828929029129229329429529629729829930030130230330430530630730830931031131231331431531631731831932032132232332432532632732832933033133233333433533633733833934034134234334434534634734834935035135235335435535635735835936036136236336436536636736836937037137237337437537637737837938038138238338438538638738838939039139239339439539639739839940040140240340440540640740840941041141241341441541641741841942042142242342442542642742842943043143243343443543643743843944044144244344444544644744844945045145245345445545645745845946046146246346446546646746846947047147247347447547647747847948048148248348448548648748848949049149249349449549649749849950050150250350450550650750850951051151251351451551651751851952052152252352452552652752852953053153253353453553653753853954054154254354454554654754854955055155255355455555655755855956056156256356456556656756856957057157257357457557657757857958058158258358458558658758858959059159259359459559659759859960060160260360460560660760860961061161261361461561661761861962062162262362462562662762862963063163263363463563663763863964064164264364464564664764864965065165265365465565665765865966066166266366466566666766866967067167267367467567667767867968068168268368468568668768868969069169269369469569669769869970070170270370470570670770870971071171271371471571671771871972072172272372472572672772872973073173273373473573673773873974074174274374474574674774874975075175275375475575675775875976076176276376476576676776876977077177277377477577677777877978078178278378478578678778878979079179279379479579679779879980080180280380480580680780880981081181281381481581681781881982082182282382482582682782882983083183283383483583683783883984084184284384484584684784884985085185285385485585685785885986086186286386486586686786886987087187287387487587687787887988088188288388488588688788888989089189289389489589689789889990090190290390490590690790890991091191291391491591691791891992092192292392492592692792892993093193293393493593693793893994094194294394494594694794894995095195295395495595695795895996096196296396496596696796896997097197297397497597697797897998098198298398498598698798898999099199299399499599699799899910001001100210031004100510061007100810091010101110121013101410151016101710181019102010211022102310241025102610271028102910301031103210331034103510361037103810391040104110421043104410451046104710481049105010511052105310541055105610571058105910601061106210631064106510661067106810691070107110721073107410751076107710781079108010811082108310841085108610871088108910901091109210931094109510961097109810991100110111021103110411051106110711081109111011111112111311141115111611171118111911201121112211231124112511261127112811291130113111321133113411351136113711381139114011411142114311441145114611471148114911501151115211531154115511561157115811591160116111621163116411651166116711681169117011711172117311741175117611771178117911801181118211831184118511861187118811891190119111921193119411951196119711981199120012011202120312041205120612071208120912101211121212131214121512161217121812191220122112221223122412251226122712281229123012311232123312341235123612371238123912401241124212431244124512461247124812491250125112521253125412551256125712581259126012611262126312641265126612671268126912701271127212731274127512761277127812791280128112821283128412851286128712881289129012911292129312941295129612971298129913001301130213031304130513061307130813091310131113121313131413151316131713181319132013211322132313241325132613271328132913301331133213331334133513361337133813391340134113421343134413451346134713481349135013511352135313541355135613571358135913601361136213631364136513661367136813691370137113721373137413751376137713781379138013811382138313841385138613871388138913901391139213931394139513961397139813991400140114021403140414051406140714081409141014111412141314141415141614171418141914201421142214231424142514261427142814291430143114321433143414351436143714381439144014411442144314441445144614471448144914501451145214531454145514561457145814591460146114621463146414651466146714681469147014711472147314741475147614771478147914801481148214831484148514861487148814891490149114921493149414951496149714981499150015011502150315041505150615071508150915101511151215131514151515161517151815191520152115221523152415251526152715281529153015311532153315341535153615371538153915401541154215431544154515461547154815491550155115521553155415551556155715581559156015611562156315641565156615671568156915701571157215731574157515761577157815791580158115821583158415851586158715881589159015911592159315941595159615971598159916001601160216031604160516061607160816091610161116121613161416151616161716181619162016211622162316241625162616271628162916301631163216331634163516361637163816391640164116421643164416451646164716481649165016511652165316541655165616571658165916601661166216631664166516661667166816691670167116721673167416751676167716781679168016811682168316841685168616871688168916901691169216931694169516961697169816991700170117021703170417051706170717081709171017111712171317141715171617171718171917201721172217231724172517261727172817291730173117321733173417351736173717381739174017411742174317441745174617471748174917501751175217531754175517561757175817591760176117621763176417651766176717681769177017711772177317741775177617771778177917801781178217831784178517861787178817891790179117921793179417951796179717981799180018011802180318041805180618071808180918101811181218131814181518161817181818191820182118221823182418251826182718281829183018311832183318341835183618371838183918401841184218431844184518461847184818491850185118521853185418551856185718581859186018611862186318641865186618671868186918701871187218731874187518761877187818791880188118821883188418851886188718881889189018911892189318941895189618971898189919001901190219031904190519061907190819091910191119121913191419151916191719181919192019211922192319241925192619271928192919301931193219331934193519361937193819391940194119421943194419451946194719481949195019511952195319541955195619571958195919601961196219631964196519661967196819691970197119721973197419751976197719781979198019811982198319841985198619871988198919901991199219931994199519961997199819992000200120022003200420052006200720082009201020112012201320142015201620172018201920202021202220232024202520262027202820292030203120322033203420352036203720382039204020412042204320442045204620472048204920502051205220532054205520562057205820592060206120622063206420652066206720682069207020712072207320742075207620772078207920802081208220832084208520862087208820892090209120922093209420952096209720982099210021012102210321042105210621072108210921102111211221132114211521162117211821192120212121222123212421252126212721282129213021312132213321342135213621372138213921402141214221432144214521462147214821492150215121522153215421552156215721582159216021612162216321642165216621672168216921702171217221732174217521762177217821792180218121822183218421852186218721882189219021912192219321942195219621972198219922002201220222032204220522062207220822092210221122122213221422152216221722182219222022212222222322242225222622272228222922302231223222332234223522362237223822392240224122422243224422452246224722482249225022512252225322542255225622572258225922602261226222632264226522662267226822692270227122722273227422752276227722782279228022812282228322842285228622872288228922902291229222932294229522962297229822992300230123022303230423052306230723082309231023112312231323142315231623172318231923202321232223232324232523262327232823292330233123322333233423352336233723382339234023412342234323442345234623472348234923502351235223532354235523562357235823592360236123622363236423652366236723682369237023712372237323742375237623772378237923802381238223832384238523862387238823892390239123922393239423952396239723982399240024012402240324042405240624072408240924102411241224132414241524162417241824192420242124222423242424252426242724282429243024312432243324342435243624372438243924402441244224432444244524462447244824492450245124522453245424552456245724582459246024612462246324642465246624672468246924702471247224732474247524762477247824792480248124822483248424852486248724882489249024912492249324942495249624972498249925002501250225032504250525062507250825092510251125122513251425152516251725182519252025212522252325242525252625272528252925302531253225332534253525362537253825392540254125422543254425452546254725482549255025512552255325542555255625572558255925602561256225632564256525662567256825692570257125722573257425752576257725782579258025812582258325842585258625872588258925902591259225932594259525962597259825992600260126022603260426052606260726082609261026112612261326142615261626172618261926202621262226232624262526262627262826292630263126322633263426352636263726382639264026412642264326442645264626472648264926502651265226532654265526562657265826592660266126622663266426652666266726682669267026712672267326742675267626772678267926802681268226832684268526862687268826892690269126922693269426952696269726982699270027012702270327042705270627072708270927102711271227132714271527162717271827192720272127222723272427252726272727282729273027312732273327342735273627372738273927402741274227432744274527462747274827492750275127522753275427552756275727582759276027612762276327642765276627672768276927702771277227732774277527762777277827792780278127822783278427852786278727882789279027912792279327942795279627972798279928002801280228032804280528062807280828092810281128122813281428152816281728182819282028212822282328242825282628272828282928302831283228332834283528362837283828392840284128422843284428452846284728482849285028512852285328542855285628572858285928602861286228632864286528662867286828692870287128722873287428752876287728782879288028812882288328842885288628872888288928902891289228932894289528962897289828992900290129022903290429052906290729082909291029112912291329142915291629172918291929202921292229232924292529262927292829292930293129322933293429352936293729382939294029412942294329442945294629472948294929502951295229532954295529562957295829592960296129622963296429652966296729682969297029712972297329742975297629772978297929802981298229832984298529862987298829892990299129922993299429952996299729982999300030013002300330043005300630073008300930103011301230133014301530163017301830193020302130223023302430253026302730283029303030313032303330343035303630373038303930403041304230433044304530463047304830493050305130523053305430553056305730583059306030613062306330643065306630673068306930703071307230733074307530763077307830793080308130823083308430853086308730883089309030913092309330943095309630973098309931003101310231033104310531063107310831093110311131123113311431153116311731183119312031213122312331243125312631273128312931303131313231333134313531363137313831393140314131423143314431453146314731483149315031513152315331543155315631573158315931603161316231633164316531663167316831693170317131723173317431753176317731783179318031813182318331843185318631873188318931903191319231933194319531963197319831993200320132023203320432053206320732083209321032113212321332143215321632173218321932203221322232233224322532263227322832293230323132323233323432353236323732383239324032413242324332443245324632473248324932503251325232533254325532563257325832593260326132623263326432653266326732683269327032713272327332743275327632773278327932803281328232833284328532863287328832893290329132923293329432953296329732983299330033013302330333043305330633073308330933103311331233133314331533163317331833193320332133223323332433253326332733283329333033313332333333343335333633373338333933403341334233433344334533463347334833493350335133523353335433553356335733583359336033613362336333643365336633673368336933703371337233733374337533763377337833793380338133823383338433853386338733883389339033913392339333943395339633973398339934003401340234033404340534063407340834093410341134123413341434153416341734183419342034213422342334243425342634273428342934303431343234333434343534363437343834393440344134423443344434453446344734483449345034513452345334543455345634573458345934603461346234633464346534663467346834693470347134723473347434753476347734783479348034813482348334843485348634873488348934903491349234933494349534963497349834993500350135023503350435053506350735083509351035113512351335143515351635173518351935203521352235233524352535263527352835293530353135323533353435353536353735383539354035413542354335443545354635473548354935503551355235533554355535563557355835593560356135623563356435653566356735683569357035713572357335743575357635773578357935803581358235833584358535863587358835893590359135923593359435953596359735983599360036013602360336043605360636073608360936103611361236133614361536163617361836193620362136223623362436253626362736283629363036313632363336343635363636373638363936403641364236433644364536463647364836493650365136523653365436553656365736583659366036613662366336643665366636673668366936703671367236733674367536763677367836793680368136823683368436853686368736883689369036913692369336943695369636973698369937003701370237033704370537063707370837093710371137123713371437153716371737183719372037213722372337243725372637273728372937303731373237333734373537363737373837393740374137423743374437453746374737483749375037513752375337543755375637573758375937603761376237633764376537663767376837693770377137723773377437753776377737783779378037813782378337843785378637873788378937903791379237933794379537963797379837993800380138023803380438053806380738083809381038113812381338143815381638173818381938203821382238233824382538263827382838293830383138323833383438353836383738383839384038413842384338443845384638473848384938503851385238533854385538563857385838593860386138623863386438653866386738683869387038713872387338743875387638773878387938803881388238833884388538863887388838893890389138923893389438953896389738983899390039013902390339043905390639073908390939103911391239133914391539163917391839193920 
  1. // Copyright (C) 2019 Nicola Murino
    2. 

  2. //
    3. 

  3. // This program is free software: you can redistribute it and/or modify
    4. 

  4. // it under the terms of the GNU Affero General Public License as published
    5. 

  5. // by the Free Software Foundation, version 3.
    6. 

  6. //
    7. 

  7. // This program is distributed in the hope that it will be useful,
    8. 

  8. // but WITHOUT ANY WARRANTY; without even the implied warranty of
    9. 

  9. // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
    10. 

  10. // GNU Affero General Public License for more details.
    11. 

  11. //
    12. 

  12. // You should have received a copy of the GNU Affero General Public License
    13. 

  13. // along with this program. If not, see <https://www.gnu.org/licenses/>.
    14. 

  14. 

  15. //go:build !nobolt
    16. 

  16. // +build !nobolt
    17. 

  17. 

  18. package dataprovider
    19. 

  19. 

  20. import (
    21. 

  21. 	"bytes"
    22. 

  22. 	"crypto/x509"
    23. 

  23. 	"encoding/json"
    24. 

  24. 	"errors"
    25. 

  25. 	"fmt"
    26. 

  26. 	"net/netip"
    27. 

  27. 	"path/filepath"
    28. 

  28. 	"slices"
    29. 

  29. 	"sort"
    30. 

  30. 	"time"
    31. 

  31. 

  32. 	bolt "go.etcd.io/bbolt"
    33. 

  33. 

  34. 	"github.com/drakkan/sftpgo/v2/internal/logger"
    35. 

  35. 	"github.com/drakkan/sftpgo/v2/internal/util"
    36. 

  36. 	"github.com/drakkan/sftpgo/v2/internal/version"
    37. 

  37. 	"github.com/drakkan/sftpgo/v2/internal/vfs"
    38. 

  38. )
    39. 

  39. 

  40. const (
    41. 

  41. 	boltDatabaseVersion = 29
    42. 

  42. )
    43. 

  43. 

  44. var (
    45. 

  45. 	usersBucket     = []byte("users")
    46. 

  46. 	groupsBucket    = []byte("groups")
    47. 

  47. 	foldersBucket   = []byte("folders")
    48. 

  48. 	adminsBucket    = []byte("admins")
    49. 

  49. 	apiKeysBucket   = []byte("api_keys")
    50. 

  50. 	sharesBucket    = []byte("shares")
    51. 

  51. 	actionsBucket   = []byte("events_actions")
    52. 

  52. 	rulesBucket     = []byte("events_rules")
    53. 

  53. 	rolesBucket     = []byte("roles")
    54. 

  54. 	ipListsBucket   = []byte("ip_lists")
    55. 

  55. 	configsBucket   = []byte("configs")
    56. 

  56. 	dbVersionBucket = []byte("db_version")
    57. 

  57. 	dbVersionKey    = []byte("version")
    58. 

  58. 	configsKey      = []byte("configs")
    59. 

  59. 	boltBuckets     = [][]byte{usersBucket, groupsBucket, foldersBucket, adminsBucket, apiKeysBucket,
    60. 

  60. 		sharesBucket, actionsBucket, rulesBucket, rolesBucket, ipListsBucket, configsBucket, dbVersionBucket}
    61. 

  61. )
    62. 

  62. 

  63. // BoltProvider defines the auth provider for bolt key/value store
    64. 

  64. type BoltProvider struct {
    65. 

  65. 	dbHandle *bolt.DB
    66. 

  66. }
    67. 

  67. 

  68. func init() {
    69. 

  69. 	version.AddFeature("+bolt")
    70. 

  70. }
    71. 

  71. 

  72. func initializeBoltProvider(basePath string) error {
    73. 

  73. 	var err error
    74. 

  74. 

  75. 	dbPath := config.Name
    76. 

  76. 	if !util.IsFileInputValid(dbPath) {
    77. 

  77. 		return fmt.Errorf("invalid database path: %q", dbPath)
    78. 

  78. 	}
    79. 

  79. 	if !filepath.IsAbs(dbPath) {
    80. 

  80. 		dbPath = filepath.Join(basePath, dbPath)
    81. 

  81. 	}
    82. 

  82. 	dbHandle, err := bolt.Open(dbPath, 0600, &bolt.Options{
    83. 

  83. 		NoGrowSync:   false,
    84. 

  84. 		FreelistType: bolt.FreelistArrayType,
    85. 

  85. 		Timeout:      5 * time.Second})
    86. 

  86. 	if err == nil {
    87. 

  87. 		providerLog(logger.LevelDebug, "bolt key store handle created")
    88. 

  88. 

  89. 		for _, bucket := range boltBuckets {
    90. 

  90. 			if err := dbHandle.Update(func(tx *bolt.Tx) error {
    91. 

  91. 				_, e := tx.CreateBucketIfNotExists(bucket)
    92. 

  92. 				return e
    93. 

  93. 			}); err != nil {
    94. 

  94. 				providerLog(logger.LevelError, "error creating bucket %q: %v", string(bucket), err)
    95. 

  95. 			}
    96. 

  96. 		}
    97. 

  97. 

  98. 		provider = &BoltProvider{dbHandle: dbHandle}
    99. 

  99. 	} else {
    100. 

  100. 		providerLog(logger.LevelError, "error creating bolt key/value store handler: %v", err)
    101. 

  101. 	}
    102. 

  102. 	return err
    103. 

  103. }
    104. 

  104. 

  105. func (p *BoltProvider) checkAvailability() error {
    106. 

  106. 	_, err := getBoltDatabaseVersion(p.dbHandle)
    107. 

  107. 	return err
    108. 

  108. }
    109. 

  109. 

  110. func (p *BoltProvider) validateUserAndTLSCert(username, protocol string, tlsCert *x509.Certificate) (User, error) {
    111. 

  111. 	var user User
    112. 

  112. 	if tlsCert == nil {
    113. 

  113. 		return user, errors.New("TLS certificate cannot be null or empty")
    114. 

  114. 	}
    115. 

  115. 	user, err := p.userExists(username, "")
    116. 

  116. 	if err != nil {
    117. 

  117. 		providerLog(logger.LevelWarn, "error authenticating user %q: %v", username, err)
    118. 

  118. 		return user, err
    119. 

  119. 	}
    120. 

  120. 	return checkUserAndTLSCertificate(&user, protocol, tlsCert)
    121. 

  121. }
    122. 

  122. 

  123. func (p *BoltProvider) validateUserAndPass(username, password, ip, protocol string) (User, error) {
    124. 

  124. 	user, err := p.userExists(username, "")
    125. 

  125. 	if err != nil {
    126. 

  126. 		providerLog(logger.LevelWarn, "error authenticating user %q: %v", username, err)
    127. 

  127. 		return user, err
    128. 

  128. 	}
    129. 

  129. 	return checkUserAndPass(&user, password, ip, protocol)
    130. 

  130. }
    131. 

  131. 

  132. func (p *BoltProvider) validateAdminAndPass(username, password, ip string) (Admin, error) {
    133. 

  133. 	admin, err := p.adminExists(username)
    134. 

  134. 	if err != nil {
    135. 

  135. 		providerLog(logger.LevelWarn, "error authenticating admin %q: %v", username, err)
    136. 

  136. 		return admin, err
    137. 

  137. 	}
    138. 

  138. 	err = admin.checkUserAndPass(password, ip)
    139. 

  139. 	return admin, err
    140. 

  140. }
    141. 

  141. 

  142. func (p *BoltProvider) validateUserAndPubKey(username string, pubKey []byte, isSSHCert bool) (User, string, error) {
    143. 

  143. 	var user User
    144. 

  144. 	if len(pubKey) == 0 {
    145. 

  145. 		return user, "", errors.New("credentials cannot be null or empty")
    146. 

  146. 	}
    147. 

  147. 	user, err := p.userExists(username, "")
    148. 

  148. 	if err != nil {
    149. 

  149. 		providerLog(logger.LevelWarn, "error authenticating user %q: %v", username, err)
    150. 

  150. 		return user, "", err
    151. 

  151. 	}
    152. 

  152. 	return checkUserAndPubKey(&user, pubKey, isSSHCert)
    153. 

  153. }
    154. 

  154. 

  155. func (p *BoltProvider) updateAPIKeyLastUse(keyID string) error {
    156. 

  156. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    157. 

  157. 		bucket, err := p.getAPIKeysBucket(tx)
    158. 

  158. 		if err != nil {
    159. 

  159. 			return err
    160. 

  160. 		}
    161. 

  161. 		var u []byte
    162. 

  162. 		if u = bucket.Get([]byte(keyID)); u == nil {
    163. 

  163. 			return util.NewRecordNotFoundError(fmt.Sprintf("key %q does not exist, unable to update last use", keyID))
    164. 

  164. 		}
    165. 

  165. 		var apiKey APIKey
    166. 

  166. 		err = json.Unmarshal(u, &apiKey)
    167. 

  167. 		if err != nil {
    168. 

  168. 			return err
    169. 

  169. 		}
    170. 

  170. 		apiKey.LastUseAt = util.GetTimeAsMsSinceEpoch(time.Now())
    171. 

  171. 		buf, err := json.Marshal(apiKey)
    172. 

  172. 		if err != nil {
    173. 

  173. 			return err
    174. 

  174. 		}
    175. 

  175. 		err = bucket.Put([]byte(keyID), buf)
    176. 

  176. 		if err != nil {
    177. 

  177. 			providerLog(logger.LevelWarn, "error updating last use for key %q: %v", keyID, err)
    178. 

  178. 			return err
    179. 

  179. 		}
    180. 

  180. 		providerLog(logger.LevelDebug, "last use updated for key %q", keyID)
    181. 

  181. 		return nil
    182. 

  182. 	})
    183. 

  183. }
    184. 

  184. 

  185. func (p *BoltProvider) setUpdatedAt(username string) {
    186. 

  186. 	p.dbHandle.Update(func(tx *bolt.Tx) error { //nolint:errcheck
    187. 

  187. 		bucket, err := p.getUsersBucket(tx)
    188. 

  188. 		if err != nil {
    189. 

  189. 			return err
    190. 

  190. 		}
    191. 

  191. 		var u []byte
    192. 

  192. 		if u = bucket.Get([]byte(username)); u == nil {
    193. 

  193. 			return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist, unable to update updated at", username))
    194. 

  194. 		}
    195. 

  195. 		var user User
    196. 

  196. 		err = json.Unmarshal(u, &user)
    197. 

  197. 		if err != nil {
    198. 

  198. 			return err
    199. 

  199. 		}
    200. 

  200. 		user.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    201. 

  201. 		buf, err := json.Marshal(user)
    202. 

  202. 		if err != nil {
    203. 

  203. 			return err
    204. 

  204. 		}
    205. 

  205. 		err = bucket.Put([]byte(username), buf)
    206. 

  206. 		if err == nil {
    207. 

  207. 			providerLog(logger.LevelDebug, "updated at set for user %q", username)
    208. 

  208. 			setLastUserUpdate()
    209. 

  209. 		} else {
    210. 

  210. 			providerLog(logger.LevelWarn, "error setting updated_at for user %q: %v", username, err)
    211. 

  211. 		}
    212. 

  212. 		return err
    213. 

  213. 	})
    214. 

  214. }
    215. 

  215. 

  216. func (p *BoltProvider) updateLastLogin(username string) error {
    217. 

  217. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    218. 

  218. 		bucket, err := p.getUsersBucket(tx)
    219. 

  219. 		if err != nil {
    220. 

  220. 			return err
    221. 

  221. 		}
    222. 

  222. 		var u []byte
    223. 

  223. 		if u = bucket.Get([]byte(username)); u == nil {
    224. 

  224. 			return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist, unable to update last login", username))
    225. 

  225. 		}
    226. 

  226. 		var user User
    227. 

  227. 		err = json.Unmarshal(u, &user)
    228. 

  228. 		if err != nil {
    229. 

  229. 			return err
    230. 

  230. 		}
    231. 

  231. 		user.LastLogin = util.GetTimeAsMsSinceEpoch(time.Now())
    232. 

  232. 		buf, err := json.Marshal(user)
    233. 

  233. 		if err != nil {
    234. 

  234. 			return err
    235. 

  235. 		}
    236. 

  236. 		err = bucket.Put([]byte(username), buf)
    237. 

  237. 		if err != nil {
    238. 

  238. 			providerLog(logger.LevelWarn, "error updating last login for user %q: %v", username, err)
    239. 

  239. 		} else {
    240. 

  240. 			providerLog(logger.LevelDebug, "last login updated for user %q", username)
    241. 

  241. 		}
    242. 

  242. 		return err
    243. 

  243. 	})
    244. 

  244. }
    245. 

  245. 

  246. func (p *BoltProvider) updateAdminLastLogin(username string) error {
    247. 

  247. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    248. 

  248. 		bucket, err := p.getAdminsBucket(tx)
    249. 

  249. 		if err != nil {
    250. 

  250. 			return err
    251. 

  251. 		}
    252. 

  252. 		var a []byte
    253. 

  253. 		if a = bucket.Get([]byte(username)); a == nil {
    254. 

  254. 			return util.NewRecordNotFoundError(fmt.Sprintf("admin %q does not exist, unable to update last login", username))
    255. 

  255. 		}
    256. 

  256. 		var admin Admin
    257. 

  257. 		err = json.Unmarshal(a, &admin)
    258. 

  258. 		if err != nil {
    259. 

  259. 			return err
    260. 

  260. 		}
    261. 

  261. 		admin.LastLogin = util.GetTimeAsMsSinceEpoch(time.Now())
    262. 

  262. 		buf, err := json.Marshal(admin)
    263. 

  263. 		if err != nil {
    264. 

  264. 			return err
    265. 

  265. 		}
    266. 

  266. 		err = bucket.Put([]byte(username), buf)
    267. 

  267. 		if err == nil {
    268. 

  268. 			providerLog(logger.LevelDebug, "last login updated for admin %q", username)
    269. 

  269. 			return err
    270. 

  270. 		}
    271. 

  271. 		providerLog(logger.LevelWarn, "error updating last login for admin %q: %v", username, err)
    272. 

  272. 		return err
    273. 

  273. 	})
    274. 

  274. }
    275. 

  275. 

  276. func (p *BoltProvider) updateTransferQuota(username string, uploadSize, downloadSize int64, reset bool) error {
    277. 

  277. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    278. 

  278. 		bucket, err := p.getUsersBucket(tx)
    279. 

  279. 		if err != nil {
    280. 

  280. 			return err
    281. 

  281. 		}
    282. 

  282. 		var u []byte
    283. 

  283. 		if u = bucket.Get([]byte(username)); u == nil {
    284. 

  284. 			return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist, unable to update transfer quota",
    285. 

  285. 				username))
    286. 

  286. 		}
    287. 

  287. 		var user User
    288. 

  288. 		err = json.Unmarshal(u, &user)
    289. 

  289. 		if err != nil {
    290. 

  290. 			return err
    291. 

  291. 		}
    292. 

  292. 		if !reset {
    293. 

  293. 			user.UsedUploadDataTransfer += uploadSize
    294. 

  294. 			user.UsedDownloadDataTransfer += downloadSize
    295. 

  295. 		} else {
    296. 

  296. 			user.UsedUploadDataTransfer = uploadSize
    297. 

  297. 			user.UsedDownloadDataTransfer = downloadSize
    298. 

  298. 		}
    299. 

  299. 		user.LastQuotaUpdate = util.GetTimeAsMsSinceEpoch(time.Now())
    300. 

  300. 		buf, err := json.Marshal(user)
    301. 

  301. 		if err != nil {
    302. 

  302. 			return err
    303. 

  303. 		}
    304. 

  304. 		err = bucket.Put([]byte(username), buf)
    305. 

  305. 		providerLog(logger.LevelDebug, "transfer quota updated for user %q, ul increment: %v dl increment: %v is reset? %v",
    306. 

  306. 			username, uploadSize, downloadSize, reset)
    307. 

  307. 		return err
    308. 

  308. 	})
    309. 

  309. }
    310. 

  310. 

  311. func (p *BoltProvider) updateQuota(username string, filesAdd int, sizeAdd int64, reset bool) error {
    312. 

  312. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    313. 

  313. 		bucket, err := p.getUsersBucket(tx)
    314. 

  314. 		if err != nil {
    315. 

  315. 			return err
    316. 

  316. 		}
    317. 

  317. 		var u []byte
    318. 

  318. 		if u = bucket.Get([]byte(username)); u == nil {
    319. 

  319. 			return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist, unable to update quota", username))
    320. 

  320. 		}
    321. 

  321. 		var user User
    322. 

  322. 		err = json.Unmarshal(u, &user)
    323. 

  323. 		if err != nil {
    324. 

  324. 			return err
    325. 

  325. 		}
    326. 

  326. 		if reset {
    327. 

  327. 			user.UsedQuotaSize = sizeAdd
    328. 

  328. 			user.UsedQuotaFiles = filesAdd
    329. 

  329. 		} else {
    330. 

  330. 			user.UsedQuotaSize += sizeAdd
    331. 

  331. 			user.UsedQuotaFiles += filesAdd
    332. 

  332. 		}
    333. 

  333. 		user.LastQuotaUpdate = util.GetTimeAsMsSinceEpoch(time.Now())
    334. 

  334. 		buf, err := json.Marshal(user)
    335. 

  335. 		if err != nil {
    336. 

  336. 			return err
    337. 

  337. 		}
    338. 

  338. 		err = bucket.Put([]byte(username), buf)
    339. 

  339. 		providerLog(logger.LevelDebug, "quota updated for user %q, files increment: %v size increment: %v is reset? %v",
    340. 

  340. 			username, filesAdd, sizeAdd, reset)
    341. 

  341. 		return err
    342. 

  342. 	})
    343. 

  343. }
    344. 

  344. 

  345. func (p *BoltProvider) getUsedQuota(username string) (int, int64, int64, int64, error) {
    346. 

  346. 	user, err := p.userExists(username, "")
    347. 

  347. 	if err != nil {
    348. 

  348. 		providerLog(logger.LevelError, "unable to get quota for user %v error: %v", username, err)
    349. 

  349. 		return 0, 0, 0, 0, err
    350. 

  350. 	}
    351. 

  351. 	return user.UsedQuotaFiles, user.UsedQuotaSize, user.UsedUploadDataTransfer, user.UsedDownloadDataTransfer, err
    352. 

  352. }
    353. 

  353. 

  354. func (p *BoltProvider) adminExists(username string) (Admin, error) {
    355. 

  355. 	var admin Admin
    356. 

  356. 

  357. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    358. 

  358. 		bucket, err := p.getAdminsBucket(tx)
    359. 

  359. 		if err != nil {
    360. 

  360. 			return err
    361. 

  361. 		}
    362. 

  362. 		a := bucket.Get([]byte(username))
    363. 

  363. 		if a == nil {
    364. 

  364. 			return util.NewRecordNotFoundError(fmt.Sprintf("admin %v does not exist", username))
    365. 

  365. 		}
    366. 

  366. 		return json.Unmarshal(a, &admin)
    367. 

  367. 	})
    368. 

  368. 

  369. 	return admin, err
    370. 

  370. }
    371. 

  371. 

  372. func (p *BoltProvider) addAdmin(admin *Admin) error {
    373. 

  373. 	err := admin.validate()
    374. 

  374. 	if err != nil {
    375. 

  375. 		return err
    376. 

  376. 	}
    377. 

  377. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    378. 

  378. 		bucket, err := p.getAdminsBucket(tx)
    379. 

  379. 		if err != nil {
    380. 

  380. 			return err
    381. 

  381. 		}
    382. 

  382. 		groupBucket, err := p.getGroupsBucket(tx)
    383. 

  383. 		if err != nil {
    384. 

  384. 			return err
    385. 

  385. 		}
    386. 

  386. 		rolesBucket, err := p.getRolesBucket(tx)
    387. 

  387. 		if err != nil {
    388. 

  388. 			return err
    389. 

  389. 		}
    390. 

  390. 		if a := bucket.Get([]byte(admin.Username)); a != nil {
    391. 

  391. 			return util.NewI18nError(
    392. 

  392. 				fmt.Errorf("%w: admin %q already exists", ErrDuplicatedKey, admin.Username),
    393. 

  393. 				util.I18nErrorDuplicatedUsername,
    394. 

  394. 			)
    395. 

  395. 		}
    396. 

  396. 		id, err := bucket.NextSequence()
    397. 

  397. 		if err != nil {
    398. 

  398. 			return err
    399. 

  399. 		}
    400. 

  400. 		admin.ID = int64(id)
    401. 

  401. 		admin.LastLogin = 0
    402. 

  402. 		admin.CreatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    403. 

  403. 		admin.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    404. 

  404. 		sort.Slice(admin.Groups, func(i, j int) bool {
    405. 

  405. 			return admin.Groups[i].Name < admin.Groups[j].Name
    406. 

  406. 		})
    407. 

  407. 		for idx := range admin.Groups {
    408. 

  408. 			err = p.addAdminToGroupMapping(admin.Username, admin.Groups[idx].Name, groupBucket)
    409. 

  409. 			if err != nil {
    410. 

  410. 				return err
    411. 

  411. 			}
    412. 

  412. 		}
    413. 

  413. 		if err = p.addAdminToRole(admin.Username, admin.Role, rolesBucket); err != nil {
    414. 

  414. 			return err
    415. 

  415. 		}
    416. 

  416. 

  417. 		buf, err := json.Marshal(admin)
    418. 

  418. 		if err != nil {
    419. 

  419. 			return err
    420. 

  420. 		}
    421. 

  421. 		return bucket.Put([]byte(admin.Username), buf)
    422. 

  422. 	})
    423. 

  423. }
    424. 

  424. 

  425. func (p *BoltProvider) updateAdmin(admin *Admin) error {
    426. 

  426. 	err := admin.validate()
    427. 

  427. 	if err != nil {
    428. 

  428. 		return err
    429. 

  429. 	}
    430. 

  430. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    431. 

  431. 		bucket, err := p.getAdminsBucket(tx)
    432. 

  432. 		if err != nil {
    433. 

  433. 			return err
    434. 

  434. 		}
    435. 

  435. 		groupBucket, err := p.getGroupsBucket(tx)
    436. 

  436. 		if err != nil {
    437. 

  437. 			return err
    438. 

  438. 		}
    439. 

  439. 		rolesBucket, err := p.getRolesBucket(tx)
    440. 

  440. 		if err != nil {
    441. 

  441. 			return err
    442. 

  442. 		}
    443. 

  443. 		var a []byte
    444. 

  444. 		if a = bucket.Get([]byte(admin.Username)); a == nil {
    445. 

  445. 			return util.NewRecordNotFoundError(fmt.Sprintf("admin %v does not exist", admin.Username))
    446. 

  446. 		}
    447. 

  447. 		var oldAdmin Admin
    448. 

  448. 		err = json.Unmarshal(a, &oldAdmin)
    449. 

  449. 		if err != nil {
    450. 

  450. 			return err
    451. 

  451. 		}
    452. 

  452. 

  453. 		if err = p.removeAdminFromRole(oldAdmin.Username, oldAdmin.Role, rolesBucket); err != nil {
    454. 

  454. 			return err
    455. 

  455. 		}
    456. 

  456. 		for idx := range oldAdmin.Groups {
    457. 

  457. 			err = p.removeAdminFromGroupMapping(oldAdmin.Username, oldAdmin.Groups[idx].Name, groupBucket)
    458. 

  458. 			if err != nil {
    459. 

  459. 				return err
    460. 

  460. 			}
    461. 

  461. 		}
    462. 

  462. 		if err = p.addAdminToRole(admin.Username, admin.Role, rolesBucket); err != nil {
    463. 

  463. 			return err
    464. 

  464. 		}
    465. 

  465. 		sort.Slice(admin.Groups, func(i, j int) bool {
    466. 

  466. 			return admin.Groups[i].Name < admin.Groups[j].Name
    467. 

  467. 		})
    468. 

  468. 		for idx := range admin.Groups {
    469. 

  469. 			err = p.addAdminToGroupMapping(admin.Username, admin.Groups[idx].Name, groupBucket)
    470. 

  470. 			if err != nil {
    471. 

  471. 				return err
    472. 

  472. 			}
    473. 

  473. 		}
    474. 

  474. 		admin.ID = oldAdmin.ID
    475. 

  475. 		admin.CreatedAt = oldAdmin.CreatedAt
    476. 

  476. 		admin.LastLogin = oldAdmin.LastLogin
    477. 

  477. 		admin.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    478. 

  478. 		buf, err := json.Marshal(admin)
    479. 

  479. 		if err != nil {
    480. 

  480. 			return err
    481. 

  481. 		}
    482. 

  482. 		return bucket.Put([]byte(admin.Username), buf)
    483. 

  483. 	})
    484. 

  484. }
    485. 

  485. 

  486. func (p *BoltProvider) deleteAdmin(admin Admin) error {
    487. 

  487. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    488. 

  488. 		bucket, err := p.getAdminsBucket(tx)
    489. 

  489. 		if err != nil {
    490. 

  490. 			return err
    491. 

  491. 		}
    492. 

  492. 

  493. 		var a []byte
    494. 

  494. 		if a = bucket.Get([]byte(admin.Username)); a == nil {
    495. 

  495. 			return util.NewRecordNotFoundError(fmt.Sprintf("admin %v does not exist", admin.Username))
    496. 

  496. 		}
    497. 

  497. 		var oldAdmin Admin
    498. 

  498. 		err = json.Unmarshal(a, &oldAdmin)
    499. 

  499. 		if err != nil {
    500. 

  500. 			return err
    501. 

  501. 		}
    502. 

  502. 		if len(oldAdmin.Groups) > 0 {
    503. 

  503. 			groupBucket, err := p.getGroupsBucket(tx)
    504. 

  504. 			if err != nil {
    505. 

  505. 				return err
    506. 

  506. 			}
    507. 

  507. 			for idx := range oldAdmin.Groups {
    508. 

  508. 				err = p.removeAdminFromGroupMapping(oldAdmin.Username, oldAdmin.Groups[idx].Name, groupBucket)
    509. 

  509. 				if err != nil {
    510. 

  510. 					return err
    511. 

  511. 				}
    512. 

  512. 			}
    513. 

  513. 		}
    514. 

  514. 		if oldAdmin.Role != "" {
    515. 

  515. 			rolesBucket, err := p.getRolesBucket(tx)
    516. 

  516. 			if err != nil {
    517. 

  517. 				return err
    518. 

  518. 			}
    519. 

  519. 			if err = p.removeAdminFromRole(oldAdmin.Username, oldAdmin.Role, rolesBucket); err != nil {
    520. 

  520. 				return err
    521. 

  521. 			}
    522. 

  522. 		}
    523. 

  523. 

  524. 		if err := p.deleteRelatedAPIKey(tx, admin.Username, APIKeyScopeAdmin); err != nil {
    525. 

  525. 			return err
    526. 

  526. 		}
    527. 

  527. 

  528. 		return bucket.Delete([]byte(admin.Username))
    529. 

  529. 	})
    530. 

  530. }
    531. 

  531. 

  532. func (p *BoltProvider) getAdmins(limit int, offset int, order string) ([]Admin, error) {
    533. 

  533. 	admins := make([]Admin, 0, limit)
    534. 

  534. 

  535. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    536. 

  536. 		bucket, err := p.getAdminsBucket(tx)
    537. 

  537. 		if err != nil {
    538. 

  538. 			return err
    539. 

  539. 		}
    540. 

  540. 		cursor := bucket.Cursor()
    541. 

  541. 		itNum := 0
    542. 

  542. 		if order == OrderASC {
    543. 

  543. 			for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    544. 

  544. 				itNum++
    545. 

  545. 				if itNum <= offset {
    546. 

  546. 					continue
    547. 

  547. 				}
    548. 

  548. 				var admin Admin
    549. 

  549. 				err = json.Unmarshal(v, &admin)
    550. 

  550. 				if err != nil {
    551. 

  551. 					return err
    552. 

  552. 				}
    553. 

  553. 				admin.HideConfidentialData()
    554. 

  554. 				admins = append(admins, admin)
    555. 

  555. 				if len(admins) >= limit {
    556. 

  556. 					break
    557. 

  557. 				}
    558. 

  558. 			}
    559. 

  559. 		} else {
    560. 

  560. 			for k, v := cursor.Last(); k != nil; k, v = cursor.Prev() {
    561. 

  561. 				itNum++
    562. 

  562. 				if itNum <= offset {
    563. 

  563. 					continue
    564. 

  564. 				}
    565. 

  565. 				var admin Admin
    566. 

  566. 				err = json.Unmarshal(v, &admin)
    567. 

  567. 				if err != nil {
    568. 

  568. 					return err
    569. 

  569. 				}
    570. 

  570. 				admin.HideConfidentialData()
    571. 

  571. 				admins = append(admins, admin)
    572. 

  572. 				if len(admins) >= limit {
    573. 

  573. 					break
    574. 

  574. 				}
    575. 

  575. 			}
    576. 

  576. 		}
    577. 

  577. 		return err
    578. 

  578. 	})
    579. 

  579. 

  580. 	return admins, err
    581. 

  581. }
    582. 

  582. 

  583. func (p *BoltProvider) dumpAdmins() ([]Admin, error) {
    584. 

  584. 	admins := make([]Admin, 0, 30)
    585. 

  585. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    586. 

  586. 		bucket, err := p.getAdminsBucket(tx)
    587. 

  587. 		if err != nil {
    588. 

  588. 			return err
    589. 

  589. 		}
    590. 

  590. 

  591. 		cursor := bucket.Cursor()
    592. 

  592. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    593. 

  593. 			var admin Admin
    594. 

  594. 			err = json.Unmarshal(v, &admin)
    595. 

  595. 			if err != nil {
    596. 

  596. 				return err
    597. 

  597. 			}
    598. 

  598. 			admins = append(admins, admin)
    599. 

  599. 		}
    600. 

  600. 		return err
    601. 

  601. 	})
    602. 

  602. 

  603. 	return admins, err
    604. 

  604. }
    605. 

  605. 

  606. func (p *BoltProvider) userExists(username, role string) (User, error) {
    607. 

  607. 	var user User
    608. 

  608. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    609. 

  609. 		bucket, err := p.getUsersBucket(tx)
    610. 

  610. 		if err != nil {
    611. 

  611. 			return err
    612. 

  612. 		}
    613. 

  613. 		u := bucket.Get([]byte(username))
    614. 

  614. 		if u == nil {
    615. 

  615. 			return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist", username))
    616. 

  616. 		}
    617. 

  617. 		foldersBucket, err := p.getFoldersBucket(tx)
    618. 

  618. 		if err != nil {
    619. 

  619. 			return err
    620. 

  620. 		}
    621. 

  621. 		user, err = p.joinUserAndFolders(u, foldersBucket)
    622. 

  622. 		if err != nil {
    623. 

  623. 			return err
    624. 

  624. 		}
    625. 

  625. 		if !user.hasRole(role) {
    626. 

  626. 			return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist", username))
    627. 

  627. 		}
    628. 

  628. 		return nil
    629. 

  629. 	})
    630. 

  630. 	return user, err
    631. 

  631. }
    632. 

  632. 

  633. func (p *BoltProvider) addUser(user *User) error {
    634. 

  634. 	err := ValidateUser(user)
    635. 

  635. 	if err != nil {
    636. 

  636. 		return err
    637. 

  637. 	}
    638. 

  638. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    639. 

  639. 		bucket, err := p.getUsersBucket(tx)
    640. 

  640. 		if err != nil {
    641. 

  641. 			return err
    642. 

  642. 		}
    643. 

  643. 		foldersBucket, err := p.getFoldersBucket(tx)
    644. 

  644. 		if err != nil {
    645. 

  645. 			return err
    646. 

  646. 		}
    647. 

  647. 		groupBucket, err := p.getGroupsBucket(tx)
    648. 

  648. 		if err != nil {
    649. 

  649. 			return err
    650. 

  650. 		}
    651. 

  651. 		rolesBucket, err := p.getRolesBucket(tx)
    652. 

  652. 		if err != nil {
    653. 

  653. 			return err
    654. 

  654. 		}
    655. 

  655. 		if u := bucket.Get([]byte(user.Username)); u != nil {
    656. 

  656. 			return util.NewI18nError(
    657. 

  657. 				fmt.Errorf("%w: username %v already exists", ErrDuplicatedKey, user.Username),
    658. 

  658. 				util.I18nErrorDuplicatedUsername,
    659. 

  659. 			)
    660. 

  660. 		}
    661. 

  661. 		id, err := bucket.NextSequence()
    662. 

  662. 		if err != nil {
    663. 

  663. 			return err
    664. 

  664. 		}
    665. 

  665. 		user.ID = int64(id)
    666. 

  666. 		user.LastQuotaUpdate = 0
    667. 

  667. 		user.UsedQuotaSize = 0
    668. 

  668. 		user.UsedQuotaFiles = 0
    669. 

  669. 		user.UsedUploadDataTransfer = 0
    670. 

  670. 		user.UsedDownloadDataTransfer = 0
    671. 

  671. 		user.LastLogin = 0
    672. 

  672. 		user.FirstDownload = 0
    673. 

  673. 		user.FirstUpload = 0
    674. 

  674. 		user.CreatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    675. 

  675. 		user.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    676. 

  676. 		if err := p.addUserToRole(user.Username, user.Role, rolesBucket); err != nil {
    677. 

  677. 			return err
    678. 

  678. 		}
    679. 

  679. 		sort.Slice(user.VirtualFolders, func(i, j int) bool {
    680. 

  680. 			return user.VirtualFolders[i].Name < user.VirtualFolders[j].Name
    681. 

  681. 		})
    682. 

  682. 		for idx := range user.VirtualFolders {
    683. 

  683. 			err = p.addRelationToFolderMapping(user.VirtualFolders[idx].Name, user, nil, foldersBucket)
    684. 

  684. 			if err != nil {
    685. 

  685. 				return err
    686. 

  686. 			}
    687. 

  687. 		}
    688. 

  688. 		sort.Slice(user.Groups, func(i, j int) bool {
    689. 

  689. 			return user.Groups[i].Name < user.Groups[j].Name
    690. 

  690. 		})
    691. 

  691. 		for idx := range user.Groups {
    692. 

  692. 			err = p.addUserToGroupMapping(user.Username, user.Groups[idx].Name, groupBucket)
    693. 

  693. 			if err != nil {
    694. 

  694. 				return err
    695. 

  695. 			}
    696. 

  696. 		}
    697. 

  697. 		buf, err := json.Marshal(user)
    698. 

  698. 		if err != nil {
    699. 

  699. 			return err
    700. 

  700. 		}
    701. 

  701. 		return bucket.Put([]byte(user.Username), buf)
    702. 

  702. 	})
    703. 

  703. }
    704. 

  704. 

  705. func (p *BoltProvider) updateUser(user *User) error {
    706. 

  706. 	err := ValidateUser(user)
    707. 

  707. 	if err != nil {
    708. 

  708. 		return err
    709. 

  709. 	}
    710. 

  710. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    711. 

  711. 		bucket, err := p.getUsersBucket(tx)
    712. 

  712. 		if err != nil {
    713. 

  713. 			return err
    714. 

  714. 		}
    715. 

  715. 		var u []byte
    716. 

  716. 		if u = bucket.Get([]byte(user.Username)); u == nil {
    717. 

  717. 			return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist", user.Username))
    718. 

  718. 		}
    719. 

  719. 		var oldUser User
    720. 

  720. 		err = json.Unmarshal(u, &oldUser)
    721. 

  721. 		if err != nil {
    722. 

  722. 			return err
    723. 

  723. 		}
    724. 

  724. 		if err = p.updateUserRelations(tx, user, oldUser); err != nil {
    725. 

  725. 			return err
    726. 

  726. 		}
    727. 

  727. 		user.ID = oldUser.ID
    728. 

  728. 		user.LastQuotaUpdate = oldUser.LastQuotaUpdate
    729. 

  729. 		user.UsedQuotaSize = oldUser.UsedQuotaSize
    730. 

  730. 		user.UsedQuotaFiles = oldUser.UsedQuotaFiles
    731. 

  731. 		user.UsedUploadDataTransfer = oldUser.UsedUploadDataTransfer
    732. 

  732. 		user.UsedDownloadDataTransfer = oldUser.UsedDownloadDataTransfer
    733. 

  733. 		user.LastLogin = oldUser.LastLogin
    734. 

  734. 		user.FirstDownload = oldUser.FirstDownload
    735. 

  735. 		user.FirstUpload = oldUser.FirstUpload
    736. 

  736. 		user.CreatedAt = oldUser.CreatedAt
    737. 

  737. 		user.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    738. 

  738. 		buf, err := json.Marshal(user)
    739. 

  739. 		if err != nil {
    740. 

  740. 			return err
    741. 

  741. 		}
    742. 

  742. 

  743. 		err = bucket.Put([]byte(user.Username), buf)
    744. 

  744. 		if err == nil {
    745. 

  745. 			setLastUserUpdate()
    746. 

  746. 		}
    747. 

  747. 		return err
    748. 

  748. 	})
    749. 

  749. }
    750. 

  750. 

  751. func (p *BoltProvider) deleteUser(user User, _ bool) error {
    752. 

  752. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    753. 

  753. 		bucket, err := p.getUsersBucket(tx)
    754. 

  754. 		if err != nil {
    755. 

  755. 			return err
    756. 

  756. 		}
    757. 

  757. 		foldersBucket, err := p.getFoldersBucket(tx)
    758. 

  758. 		if err != nil {
    759. 

  759. 			return err
    760. 

  760. 		}
    761. 

  761. 		groupBucket, err := p.getGroupsBucket(tx)
    762. 

  762. 		if err != nil {
    763. 

  763. 			return err
    764. 

  764. 		}
    765. 

  765. 		rolesBucket, err := p.getRolesBucket(tx)
    766. 

  766. 		if err != nil {
    767. 

  767. 			return err
    768. 

  768. 		}
    769. 

  769. 		var u []byte
    770. 

  770. 		if u = bucket.Get([]byte(user.Username)); u == nil {
    771. 

  771. 			return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist", user.Username))
    772. 

  772. 		}
    773. 

  773. 		var oldUser User
    774. 

  774. 		err = json.Unmarshal(u, &oldUser)
    775. 

  775. 		if err != nil {
    776. 

  776. 			return err
    777. 

  777. 		}
    778. 

  778. 		if err := p.removeUserFromRole(oldUser.Username, oldUser.Role, rolesBucket); err != nil {
    779. 

  779. 			return err
    780. 

  780. 		}
    781. 

  781. 		for idx := range oldUser.VirtualFolders {
    782. 

  782. 			err = p.removeRelationFromFolderMapping(oldUser.VirtualFolders[idx], oldUser.Username, "", foldersBucket)
    783. 

  783. 			if err != nil {
    784. 

  784. 				return err
    785. 

  785. 			}
    786. 

  786. 		}
    787. 

  787. 		for idx := range oldUser.Groups {
    788. 

  788. 			err = p.removeUserFromGroupMapping(oldUser.Username, oldUser.Groups[idx].Name, groupBucket)
    789. 

  789. 			if err != nil {
    790. 

  790. 				return err
    791. 

  791. 			}
    792. 

  792. 		}
    793. 

  793. 		if err := p.deleteRelatedAPIKey(tx, user.Username, APIKeyScopeUser); err != nil {
    794. 

  794. 			return err
    795. 

  795. 		}
    796. 

  796. 		if err := p.deleteRelatedShares(tx, user.Username); err != nil {
    797. 

  797. 			return err
    798. 

  798. 		}
    799. 

  799. 		return bucket.Delete([]byte(user.Username))
    800. 

  800. 	})
    801. 

  801. }
    802. 

  802. 

  803. func (p *BoltProvider) updateUserPassword(username, password string) error {
    804. 

  804. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    805. 

  805. 		bucket, err := p.getUsersBucket(tx)
    806. 

  806. 		if err != nil {
    807. 

  807. 			return err
    808. 

  808. 		}
    809. 

  809. 		var u []byte
    810. 

  810. 		if u = bucket.Get([]byte(username)); u == nil {
    811. 

  811. 			return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist", username))
    812. 

  812. 		}
    813. 

  813. 		var user User
    814. 

  814. 		err = json.Unmarshal(u, &user)
    815. 

  815. 		if err != nil {
    816. 

  816. 			return err
    817. 

  817. 		}
    818. 

  818. 		user.Password = password
    819. 

  819. 		user.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    820. 

  820. 		buf, err := json.Marshal(user)
    821. 

  821. 		if err != nil {
    822. 

  822. 			return err
    823. 

  823. 		}
    824. 

  824. 		return bucket.Put([]byte(username), buf)
    825. 

  825. 	})
    826. 

  826. }
    827. 

  827. 

  828. func (p *BoltProvider) dumpUsers() ([]User, error) {
    829. 

  829. 	users := make([]User, 0, 100)
    830. 

  830. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    831. 

  831. 		bucket, err := p.getUsersBucket(tx)
    832. 

  832. 		if err != nil {
    833. 

  833. 			return err
    834. 

  834. 		}
    835. 

  835. 		foldersBucket, err := p.getFoldersBucket(tx)
    836. 

  836. 		if err != nil {
    837. 

  837. 			return err
    838. 

  838. 		}
    839. 

  839. 		cursor := bucket.Cursor()
    840. 

  840. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    841. 

  841. 			user, err := p.joinUserAndFolders(v, foldersBucket)
    842. 

  842. 			if err != nil {
    843. 

  843. 				return err
    844. 

  844. 			}
    845. 

  845. 			users = append(users, user)
    846. 

  846. 		}
    847. 

  847. 		return err
    848. 

  848. 	})
    849. 

  849. 	return users, err
    850. 

  850. }
    851. 

  851. 

  852. func (p *BoltProvider) getRecentlyUpdatedUsers(after int64) ([]User, error) {
    853. 

  853. 	if getLastUserUpdate() < after {
    854. 

  854. 		return nil, nil
    855. 

  855. 	}
    856. 

  856. 	users := make([]User, 0, 10)
    857. 

  857. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    858. 

  858. 		bucket, err := p.getUsersBucket(tx)
    859. 

  859. 		if err != nil {
    860. 

  860. 			return err
    861. 

  861. 		}
    862. 

  862. 		foldersBucket, err := p.getFoldersBucket(tx)
    863. 

  863. 		if err != nil {
    864. 

  864. 			return err
    865. 

  865. 		}
    866. 

  866. 		groupsBucket, err := p.getGroupsBucket(tx)
    867. 

  867. 		if err != nil {
    868. 

  868. 			return err
    869. 

  869. 		}
    870. 

  870. 		cursor := bucket.Cursor()
    871. 

  871. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    872. 

  872. 			var user User
    873. 

  873. 			err := json.Unmarshal(v, &user)
    874. 

  874. 			if err != nil {
    875. 

  875. 				return err
    876. 

  876. 			}
    877. 

  877. 			if user.UpdatedAt < after {
    878. 

  878. 				continue
    879. 

  879. 			}
    880. 

  880. 			if len(user.VirtualFolders) > 0 {
    881. 

  881. 				var folders []vfs.VirtualFolder
    882. 

  882. 				for idx := range user.VirtualFolders {
    883. 

  883. 					folder := &user.VirtualFolders[idx]
    884. 

  884. 					baseFolder, err := p.folderExistsInternal(folder.Name, foldersBucket)
    885. 

  885. 					if err != nil {
    886. 

  886. 						continue
    887. 

  887. 					}
    888. 

  888. 					folder.BaseVirtualFolder = baseFolder
    889. 

  889. 					folders = append(folders, *folder)
    890. 

  890. 				}
    891. 

  891. 				user.VirtualFolders = folders
    892. 

  892. 			}
    893. 

  893. 			if len(user.Groups) > 0 {
    894. 

  894. 				groupMapping := make(map[string]Group)
    895. 

  895. 				for idx := range user.Groups {
    896. 

  896. 					group, err := p.groupExistsInternal(user.Groups[idx].Name, groupsBucket)
    897. 

  897. 					if err != nil {
    898. 

  898. 						continue
    899. 

  899. 					}
    900. 

  900. 					groupMapping[group.Name] = group
    901. 

  901. 				}
    902. 

  902. 				user.applyGroupSettings(groupMapping)
    903. 

  903. 			}
    904. 

  904. 			user.SetEmptySecretsIfNil()
    905. 

  905. 			users = append(users, user)
    906. 

  906. 		}
    907. 

  907. 		return err
    908. 

  908. 	})
    909. 

  909. 	return users, err
    910. 

  910. }
    911. 

  911. 

  912. func (p *BoltProvider) getUsersForQuotaCheck(toFetch map[string]bool) ([]User, error) {
    913. 

  913. 	users := make([]User, 0, 10)
    914. 

  914. 

  915. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    916. 

  916. 		bucket, err := p.getUsersBucket(tx)
    917. 

  917. 		if err != nil {
    918. 

  918. 			return err
    919. 

  919. 		}
    920. 

  920. 		foldersBucket, err := p.getFoldersBucket(tx)
    921. 

  921. 		if err != nil {
    922. 

  922. 			return err
    923. 

  923. 		}
    924. 

  924. 		groupsBucket, err := p.getGroupsBucket(tx)
    925. 

  925. 		if err != nil {
    926. 

  926. 			return err
    927. 

  927. 		}
    928. 

  928. 		cursor := bucket.Cursor()
    929. 

  929. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    930. 

  930. 			var user User
    931. 

  931. 			err := json.Unmarshal(v, &user)
    932. 

  932. 			if err != nil {
    933. 

  933. 				return err
    934. 

  934. 			}
    935. 

  935. 			if needFolders, ok := toFetch[user.Username]; ok {
    936. 

  936. 				if needFolders && len(user.VirtualFolders) > 0 {
    937. 

  937. 					var folders []vfs.VirtualFolder
    938. 

  938. 					for idx := range user.VirtualFolders {
    939. 

  939. 						folder := &user.VirtualFolders[idx]
    940. 

  940. 						baseFolder, err := p.folderExistsInternal(folder.Name, foldersBucket)
    941. 

  941. 						if err != nil {
    942. 

  942. 							continue
    943. 

  943. 						}
    944. 

  944. 						folder.BaseVirtualFolder = baseFolder
    945. 

  945. 						folders = append(folders, *folder)
    946. 

  946. 					}
    947. 

  947. 					user.VirtualFolders = folders
    948. 

  948. 				}
    949. 

  949. 				if len(user.Groups) > 0 {
    950. 

  950. 					groupMapping := make(map[string]Group)
    951. 

  951. 					for idx := range user.Groups {
    952. 

  952. 						group, err := p.groupExistsInternal(user.Groups[idx].Name, groupsBucket)
    953. 

  953. 						if err != nil {
    954. 

  954. 							continue
    955. 

  955. 						}
    956. 

  956. 						groupMapping[group.Name] = group
    957. 

  957. 					}
    958. 

  958. 					user.applyGroupSettings(groupMapping)
    959. 

  959. 				}
    960. 

  960. 

  961. 				user.SetEmptySecretsIfNil()
    962. 

  962. 				user.PrepareForRendering()
    963. 

  963. 				users = append(users, user)
    964. 

  964. 			}
    965. 

  965. 		}
    966. 

  966. 		return nil
    967. 

  967. 	})
    968. 

  968. 

  969. 	return users, err
    970. 

  970. }
    971. 

  971. 

  972. func (p *BoltProvider) getUsers(limit int, offset int, order, role string) ([]User, error) {
    973. 

  973. 	users := make([]User, 0, limit)
    974. 

  974. 	var err error
    975. 

  975. 	if limit <= 0 {
    976. 

  976. 		return users, err
    977. 

  977. 	}
    978. 

  978. 	err = p.dbHandle.View(func(tx *bolt.Tx) error {
    979. 

  979. 		bucket, err := p.getUsersBucket(tx)
    980. 

  980. 		if err != nil {
    981. 

  981. 			return err
    982. 

  982. 		}
    983. 

  983. 		foldersBucket, err := p.getFoldersBucket(tx)
    984. 

  984. 		if err != nil {
    985. 

  985. 			return err
    986. 

  986. 		}
    987. 

  987. 		cursor := bucket.Cursor()
    988. 

  988. 		itNum := 0
    989. 

  989. 		if order == OrderASC {
    990. 

  990. 			for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    991. 

  991. 				itNum++
    992. 

  992. 				if itNum <= offset {
    993. 

  993. 					continue
    994. 

  994. 				}
    995. 

  995. 				user, err := p.joinUserAndFolders(v, foldersBucket)
    996. 

  996. 				if err != nil {
    997. 

  997. 					return err
    998. 

  998. 				}
    999. 

  999. 				if !user.hasRole(role) {
    1000. 

  1000. 					continue
    1001. 

  1001. 				}
    1002. 

  1002. 				user.PrepareForRendering()
    1003. 

  1003. 				users = append(users, user)
    1004. 

  1004. 				if len(users) >= limit {
    1005. 

  1005. 					break
    1006. 

  1006. 				}
    1007. 

  1007. 			}
    1008. 

  1008. 		} else {
    1009. 

  1009. 			for k, v := cursor.Last(); k != nil; k, v = cursor.Prev() {
    1010. 

  1010. 				itNum++
    1011. 

  1011. 				if itNum <= offset {
    1012. 

  1012. 					continue
    1013. 

  1013. 				}
    1014. 

  1014. 				user, err := p.joinUserAndFolders(v, foldersBucket)
    1015. 

  1015. 				if err != nil {
    1016. 

  1016. 					return err
    1017. 

  1017. 				}
    1018. 

  1018. 				if !user.hasRole(role) {
    1019. 

  1019. 					continue
    1020. 

  1020. 				}
    1021. 

  1021. 				user.PrepareForRendering()
    1022. 

  1022. 				users = append(users, user)
    1023. 

  1023. 				if len(users) >= limit {
    1024. 

  1024. 					break
    1025. 

  1025. 				}
    1026. 

  1026. 			}
    1027. 

  1027. 		}
    1028. 

  1028. 		return err
    1029. 

  1029. 	})
    1030. 

  1030. 	return users, err
    1031. 

  1031. }
    1032. 

  1032. 

  1033. func (p *BoltProvider) dumpFolders() ([]vfs.BaseVirtualFolder, error) {
    1034. 

  1034. 	folders := make([]vfs.BaseVirtualFolder, 0, 50)
    1035. 

  1035. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1036. 

  1036. 		bucket, err := p.getFoldersBucket(tx)
    1037. 

  1037. 		if err != nil {
    1038. 

  1038. 			return err
    1039. 

  1039. 		}
    1040. 

  1040. 		cursor := bucket.Cursor()
    1041. 

  1041. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    1042. 

  1042. 			var folder vfs.BaseVirtualFolder
    1043. 

  1043. 			err = json.Unmarshal(v, &folder)
    1044. 

  1044. 			if err != nil {
    1045. 

  1045. 				return err
    1046. 

  1046. 			}
    1047. 

  1047. 			folders = append(folders, folder)
    1048. 

  1048. 		}
    1049. 

  1049. 		return err
    1050. 

  1050. 	})
    1051. 

  1051. 	return folders, err
    1052. 

  1052. }
    1053. 

  1053. 

  1054. func (p *BoltProvider) getFolders(limit, offset int, order string, _ bool) ([]vfs.BaseVirtualFolder, error) {
    1055. 

  1055. 	folders := make([]vfs.BaseVirtualFolder, 0, limit)
    1056. 

  1056. 	var err error
    1057. 

  1057. 	if limit <= 0 {
    1058. 

  1058. 		return folders, err
    1059. 

  1059. 	}
    1060. 

  1060. 	err = p.dbHandle.View(func(tx *bolt.Tx) error {
    1061. 

  1061. 		bucket, err := p.getFoldersBucket(tx)
    1062. 

  1062. 		if err != nil {
    1063. 

  1063. 			return err
    1064. 

  1064. 		}
    1065. 

  1065. 		cursor := bucket.Cursor()
    1066. 

  1066. 		itNum := 0
    1067. 

  1067. 		if order == OrderASC {
    1068. 

  1068. 			for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    1069. 

  1069. 				itNum++
    1070. 

  1070. 				if itNum <= offset {
    1071. 

  1071. 					continue
    1072. 

  1072. 				}
    1073. 

  1073. 				var folder vfs.BaseVirtualFolder
    1074. 

  1074. 				err = json.Unmarshal(v, &folder)
    1075. 

  1075. 				if err != nil {
    1076. 

  1076. 					return err
    1077. 

  1077. 				}
    1078. 

  1078. 				folder.PrepareForRendering()
    1079. 

  1079. 				folders = append(folders, folder)
    1080. 

  1080. 				if len(folders) >= limit {
    1081. 

  1081. 					break
    1082. 

  1082. 				}
    1083. 

  1083. 			}
    1084. 

  1084. 		} else {
    1085. 

  1085. 			for k, v := cursor.Last(); k != nil; k, v = cursor.Prev() {
    1086. 

  1086. 				itNum++
    1087. 

  1087. 				if itNum <= offset {
    1088. 

  1088. 					continue
    1089. 

  1089. 				}
    1090. 

  1090. 				var folder vfs.BaseVirtualFolder
    1091. 

  1091. 				err = json.Unmarshal(v, &folder)
    1092. 

  1092. 				if err != nil {
    1093. 

  1093. 					return err
    1094. 

  1094. 				}
    1095. 

  1095. 				folder.PrepareForRendering()
    1096. 

  1096. 				folders = append(folders, folder)
    1097. 

  1097. 				if len(folders) >= limit {
    1098. 

  1098. 					break
    1099. 

  1099. 				}
    1100. 

  1100. 			}
    1101. 

  1101. 		}
    1102. 

  1102. 		return err
    1103. 

  1103. 	})
    1104. 

  1104. 	return folders, err
    1105. 

  1105. }
    1106. 

  1106. 

  1107. func (p *BoltProvider) getFolderByName(name string) (vfs.BaseVirtualFolder, error) {
    1108. 

  1108. 	var folder vfs.BaseVirtualFolder
    1109. 

  1109. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1110. 

  1110. 		bucket, err := p.getFoldersBucket(tx)
    1111. 

  1111. 		if err != nil {
    1112. 

  1112. 			return err
    1113. 

  1113. 		}
    1114. 

  1114. 		folder, err = p.folderExistsInternal(name, bucket)
    1115. 

  1115. 		return err
    1116. 

  1116. 	})
    1117. 

  1117. 	return folder, err
    1118. 

  1118. }
    1119. 

  1119. 

  1120. func (p *BoltProvider) addFolder(folder *vfs.BaseVirtualFolder) error {
    1121. 

  1121. 	err := ValidateFolder(folder)
    1122. 

  1122. 	if err != nil {
    1123. 

  1123. 		return err
    1124. 

  1124. 	}
    1125. 

  1125. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1126. 

  1126. 		bucket, err := p.getFoldersBucket(tx)
    1127. 

  1127. 		if err != nil {
    1128. 

  1128. 			return err
    1129. 

  1129. 		}
    1130. 

  1130. 		if f := bucket.Get([]byte(folder.Name)); f != nil {
    1131. 

  1131. 			return util.NewI18nError(
    1132. 

  1132. 				fmt.Errorf("%w: folder %q already exists", ErrDuplicatedKey, folder.Name),
    1133. 

  1133. 				util.I18nErrorDuplicatedUsername,
    1134. 

  1134. 			)
    1135. 

  1135. 		}
    1136. 

  1136. 		folder.Users = nil
    1137. 

  1137. 		folder.Groups = nil
    1138. 

  1138. 		return p.addFolderInternal(*folder, bucket)
    1139. 

  1139. 	})
    1140. 

  1140. }
    1141. 

  1141. 

  1142. func (p *BoltProvider) updateFolder(folder *vfs.BaseVirtualFolder) error {
    1143. 

  1143. 	err := ValidateFolder(folder)
    1144. 

  1144. 	if err != nil {
    1145. 

  1145. 		return err
    1146. 

  1146. 	}
    1147. 

  1147. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1148. 

  1148. 		bucket, err := p.getFoldersBucket(tx)
    1149. 

  1149. 		if err != nil {
    1150. 

  1150. 			return err
    1151. 

  1151. 		}
    1152. 

  1152. 		var f []byte
    1153. 

  1153. 

  1154. 		if f = bucket.Get([]byte(folder.Name)); f == nil {
    1155. 

  1155. 			return util.NewRecordNotFoundError(fmt.Sprintf("folder %v does not exist", folder.Name))
    1156. 

  1156. 		}
    1157. 

  1157. 		var oldFolder vfs.BaseVirtualFolder
    1158. 

  1158. 		err = json.Unmarshal(f, &oldFolder)
    1159. 

  1159. 		if err != nil {
    1160. 

  1160. 			return err
    1161. 

  1161. 		}
    1162. 

  1162. 

  1163. 		folder.ID = oldFolder.ID
    1164. 

  1164. 		folder.LastQuotaUpdate = oldFolder.LastQuotaUpdate
    1165. 

  1165. 		folder.UsedQuotaFiles = oldFolder.UsedQuotaFiles
    1166. 

  1166. 		folder.UsedQuotaSize = oldFolder.UsedQuotaSize
    1167. 

  1167. 		folder.Users = oldFolder.Users
    1168. 

  1168. 		folder.Groups = oldFolder.Groups
    1169. 

  1169. 		buf, err := json.Marshal(folder)
    1170. 

  1170. 		if err != nil {
    1171. 

  1171. 			return err
    1172. 

  1172. 		}
    1173. 

  1173. 		return bucket.Put([]byte(folder.Name), buf)
    1174. 

  1174. 	})
    1175. 

  1175. }
    1176. 

  1176. 

  1177. func (p *BoltProvider) deleteFolderMappings(folder vfs.BaseVirtualFolder, usersBucket, groupsBucket *bolt.Bucket) error {
    1178. 

  1178. 	for _, username := range folder.Users {
    1179. 

  1179. 		var u []byte
    1180. 

  1180. 		if u = usersBucket.Get([]byte(username)); u == nil {
    1181. 

  1181. 			continue
    1182. 

  1182. 		}
    1183. 

  1183. 		var user User
    1184. 

  1184. 		err := json.Unmarshal(u, &user)
    1185. 

  1185. 		if err != nil {
    1186. 

  1186. 			return err
    1187. 

  1187. 		}
    1188. 

  1188. 		var folders []vfs.VirtualFolder
    1189. 

  1189. 		for _, userFolder := range user.VirtualFolders {
    1190. 

  1190. 			if folder.Name != userFolder.Name {
    1191. 

  1191. 				folders = append(folders, userFolder)
    1192. 

  1192. 			}
    1193. 

  1193. 		}
    1194. 

  1194. 		user.VirtualFolders = folders
    1195. 

  1195. 		buf, err := json.Marshal(user)
    1196. 

  1196. 		if err != nil {
    1197. 

  1197. 			return err
    1198. 

  1198. 		}
    1199. 

  1199. 		err = usersBucket.Put([]byte(user.Username), buf)
    1200. 

  1200. 		if err != nil {
    1201. 

  1201. 			return err
    1202. 

  1202. 		}
    1203. 

  1203. 	}
    1204. 

  1204. 	for _, groupname := range folder.Groups {
    1205. 

  1205. 		var u []byte
    1206. 

  1206. 		if u = groupsBucket.Get([]byte(groupname)); u == nil {
    1207. 

  1207. 			continue
    1208. 

  1208. 		}
    1209. 

  1209. 		var group Group
    1210. 

  1210. 		err := json.Unmarshal(u, &group)
    1211. 

  1211. 		if err != nil {
    1212. 

  1212. 			return err
    1213. 

  1213. 		}
    1214. 

  1214. 		var folders []vfs.VirtualFolder
    1215. 

  1215. 		for _, groupFolder := range group.VirtualFolders {
    1216. 

  1216. 			if folder.Name != groupFolder.Name {
    1217. 

  1217. 				folders = append(folders, groupFolder)
    1218. 

  1218. 			}
    1219. 

  1219. 		}
    1220. 

  1220. 		group.VirtualFolders = folders
    1221. 

  1221. 		buf, err := json.Marshal(group)
    1222. 

  1222. 		if err != nil {
    1223. 

  1223. 			return err
    1224. 

  1224. 		}
    1225. 

  1225. 		err = groupsBucket.Put([]byte(group.Name), buf)
    1226. 

  1226. 		if err != nil {
    1227. 

  1227. 			return err
    1228. 

  1228. 		}
    1229. 

  1229. 	}
    1230. 

  1230. 	return nil
    1231. 

  1231. }
    1232. 

  1232. 

  1233. func (p *BoltProvider) deleteFolder(baseFolder vfs.BaseVirtualFolder) error {
    1234. 

  1234. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1235. 

  1235. 		bucket, err := p.getFoldersBucket(tx)
    1236. 

  1236. 		if err != nil {
    1237. 

  1237. 			return err
    1238. 

  1238. 		}
    1239. 

  1239. 		usersBucket, err := p.getUsersBucket(tx)
    1240. 

  1240. 		if err != nil {
    1241. 

  1241. 			return err
    1242. 

  1242. 		}
    1243. 

  1243. 		groupsBucket, err := p.getGroupsBucket(tx)
    1244. 

  1244. 		if err != nil {
    1245. 

  1245. 			return err
    1246. 

  1246. 		}
    1247. 

  1247. 

  1248. 		var f []byte
    1249. 

  1249. 		if f = bucket.Get([]byte(baseFolder.Name)); f == nil {
    1250. 

  1250. 			return util.NewRecordNotFoundError(fmt.Sprintf("folder %v does not exist", baseFolder.Name))
    1251. 

  1251. 		}
    1252. 

  1252. 		var folder vfs.BaseVirtualFolder
    1253. 

  1253. 		err = json.Unmarshal(f, &folder)
    1254. 

  1254. 		if err != nil {
    1255. 

  1255. 			return err
    1256. 

  1256. 		}
    1257. 

  1257. 		if err = p.deleteFolderMappings(folder, usersBucket, groupsBucket); err != nil {
    1258. 

  1258. 			return err
    1259. 

  1259. 		}
    1260. 

  1260. 

  1261. 		return bucket.Delete([]byte(folder.Name))
    1262. 

  1262. 	})
    1263. 

  1263. }
    1264. 

  1264. 

  1265. func (p *BoltProvider) updateFolderQuota(name string, filesAdd int, sizeAdd int64, reset bool) error {
    1266. 

  1266. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1267. 

  1267. 		bucket, err := p.getFoldersBucket(tx)
    1268. 

  1268. 		if err != nil {
    1269. 

  1269. 			return err
    1270. 

  1270. 		}
    1271. 

  1271. 		var f []byte
    1272. 

  1272. 		if f = bucket.Get([]byte(name)); f == nil {
    1273. 

  1273. 			return util.NewRecordNotFoundError(fmt.Sprintf("folder %q does not exist, unable to update quota", name))
    1274. 

  1274. 		}
    1275. 

  1275. 		var folder vfs.BaseVirtualFolder
    1276. 

  1276. 		err = json.Unmarshal(f, &folder)
    1277. 

  1277. 		if err != nil {
    1278. 

  1278. 			return err
    1279. 

  1279. 		}
    1280. 

  1280. 		if reset {
    1281. 

  1281. 			folder.UsedQuotaSize = sizeAdd
    1282. 

  1282. 			folder.UsedQuotaFiles = filesAdd
    1283. 

  1283. 		} else {
    1284. 

  1284. 			folder.UsedQuotaSize += sizeAdd
    1285. 

  1285. 			folder.UsedQuotaFiles += filesAdd
    1286. 

  1286. 		}
    1287. 

  1287. 		folder.LastQuotaUpdate = util.GetTimeAsMsSinceEpoch(time.Now())
    1288. 

  1288. 		buf, err := json.Marshal(folder)
    1289. 

  1289. 		if err != nil {
    1290. 

  1290. 			return err
    1291. 

  1291. 		}
    1292. 

  1292. 		return bucket.Put([]byte(folder.Name), buf)
    1293. 

  1293. 	})
    1294. 

  1294. }
    1295. 

  1295. 

  1296. func (p *BoltProvider) getUsedFolderQuota(name string) (int, int64, error) {
    1297. 

  1297. 	folder, err := p.getFolderByName(name)
    1298. 

  1298. 	if err != nil {
    1299. 

  1299. 		providerLog(logger.LevelError, "unable to get quota for folder %q error: %v", name, err)
    1300. 

  1300. 		return 0, 0, err
    1301. 

  1301. 	}
    1302. 

  1302. 	return folder.UsedQuotaFiles, folder.UsedQuotaSize, err
    1303. 

  1303. }
    1304. 

  1304. 

  1305. func (p *BoltProvider) getGroups(limit, offset int, order string, _ bool) ([]Group, error) {
    1306. 

  1306. 	groups := make([]Group, 0, limit)
    1307. 

  1307. 	var err error
    1308. 

  1308. 	if limit <= 0 {
    1309. 

  1309. 		return groups, err
    1310. 

  1310. 	}
    1311. 

  1311. 	err = p.dbHandle.View(func(tx *bolt.Tx) error {
    1312. 

  1312. 		bucket, err := p.getGroupsBucket(tx)
    1313. 

  1313. 		if err != nil {
    1314. 

  1314. 			return err
    1315. 

  1315. 		}
    1316. 

  1316. 		foldersBucket, err := p.getFoldersBucket(tx)
    1317. 

  1317. 		if err != nil {
    1318. 

  1318. 			return err
    1319. 

  1319. 		}
    1320. 

  1320. 		cursor := bucket.Cursor()
    1321. 

  1321. 		itNum := 0
    1322. 

  1322. 		if order == OrderASC {
    1323. 

  1323. 			for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    1324. 

  1324. 				itNum++
    1325. 

  1325. 				if itNum <= offset {
    1326. 

  1326. 					continue
    1327. 

  1327. 				}
    1328. 

  1328. 				var group Group
    1329. 

  1329. 				group, err = p.joinGroupAndFolders(v, foldersBucket)
    1330. 

  1330. 				if err != nil {
    1331. 

  1331. 					return err
    1332. 

  1332. 				}
    1333. 

  1333. 				group.PrepareForRendering()
    1334. 

  1334. 				groups = append(groups, group)
    1335. 

  1335. 				if len(groups) >= limit {
    1336. 

  1336. 					break
    1337. 

  1337. 				}
    1338. 

  1338. 			}
    1339. 

  1339. 		} else {
    1340. 

  1340. 			for k, v := cursor.Last(); k != nil; k, v = cursor.Prev() {
    1341. 

  1341. 				itNum++
    1342. 

  1342. 				if itNum <= offset {
    1343. 

  1343. 					continue
    1344. 

  1344. 				}
    1345. 

  1345. 				var group Group
    1346. 

  1346. 				group, err = p.joinGroupAndFolders(v, foldersBucket)
    1347. 

  1347. 				if err != nil {
    1348. 

  1348. 					return err
    1349. 

  1349. 				}
    1350. 

  1350. 				group.PrepareForRendering()
    1351. 

  1351. 				groups = append(groups, group)
    1352. 

  1352. 				if len(groups) >= limit {
    1353. 

  1353. 					break
    1354. 

  1354. 				}
    1355. 

  1355. 			}
    1356. 

  1356. 		}
    1357. 

  1357. 		return err
    1358. 

  1358. 	})
    1359. 

  1359. 	return groups, err
    1360. 

  1360. }
    1361. 

  1361. 

  1362. func (p *BoltProvider) getGroupsWithNames(names []string) ([]Group, error) {
    1363. 

  1363. 	var groups []Group
    1364. 

  1364. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1365. 

  1365. 		bucket, err := p.getGroupsBucket(tx)
    1366. 

  1366. 		if err != nil {
    1367. 

  1367. 			return err
    1368. 

  1368. 		}
    1369. 

  1369. 		foldersBucket, err := p.getFoldersBucket(tx)
    1370. 

  1370. 		if err != nil {
    1371. 

  1371. 			return err
    1372. 

  1372. 		}
    1373. 

  1373. 		for _, name := range names {
    1374. 

  1374. 			g := bucket.Get([]byte(name))
    1375. 

  1375. 			if g == nil {
    1376. 

  1376. 				continue
    1377. 

  1377. 			}
    1378. 

  1378. 			group, err := p.joinGroupAndFolders(g, foldersBucket)
    1379. 

  1379. 			if err != nil {
    1380. 

  1380. 				return err
    1381. 

  1381. 			}
    1382. 

  1382. 			groups = append(groups, group)
    1383. 

  1383. 		}
    1384. 

  1384. 		return nil
    1385. 

  1385. 	})
    1386. 

  1386. 	return groups, err
    1387. 

  1387. }
    1388. 

  1388. 

  1389. func (p *BoltProvider) getUsersInGroups(names []string) ([]string, error) {
    1390. 

  1390. 	var usernames []string
    1391. 

  1391. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1392. 

  1392. 		bucket, err := p.getGroupsBucket(tx)
    1393. 

  1393. 		if err != nil {
    1394. 

  1394. 			return err
    1395. 

  1395. 		}
    1396. 

  1396. 		for _, name := range names {
    1397. 

  1397. 			g := bucket.Get([]byte(name))
    1398. 

  1398. 			if g == nil {
    1399. 

  1399. 				continue
    1400. 

  1400. 			}
    1401. 

  1401. 			var group Group
    1402. 

  1402. 			err := json.Unmarshal(g, &group)
    1403. 

  1403. 			if err != nil {
    1404. 

  1404. 				return err
    1405. 

  1405. 			}
    1406. 

  1406. 			usernames = append(usernames, group.Users...)
    1407. 

  1407. 		}
    1408. 

  1408. 		return nil
    1409. 

  1409. 	})
    1410. 

  1410. 	return usernames, err
    1411. 

  1411. }
    1412. 

  1412. 

  1413. func (p *BoltProvider) groupExists(name string) (Group, error) {
    1414. 

  1414. 	var group Group
    1415. 

  1415. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1416. 

  1416. 		bucket, err := p.getGroupsBucket(tx)
    1417. 

  1417. 		if err != nil {
    1418. 

  1418. 			return err
    1419. 

  1419. 		}
    1420. 

  1420. 		g := bucket.Get([]byte(name))
    1421. 

  1421. 		if g == nil {
    1422. 

  1422. 			return util.NewRecordNotFoundError(fmt.Sprintf("group %q does not exist", name))
    1423. 

  1423. 		}
    1424. 

  1424. 		foldersBucket, err := p.getFoldersBucket(tx)
    1425. 

  1425. 		if err != nil {
    1426. 

  1426. 			return err
    1427. 

  1427. 		}
    1428. 

  1428. 		group, err = p.joinGroupAndFolders(g, foldersBucket)
    1429. 

  1429. 		return err
    1430. 

  1430. 	})
    1431. 

  1431. 	return group, err
    1432. 

  1432. }
    1433. 

  1433. 

  1434. func (p *BoltProvider) addGroup(group *Group) error {
    1435. 

  1435. 	if err := group.validate(); err != nil {
    1436. 

  1436. 		return err
    1437. 

  1437. 	}
    1438. 

  1438. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1439. 

  1439. 		bucket, err := p.getGroupsBucket(tx)
    1440. 

  1440. 		if err != nil {
    1441. 

  1441. 			return err
    1442. 

  1442. 		}
    1443. 

  1443. 		foldersBucket, err := p.getFoldersBucket(tx)
    1444. 

  1444. 		if err != nil {
    1445. 

  1445. 			return err
    1446. 

  1446. 		}
    1447. 

  1447. 		if u := bucket.Get([]byte(group.Name)); u != nil {
    1448. 

  1448. 			return util.NewI18nError(
    1449. 

  1449. 				fmt.Errorf("%w: group %q already exists", ErrDuplicatedKey, group.Name),
    1450. 

  1450. 				util.I18nErrorDuplicatedUsername,
    1451. 

  1451. 			)
    1452. 

  1452. 		}
    1453. 

  1453. 		id, err := bucket.NextSequence()
    1454. 

  1454. 		if err != nil {
    1455. 

  1455. 			return err
    1456. 

  1456. 		}
    1457. 

  1457. 		group.ID = int64(id)
    1458. 

  1458. 		group.CreatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    1459. 

  1459. 		group.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    1460. 

  1460. 		group.Users = nil
    1461. 

  1461. 		group.Admins = nil
    1462. 

  1462. 		sort.Slice(group.VirtualFolders, func(i, j int) bool {
    1463. 

  1463. 			return group.VirtualFolders[i].Name < group.VirtualFolders[j].Name
    1464. 

  1464. 		})
    1465. 

  1465. 		for idx := range group.VirtualFolders {
    1466. 

  1466. 			err = p.addRelationToFolderMapping(group.VirtualFolders[idx].Name, nil, group, foldersBucket)
    1467. 

  1467. 			if err != nil {
    1468. 

  1468. 				return err
    1469. 

  1469. 			}
    1470. 

  1470. 		}
    1471. 

  1471. 		buf, err := json.Marshal(group)
    1472. 

  1472. 		if err != nil {
    1473. 

  1473. 			return err
    1474. 

  1474. 		}
    1475. 

  1475. 		return bucket.Put([]byte(group.Name), buf)
    1476. 

  1476. 	})
    1477. 

  1477. }
    1478. 

  1478. 

  1479. func (p *BoltProvider) updateGroup(group *Group) error {
    1480. 

  1480. 	if err := group.validate(); err != nil {
    1481. 

  1481. 		return err
    1482. 

  1482. 	}
    1483. 

  1483. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1484. 

  1484. 		bucket, err := p.getGroupsBucket(tx)
    1485. 

  1485. 		if err != nil {
    1486. 

  1486. 			return err
    1487. 

  1487. 		}
    1488. 

  1488. 		foldersBucket, err := p.getFoldersBucket(tx)
    1489. 

  1489. 		if err != nil {
    1490. 

  1490. 			return err
    1491. 

  1491. 		}
    1492. 

  1492. 		var g []byte
    1493. 

  1493. 		if g = bucket.Get([]byte(group.Name)); g == nil {
    1494. 

  1494. 			return util.NewRecordNotFoundError(fmt.Sprintf("group %q does not exist", group.Name))
    1495. 

  1495. 		}
    1496. 

  1496. 		var oldGroup Group
    1497. 

  1497. 		err = json.Unmarshal(g, &oldGroup)
    1498. 

  1498. 		if err != nil {
    1499. 

  1499. 			return err
    1500. 

  1500. 		}
    1501. 

  1501. 		for idx := range oldGroup.VirtualFolders {
    1502. 

  1502. 			err = p.removeRelationFromFolderMapping(oldGroup.VirtualFolders[idx], "", oldGroup.Name, foldersBucket)
    1503. 

  1503. 			if err != nil {
    1504. 

  1504. 				return err
    1505. 

  1505. 			}
    1506. 

  1506. 		}
    1507. 

  1507. 		sort.Slice(group.VirtualFolders, func(i, j int) bool {
    1508. 

  1508. 			return group.VirtualFolders[i].Name < group.VirtualFolders[j].Name
    1509. 

  1509. 		})
    1510. 

  1510. 		for idx := range group.VirtualFolders {
    1511. 

  1511. 			err = p.addRelationToFolderMapping(group.VirtualFolders[idx].Name, nil, group, foldersBucket)
    1512. 

  1512. 			if err != nil {
    1513. 

  1513. 				return err
    1514. 

  1514. 			}
    1515. 

  1515. 		}
    1516. 

  1516. 		group.ID = oldGroup.ID
    1517. 

  1517. 		group.CreatedAt = oldGroup.CreatedAt
    1518. 

  1518. 		group.Users = oldGroup.Users
    1519. 

  1519. 		group.Admins = oldGroup.Admins
    1520. 

  1520. 		group.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    1521. 

  1521. 		buf, err := json.Marshal(group)
    1522. 

  1522. 		if err != nil {
    1523. 

  1523. 			return err
    1524. 

  1524. 		}
    1525. 

  1525. 		return bucket.Put([]byte(group.Name), buf)
    1526. 

  1526. 	})
    1527. 

  1527. }
    1528. 

  1528. 

  1529. func (p *BoltProvider) deleteGroup(group Group) error {
    1530. 

  1530. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1531. 

  1531. 		bucket, err := p.getGroupsBucket(tx)
    1532. 

  1532. 		if err != nil {
    1533. 

  1533. 			return err
    1534. 

  1534. 		}
    1535. 

  1535. 		var g []byte
    1536. 

  1536. 		if g = bucket.Get([]byte(group.Name)); g == nil {
    1537. 

  1537. 			return util.NewRecordNotFoundError(fmt.Sprintf("group %q does not exist", group.Name))
    1538. 

  1538. 		}
    1539. 

  1539. 		var oldGroup Group
    1540. 

  1540. 		err = json.Unmarshal(g, &oldGroup)
    1541. 

  1541. 		if err != nil {
    1542. 

  1542. 			return err
    1543. 

  1543. 		}
    1544. 

  1544. 		if len(oldGroup.Users) > 0 {
    1545. 

  1545. 			return util.NewValidationError(fmt.Sprintf("the group %q is referenced, it cannot be removed", oldGroup.Name))
    1546. 

  1546. 		}
    1547. 

  1547. 		if len(oldGroup.VirtualFolders) > 0 {
    1548. 

  1548. 			foldersBucket, err := p.getFoldersBucket(tx)
    1549. 

  1549. 			if err != nil {
    1550. 

  1550. 				return err
    1551. 

  1551. 			}
    1552. 

  1552. 			for idx := range oldGroup.VirtualFolders {
    1553. 

  1553. 				err = p.removeRelationFromFolderMapping(oldGroup.VirtualFolders[idx], "", oldGroup.Name, foldersBucket)
    1554. 

  1554. 				if err != nil {
    1555. 

  1555. 					return err
    1556. 

  1556. 				}
    1557. 

  1557. 			}
    1558. 

  1558. 		}
    1559. 

  1559. 		if len(oldGroup.Admins) > 0 {
    1560. 

  1560. 			adminsBucket, err := p.getAdminsBucket(tx)
    1561. 

  1561. 			if err != nil {
    1562. 

  1562. 				return err
    1563. 

  1563. 			}
    1564. 

  1564. 			for idx := range oldGroup.Admins {
    1565. 

  1565. 				err = p.removeGroupFromAdminMapping(oldGroup.Name, oldGroup.Admins[idx], adminsBucket)
    1566. 

  1566. 				if err != nil {
    1567. 

  1567. 					return err
    1568. 

  1568. 				}
    1569. 

  1569. 			}
    1570. 

  1570. 		}
    1571. 

  1571. 

  1572. 		return bucket.Delete([]byte(group.Name))
    1573. 

  1573. 	})
    1574. 

  1574. }
    1575. 

  1575. 

  1576. func (p *BoltProvider) dumpGroups() ([]Group, error) {
    1577. 

  1577. 	groups := make([]Group, 0, 50)
    1578. 

  1578. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1579. 

  1579. 		bucket, err := p.getGroupsBucket(tx)
    1580. 

  1580. 		if err != nil {
    1581. 

  1581. 			return err
    1582. 

  1582. 		}
    1583. 

  1583. 		foldersBucket, err := p.getFoldersBucket(tx)
    1584. 

  1584. 		if err != nil {
    1585. 

  1585. 			return err
    1586. 

  1586. 		}
    1587. 

  1587. 		cursor := bucket.Cursor()
    1588. 

  1588. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    1589. 

  1589. 			group, err := p.joinGroupAndFolders(v, foldersBucket)
    1590. 

  1590. 			if err != nil {
    1591. 

  1591. 				return err
    1592. 

  1592. 			}
    1593. 

  1593. 			groups = append(groups, group)
    1594. 

  1594. 		}
    1595. 

  1595. 		return err
    1596. 

  1596. 	})
    1597. 

  1597. 	return groups, err
    1598. 

  1598. }
    1599. 

  1599. 

  1600. func (p *BoltProvider) apiKeyExists(keyID string) (APIKey, error) {
    1601. 

  1601. 	var apiKey APIKey
    1602. 

  1602. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1603. 

  1603. 		bucket, err := p.getAPIKeysBucket(tx)
    1604. 

  1604. 		if err != nil {
    1605. 

  1605. 			return err
    1606. 

  1606. 		}
    1607. 

  1607. 

  1608. 		k := bucket.Get([]byte(keyID))
    1609. 

  1609. 		if k == nil {
    1610. 

  1610. 			return util.NewRecordNotFoundError(fmt.Sprintf("API key %v does not exist", keyID))
    1611. 

  1611. 		}
    1612. 

  1612. 		return json.Unmarshal(k, &apiKey)
    1613. 

  1613. 	})
    1614. 

  1614. 	return apiKey, err
    1615. 

  1615. }
    1616. 

  1616. 

  1617. func (p *BoltProvider) addAPIKey(apiKey *APIKey) error {
    1618. 

  1618. 	err := apiKey.validate()
    1619. 

  1619. 	if err != nil {
    1620. 

  1620. 		return err
    1621. 

  1621. 	}
    1622. 

  1622. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1623. 

  1623. 		bucket, err := p.getAPIKeysBucket(tx)
    1624. 

  1624. 		if err != nil {
    1625. 

  1625. 			return err
    1626. 

  1626. 		}
    1627. 

  1627. 		if a := bucket.Get([]byte(apiKey.KeyID)); a != nil {
    1628. 

  1628. 			return fmt.Errorf("API key %v already exists", apiKey.KeyID)
    1629. 

  1629. 		}
    1630. 

  1630. 		id, err := bucket.NextSequence()
    1631. 

  1631. 		if err != nil {
    1632. 

  1632. 			return err
    1633. 

  1633. 		}
    1634. 

  1634. 		apiKey.ID = int64(id)
    1635. 

  1635. 		apiKey.CreatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    1636. 

  1636. 		apiKey.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    1637. 

  1637. 		apiKey.LastUseAt = 0
    1638. 

  1638. 		if apiKey.User != "" {
    1639. 

  1639. 			if err := p.userExistsInternal(tx, apiKey.User); err != nil {
    1640. 

  1640. 				return fmt.Errorf("%w: related user %q does not exists", ErrForeignKeyViolated, apiKey.User)
    1641. 

  1641. 			}
    1642. 

  1642. 		}
    1643. 

  1643. 		if apiKey.Admin != "" {
    1644. 

  1644. 			if err := p.adminExistsInternal(tx, apiKey.Admin); err != nil {
    1645. 

  1645. 				return fmt.Errorf("%w: related admin %q does not exists", ErrForeignKeyViolated, apiKey.Admin)
    1646. 

  1646. 			}
    1647. 

  1647. 		}
    1648. 

  1648. 		buf, err := json.Marshal(apiKey)
    1649. 

  1649. 		if err != nil {
    1650. 

  1650. 			return err
    1651. 

  1651. 		}
    1652. 

  1652. 		return bucket.Put([]byte(apiKey.KeyID), buf)
    1653. 

  1653. 	})
    1654. 

  1654. }
    1655. 

  1655. 

  1656. func (p *BoltProvider) updateAPIKey(apiKey *APIKey) error {
    1657. 

  1657. 	err := apiKey.validate()
    1658. 

  1658. 	if err != nil {
    1659. 

  1659. 		return err
    1660. 

  1660. 	}
    1661. 

  1661. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1662. 

  1662. 		bucket, err := p.getAPIKeysBucket(tx)
    1663. 

  1663. 		if err != nil {
    1664. 

  1664. 			return err
    1665. 

  1665. 		}
    1666. 

  1666. 		var a []byte
    1667. 

  1667. 

  1668. 		if a = bucket.Get([]byte(apiKey.KeyID)); a == nil {
    1669. 

  1669. 			return util.NewRecordNotFoundError(fmt.Sprintf("API key %v does not exist", apiKey.KeyID))
    1670. 

  1670. 		}
    1671. 

  1671. 		var oldAPIKey APIKey
    1672. 

  1672. 		err = json.Unmarshal(a, &oldAPIKey)
    1673. 

  1673. 		if err != nil {
    1674. 

  1674. 			return err
    1675. 

  1675. 		}
    1676. 

  1676. 

  1677. 		apiKey.ID = oldAPIKey.ID
    1678. 

  1678. 		apiKey.KeyID = oldAPIKey.KeyID
    1679. 

  1679. 		apiKey.Key = oldAPIKey.Key
    1680. 

  1680. 		apiKey.CreatedAt = oldAPIKey.CreatedAt
    1681. 

  1681. 		apiKey.LastUseAt = oldAPIKey.LastUseAt
    1682. 

  1682. 		apiKey.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    1683. 

  1683. 		if apiKey.User != "" {
    1684. 

  1684. 			if err := p.userExistsInternal(tx, apiKey.User); err != nil {
    1685. 

  1685. 				return fmt.Errorf("%w: related user %q does not exists", ErrForeignKeyViolated, apiKey.User)
    1686. 

  1686. 			}
    1687. 

  1687. 		}
    1688. 

  1688. 		if apiKey.Admin != "" {
    1689. 

  1689. 			if err := p.adminExistsInternal(tx, apiKey.Admin); err != nil {
    1690. 

  1690. 				return fmt.Errorf("%w: related admin %q does not exists", ErrForeignKeyViolated, apiKey.Admin)
    1691. 

  1691. 			}
    1692. 

  1692. 		}
    1693. 

  1693. 		buf, err := json.Marshal(apiKey)
    1694. 

  1694. 		if err != nil {
    1695. 

  1695. 			return err
    1696. 

  1696. 		}
    1697. 

  1697. 		return bucket.Put([]byte(apiKey.KeyID), buf)
    1698. 

  1698. 	})
    1699. 

  1699. }
    1700. 

  1700. 

  1701. func (p *BoltProvider) deleteAPIKey(apiKey APIKey) error {
    1702. 

  1702. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1703. 

  1703. 		bucket, err := p.getAPIKeysBucket(tx)
    1704. 

  1704. 		if err != nil {
    1705. 

  1705. 			return err
    1706. 

  1706. 		}
    1707. 

  1707. 

  1708. 		if bucket.Get([]byte(apiKey.KeyID)) == nil {
    1709. 

  1709. 			return util.NewRecordNotFoundError(fmt.Sprintf("API key %v does not exist", apiKey.KeyID))
    1710. 

  1710. 		}
    1711. 

  1711. 

  1712. 		return bucket.Delete([]byte(apiKey.KeyID))
    1713. 

  1713. 	})
    1714. 

  1714. }
    1715. 

  1715. 

  1716. func (p *BoltProvider) getAPIKeys(limit int, offset int, order string) ([]APIKey, error) {
    1717. 

  1717. 	apiKeys := make([]APIKey, 0, limit)
    1718. 

  1718. 

  1719. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1720. 

  1720. 		bucket, err := p.getAPIKeysBucket(tx)
    1721. 

  1721. 		if err != nil {
    1722. 

  1722. 			return err
    1723. 

  1723. 		}
    1724. 

  1724. 		cursor := bucket.Cursor()
    1725. 

  1725. 		itNum := 0
    1726. 

  1726. 		if order == OrderASC {
    1727. 

  1727. 			for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    1728. 

  1728. 				itNum++
    1729. 

  1729. 				if itNum <= offset {
    1730. 

  1730. 					continue
    1731. 

  1731. 				}
    1732. 

  1732. 				var apiKey APIKey
    1733. 

  1733. 				err = json.Unmarshal(v, &apiKey)
    1734. 

  1734. 				if err != nil {
    1735. 

  1735. 					return err
    1736. 

  1736. 				}
    1737. 

  1737. 				apiKey.HideConfidentialData()
    1738. 

  1738. 				apiKeys = append(apiKeys, apiKey)
    1739. 

  1739. 				if len(apiKeys) >= limit {
    1740. 

  1740. 					break
    1741. 

  1741. 				}
    1742. 

  1742. 			}
    1743. 

  1743. 			return nil
    1744. 

  1744. 		}
    1745. 

  1745. 		for k, v := cursor.Last(); k != nil; k, v = cursor.Prev() {
    1746. 

  1746. 			itNum++
    1747. 

  1747. 			if itNum <= offset {
    1748. 

  1748. 				continue
    1749. 

  1749. 			}
    1750. 

  1750. 			var apiKey APIKey
    1751. 

  1751. 			err = json.Unmarshal(v, &apiKey)
    1752. 

  1752. 			if err != nil {
    1753. 

  1753. 				return err
    1754. 

  1754. 			}
    1755. 

  1755. 			apiKey.HideConfidentialData()
    1756. 

  1756. 			apiKeys = append(apiKeys, apiKey)
    1757. 

  1757. 			if len(apiKeys) >= limit {
    1758. 

  1758. 				break
    1759. 

  1759. 			}
    1760. 

  1760. 		}
    1761. 

  1761. 		return nil
    1762. 

  1762. 	})
    1763. 

  1763. 

  1764. 	return apiKeys, err
    1765. 

  1765. }
    1766. 

  1766. 

  1767. func (p *BoltProvider) dumpAPIKeys() ([]APIKey, error) {
    1768. 

  1768. 	apiKeys := make([]APIKey, 0, 30)
    1769. 

  1769. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1770. 

  1770. 		bucket, err := p.getAPIKeysBucket(tx)
    1771. 

  1771. 		if err != nil {
    1772. 

  1772. 			return err
    1773. 

  1773. 		}
    1774. 

  1774. 

  1775. 		cursor := bucket.Cursor()
    1776. 

  1776. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    1777. 

  1777. 			var apiKey APIKey
    1778. 

  1778. 			err = json.Unmarshal(v, &apiKey)
    1779. 

  1779. 			if err != nil {
    1780. 

  1780. 				return err
    1781. 

  1781. 			}
    1782. 

  1782. 			apiKeys = append(apiKeys, apiKey)
    1783. 

  1783. 		}
    1784. 

  1784. 		return err
    1785. 

  1785. 	})
    1786. 

  1786. 

  1787. 	return apiKeys, err
    1788. 

  1788. }
    1789. 

  1789. 

  1790. func (p *BoltProvider) shareExists(shareID, username string) (Share, error) {
    1791. 

  1791. 	var share Share
    1792. 

  1792. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1793. 

  1793. 		bucket, err := p.getSharesBucket(tx)
    1794. 

  1794. 		if err != nil {
    1795. 

  1795. 			return err
    1796. 

  1796. 		}
    1797. 

  1797. 

  1798. 		s := bucket.Get([]byte(shareID))
    1799. 

  1799. 		if s == nil {
    1800. 

  1800. 			return util.NewRecordNotFoundError(fmt.Sprintf("Share %v does not exist", shareID))
    1801. 

  1801. 		}
    1802. 

  1802. 		if err := json.Unmarshal(s, &share); err != nil {
    1803. 

  1803. 			return err
    1804. 

  1804. 		}
    1805. 

  1805. 		if username != "" && share.Username != username {
    1806. 

  1806. 			return util.NewRecordNotFoundError(fmt.Sprintf("Share %v does not exist", shareID))
    1807. 

  1807. 		}
    1808. 

  1808. 		return nil
    1809. 

  1809. 	})
    1810. 

  1810. 	return share, err
    1811. 

  1811. }
    1812. 

  1812. 

  1813. func (p *BoltProvider) addShare(share *Share) error {
    1814. 

  1814. 	err := share.validate()
    1815. 

  1815. 	if err != nil {
    1816. 

  1816. 		return err
    1817. 

  1817. 	}
    1818. 

  1818. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1819. 

  1819. 		bucket, err := p.getSharesBucket(tx)
    1820. 

  1820. 		if err != nil {
    1821. 

  1821. 			return err
    1822. 

  1822. 		}
    1823. 

  1823. 		if a := bucket.Get([]byte(share.ShareID)); a != nil {
    1824. 

  1824. 			return fmt.Errorf("share %q already exists", share.ShareID)
    1825. 

  1825. 		}
    1826. 

  1826. 		id, err := bucket.NextSequence()
    1827. 

  1827. 		if err != nil {
    1828. 

  1828. 			return err
    1829. 

  1829. 		}
    1830. 

  1830. 		share.ID = int64(id)
    1831. 

  1831. 		if !share.IsRestore {
    1832. 

  1832. 			share.CreatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    1833. 

  1833. 			share.UpdatedAt = share.CreatedAt
    1834. 

  1834. 			share.LastUseAt = 0
    1835. 

  1835. 			share.UsedTokens = 0
    1836. 

  1836. 		}
    1837. 

  1837. 		if share.CreatedAt == 0 {
    1838. 

  1838. 			share.CreatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    1839. 

  1839. 		}
    1840. 

  1840. 		if share.UpdatedAt == 0 {
    1841. 

  1841. 			share.UpdatedAt = share.CreatedAt
    1842. 

  1842. 		}
    1843. 

  1843. 		if err := p.userExistsInternal(tx, share.Username); err != nil {
    1844. 

  1844. 			return util.NewValidationError(fmt.Sprintf("related user %q does not exists", share.Username))
    1845. 

  1845. 		}
    1846. 

  1846. 		buf, err := json.Marshal(share)
    1847. 

  1847. 		if err != nil {
    1848. 

  1848. 			return err
    1849. 

  1849. 		}
    1850. 

  1850. 		return bucket.Put([]byte(share.ShareID), buf)
    1851. 

  1851. 	})
    1852. 

  1852. }
    1853. 

  1853. 

  1854. func (p *BoltProvider) updateShare(share *Share) error {
    1855. 

  1855. 	if err := share.validate(); err != nil {
    1856. 

  1856. 		return err
    1857. 

  1857. 	}
    1858. 

  1858. 

  1859. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1860. 

  1860. 		bucket, err := p.getSharesBucket(tx)
    1861. 

  1861. 		if err != nil {
    1862. 

  1862. 			return err
    1863. 

  1863. 		}
    1864. 

  1864. 		var s []byte
    1865. 

  1865. 

  1866. 		if s = bucket.Get([]byte(share.ShareID)); s == nil {
    1867. 

  1867. 			return util.NewRecordNotFoundError(fmt.Sprintf("Share %v does not exist", share.ShareID))
    1868. 

  1868. 		}
    1869. 

  1869. 		var oldObject Share
    1870. 

  1870. 		if err = json.Unmarshal(s, &oldObject); err != nil {
    1871. 

  1871. 			return err
    1872. 

  1872. 		}
    1873. 

  1873. 		if oldObject.Username != share.Username {
    1874. 

  1874. 			return util.NewRecordNotFoundError(fmt.Sprintf("Share %v does not exist", share.ShareID))
    1875. 

  1875. 		}
    1876. 

  1876. 

  1877. 		share.ID = oldObject.ID
    1878. 

  1878. 		share.ShareID = oldObject.ShareID
    1879. 

  1879. 		if !share.IsRestore {
    1880. 

  1880. 			share.UsedTokens = oldObject.UsedTokens
    1881. 

  1881. 			share.CreatedAt = oldObject.CreatedAt
    1882. 

  1882. 			share.LastUseAt = oldObject.LastUseAt
    1883. 

  1883. 			share.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    1884. 

  1884. 		}
    1885. 

  1885. 		if share.CreatedAt == 0 {
    1886. 

  1886. 			share.CreatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    1887. 

  1887. 		}
    1888. 

  1888. 		if share.UpdatedAt == 0 {
    1889. 

  1889. 			share.UpdatedAt = share.CreatedAt
    1890. 

  1890. 		}
    1891. 

  1891. 		if err := p.userExistsInternal(tx, share.Username); err != nil {
    1892. 

  1892. 			return util.NewValidationError(fmt.Sprintf("related user %q does not exists", share.Username))
    1893. 

  1893. 		}
    1894. 

  1894. 		buf, err := json.Marshal(share)
    1895. 

  1895. 		if err != nil {
    1896. 

  1896. 			return err
    1897. 

  1897. 		}
    1898. 

  1898. 		return bucket.Put([]byte(share.ShareID), buf)
    1899. 

  1899. 	})
    1900. 

  1900. }
    1901. 

  1901. 

  1902. func (p *BoltProvider) deleteShare(share Share) error {
    1903. 

  1903. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    1904. 

  1904. 		bucket, err := p.getSharesBucket(tx)
    1905. 

  1905. 		if err != nil {
    1906. 

  1906. 			return err
    1907. 

  1907. 		}
    1908. 

  1908. 

  1909. 		var s []byte
    1910. 

  1910. 

  1911. 		if s = bucket.Get([]byte(share.ShareID)); s == nil {
    1912. 

  1912. 			return util.NewRecordNotFoundError(fmt.Sprintf("Share %v does not exist", share.ShareID))
    1913. 

  1913. 		}
    1914. 

  1914. 		var oldObject Share
    1915. 

  1915. 		if err = json.Unmarshal(s, &oldObject); err != nil {
    1916. 

  1916. 			return err
    1917. 

  1917. 		}
    1918. 

  1918. 		if oldObject.Username != share.Username {
    1919. 

  1919. 			return util.NewRecordNotFoundError(fmt.Sprintf("Share %v does not exist", share.ShareID))
    1920. 

  1920. 		}
    1921. 

  1921. 

  1922. 		return bucket.Delete([]byte(share.ShareID))
    1923. 

  1923. 	})
    1924. 

  1924. }
    1925. 

  1925. 

  1926. func (p *BoltProvider) getShares(limit int, offset int, order, username string) ([]Share, error) {
    1927. 

  1927. 	shares := make([]Share, 0, limit)
    1928. 

  1928. 

  1929. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1930. 

  1930. 		bucket, err := p.getSharesBucket(tx)
    1931. 

  1931. 		if err != nil {
    1932. 

  1932. 			return err
    1933. 

  1933. 		}
    1934. 

  1934. 		cursor := bucket.Cursor()
    1935. 

  1935. 		itNum := 0
    1936. 

  1936. 		if order == OrderASC {
    1937. 

  1937. 			for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    1938. 

  1938. 				var share Share
    1939. 

  1939. 				if err := json.Unmarshal(v, &share); err != nil {
    1940. 

  1940. 					return err
    1941. 

  1941. 				}
    1942. 

  1942. 				if share.Username != username {
    1943. 

  1943. 					continue
    1944. 

  1944. 				}
    1945. 

  1945. 				itNum++
    1946. 

  1946. 				if itNum <= offset {
    1947. 

  1947. 					continue
    1948. 

  1948. 				}
    1949. 

  1949. 				share.HideConfidentialData()
    1950. 

  1950. 				shares = append(shares, share)
    1951. 

  1951. 				if len(shares) >= limit {
    1952. 

  1952. 					break
    1953. 

  1953. 				}
    1954. 

  1954. 			}
    1955. 

  1955. 			return nil
    1956. 

  1956. 		}
    1957. 

  1957. 		for k, v := cursor.Last(); k != nil; k, v = cursor.Prev() {
    1958. 

  1958. 			var share Share
    1959. 

  1959. 			err = json.Unmarshal(v, &share)
    1960. 

  1960. 			if err != nil {
    1961. 

  1961. 				return err
    1962. 

  1962. 			}
    1963. 

  1963. 			if share.Username != username {
    1964. 

  1964. 				continue
    1965. 

  1965. 			}
    1966. 

  1966. 			itNum++
    1967. 

  1967. 			if itNum <= offset {
    1968. 

  1968. 				continue
    1969. 

  1969. 			}
    1970. 

  1970. 			share.HideConfidentialData()
    1971. 

  1971. 			shares = append(shares, share)
    1972. 

  1972. 			if len(shares) >= limit {
    1973. 

  1973. 				break
    1974. 

  1974. 			}
    1975. 

  1975. 		}
    1976. 

  1976. 		return nil
    1977. 

  1977. 	})
    1978. 

  1978. 

  1979. 	return shares, err
    1980. 

  1980. }
    1981. 

  1981. 

  1982. func (p *BoltProvider) dumpShares() ([]Share, error) {
    1983. 

  1983. 	shares := make([]Share, 0, 30)
    1984. 

  1984. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    1985. 

  1985. 		bucket, err := p.getSharesBucket(tx)
    1986. 

  1986. 		if err != nil {
    1987. 

  1987. 			return err
    1988. 

  1988. 		}
    1989. 

  1989. 

  1990. 		cursor := bucket.Cursor()
    1991. 

  1991. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    1992. 

  1992. 			var share Share
    1993. 

  1993. 			err = json.Unmarshal(v, &share)
    1994. 

  1994. 			if err != nil {
    1995. 

  1995. 				return err
    1996. 

  1996. 			}
    1997. 

  1997. 			shares = append(shares, share)
    1998. 

  1998. 		}
    1999. 

  1999. 		return err
    2000. 

  2000. 	})
    2001. 

  2001. 

  2002. 	return shares, err
    2003. 

  2003. }
    2004. 

  2004. 

  2005. func (p *BoltProvider) updateShareLastUse(shareID string, numTokens int) error {
    2006. 

  2006. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2007. 

  2007. 		bucket, err := p.getSharesBucket(tx)
    2008. 

  2008. 		if err != nil {
    2009. 

  2009. 			return err
    2010. 

  2010. 		}
    2011. 

  2011. 		var u []byte
    2012. 

  2012. 		if u = bucket.Get([]byte(shareID)); u == nil {
    2013. 

  2013. 			return util.NewRecordNotFoundError(fmt.Sprintf("share %q does not exist, unable to update last use", shareID))
    2014. 

  2014. 		}
    2015. 

  2015. 		var share Share
    2016. 

  2016. 		err = json.Unmarshal(u, &share)
    2017. 

  2017. 		if err != nil {
    2018. 

  2018. 			return err
    2019. 

  2019. 		}
    2020. 

  2020. 		share.LastUseAt = util.GetTimeAsMsSinceEpoch(time.Now())
    2021. 

  2021. 		share.UsedTokens += numTokens
    2022. 

  2022. 		buf, err := json.Marshal(share)
    2023. 

  2023. 		if err != nil {
    2024. 

  2024. 			return err
    2025. 

  2025. 		}
    2026. 

  2026. 		err = bucket.Put([]byte(shareID), buf)
    2027. 

  2027. 		if err != nil {
    2028. 

  2028. 			providerLog(logger.LevelWarn, "error updating last use for share %q: %v", shareID, err)
    2029. 

  2029. 			return err
    2030. 

  2030. 		}
    2031. 

  2031. 		providerLog(logger.LevelDebug, "last use updated for share %q", shareID)
    2032. 

  2032. 		return nil
    2033. 

  2033. 	})
    2034. 

  2034. }
    2035. 

  2035. 

  2036. func (p *BoltProvider) getDefenderHosts(_ int64, _ int) ([]DefenderEntry, error) {
    2037. 

  2037. 	return nil, ErrNotImplemented
    2038. 

  2038. }
    2039. 

  2039. 

  2040. func (p *BoltProvider) getDefenderHostByIP(_ string, _ int64) (DefenderEntry, error) {
    2041. 

  2041. 	return DefenderEntry{}, ErrNotImplemented
    2042. 

  2042. }
    2043. 

  2043. 

  2044. func (p *BoltProvider) isDefenderHostBanned(_ string) (DefenderEntry, error) {
    2045. 

  2045. 	return DefenderEntry{}, ErrNotImplemented
    2046. 

  2046. }
    2047. 

  2047. 

  2048. func (p *BoltProvider) updateDefenderBanTime(_ string, _ int) error {
    2049. 

  2049. 	return ErrNotImplemented
    2050. 

  2050. }
    2051. 

  2051. 

  2052. func (p *BoltProvider) deleteDefenderHost(_ string) error {
    2053. 

  2053. 	return ErrNotImplemented
    2054. 

  2054. }
    2055. 

  2055. 

  2056. func (p *BoltProvider) addDefenderEvent(_ string, _ int) error {
    2057. 

  2057. 	return ErrNotImplemented
    2058. 

  2058. }
    2059. 

  2059. 

  2060. func (p *BoltProvider) setDefenderBanTime(_ string, _ int64) error {
    2061. 

  2061. 	return ErrNotImplemented
    2062. 

  2062. }
    2063. 

  2063. 

  2064. func (p *BoltProvider) cleanupDefender(_ int64) error {
    2065. 

  2065. 	return ErrNotImplemented
    2066. 

  2066. }
    2067. 

  2067. 

  2068. func (p *BoltProvider) addActiveTransfer(_ ActiveTransfer) error {
    2069. 

  2069. 	return ErrNotImplemented
    2070. 

  2070. }
    2071. 

  2071. 

  2072. func (p *BoltProvider) updateActiveTransferSizes(_, _, _ int64, _ string) error {
    2073. 

  2073. 	return ErrNotImplemented
    2074. 

  2074. }
    2075. 

  2075. 

  2076. func (p *BoltProvider) removeActiveTransfer(_ int64, _ string) error {
    2077. 

  2077. 	return ErrNotImplemented
    2078. 

  2078. }
    2079. 

  2079. 

  2080. func (p *BoltProvider) cleanupActiveTransfers(_ time.Time) error {
    2081. 

  2081. 	return ErrNotImplemented
    2082. 

  2082. }
    2083. 

  2083. 

  2084. func (p *BoltProvider) getActiveTransfers(_ time.Time) ([]ActiveTransfer, error) {
    2085. 

  2085. 	return nil, ErrNotImplemented
    2086. 

  2086. }
    2087. 

  2087. 

  2088. func (p *BoltProvider) addSharedSession(_ Session) error {
    2089. 

  2089. 	return ErrNotImplemented
    2090. 

  2090. }
    2091. 

  2091. 

  2092. func (p *BoltProvider) deleteSharedSession(_ string) error {
    2093. 

  2093. 	return ErrNotImplemented
    2094. 

  2094. }
    2095. 

  2095. 

  2096. func (p *BoltProvider) getSharedSession(_ string) (Session, error) {
    2097. 

  2097. 	return Session{}, ErrNotImplemented
    2098. 

  2098. }
    2099. 

  2099. 

  2100. func (p *BoltProvider) cleanupSharedSessions(_ SessionType, _ int64) error {
    2101. 

  2101. 	return ErrNotImplemented
    2102. 

  2102. }
    2103. 

  2103. 

  2104. func (p *BoltProvider) getEventActions(limit, offset int, order string, _ bool) ([]BaseEventAction, error) {
    2105. 

  2105. 	if limit <= 0 {
    2106. 

  2106. 		return nil, nil
    2107. 

  2107. 	}
    2108. 

  2108. 	actions := make([]BaseEventAction, 0, limit)
    2109. 

  2109. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2110. 

  2110. 		bucket, err := p.getActionsBucket(tx)
    2111. 

  2111. 		if err != nil {
    2112. 

  2112. 			return err
    2113. 

  2113. 		}
    2114. 

  2114. 		itNum := 0
    2115. 

  2115. 		cursor := bucket.Cursor()
    2116. 

  2116. 		if order == OrderASC {
    2117. 

  2117. 			for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    2118. 

  2118. 				itNum++
    2119. 

  2119. 				if itNum <= offset {
    2120. 

  2120. 					continue
    2121. 

  2121. 				}
    2122. 

  2122. 				var action BaseEventAction
    2123. 

  2123. 				err = json.Unmarshal(v, &action)
    2124. 

  2124. 				if err != nil {
    2125. 

  2125. 					return err
    2126. 

  2126. 				}
    2127. 

  2127. 				action.PrepareForRendering()
    2128. 

  2128. 				actions = append(actions, action)
    2129. 

  2129. 				if len(actions) >= limit {
    2130. 

  2130. 					break
    2131. 

  2131. 				}
    2132. 

  2132. 			}
    2133. 

  2133. 		} else {
    2134. 

  2134. 			for k, v := cursor.Last(); k != nil; k, v = cursor.Prev() {
    2135. 

  2135. 				itNum++
    2136. 

  2136. 				if itNum <= offset {
    2137. 

  2137. 					continue
    2138. 

  2138. 				}
    2139. 

  2139. 				var action BaseEventAction
    2140. 

  2140. 				err = json.Unmarshal(v, &action)
    2141. 

  2141. 				if err != nil {
    2142. 

  2142. 					return err
    2143. 

  2143. 				}
    2144. 

  2144. 				action.PrepareForRendering()
    2145. 

  2145. 				actions = append(actions, action)
    2146. 

  2146. 				if len(actions) >= limit {
    2147. 

  2147. 					break
    2148. 

  2148. 				}
    2149. 

  2149. 			}
    2150. 

  2150. 		}
    2151. 

  2151. 		return nil
    2152. 

  2152. 	})
    2153. 

  2153. 	return actions, err
    2154. 

  2154. }
    2155. 

  2155. 

  2156. func (p *BoltProvider) dumpEventActions() ([]BaseEventAction, error) {
    2157. 

  2157. 	actions := make([]BaseEventAction, 0, 50)
    2158. 

  2158. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2159. 

  2159. 		bucket, err := p.getActionsBucket(tx)
    2160. 

  2160. 		if err != nil {
    2161. 

  2161. 			return err
    2162. 

  2162. 		}
    2163. 

  2163. 		cursor := bucket.Cursor()
    2164. 

  2164. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    2165. 

  2165. 			var action BaseEventAction
    2166. 

  2166. 			err = json.Unmarshal(v, &action)
    2167. 

  2167. 			if err != nil {
    2168. 

  2168. 				return err
    2169. 

  2169. 			}
    2170. 

  2170. 			actions = append(actions, action)
    2171. 

  2171. 		}
    2172. 

  2172. 		return nil
    2173. 

  2173. 	})
    2174. 

  2174. 	return actions, err
    2175. 

  2175. }
    2176. 

  2176. 

  2177. func (p *BoltProvider) eventActionExists(name string) (BaseEventAction, error) {
    2178. 

  2178. 	var action BaseEventAction
    2179. 

  2179. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2180. 

  2180. 		bucket, err := p.getActionsBucket(tx)
    2181. 

  2181. 		if err != nil {
    2182. 

  2182. 			return err
    2183. 

  2183. 		}
    2184. 

  2184. 		k := bucket.Get([]byte(name))
    2185. 

  2185. 		if k == nil {
    2186. 

  2186. 			return util.NewRecordNotFoundError(fmt.Sprintf("action %q does not exist", name))
    2187. 

  2187. 		}
    2188. 

  2188. 		return json.Unmarshal(k, &action)
    2189. 

  2189. 	})
    2190. 

  2190. 	return action, err
    2191. 

  2191. }
    2192. 

  2192. 

  2193. func (p *BoltProvider) addEventAction(action *BaseEventAction) error {
    2194. 

  2194. 	err := action.validate()
    2195. 

  2195. 	if err != nil {
    2196. 

  2196. 		return err
    2197. 

  2197. 	}
    2198. 

  2198. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2199. 

  2199. 		bucket, err := p.getActionsBucket(tx)
    2200. 

  2200. 		if err != nil {
    2201. 

  2201. 			return err
    2202. 

  2202. 		}
    2203. 

  2203. 		if a := bucket.Get([]byte(action.Name)); a != nil {
    2204. 

  2204. 			return util.NewI18nError(
    2205. 

  2205. 				fmt.Errorf("%w: event action %q already exists", ErrDuplicatedKey, action.Name),
    2206. 

  2206. 				util.I18nErrorDuplicatedName,
    2207. 

  2207. 			)
    2208. 

  2208. 		}
    2209. 

  2209. 		id, err := bucket.NextSequence()
    2210. 

  2210. 		if err != nil {
    2211. 

  2211. 			return err
    2212. 

  2212. 		}
    2213. 

  2213. 		action.ID = int64(id)
    2214. 

  2214. 		action.Rules = nil
    2215. 

  2215. 		buf, err := json.Marshal(action)
    2216. 

  2216. 		if err != nil {
    2217. 

  2217. 			return err
    2218. 

  2218. 		}
    2219. 

  2219. 		return bucket.Put([]byte(action.Name), buf)
    2220. 

  2220. 	})
    2221. 

  2221. }
    2222. 

  2222. 

  2223. func (p *BoltProvider) updateEventAction(action *BaseEventAction) error {
    2224. 

  2224. 	err := action.validate()
    2225. 

  2225. 	if err != nil {
    2226. 

  2226. 		return err
    2227. 

  2227. 	}
    2228. 

  2228. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2229. 

  2229. 		bucket, err := p.getActionsBucket(tx)
    2230. 

  2230. 		if err != nil {
    2231. 

  2231. 			return err
    2232. 

  2232. 		}
    2233. 

  2233. 		var a []byte
    2234. 

  2234. 

  2235. 		if a = bucket.Get([]byte(action.Name)); a == nil {
    2236. 

  2236. 			return util.NewRecordNotFoundError(fmt.Sprintf("event action %s does not exist", action.Name))
    2237. 

  2237. 		}
    2238. 

  2238. 		var oldAction BaseEventAction
    2239. 

  2239. 		err = json.Unmarshal(a, &oldAction)
    2240. 

  2240. 		if err != nil {
    2241. 

  2241. 			return err
    2242. 

  2242. 		}
    2243. 

  2243. 		action.ID = oldAction.ID
    2244. 

  2244. 		action.Name = oldAction.Name
    2245. 

  2245. 		action.Rules = nil
    2246. 

  2246. 		if len(oldAction.Rules) > 0 {
    2247. 

  2247. 			rulesBucket, err := p.getRulesBucket(tx)
    2248. 

  2248. 			if err != nil {
    2249. 

  2249. 				return err
    2250. 

  2250. 			}
    2251. 

  2251. 			var relatedRules []string
    2252. 

  2252. 			for _, ruleName := range oldAction.Rules {
    2253. 

  2253. 				r := rulesBucket.Get([]byte(ruleName))
    2254. 

  2254. 				if r != nil {
    2255. 

  2255. 					relatedRules = append(relatedRules, ruleName)
    2256. 

  2256. 					var rule EventRule
    2257. 

  2257. 					err := json.Unmarshal(r, &rule)
    2258. 

  2258. 					if err != nil {
    2259. 

  2259. 						return err
    2260. 

  2260. 					}
    2261. 

  2261. 					rule.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    2262. 

  2262. 					buf, err := json.Marshal(rule)
    2263. 

  2263. 					if err != nil {
    2264. 

  2264. 						return err
    2265. 

  2265. 					}
    2266. 

  2266. 					if err = rulesBucket.Put([]byte(rule.Name), buf); err != nil {
    2267. 

  2267. 						return err
    2268. 

  2268. 					}
    2269. 

  2269. 					setLastRuleUpdate()
    2270. 

  2270. 				}
    2271. 

  2271. 			}
    2272. 

  2272. 			action.Rules = relatedRules
    2273. 

  2273. 		}
    2274. 

  2274. 		buf, err := json.Marshal(action)
    2275. 

  2275. 		if err != nil {
    2276. 

  2276. 			return err
    2277. 

  2277. 		}
    2278. 

  2278. 		return bucket.Put([]byte(action.Name), buf)
    2279. 

  2279. 	})
    2280. 

  2280. }
    2281. 

  2281. 

  2282. func (p *BoltProvider) deleteEventAction(action BaseEventAction) error {
    2283. 

  2283. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2284. 

  2284. 		bucket, err := p.getActionsBucket(tx)
    2285. 

  2285. 		if err != nil {
    2286. 

  2286. 			return err
    2287. 

  2287. 		}
    2288. 

  2288. 		var a []byte
    2289. 

  2289. 

  2290. 		if a = bucket.Get([]byte(action.Name)); a == nil {
    2291. 

  2291. 			return util.NewRecordNotFoundError(fmt.Sprintf("action %s does not exist", action.Name))
    2292. 

  2292. 		}
    2293. 

  2293. 		var oldAction BaseEventAction
    2294. 

  2294. 		err = json.Unmarshal(a, &oldAction)
    2295. 

  2295. 		if err != nil {
    2296. 

  2296. 			return err
    2297. 

  2297. 		}
    2298. 

  2298. 		if len(oldAction.Rules) > 0 {
    2299. 

  2299. 			return util.NewValidationError(fmt.Sprintf("action %s is referenced, it cannot be removed", oldAction.Name))
    2300. 

  2300. 		}
    2301. 

  2301. 		return bucket.Delete([]byte(action.Name))
    2302. 

  2302. 	})
    2303. 

  2303. }
    2304. 

  2304. 

  2305. func (p *BoltProvider) getEventRules(limit, offset int, order string) ([]EventRule, error) {
    2306. 

  2306. 	if limit <= 0 {
    2307. 

  2307. 		return nil, nil
    2308. 

  2308. 	}
    2309. 

  2309. 	rules := make([]EventRule, 0, limit)
    2310. 

  2310. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2311. 

  2311. 		bucket, err := p.getRulesBucket(tx)
    2312. 

  2312. 		if err != nil {
    2313. 

  2313. 			return err
    2314. 

  2314. 		}
    2315. 

  2315. 		actionsBucket, err := p.getActionsBucket(tx)
    2316. 

  2316. 		if err != nil {
    2317. 

  2317. 			return err
    2318. 

  2318. 		}
    2319. 

  2319. 		itNum := 0
    2320. 

  2320. 		cursor := bucket.Cursor()
    2321. 

  2321. 		if order == OrderASC {
    2322. 

  2322. 			for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    2323. 

  2323. 				itNum++
    2324. 

  2324. 				if itNum <= offset {
    2325. 

  2325. 					continue
    2326. 

  2326. 				}
    2327. 

  2327. 				var rule EventRule
    2328. 

  2328. 				rule, err = p.joinRuleAndActions(v, actionsBucket)
    2329. 

  2329. 				if err != nil {
    2330. 

  2330. 					return err
    2331. 

  2331. 				}
    2332. 

  2332. 				rule.PrepareForRendering()
    2333. 

  2333. 				rules = append(rules, rule)
    2334. 

  2334. 				if len(rules) >= limit {
    2335. 

  2335. 					break
    2336. 

  2336. 				}
    2337. 

  2337. 			}
    2338. 

  2338. 		} else {
    2339. 

  2339. 			for k, v := cursor.Last(); k != nil; k, v = cursor.Prev() {
    2340. 

  2340. 				itNum++
    2341. 

  2341. 				if itNum <= offset {
    2342. 

  2342. 					continue
    2343. 

  2343. 				}
    2344. 

  2344. 				var rule EventRule
    2345. 

  2345. 				rule, err = p.joinRuleAndActions(v, actionsBucket)
    2346. 

  2346. 				if err != nil {
    2347. 

  2347. 					return err
    2348. 

  2348. 				}
    2349. 

  2349. 				rule.PrepareForRendering()
    2350. 

  2350. 				rules = append(rules, rule)
    2351. 

  2351. 				if len(rules) >= limit {
    2352. 

  2352. 					break
    2353. 

  2353. 				}
    2354. 

  2354. 			}
    2355. 

  2355. 		}
    2356. 

  2356. 		return err
    2357. 

  2357. 	})
    2358. 

  2358. 	return rules, err
    2359. 

  2359. }
    2360. 

  2360. 

  2361. func (p *BoltProvider) dumpEventRules() ([]EventRule, error) {
    2362. 

  2362. 	rules := make([]EventRule, 0, 50)
    2363. 

  2363. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2364. 

  2364. 		bucket, err := p.getRulesBucket(tx)
    2365. 

  2365. 		if err != nil {
    2366. 

  2366. 			return err
    2367. 

  2367. 		}
    2368. 

  2368. 		actionsBucket, err := p.getActionsBucket(tx)
    2369. 

  2369. 		if err != nil {
    2370. 

  2370. 			return err
    2371. 

  2371. 		}
    2372. 

  2372. 		cursor := bucket.Cursor()
    2373. 

  2373. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    2374. 

  2374. 			rule, err := p.joinRuleAndActions(v, actionsBucket)
    2375. 

  2375. 			if err != nil {
    2376. 

  2376. 				return err
    2377. 

  2377. 			}
    2378. 

  2378. 			rules = append(rules, rule)
    2379. 

  2379. 		}
    2380. 

  2380. 		return nil
    2381. 

  2381. 	})
    2382. 

  2382. 	return rules, err
    2383. 

  2383. }
    2384. 

  2384. 

  2385. func (p *BoltProvider) getRecentlyUpdatedRules(after int64) ([]EventRule, error) {
    2386. 

  2386. 	if getLastRuleUpdate() < after {
    2387. 

  2387. 		return nil, nil
    2388. 

  2388. 	}
    2389. 

  2389. 	rules := make([]EventRule, 0, 10)
    2390. 

  2390. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2391. 

  2391. 		bucket, err := p.getRulesBucket(tx)
    2392. 

  2392. 		if err != nil {
    2393. 

  2393. 			return err
    2394. 

  2394. 		}
    2395. 

  2395. 		actionsBucket, err := p.getActionsBucket(tx)
    2396. 

  2396. 		if err != nil {
    2397. 

  2397. 			return err
    2398. 

  2398. 		}
    2399. 

  2399. 		cursor := bucket.Cursor()
    2400. 

  2400. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    2401. 

  2401. 			var rule EventRule
    2402. 

  2402. 			err := json.Unmarshal(v, &rule)
    2403. 

  2403. 			if err != nil {
    2404. 

  2404. 				return err
    2405. 

  2405. 			}
    2406. 

  2406. 			if rule.UpdatedAt < after {
    2407. 

  2407. 				continue
    2408. 

  2408. 			}
    2409. 

  2409. 			var actions []EventAction
    2410. 

  2410. 			for idx := range rule.Actions {
    2411. 

  2411. 				action := &rule.Actions[idx]
    2412. 

  2412. 				var baseAction BaseEventAction
    2413. 

  2413. 				k := actionsBucket.Get([]byte(action.Name))
    2414. 

  2414. 				if k == nil {
    2415. 

  2415. 					continue
    2416. 

  2416. 				}
    2417. 

  2417. 				err = json.Unmarshal(k, &baseAction)
    2418. 

  2418. 				if err != nil {
    2419. 

  2419. 					continue
    2420. 

  2420. 				}
    2421. 

  2421. 				baseAction.Options.SetEmptySecretsIfNil()
    2422. 

  2422. 				action.BaseEventAction = baseAction
    2423. 

  2423. 				actions = append(actions, *action)
    2424. 

  2424. 			}
    2425. 

  2425. 			rule.Actions = actions
    2426. 

  2426. 			rules = append(rules, rule)
    2427. 

  2427. 		}
    2428. 

  2428. 		return nil
    2429. 

  2429. 	})
    2430. 

  2430. 	return rules, err
    2431. 

  2431. }
    2432. 

  2432. 

  2433. func (p *BoltProvider) eventRuleExists(name string) (EventRule, error) {
    2434. 

  2434. 	var rule EventRule
    2435. 

  2435. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2436. 

  2436. 		bucket, err := p.getRulesBucket(tx)
    2437. 

  2437. 		if err != nil {
    2438. 

  2438. 			return err
    2439. 

  2439. 		}
    2440. 

  2440. 		r := bucket.Get([]byte(name))
    2441. 

  2441. 		if r == nil {
    2442. 

  2442. 			return util.NewRecordNotFoundError(fmt.Sprintf("event rule %q does not exist", name))
    2443. 

  2443. 		}
    2444. 

  2444. 		actionsBucket, err := p.getActionsBucket(tx)
    2445. 

  2445. 		if err != nil {
    2446. 

  2446. 			return err
    2447. 

  2447. 		}
    2448. 

  2448. 		rule, err = p.joinRuleAndActions(r, actionsBucket)
    2449. 

  2449. 		return err
    2450. 

  2450. 	})
    2451. 

  2451. 	return rule, err
    2452. 

  2452. }
    2453. 

  2453. 

  2454. func (p *BoltProvider) addEventRule(rule *EventRule) error {
    2455. 

  2455. 	if err := rule.validate(); err != nil {
    2456. 

  2456. 		return err
    2457. 

  2457. 	}
    2458. 

  2458. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2459. 

  2459. 		bucket, err := p.getRulesBucket(tx)
    2460. 

  2460. 		if err != nil {
    2461. 

  2461. 			return err
    2462. 

  2462. 		}
    2463. 

  2463. 		actionsBucket, err := p.getActionsBucket(tx)
    2464. 

  2464. 		if err != nil {
    2465. 

  2465. 			return err
    2466. 

  2466. 		}
    2467. 

  2467. 		if r := bucket.Get([]byte(rule.Name)); r != nil {
    2468. 

  2468. 			return util.NewI18nError(
    2469. 

  2469. 				fmt.Errorf("%w: event rule %q already exists", ErrDuplicatedKey, rule.Name),
    2470. 

  2470. 				util.I18nErrorDuplicatedName,
    2471. 

  2471. 			)
    2472. 

  2472. 		}
    2473. 

  2473. 		id, err := bucket.NextSequence()
    2474. 

  2474. 		if err != nil {
    2475. 

  2475. 			return err
    2476. 

  2476. 		}
    2477. 

  2477. 		rule.ID = int64(id)
    2478. 

  2478. 		rule.CreatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    2479. 

  2479. 		rule.UpdatedAt = rule.CreatedAt
    2480. 

  2480. 		for idx := range rule.Actions {
    2481. 

  2481. 			if err = p.addRuleToActionMapping(rule.Name, rule.Actions[idx].Name, actionsBucket); err != nil {
    2482. 

  2482. 				return err
    2483. 

  2483. 			}
    2484. 

  2484. 		}
    2485. 

  2485. 		sort.Slice(rule.Actions, func(i, j int) bool {
    2486. 

  2486. 			return rule.Actions[i].Order < rule.Actions[j].Order
    2487. 

  2487. 		})
    2488. 

  2488. 		buf, err := json.Marshal(rule)
    2489. 

  2489. 		if err != nil {
    2490. 

  2490. 			return err
    2491. 

  2491. 		}
    2492. 

  2492. 		err = bucket.Put([]byte(rule.Name), buf)
    2493. 

  2493. 		if err == nil {
    2494. 

  2494. 			setLastRuleUpdate()
    2495. 

  2495. 		}
    2496. 

  2496. 		return err
    2497. 

  2497. 	})
    2498. 

  2498. }
    2499. 

  2499. 

  2500. func (p *BoltProvider) updateEventRule(rule *EventRule) error {
    2501. 

  2501. 	if err := rule.validate(); err != nil {
    2502. 

  2502. 		return err
    2503. 

  2503. 	}
    2504. 

  2504. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2505. 

  2505. 		bucket, err := p.getRulesBucket(tx)
    2506. 

  2506. 		if err != nil {
    2507. 

  2507. 			return err
    2508. 

  2508. 		}
    2509. 

  2509. 		actionsBucket, err := p.getActionsBucket(tx)
    2510. 

  2510. 		if err != nil {
    2511. 

  2511. 			return err
    2512. 

  2512. 		}
    2513. 

  2513. 		var r []byte
    2514. 

  2514. 		if r = bucket.Get([]byte(rule.Name)); r == nil {
    2515. 

  2515. 			return util.NewRecordNotFoundError(fmt.Sprintf("event rule %q does not exist", rule.Name))
    2516. 

  2516. 		}
    2517. 

  2517. 		var oldRule EventRule
    2518. 

  2518. 		if err = json.Unmarshal(r, &oldRule); err != nil {
    2519. 

  2519. 			return err
    2520. 

  2520. 		}
    2521. 

  2521. 		for idx := range oldRule.Actions {
    2522. 

  2522. 			if err = p.removeRuleFromActionMapping(rule.Name, oldRule.Actions[idx].Name, actionsBucket); err != nil {
    2523. 

  2523. 				return err
    2524. 

  2524. 			}
    2525. 

  2525. 		}
    2526. 

  2526. 		for idx := range rule.Actions {
    2527. 

  2527. 			if err = p.addRuleToActionMapping(rule.Name, rule.Actions[idx].Name, actionsBucket); err != nil {
    2528. 

  2528. 				return err
    2529. 

  2529. 			}
    2530. 

  2530. 		}
    2531. 

  2531. 		rule.ID = oldRule.ID
    2532. 

  2532. 		rule.CreatedAt = oldRule.CreatedAt
    2533. 

  2533. 		rule.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    2534. 

  2534. 		buf, err := json.Marshal(rule)
    2535. 

  2535. 		if err != nil {
    2536. 

  2536. 			return err
    2537. 

  2537. 		}
    2538. 

  2538. 		sort.Slice(rule.Actions, func(i, j int) bool {
    2539. 

  2539. 			return rule.Actions[i].Order < rule.Actions[j].Order
    2540. 

  2540. 		})
    2541. 

  2541. 		err = bucket.Put([]byte(rule.Name), buf)
    2542. 

  2542. 		if err == nil {
    2543. 

  2543. 			setLastRuleUpdate()
    2544. 

  2544. 		}
    2545. 

  2545. 		return err
    2546. 

  2546. 	})
    2547. 

  2547. }
    2548. 

  2548. 

  2549. func (p *BoltProvider) deleteEventRule(rule EventRule, _ bool) error {
    2550. 

  2550. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2551. 

  2551. 		bucket, err := p.getRulesBucket(tx)
    2552. 

  2552. 		if err != nil {
    2553. 

  2553. 			return err
    2554. 

  2554. 		}
    2555. 

  2555. 		var r []byte
    2556. 

  2556. 		if r = bucket.Get([]byte(rule.Name)); r == nil {
    2557. 

  2557. 			return util.NewRecordNotFoundError(fmt.Sprintf("event rule %q does not exist", rule.Name))
    2558. 

  2558. 		}
    2559. 

  2559. 		var oldRule EventRule
    2560. 

  2560. 		if err = json.Unmarshal(r, &oldRule); err != nil {
    2561. 

  2561. 			return err
    2562. 

  2562. 		}
    2563. 

  2563. 		if len(oldRule.Actions) > 0 {
    2564. 

  2564. 			actionsBucket, err := p.getActionsBucket(tx)
    2565. 

  2565. 			if err != nil {
    2566. 

  2566. 				return err
    2567. 

  2567. 			}
    2568. 

  2568. 			for idx := range oldRule.Actions {
    2569. 

  2569. 				if err = p.removeRuleFromActionMapping(rule.Name, oldRule.Actions[idx].Name, actionsBucket); err != nil {
    2570. 

  2570. 					return err
    2571. 

  2571. 				}
    2572. 

  2572. 			}
    2573. 

  2573. 		}
    2574. 

  2574. 		return bucket.Delete([]byte(rule.Name))
    2575. 

  2575. 	})
    2576. 

  2576. }
    2577. 

  2577. 

  2578. func (*BoltProvider) getTaskByName(_ string) (Task, error) {
    2579. 

  2579. 	return Task{}, ErrNotImplemented
    2580. 

  2580. }
    2581. 

  2581. 

  2582. func (*BoltProvider) addTask(_ string) error {
    2583. 

  2583. 	return ErrNotImplemented
    2584. 

  2584. }
    2585. 

  2585. 

  2586. func (*BoltProvider) updateTask(_ string, _ int64) error {
    2587. 

  2587. 	return ErrNotImplemented
    2588. 

  2588. }
    2589. 

  2589. 

  2590. func (*BoltProvider) updateTaskTimestamp(_ string) error {
    2591. 

  2591. 	return ErrNotImplemented
    2592. 

  2592. }
    2593. 

  2593. 

  2594. func (*BoltProvider) addNode() error {
    2595. 

  2595. 	return ErrNotImplemented
    2596. 

  2596. }
    2597. 

  2597. 

  2598. func (*BoltProvider) getNodeByName(_ string) (Node, error) {
    2599. 

  2599. 	return Node{}, ErrNotImplemented
    2600. 

  2600. }
    2601. 

  2601. 

  2602. func (*BoltProvider) getNodes() ([]Node, error) {
    2603. 

  2603. 	return nil, ErrNotImplemented
    2604. 

  2604. }
    2605. 

  2605. 

  2606. func (*BoltProvider) updateNodeTimestamp() error {
    2607. 

  2607. 	return ErrNotImplemented
    2608. 

  2608. }
    2609. 

  2609. 

  2610. func (*BoltProvider) cleanupNodes() error {
    2611. 

  2611. 	return ErrNotImplemented
    2612. 

  2612. }
    2613. 

  2613. 

  2614. func (p *BoltProvider) roleExists(name string) (Role, error) {
    2615. 

  2615. 	var role Role
    2616. 

  2616. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2617. 

  2617. 		bucket, err := p.getRolesBucket(tx)
    2618. 

  2618. 		if err != nil {
    2619. 

  2619. 			return err
    2620. 

  2620. 		}
    2621. 

  2621. 		r := bucket.Get([]byte(name))
    2622. 

  2622. 		if r == nil {
    2623. 

  2623. 			return util.NewRecordNotFoundError(fmt.Sprintf("role %q does not exist", name))
    2624. 

  2624. 		}
    2625. 

  2625. 		return json.Unmarshal(r, &role)
    2626. 

  2626. 	})
    2627. 

  2627. 	return role, err
    2628. 

  2628. }
    2629. 

  2629. 

  2630. func (p *BoltProvider) addRole(role *Role) error {
    2631. 

  2631. 	if err := role.validate(); err != nil {
    2632. 

  2632. 		return err
    2633. 

  2633. 	}
    2634. 

  2634. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2635. 

  2635. 		bucket, err := p.getRolesBucket(tx)
    2636. 

  2636. 		if err != nil {
    2637. 

  2637. 			return err
    2638. 

  2638. 		}
    2639. 

  2639. 		if r := bucket.Get([]byte(role.Name)); r != nil {
    2640. 

  2640. 			return util.NewI18nError(
    2641. 

  2641. 				fmt.Errorf("%w: role %q already exists", ErrDuplicatedKey, role.Name),
    2642. 

  2642. 				util.I18nErrorDuplicatedName,
    2643. 

  2643. 			)
    2644. 

  2644. 		}
    2645. 

  2645. 		id, err := bucket.NextSequence()
    2646. 

  2646. 		if err != nil {
    2647. 

  2647. 			return err
    2648. 

  2648. 		}
    2649. 

  2649. 		role.ID = int64(id)
    2650. 

  2650. 		role.CreatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    2651. 

  2651. 		role.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    2652. 

  2652. 		role.Users = nil
    2653. 

  2653. 		role.Admins = nil
    2654. 

  2654. 		buf, err := json.Marshal(role)
    2655. 

  2655. 		if err != nil {
    2656. 

  2656. 			return err
    2657. 

  2657. 		}
    2658. 

  2658. 		return bucket.Put([]byte(role.Name), buf)
    2659. 

  2659. 	})
    2660. 

  2660. }
    2661. 

  2661. 

  2662. func (p *BoltProvider) updateRole(role *Role) error {
    2663. 

  2663. 	if err := role.validate(); err != nil {
    2664. 

  2664. 		return err
    2665. 

  2665. 	}
    2666. 

  2666. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2667. 

  2667. 		bucket, err := p.getRolesBucket(tx)
    2668. 

  2668. 		if err != nil {
    2669. 

  2669. 			return err
    2670. 

  2670. 		}
    2671. 

  2671. 		var r []byte
    2672. 

  2672. 		if r = bucket.Get([]byte(role.Name)); r == nil {
    2673. 

  2673. 			return fmt.Errorf("role %q does not exist", role.Name)
    2674. 

  2674. 		}
    2675. 

  2675. 		var oldRole Role
    2676. 

  2676. 		err = json.Unmarshal(r, &oldRole)
    2677. 

  2677. 		if err != nil {
    2678. 

  2678. 			return err
    2679. 

  2679. 		}
    2680. 

  2680. 		role.ID = oldRole.ID
    2681. 

  2681. 		role.CreatedAt = oldRole.CreatedAt
    2682. 

  2682. 		role.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    2683. 

  2683. 		role.Users = oldRole.Users
    2684. 

  2684. 		role.Admins = oldRole.Admins
    2685. 

  2685. 		buf, err := json.Marshal(role)
    2686. 

  2686. 		if err != nil {
    2687. 

  2687. 			return err
    2688. 

  2688. 		}
    2689. 

  2689. 		return bucket.Put([]byte(role.Name), buf)
    2690. 

  2690. 	})
    2691. 

  2691. }
    2692. 

  2692. 

  2693. func (p *BoltProvider) deleteRole(role Role) error {
    2694. 

  2694. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2695. 

  2695. 		bucket, err := p.getRolesBucket(tx)
    2696. 

  2696. 		if err != nil {
    2697. 

  2697. 			return err
    2698. 

  2698. 		}
    2699. 

  2699. 		var r []byte
    2700. 

  2700. 		if r = bucket.Get([]byte(role.Name)); r == nil {
    2701. 

  2701. 			return fmt.Errorf("role %q does not exist", role.Name)
    2702. 

  2702. 		}
    2703. 

  2703. 		var oldRole Role
    2704. 

  2704. 		err = json.Unmarshal(r, &oldRole)
    2705. 

  2705. 		if err != nil {
    2706. 

  2706. 			return err
    2707. 

  2707. 		}
    2708. 

  2708. 		if len(oldRole.Admins) > 0 {
    2709. 

  2709. 			return util.NewValidationError(fmt.Sprintf("the role %q is referenced, it cannot be removed", oldRole.Name))
    2710. 

  2710. 		}
    2711. 

  2711. 		if len(oldRole.Users) > 0 {
    2712. 

  2712. 			bucket, err := p.getUsersBucket(tx)
    2713. 

  2713. 			if err != nil {
    2714. 

  2714. 				return err
    2715. 

  2715. 			}
    2716. 

  2716. 			for _, username := range oldRole.Users {
    2717. 

  2717. 				if err := p.removeRoleFromUser(username, oldRole.Name, bucket); err != nil {
    2718. 

  2718. 					return err
    2719. 

  2719. 				}
    2720. 

  2720. 			}
    2721. 

  2721. 		}
    2722. 

  2722. 

  2723. 		return bucket.Delete([]byte(role.Name))
    2724. 

  2724. 	})
    2725. 

  2725. }
    2726. 

  2726. 

  2727. func (p *BoltProvider) getRoles(limit int, offset int, order string, _ bool) ([]Role, error) {
    2728. 

  2728. 	roles := make([]Role, 0, limit)
    2729. 

  2729. 	if limit <= 0 {
    2730. 

  2730. 		return roles, nil
    2731. 

  2731. 	}
    2732. 

  2732. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2733. 

  2733. 		bucket, err := p.getRolesBucket(tx)
    2734. 

  2734. 		if err != nil {
    2735. 

  2735. 			return err
    2736. 

  2736. 		}
    2737. 

  2737. 		cursor := bucket.Cursor()
    2738. 

  2738. 		itNum := 0
    2739. 

  2739. 		if order == OrderASC {
    2740. 

  2740. 			for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    2741. 

  2741. 				itNum++
    2742. 

  2742. 				if itNum <= offset {
    2743. 

  2743. 					continue
    2744. 

  2744. 				}
    2745. 

  2745. 				var role Role
    2746. 

  2746. 				err = json.Unmarshal(v, &role)
    2747. 

  2747. 				if err != nil {
    2748. 

  2748. 					return err
    2749. 

  2749. 				}
    2750. 

  2750. 				roles = append(roles, role)
    2751. 

  2751. 				if len(roles) >= limit {
    2752. 

  2752. 					break
    2753. 

  2753. 				}
    2754. 

  2754. 			}
    2755. 

  2755. 		} else {
    2756. 

  2756. 			for k, v := cursor.Last(); k != nil; k, v = cursor.Prev() {
    2757. 

  2757. 				itNum++
    2758. 

  2758. 				if itNum <= offset {
    2759. 

  2759. 					continue
    2760. 

  2760. 				}
    2761. 

  2761. 				var role Role
    2762. 

  2762. 				err = json.Unmarshal(v, &role)
    2763. 

  2763. 				if err != nil {
    2764. 

  2764. 					return err
    2765. 

  2765. 				}
    2766. 

  2766. 				roles = append(roles, role)
    2767. 

  2767. 				if len(roles) >= limit {
    2768. 

  2768. 					break
    2769. 

  2769. 				}
    2770. 

  2770. 			}
    2771. 

  2771. 		}
    2772. 

  2772. 		return nil
    2773. 

  2773. 	})
    2774. 

  2774. 	return roles, err
    2775. 

  2775. }
    2776. 

  2776. 

  2777. func (p *BoltProvider) dumpRoles() ([]Role, error) {
    2778. 

  2778. 	roles := make([]Role, 0, 10)
    2779. 

  2779. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2780. 

  2780. 		bucket, err := p.getRolesBucket(tx)
    2781. 

  2781. 		if err != nil {
    2782. 

  2782. 			return err
    2783. 

  2783. 		}
    2784. 

  2784. 		cursor := bucket.Cursor()
    2785. 

  2785. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    2786. 

  2786. 			var role Role
    2787. 

  2787. 			err = json.Unmarshal(v, &role)
    2788. 

  2788. 			if err != nil {
    2789. 

  2789. 				return err
    2790. 

  2790. 			}
    2791. 

  2791. 			roles = append(roles, role)
    2792. 

  2792. 		}
    2793. 

  2793. 		return err
    2794. 

  2794. 	})
    2795. 

  2795. 	return roles, err
    2796. 

  2796. }
    2797. 

  2797. 

  2798. func (p *BoltProvider) ipListEntryExists(ipOrNet string, listType IPListType) (IPListEntry, error) {
    2799. 

  2799. 	entry := IPListEntry{
    2800. 

  2800. 		IPOrNet: ipOrNet,
    2801. 

  2801. 		Type:    listType,
    2802. 

  2802. 	}
    2803. 

  2803. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2804. 

  2804. 		bucket, err := p.getIPListsBucket(tx)
    2805. 

  2805. 		if err != nil {
    2806. 

  2806. 			return err
    2807. 

  2807. 		}
    2808. 

  2808. 		e := bucket.Get([]byte(entry.getKey()))
    2809. 

  2809. 		if e == nil {
    2810. 

  2810. 			return util.NewRecordNotFoundError(fmt.Sprintf("entry %q does not exist", entry.IPOrNet))
    2811. 

  2811. 		}
    2812. 

  2812. 		err = json.Unmarshal(e, &entry)
    2813. 

  2813. 		if err == nil {
    2814. 

  2814. 			entry.PrepareForRendering()
    2815. 

  2815. 		}
    2816. 

  2816. 		return err
    2817. 

  2817. 	})
    2818. 

  2818. 	return entry, err
    2819. 

  2819. }
    2820. 

  2820. 

  2821. func (p *BoltProvider) addIPListEntry(entry *IPListEntry) error {
    2822. 

  2822. 	if err := entry.validate(); err != nil {
    2823. 

  2823. 		return err
    2824. 

  2824. 	}
    2825. 

  2825. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2826. 

  2826. 		bucket, err := p.getIPListsBucket(tx)
    2827. 

  2827. 		if err != nil {
    2828. 

  2828. 			return err
    2829. 

  2829. 		}
    2830. 

  2830. 		if e := bucket.Get([]byte(entry.getKey())); e != nil {
    2831. 

  2831. 			return util.NewI18nError(
    2832. 

  2832. 				fmt.Errorf("%w: entry %q already exists", ErrDuplicatedKey, entry.IPOrNet),
    2833. 

  2833. 				util.I18nErrorDuplicatedIPNet,
    2834. 

  2834. 			)
    2835. 

  2835. 		}
    2836. 

  2836. 		entry.CreatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    2837. 

  2837. 		entry.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    2838. 

  2838. 		buf, err := json.Marshal(entry)
    2839. 

  2839. 		if err != nil {
    2840. 

  2840. 			return err
    2841. 

  2841. 		}
    2842. 

  2842. 		return bucket.Put([]byte(entry.getKey()), buf)
    2843. 

  2843. 	})
    2844. 

  2844. }
    2845. 

  2845. 

  2846. func (p *BoltProvider) updateIPListEntry(entry *IPListEntry) error {
    2847. 

  2847. 	if err := entry.validate(); err != nil {
    2848. 

  2848. 		return err
    2849. 

  2849. 	}
    2850. 

  2850. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2851. 

  2851. 		bucket, err := p.getIPListsBucket(tx)
    2852. 

  2852. 		if err != nil {
    2853. 

  2853. 			return err
    2854. 

  2854. 		}
    2855. 

  2855. 		var e []byte
    2856. 

  2856. 		if e = bucket.Get([]byte(entry.getKey())); e == nil {
    2857. 

  2857. 			return fmt.Errorf("entry %q does not exist", entry.IPOrNet)
    2858. 

  2858. 		}
    2859. 

  2859. 		var oldEntry IPListEntry
    2860. 

  2860. 		err = json.Unmarshal(e, &oldEntry)
    2861. 

  2861. 		if err != nil {
    2862. 

  2862. 			return err
    2863. 

  2863. 		}
    2864. 

  2864. 		entry.CreatedAt = oldEntry.CreatedAt
    2865. 

  2865. 		entry.UpdatedAt = util.GetTimeAsMsSinceEpoch(time.Now())
    2866. 

  2866. 		buf, err := json.Marshal(entry)
    2867. 

  2867. 		if err != nil {
    2868. 

  2868. 			return err
    2869. 

  2869. 		}
    2870. 

  2870. 		return bucket.Put([]byte(entry.getKey()), buf)
    2871. 

  2871. 	})
    2872. 

  2872. }
    2873. 

  2873. 

  2874. func (p *BoltProvider) deleteIPListEntry(entry IPListEntry, _ bool) error {
    2875. 

  2875. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    2876. 

  2876. 		bucket, err := p.getIPListsBucket(tx)
    2877. 

  2877. 		if err != nil {
    2878. 

  2878. 			return err
    2879. 

  2879. 		}
    2880. 

  2880. 		if e := bucket.Get([]byte(entry.getKey())); e == nil {
    2881. 

  2881. 			return fmt.Errorf("entry %q does not exist", entry.IPOrNet)
    2882. 

  2882. 		}
    2883. 

  2883. 		return bucket.Delete([]byte(entry.getKey()))
    2884. 

  2884. 	})
    2885. 

  2885. }
    2886. 

  2886. 

  2887. func (p *BoltProvider) getIPListEntries(listType IPListType, filter, from, order string, limit int) ([]IPListEntry, error) {
    2888. 

  2888. 	entries := make([]IPListEntry, 0, 15)
    2889. 

  2889. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2890. 

  2890. 		bucket, err := p.getIPListsBucket(tx)
    2891. 

  2891. 		if err != nil {
    2892. 

  2892. 			return err
    2893. 

  2893. 		}
    2894. 

  2894. 		prefix := []byte(fmt.Sprintf("%d_", listType))
    2895. 

  2895. 		acceptKey := func(k []byte) bool {
    2896. 

  2896. 			return k != nil && bytes.HasPrefix(k, prefix)
    2897. 

  2897. 		}
    2898. 

  2898. 		cursor := bucket.Cursor()
    2899. 

  2899. 		if order == OrderASC {
    2900. 

  2900. 			for k, v := cursor.Seek(prefix); acceptKey(k); k, v = cursor.Next() {
    2901. 

  2901. 				var entry IPListEntry
    2902. 

  2902. 				err = json.Unmarshal(v, &entry)
    2903. 

  2903. 				if err != nil {
    2904. 

  2904. 					return err
    2905. 

  2905. 				}
    2906. 

  2906. 				if entry.satisfySearchConstraints(filter, from, order) {
    2907. 

  2907. 					entry.PrepareForRendering()
    2908. 

  2908. 					entries = append(entries, entry)
    2909. 

  2909. 					if limit > 0 && len(entries) >= limit {
    2910. 

  2910. 						break
    2911. 

  2911. 					}
    2912. 

  2912. 				}
    2913. 

  2913. 			}
    2914. 

  2914. 		} else {
    2915. 

  2915. 			for k, v := cursor.Last(); acceptKey(k); k, v = cursor.Prev() {
    2916. 

  2916. 				var entry IPListEntry
    2917. 

  2917. 				err = json.Unmarshal(v, &entry)
    2918. 

  2918. 				if err != nil {
    2919. 

  2919. 					return err
    2920. 

  2920. 				}
    2921. 

  2921. 				if entry.satisfySearchConstraints(filter, from, order) {
    2922. 

  2922. 					entry.PrepareForRendering()
    2923. 

  2923. 					entries = append(entries, entry)
    2924. 

  2924. 					if limit > 0 && len(entries) >= limit {
    2925. 

  2925. 						break
    2926. 

  2926. 					}
    2927. 

  2927. 				}
    2928. 

  2928. 			}
    2929. 

  2929. 		}
    2930. 

  2930. 		return nil
    2931. 

  2931. 	})
    2932. 

  2932. 	return entries, err
    2933. 

  2933. }
    2934. 

  2934. 

  2935. func (p *BoltProvider) getRecentlyUpdatedIPListEntries(_ int64) ([]IPListEntry, error) {
    2936. 

  2936. 	return nil, ErrNotImplemented
    2937. 

  2937. }
    2938. 

  2938. 

  2939. func (p *BoltProvider) dumpIPListEntries() ([]IPListEntry, error) {
    2940. 

  2940. 	entries := make([]IPListEntry, 0, 10)
    2941. 

  2941. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2942. 

  2942. 		bucket, err := p.getIPListsBucket(tx)
    2943. 

  2943. 		if err != nil {
    2944. 

  2944. 			return err
    2945. 

  2945. 		}
    2946. 

  2946. 		if count := bucket.Stats().KeyN; count > ipListMemoryLimit {
    2947. 

  2947. 			providerLog(logger.LevelInfo, "IP lists excluded from dump, too many entries: %d", count)
    2948. 

  2948. 			return nil
    2949. 

  2949. 		}
    2950. 

  2950. 		cursor := bucket.Cursor()
    2951. 

  2951. 		for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    2952. 

  2952. 			var entry IPListEntry
    2953. 

  2953. 			err = json.Unmarshal(v, &entry)
    2954. 

  2954. 			if err != nil {
    2955. 

  2955. 				return err
    2956. 

  2956. 			}
    2957. 

  2957. 			entry.PrepareForRendering()
    2958. 

  2958. 			entries = append(entries, entry)
    2959. 

  2959. 		}
    2960. 

  2960. 		return nil
    2961. 

  2961. 	})
    2962. 

  2962. 	return entries, err
    2963. 

  2963. }
    2964. 

  2964. 

  2965. func (p *BoltProvider) countIPListEntries(listType IPListType) (int64, error) {
    2966. 

  2966. 	var count int64
    2967. 

  2967. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    2968. 

  2968. 		bucket, err := p.getIPListsBucket(tx)
    2969. 

  2969. 		if err != nil {
    2970. 

  2970. 			return err
    2971. 

  2971. 		}
    2972. 

  2972. 		if listType == 0 {
    2973. 

  2973. 			count = int64(bucket.Stats().KeyN)
    2974. 

  2974. 			return nil
    2975. 

  2975. 		}
    2976. 

  2976. 		prefix := []byte(fmt.Sprintf("%d_", listType))
    2977. 

  2977. 		cursor := bucket.Cursor()
    2978. 

  2978. 		for k, _ := cursor.Seek(prefix); k != nil && bytes.HasPrefix(k, prefix); k, _ = cursor.Next() {
    2979. 

  2979. 			count++
    2980. 

  2980. 		}
    2981. 

  2981. 		return nil
    2982. 

  2982. 	})
    2983. 

  2983. 	return count, err
    2984. 

  2984. }
    2985. 

  2985. 

  2986. func (p *BoltProvider) getListEntriesForIP(ip string, listType IPListType) ([]IPListEntry, error) {
    2987. 

  2987. 	entries := make([]IPListEntry, 0, 3)
    2988. 

  2988. 	ipAddr, err := netip.ParseAddr(ip)
    2989. 

  2989. 	if err != nil {
    2990. 

  2990. 		return entries, fmt.Errorf("invalid ip address %s", ip)
    2991. 

  2991. 	}
    2992. 

  2992. 	var netType int
    2993. 

  2993. 	var ipBytes []byte
    2994. 

  2994. 	if ipAddr.Is4() || ipAddr.Is4In6() {
    2995. 

  2995. 		netType = ipTypeV4
    2996. 

  2996. 		as4 := ipAddr.As4()
    2997. 

  2997. 		ipBytes = as4[:]
    2998. 

  2998. 	} else {
    2999. 

  2999. 		netType = ipTypeV6
    3000. 

  3000. 		as16 := ipAddr.As16()
    3001. 

  3001. 		ipBytes = as16[:]
    3002. 

  3002. 	}
    3003. 

  3003. 	err = p.dbHandle.View(func(tx *bolt.Tx) error {
    3004. 

  3004. 		bucket, err := p.getIPListsBucket(tx)
    3005. 

  3005. 		if err != nil {
    3006. 

  3006. 			return err
    3007. 

  3007. 		}
    3008. 

  3008. 		prefix := []byte(fmt.Sprintf("%d_", listType))
    3009. 

  3009. 		cursor := bucket.Cursor()
    3010. 

  3010. 		for k, v := cursor.Seek(prefix); k != nil && bytes.HasPrefix(k, prefix); k, v = cursor.Next() {
    3011. 

  3011. 			var entry IPListEntry
    3012. 

  3012. 			err = json.Unmarshal(v, &entry)
    3013. 

  3013. 			if err != nil {
    3014. 

  3014. 				return err
    3015. 

  3015. 			}
    3016. 

  3016. 			if entry.IPType == netType && bytes.Compare(ipBytes, entry.First) >= 0 && bytes.Compare(ipBytes, entry.Last) <= 0 {
    3017. 

  3017. 				entry.PrepareForRendering()
    3018. 

  3018. 				entries = append(entries, entry)
    3019. 

  3019. 			}
    3020. 

  3020. 		}
    3021. 

  3021. 		return nil
    3022. 

  3022. 	})
    3023. 

  3023. 	return entries, err
    3024. 

  3024. }
    3025. 

  3025. 

  3026. func (p *BoltProvider) getConfigs() (Configs, error) {
    3027. 

  3027. 	var configs Configs
    3028. 

  3028. 	err := p.dbHandle.View(func(tx *bolt.Tx) error {
    3029. 

  3029. 		bucket := tx.Bucket(configsBucket)
    3030. 

  3030. 		if bucket == nil {
    3031. 

  3031. 			return fmt.Errorf("unable to find configs bucket")
    3032. 

  3032. 		}
    3033. 

  3033. 		data := bucket.Get(configsKey)
    3034. 

  3034. 		if data != nil {
    3035. 

  3035. 			return json.Unmarshal(data, &configs)
    3036. 

  3036. 		}
    3037. 

  3037. 		return nil
    3038. 

  3038. 	})
    3039. 

  3039. 	return configs, err
    3040. 

  3040. }
    3041. 

  3041. 

  3042. func (p *BoltProvider) setConfigs(configs *Configs) error {
    3043. 

  3043. 	if err := configs.validate(); err != nil {
    3044. 

  3044. 		return err
    3045. 

  3045. 	}
    3046. 

  3046. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    3047. 

  3047. 		bucket := tx.Bucket(configsBucket)
    3048. 

  3048. 		if bucket == nil {
    3049. 

  3049. 			return fmt.Errorf("unable to find configs bucket")
    3050. 

  3050. 		}
    3051. 

  3051. 		buf, err := json.Marshal(configs)
    3052. 

  3052. 		if err != nil {
    3053. 

  3053. 			return err
    3054. 

  3054. 		}
    3055. 

  3055. 		return bucket.Put(configsKey, buf)
    3056. 

  3056. 	})
    3057. 

  3057. }
    3058. 

  3058. 

  3059. func (p *BoltProvider) setFirstDownloadTimestamp(username string) error {
    3060. 

  3060. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    3061. 

  3061. 		bucket, err := p.getUsersBucket(tx)
    3062. 

  3062. 		if err != nil {
    3063. 

  3063. 			return err
    3064. 

  3064. 		}
    3065. 

  3065. 		var u []byte
    3066. 

  3066. 		if u = bucket.Get([]byte(username)); u == nil {
    3067. 

  3067. 			return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist, unable to set download timestamp",
    3068. 

  3068. 				username))
    3069. 

  3069. 		}
    3070. 

  3070. 		var user User
    3071. 

  3071. 		err = json.Unmarshal(u, &user)
    3072. 

  3072. 		if err != nil {
    3073. 

  3073. 			return err
    3074. 

  3074. 		}
    3075. 

  3075. 		if user.FirstDownload > 0 {
    3076. 

  3076. 			return util.NewGenericError(fmt.Sprintf("first download already set to %v",
    3077. 

  3077. 				util.GetTimeFromMsecSinceEpoch(user.FirstDownload)))
    3078. 

  3078. 		}
    3079. 

  3079. 		user.FirstDownload = util.GetTimeAsMsSinceEpoch(time.Now())
    3080. 

  3080. 		buf, err := json.Marshal(user)
    3081. 

  3081. 		if err != nil {
    3082. 

  3082. 			return err
    3083. 

  3083. 		}
    3084. 

  3084. 		return bucket.Put([]byte(username), buf)
    3085. 

  3085. 	})
    3086. 

  3086. }
    3087. 

  3087. 

  3088. func (p *BoltProvider) setFirstUploadTimestamp(username string) error {
    3089. 

  3089. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    3090. 

  3090. 		bucket, err := p.getUsersBucket(tx)
    3091. 

  3091. 		if err != nil {
    3092. 

  3092. 			return err
    3093. 

  3093. 		}
    3094. 

  3094. 		var u []byte
    3095. 

  3095. 		if u = bucket.Get([]byte(username)); u == nil {
    3096. 

  3096. 			return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist, unable to set upload timestamp",
    3097. 

  3097. 				username))
    3098. 

  3098. 		}
    3099. 

  3099. 		var user User
    3100. 

  3100. 		if err = json.Unmarshal(u, &user); err != nil {
    3101. 

  3101. 			return err
    3102. 

  3102. 		}
    3103. 

  3103. 		if user.FirstUpload > 0 {
    3104. 

  3104. 			return util.NewGenericError(fmt.Sprintf("first upload already set to %v",
    3105. 

  3105. 				util.GetTimeFromMsecSinceEpoch(user.FirstUpload)))
    3106. 

  3106. 		}
    3107. 

  3107. 		user.FirstUpload = util.GetTimeAsMsSinceEpoch(time.Now())
    3108. 

  3108. 		buf, err := json.Marshal(user)
    3109. 

  3109. 		if err != nil {
    3110. 

  3110. 			return err
    3111. 

  3111. 		}
    3112. 

  3112. 		return bucket.Put([]byte(username), buf)
    3113. 

  3113. 	})
    3114. 

  3114. }
    3115. 

  3115. 

  3116. func (p *BoltProvider) close() error {
    3117. 

  3117. 	return p.dbHandle.Close()
    3118. 

  3118. }
    3119. 

  3119. 

  3120. func (p *BoltProvider) reloadConfig() error {
    3121. 

  3121. 	return nil
    3122. 

  3122. }
    3123. 

  3123. 

  3124. // initializeDatabase does nothing, no initilization is needed for bolt provider
    3125. 

  3125. func (p *BoltProvider) initializeDatabase() error {
    3126. 

  3126. 	return ErrNoInitRequired
    3127. 

  3127. }
    3128. 

  3128. 

  3129. func (p *BoltProvider) migrateDatabase() error {
    3130. 

  3130. 	dbVersion, err := getBoltDatabaseVersion(p.dbHandle)
    3131. 

  3131. 	if err != nil {
    3132. 

  3132. 		return err
    3133. 

  3133. 	}
    3134. 

  3134. 	switch version := dbVersion.Version; {
    3135. 

  3135. 	case version == boltDatabaseVersion:
    3136. 

  3136. 		providerLog(logger.LevelDebug, "bolt database is up to date, current version: %d", version)
    3137. 

  3137. 		return ErrNoInitRequired
    3138. 

  3138. 	case version < 29:
    3139. 

  3139. 		err = fmt.Errorf("database schema version %d is too old, please see the upgrading docs", version)
    3140. 

  3140. 		providerLog(logger.LevelError, "%v", err)
    3141. 

  3141. 		logger.ErrorToConsole("%v", err)
    3142. 

  3142. 		return err
    3143. 

  3143. 	default:
    3144. 

  3144. 		if version > boltDatabaseVersion {
    3145. 

  3145. 			providerLog(logger.LevelError, "database schema version %d is newer than the supported one: %d", version,
    3146. 

  3146. 				boltDatabaseVersion)
    3147. 

  3147. 			logger.WarnToConsole("database schema version %d is newer than the supported one: %d", version,
    3148. 

  3148. 				boltDatabaseVersion)
    3149. 

  3149. 			return nil
    3150. 

  3150. 		}
    3151. 

  3151. 		return fmt.Errorf("database schema version not handled: %d", version)
    3152. 

  3152. 	}
    3153. 

  3153. }
    3154. 

  3154. 

  3155. func (p *BoltProvider) revertDatabase(targetVersion int) error { //nolint:gocyclo
    3156. 

  3156. 	dbVersion, err := getBoltDatabaseVersion(p.dbHandle)
    3157. 

  3157. 	if err != nil {
    3158. 

  3158. 		return err
    3159. 

  3159. 	}
    3160. 

  3160. 	if dbVersion.Version == targetVersion {
    3161. 

  3161. 		return errors.New("current version match target version, nothing to do")
    3162. 

  3162. 	}
    3163. 

  3163. 	switch dbVersion.Version {
    3164. 

  3164. 	default:
    3165. 

  3165. 		return fmt.Errorf("database schema version not handled: %v", dbVersion.Version)
    3166. 

  3166. 	}
    3167. 

  3167. }
    3168. 

  3168. 

  3169. func (p *BoltProvider) resetDatabase() error {
    3170. 

  3170. 	return p.dbHandle.Update(func(tx *bolt.Tx) error {
    3171. 

  3171. 		for _, bucketName := range boltBuckets {
    3172. 

  3172. 			err := tx.DeleteBucket(bucketName)
    3173. 

  3173. 			if err != nil && !errors.Is(err, bolt.ErrBucketNotFound) {
    3174. 

  3174. 				return fmt.Errorf("unable to remove bucket %v: %w", bucketName, err)
    3175. 

  3175. 			}
    3176. 

  3176. 		}
    3177. 

  3177. 		return nil
    3178. 

  3178. 	})
    3179. 

  3179. }
    3180. 

  3180. 

  3181. func (p *BoltProvider) joinRuleAndActions(r []byte, actionsBucket *bolt.Bucket) (EventRule, error) {
    3182. 

  3182. 	var rule EventRule
    3183. 

  3183. 	err := json.Unmarshal(r, &rule)
    3184. 

  3184. 	if err != nil {
    3185. 

  3185. 		return rule, err
    3186. 

  3186. 	}
    3187. 

  3187. 	var actions []EventAction
    3188. 

  3188. 	for idx := range rule.Actions {
    3189. 

  3189. 		action := &rule.Actions[idx]
    3190. 

  3190. 		var baseAction BaseEventAction
    3191. 

  3191. 		k := actionsBucket.Get([]byte(action.Name))
    3192. 

  3192. 		if k == nil {
    3193. 

  3193. 			continue
    3194. 

  3194. 		}
    3195. 

  3195. 		err = json.Unmarshal(k, &baseAction)
    3196. 

  3196. 		if err != nil {
    3197. 

  3197. 			continue
    3198. 

  3198. 		}
    3199. 

  3199. 		baseAction.Options.SetEmptySecretsIfNil()
    3200. 

  3200. 		action.BaseEventAction = baseAction
    3201. 

  3201. 		actions = append(actions, *action)
    3202. 

  3202. 	}
    3203. 

  3203. 	rule.Actions = actions
    3204. 

  3204. 	return rule, nil
    3205. 

  3205. }
    3206. 

  3206. 

  3207. func (p *BoltProvider) joinGroupAndFolders(g []byte, foldersBucket *bolt.Bucket) (Group, error) {
    3208. 

  3208. 	var group Group
    3209. 

  3209. 	err := json.Unmarshal(g, &group)
    3210. 

  3210. 	if err != nil {
    3211. 

  3211. 		return group, err
    3212. 

  3212. 	}
    3213. 

  3213. 	if len(group.VirtualFolders) > 0 {
    3214. 

  3214. 		var folders []vfs.VirtualFolder
    3215. 

  3215. 		for idx := range group.VirtualFolders {
    3216. 

  3216. 			folder := &group.VirtualFolders[idx]
    3217. 

  3217. 			baseFolder, err := p.folderExistsInternal(folder.Name, foldersBucket)
    3218. 

  3218. 			if err != nil {
    3219. 

  3219. 				continue
    3220. 

  3220. 			}
    3221. 

  3221. 			folder.BaseVirtualFolder = baseFolder
    3222. 

  3222. 			folders = append(folders, *folder)
    3223. 

  3223. 		}
    3224. 

  3224. 		group.VirtualFolders = folders
    3225. 

  3225. 	}
    3226. 

  3226. 	group.SetEmptySecretsIfNil()
    3227. 

  3227. 	return group, err
    3228. 

  3228. }
    3229. 

  3229. 

  3230. func (p *BoltProvider) joinUserAndFolders(u []byte, foldersBucket *bolt.Bucket) (User, error) {
    3231. 

  3231. 	var user User
    3232. 

  3232. 	err := json.Unmarshal(u, &user)
    3233. 

  3233. 	if err != nil {
    3234. 

  3234. 		return user, err
    3235. 

  3235. 	}
    3236. 

  3236. 	if len(user.VirtualFolders) > 0 {
    3237. 

  3237. 		var folders []vfs.VirtualFolder
    3238. 

  3238. 		for idx := range user.VirtualFolders {
    3239. 

  3239. 			folder := &user.VirtualFolders[idx]
    3240. 

  3240. 			baseFolder, err := p.folderExistsInternal(folder.Name, foldersBucket)
    3241. 

  3241. 			if err != nil {
    3242. 

  3242. 				continue
    3243. 

  3243. 			}
    3244. 

  3244. 			folder.BaseVirtualFolder = baseFolder
    3245. 

  3245. 			folders = append(folders, *folder)
    3246. 

  3246. 		}
    3247. 

  3247. 		user.VirtualFolders = folders
    3248. 

  3248. 	}
    3249. 

  3249. 	user.SetEmptySecretsIfNil()
    3250. 

  3250. 	return user, err
    3251. 

  3251. }
    3252. 

  3252. 

  3253. func (p *BoltProvider) groupExistsInternal(name string, bucket *bolt.Bucket) (Group, error) {
    3254. 

  3254. 	var group Group
    3255. 

  3255. 	g := bucket.Get([]byte(name))
    3256. 

  3256. 	if g == nil {
    3257. 

  3257. 		err := util.NewRecordNotFoundError(fmt.Sprintf("group %q does not exist", name))
    3258. 

  3258. 		return group, err
    3259. 

  3259. 	}
    3260. 

  3260. 	err := json.Unmarshal(g, &group)
    3261. 

  3261. 	return group, err
    3262. 

  3262. }
    3263. 

  3263. 

  3264. func (p *BoltProvider) folderExistsInternal(name string, bucket *bolt.Bucket) (vfs.BaseVirtualFolder, error) {
    3265. 

  3265. 	var folder vfs.BaseVirtualFolder
    3266. 

  3266. 	f := bucket.Get([]byte(name))
    3267. 

  3267. 	if f == nil {
    3268. 

  3268. 		err := util.NewRecordNotFoundError(fmt.Sprintf("folder %q does not exist", name))
    3269. 

  3269. 		return folder, err
    3270. 

  3270. 	}
    3271. 

  3271. 	err := json.Unmarshal(f, &folder)
    3272. 

  3272. 	return folder, err
    3273. 

  3273. }
    3274. 

  3274. 

  3275. func (p *BoltProvider) addFolderInternal(folder vfs.BaseVirtualFolder, bucket *bolt.Bucket) error {
    3276. 

  3276. 	id, err := bucket.NextSequence()
    3277. 

  3277. 	if err != nil {
    3278. 

  3278. 		return err
    3279. 

  3279. 	}
    3280. 

  3280. 	folder.ID = int64(id)
    3281. 

  3281. 	buf, err := json.Marshal(folder)
    3282. 

  3282. 	if err != nil {
    3283. 

  3283. 		return err
    3284. 

  3284. 	}
    3285. 

  3285. 	return bucket.Put([]byte(folder.Name), buf)
    3286. 

  3286. }
    3287. 

  3287. 

  3288. func (p *BoltProvider) removeRoleFromUser(username, role string, bucket *bolt.Bucket) error {
    3289. 

  3289. 	u := bucket.Get([]byte(username))
    3290. 

  3290. 	if u == nil {
    3291. 

  3291. 		providerLog(logger.LevelWarn, "user %q does not exist, cannot remove role %q", username, role)
    3292. 

  3292. 		return nil
    3293. 

  3293. 	}
    3294. 

  3294. 	var user User
    3295. 

  3295. 	err := json.Unmarshal(u, &user)
    3296. 

  3296. 	if err != nil {
    3297. 

  3297. 		return err
    3298. 

  3298. 	}
    3299. 

  3299. 	if user.Role == role {
    3300. 

  3300. 		user.Role = ""
    3301. 

  3301. 		buf, err := json.Marshal(user)
    3302. 

  3302. 		if err != nil {
    3303. 

  3303. 			return err
    3304. 

  3304. 		}
    3305. 

  3305. 		return bucket.Put([]byte(user.Username), buf)
    3306. 

  3306. 	}
    3307. 

  3307. 	providerLog(logger.LevelError, "user %q does not have the expected role %q, actual %q", username, role, user.Role)
    3308. 

  3308. 	return nil
    3309. 

  3309. }
    3310. 

  3310. 

  3311. func (p *BoltProvider) addAdminToRole(username, roleName string, bucket *bolt.Bucket) error {
    3312. 

  3312. 	if roleName == "" {
    3313. 

  3313. 		return nil
    3314. 

  3314. 	}
    3315. 

  3315. 	r := bucket.Get([]byte(roleName))
    3316. 

  3316. 	if r == nil {
    3317. 

  3317. 		return fmt.Errorf("%w: role %q does not exist", ErrForeignKeyViolated, roleName)
    3318. 

  3318. 	}
    3319. 

  3319. 	var role Role
    3320. 

  3320. 	err := json.Unmarshal(r, &role)
    3321. 

  3321. 	if err != nil {
    3322. 

  3322. 		return err
    3323. 

  3323. 	}
    3324. 

  3324. 	if !slices.Contains(role.Admins, username) {
    3325. 

  3325. 		role.Admins = append(role.Admins, username)
    3326. 

  3326. 		buf, err := json.Marshal(role)
    3327. 

  3327. 		if err != nil {
    3328. 

  3328. 			return err
    3329. 

  3329. 		}
    3330. 

  3330. 		return bucket.Put([]byte(role.Name), buf)
    3331. 

  3331. 	}
    3332. 

  3332. 	return nil
    3333. 

  3333. }
    3334. 

  3334. 

  3335. func (p *BoltProvider) removeAdminFromRole(username, roleName string, bucket *bolt.Bucket) error {
    3336. 

  3336. 	if roleName == "" {
    3337. 

  3337. 		return nil
    3338. 

  3338. 	}
    3339. 

  3339. 	r := bucket.Get([]byte(roleName))
    3340. 

  3340. 	if r == nil {
    3341. 

  3341. 		providerLog(logger.LevelWarn, "role %q does not exist, cannot remove admin %q", roleName, username)
    3342. 

  3342. 		return nil
    3343. 

  3343. 	}
    3344. 

  3344. 	var role Role
    3345. 

  3345. 	err := json.Unmarshal(r, &role)
    3346. 

  3346. 	if err != nil {
    3347. 

  3347. 		return err
    3348. 

  3348. 	}
    3349. 

  3349. 	if slices.Contains(role.Admins, username) {
    3350. 

  3350. 		var admins []string
    3351. 

  3351. 		for _, admin := range role.Admins {
    3352. 

  3352. 			if admin != username {
    3353. 

  3353. 				admins = append(admins, admin)
    3354. 

  3354. 			}
    3355. 

  3355. 		}
    3356. 

  3356. 		role.Admins = util.RemoveDuplicates(admins, false)
    3357. 

  3357. 		buf, err := json.Marshal(role)
    3358. 

  3358. 		if err != nil {
    3359. 

  3359. 			return err
    3360. 

  3360. 		}
    3361. 

  3361. 		return bucket.Put([]byte(role.Name), buf)
    3362. 

  3362. 	}
    3363. 

  3363. 	return nil
    3364. 

  3364. }
    3365. 

  3365. 

  3366. func (p *BoltProvider) addUserToRole(username, roleName string, bucket *bolt.Bucket) error {
    3367. 

  3367. 	if roleName == "" {
    3368. 

  3368. 		return nil
    3369. 

  3369. 	}
    3370. 

  3370. 	r := bucket.Get([]byte(roleName))
    3371. 

  3371. 	if r == nil {
    3372. 

  3372. 		return fmt.Errorf("%w: role %q does not exist", ErrForeignKeyViolated, roleName)
    3373. 

  3373. 	}
    3374. 

  3374. 	var role Role
    3375. 

  3375. 	err := json.Unmarshal(r, &role)
    3376. 

  3376. 	if err != nil {
    3377. 

  3377. 		return err
    3378. 

  3378. 	}
    3379. 

  3379. 	if !slices.Contains(role.Users, username) {
    3380. 

  3380. 		role.Users = append(role.Users, username)
    3381. 

  3381. 		buf, err := json.Marshal(role)
    3382. 

  3382. 		if err != nil {
    3383. 

  3383. 			return err
    3384. 

  3384. 		}
    3385. 

  3385. 		return bucket.Put([]byte(role.Name), buf)
    3386. 

  3386. 	}
    3387. 

  3387. 	return nil
    3388. 

  3388. }
    3389. 

  3389. 

  3390. func (p *BoltProvider) removeUserFromRole(username, roleName string, bucket *bolt.Bucket) error {
    3391. 

  3391. 	if roleName == "" {
    3392. 

  3392. 		return nil
    3393. 

  3393. 	}
    3394. 

  3394. 	r := bucket.Get([]byte(roleName))
    3395. 

  3395. 	if r == nil {
    3396. 

  3396. 		providerLog(logger.LevelWarn, "role %q does not exist, cannot remove admin %q", roleName, username)
    3397. 

  3397. 		return nil
    3398. 

  3398. 	}
    3399. 

  3399. 	var role Role
    3400. 

  3400. 	err := json.Unmarshal(r, &role)
    3401. 

  3401. 	if err != nil {
    3402. 

  3402. 		return err
    3403. 

  3403. 	}
    3404. 

  3404. 	if slices.Contains(role.Users, username) {
    3405. 

  3405. 		var users []string
    3406. 

  3406. 		for _, user := range role.Users {
    3407. 

  3407. 			if user != username {
    3408. 

  3408. 				users = append(users, user)
    3409. 

  3409. 			}
    3410. 

  3410. 		}
    3411. 

  3411. 		users = util.RemoveDuplicates(users, false)
    3412. 

  3412. 		role.Users = users
    3413. 

  3413. 		buf, err := json.Marshal(role)
    3414. 

  3414. 		if err != nil {
    3415. 

  3415. 			return err
    3416. 

  3416. 		}
    3417. 

  3417. 		return bucket.Put([]byte(role.Name), buf)
    3418. 

  3418. 	}
    3419. 

  3419. 	return nil
    3420. 

  3420. }
    3421. 

  3421. 

  3422. func (p *BoltProvider) addRuleToActionMapping(ruleName, actionName string, bucket *bolt.Bucket) error {
    3423. 

  3423. 	a := bucket.Get([]byte(actionName))
    3424. 

  3424. 	if a == nil {
    3425. 

  3425. 		return util.NewGenericError(fmt.Sprintf("action %q does not exist", actionName))
    3426. 

  3426. 	}
    3427. 

  3427. 	var action BaseEventAction
    3428. 

  3428. 	err := json.Unmarshal(a, &action)
    3429. 

  3429. 	if err != nil {
    3430. 

  3430. 		return err
    3431. 

  3431. 	}
    3432. 

  3432. 	if !slices.Contains(action.Rules, ruleName) {
    3433. 

  3433. 		action.Rules = append(action.Rules, ruleName)
    3434. 

  3434. 		buf, err := json.Marshal(action)
    3435. 

  3435. 		if err != nil {
    3436. 

  3436. 			return err
    3437. 

  3437. 		}
    3438. 

  3438. 		return bucket.Put([]byte(action.Name), buf)
    3439. 

  3439. 	}
    3440. 

  3440. 	return nil
    3441. 

  3441. }
    3442. 

  3442. 

  3443. func (p *BoltProvider) removeRuleFromActionMapping(ruleName, actionName string, bucket *bolt.Bucket) error {
    3444. 

  3444. 	a := bucket.Get([]byte(actionName))
    3445. 

  3445. 	if a == nil {
    3446. 

  3446. 		providerLog(logger.LevelWarn, "action %q does not exist, cannot remove from mapping", actionName)
    3447. 

  3447. 		return nil
    3448. 

  3448. 	}
    3449. 

  3449. 	var action BaseEventAction
    3450. 

  3450. 	err := json.Unmarshal(a, &action)
    3451. 

  3451. 	if err != nil {
    3452. 

  3452. 		return err
    3453. 

  3453. 	}
    3454. 

  3454. 	if slices.Contains(action.Rules, ruleName) {
    3455. 

  3455. 		var rules []string
    3456. 

  3456. 		for _, r := range action.Rules {
    3457. 

  3457. 			if r != ruleName {
    3458. 

  3458. 				rules = append(rules, r)
    3459. 

  3459. 			}
    3460. 

  3460. 		}
    3461. 

  3461. 		action.Rules = util.RemoveDuplicates(rules, false)
    3462. 

  3462. 		buf, err := json.Marshal(action)
    3463. 

  3463. 		if err != nil {
    3464. 

  3464. 			return err
    3465. 

  3465. 		}
    3466. 

  3466. 		return bucket.Put([]byte(action.Name), buf)
    3467. 

  3467. 	}
    3468. 

  3468. 	return nil
    3469. 

  3469. }
    3470. 

  3470. 

  3471. func (p *BoltProvider) addUserToGroupMapping(username, groupname string, bucket *bolt.Bucket) error {
    3472. 

  3472. 	g := bucket.Get([]byte(groupname))
    3473. 

  3473. 	if g == nil {
    3474. 

  3474. 		return util.NewGenericError(fmt.Sprintf("group %q does not exist", groupname))
    3475. 

  3475. 	}
    3476. 

  3476. 	var group Group
    3477. 

  3477. 	err := json.Unmarshal(g, &group)
    3478. 

  3478. 	if err != nil {
    3479. 

  3479. 		return err
    3480. 

  3480. 	}
    3481. 

  3481. 	if !slices.Contains(group.Users, username) {
    3482. 

  3482. 		group.Users = append(group.Users, username)
    3483. 

  3483. 		buf, err := json.Marshal(group)
    3484. 

  3484. 		if err != nil {
    3485. 

  3485. 			return err
    3486. 

  3486. 		}
    3487. 

  3487. 		return bucket.Put([]byte(group.Name), buf)
    3488. 

  3488. 	}
    3489. 

  3489. 	return nil
    3490. 

  3490. }
    3491. 

  3491. 

  3492. func (p *BoltProvider) removeUserFromGroupMapping(username, groupname string, bucket *bolt.Bucket) error {
    3493. 

  3493. 	g := bucket.Get([]byte(groupname))
    3494. 

  3494. 	if g == nil {
    3495. 

  3495. 		return util.NewRecordNotFoundError(fmt.Sprintf("group %q does not exist", groupname))
    3496. 

  3496. 	}
    3497. 

  3497. 	var group Group
    3498. 

  3498. 	err := json.Unmarshal(g, &group)
    3499. 

  3499. 	if err != nil {
    3500. 

  3500. 		return err
    3501. 

  3501. 	}
    3502. 

  3502. 	var users []string
    3503. 

  3503. 	for _, u := range group.Users {
    3504. 

  3504. 		if u != username {
    3505. 

  3505. 			users = append(users, u)
    3506. 

  3506. 		}
    3507. 

  3507. 	}
    3508. 

  3508. 	group.Users = util.RemoveDuplicates(users, false)
    3509. 

  3509. 	buf, err := json.Marshal(group)
    3510. 

  3510. 	if err != nil {
    3511. 

  3511. 		return err
    3512. 

  3512. 	}
    3513. 

  3513. 	return bucket.Put([]byte(group.Name), buf)
    3514. 

  3514. }
    3515. 

  3515. 

  3516. func (p *BoltProvider) addAdminToGroupMapping(username, groupname string, bucket *bolt.Bucket) error {
    3517. 

  3517. 	g := bucket.Get([]byte(groupname))
    3518. 

  3518. 	if g == nil {
    3519. 

  3519. 		return util.NewRecordNotFoundError(fmt.Sprintf("group %q does not exist", groupname))
    3520. 

  3520. 	}
    3521. 

  3521. 	var group Group
    3522. 

  3522. 	err := json.Unmarshal(g, &group)
    3523. 

  3523. 	if err != nil {
    3524. 

  3524. 		return err
    3525. 

  3525. 	}
    3526. 

  3526. 	if !slices.Contains(group.Admins, username) {
    3527. 

  3527. 		group.Admins = append(group.Admins, username)
    3528. 

  3528. 		buf, err := json.Marshal(group)
    3529. 

  3529. 		if err != nil {
    3530. 

  3530. 			return err
    3531. 

  3531. 		}
    3532. 

  3532. 		return bucket.Put([]byte(group.Name), buf)
    3533. 

  3533. 	}
    3534. 

  3534. 	return nil
    3535. 

  3535. }
    3536. 

  3536. 

  3537. func (p *BoltProvider) removeAdminFromGroupMapping(username, groupname string, bucket *bolt.Bucket) error {
    3538. 

  3538. 	g := bucket.Get([]byte(groupname))
    3539. 

  3539. 	if g == nil {
    3540. 

  3540. 		return util.NewRecordNotFoundError(fmt.Sprintf("group %q does not exist", groupname))
    3541. 

  3541. 	}
    3542. 

  3542. 	var group Group
    3543. 

  3543. 	err := json.Unmarshal(g, &group)
    3544. 

  3544. 	if err != nil {
    3545. 

  3545. 		return err
    3546. 

  3546. 	}
    3547. 

  3547. 	var admins []string
    3548. 

  3548. 	for _, a := range group.Admins {
    3549. 

  3549. 		if a != username {
    3550. 

  3550. 			admins = append(admins, a)
    3551. 

  3551. 		}
    3552. 

  3552. 	}
    3553. 

  3553. 	group.Admins = util.RemoveDuplicates(admins, false)
    3554. 

  3554. 	buf, err := json.Marshal(group)
    3555. 

  3555. 	if err != nil {
    3556. 

  3556. 		return err
    3557. 

  3557. 	}
    3558. 

  3558. 	return bucket.Put([]byte(group.Name), buf)
    3559. 

  3559. }
    3560. 

  3560. 

  3561. func (p *BoltProvider) removeGroupFromAdminMapping(groupName, adminName string, bucket *bolt.Bucket) error {
    3562. 

  3562. 	var a []byte
    3563. 

  3563. 	if a = bucket.Get([]byte(adminName)); a == nil {
    3564. 

  3564. 		// the admin does not exist so there is no associated group
    3565. 

  3565. 		return nil
    3566. 

  3566. 	}
    3567. 

  3567. 	var admin Admin
    3568. 

  3568. 	err := json.Unmarshal(a, &admin)
    3569. 

  3569. 	if err != nil {
    3570. 

  3570. 		return err
    3571. 

  3571. 	}
    3572. 

  3572. 	var newGroups []AdminGroupMapping
    3573. 

  3573. 	for _, g := range admin.Groups {
    3574. 

  3574. 		if g.Name != groupName {
    3575. 

  3575. 			newGroups = append(newGroups, g)
    3576. 

  3576. 		}
    3577. 

  3577. 	}
    3578. 

  3578. 	admin.Groups = newGroups
    3579. 

  3579. 	buf, err := json.Marshal(admin)
    3580. 

  3580. 	if err != nil {
    3581. 

  3581. 		return err
    3582. 

  3582. 	}
    3583. 

  3583. 	return bucket.Put([]byte(adminName), buf)
    3584. 

  3584. }
    3585. 

  3585. 

  3586. func (p *BoltProvider) addRelationToFolderMapping(folderName string, user *User, group *Group, bucket *bolt.Bucket) error {
    3587. 

  3587. 	f := bucket.Get([]byte(folderName))
    3588. 

  3588. 	if f == nil {
    3589. 

  3589. 		return util.NewGenericError(fmt.Sprintf("folder %q does not exist", folderName))
    3590. 

  3590. 	}
    3591. 

  3591. 	var folder vfs.BaseVirtualFolder
    3592. 

  3592. 	err := json.Unmarshal(f, &folder)
    3593. 

  3593. 	if err != nil {
    3594. 

  3594. 		return err
    3595. 

  3595. 	}
    3596. 

  3596. 	updated := false
    3597. 

  3597. 	if user != nil && !slices.Contains(folder.Users, user.Username) {
    3598. 

  3598. 		folder.Users = append(folder.Users, user.Username)
    3599. 

  3599. 		updated = true
    3600. 

  3600. 	}
    3601. 

  3601. 	if group != nil && !slices.Contains(folder.Groups, group.Name) {
    3602. 

  3602. 		folder.Groups = append(folder.Groups, group.Name)
    3603. 

  3603. 		updated = true
    3604. 

  3604. 	}
    3605. 

  3605. 	if !updated {
    3606. 

  3606. 		return nil
    3607. 

  3607. 	}
    3608. 

  3608. 	buf, err := json.Marshal(folder)
    3609. 

  3609. 	if err != nil {
    3610. 

  3610. 		return err
    3611. 

  3611. 	}
    3612. 

  3612. 	return bucket.Put([]byte(folder.Name), buf)
    3613. 

  3613. }
    3614. 

  3614. 

  3615. func (p *BoltProvider) removeRelationFromFolderMapping(folder vfs.VirtualFolder, username, groupname string,
    3616. 

  3616. 	bucket *bolt.Bucket,
    3617. 

  3617. ) error {
    3618. 

  3618. 	var f []byte
    3619. 

  3619. 	if f = bucket.Get([]byte(folder.Name)); f == nil {
    3620. 

  3620. 		// the folder does not exist so there is no associated user/group
    3621. 

  3621. 		return nil
    3622. 

  3622. 	}
    3623. 

  3623. 	var baseFolder vfs.BaseVirtualFolder
    3624. 

  3624. 	err := json.Unmarshal(f, &baseFolder)
    3625. 

  3625. 	if err != nil {
    3626. 

  3626. 		return err
    3627. 

  3627. 	}
    3628. 

  3628. 	found := false
    3629. 

  3629. 	if username != "" {
    3630. 

  3630. 		found = true
    3631. 

  3631. 		var newUserMapping []string
    3632. 

  3632. 		for _, u := range baseFolder.Users {
    3633. 

  3633. 			if u != username {
    3634. 

  3634. 				newUserMapping = append(newUserMapping, u)
    3635. 

  3635. 			}
    3636. 

  3636. 		}
    3637. 

  3637. 		baseFolder.Users = newUserMapping
    3638. 

  3638. 	}
    3639. 

  3639. 	if groupname != "" {
    3640. 

  3640. 		found = true
    3641. 

  3641. 		var newGroupMapping []string
    3642. 

  3642. 		for _, g := range baseFolder.Groups {
    3643. 

  3643. 			if g != groupname {
    3644. 

  3644. 				newGroupMapping = append(newGroupMapping, g)
    3645. 

  3645. 			}
    3646. 

  3646. 		}
    3647. 

  3647. 		baseFolder.Groups = newGroupMapping
    3648. 

  3648. 	}
    3649. 

  3649. 	if !found {
    3650. 

  3650. 		return nil
    3651. 

  3651. 	}
    3652. 

  3652. 	buf, err := json.Marshal(baseFolder)
    3653. 

  3653. 	if err != nil {
    3654. 

  3654. 		return err
    3655. 

  3655. 	}
    3656. 

  3656. 	return bucket.Put([]byte(folder.Name), buf)
    3657. 

  3657. }
    3658. 

  3658. 

  3659. func (p *BoltProvider) updateUserRelations(tx *bolt.Tx, user *User, oldUser User) error {
    3660. 

  3660. 	foldersBucket, err := p.getFoldersBucket(tx)
    3661. 

  3661. 	if err != nil {
    3662. 

  3662. 		return err
    3663. 

  3663. 	}
    3664. 

  3664. 	groupsBucket, err := p.getGroupsBucket(tx)
    3665. 

  3665. 	if err != nil {
    3666. 

  3666. 		return err
    3667. 

  3667. 	}
    3668. 

  3668. 	rolesBucket, err := p.getRolesBucket(tx)
    3669. 

  3669. 	if err != nil {
    3670. 

  3670. 		return err
    3671. 

  3671. 	}
    3672. 

  3672. 	for idx := range oldUser.VirtualFolders {
    3673. 

  3673. 		err = p.removeRelationFromFolderMapping(oldUser.VirtualFolders[idx], oldUser.Username, "", foldersBucket)
    3674. 

  3674. 		if err != nil {
    3675. 

  3675. 			return err
    3676. 

  3676. 		}
    3677. 

  3677. 	}
    3678. 

  3678. 	for idx := range oldUser.Groups {
    3679. 

  3679. 		err = p.removeUserFromGroupMapping(user.Username, oldUser.Groups[idx].Name, groupsBucket)
    3680. 

  3680. 		if err != nil {
    3681. 

  3681. 			return err
    3682. 

  3682. 		}
    3683. 

  3683. 	}
    3684. 

  3684. 	if err = p.removeUserFromRole(oldUser.Username, oldUser.Role, rolesBucket); err != nil {
    3685. 

  3685. 		return err
    3686. 

  3686. 	}
    3687. 

  3687. 	sort.Slice(user.VirtualFolders, func(i, j int) bool {
    3688. 

  3688. 		return user.VirtualFolders[i].Name < user.VirtualFolders[j].Name
    3689. 

  3689. 	})
    3690. 

  3690. 	for idx := range user.VirtualFolders {
    3691. 

  3691. 		err = p.addRelationToFolderMapping(user.VirtualFolders[idx].Name, user, nil, foldersBucket)
    3692. 

  3692. 		if err != nil {
    3693. 

  3693. 			return err
    3694. 

  3694. 		}
    3695. 

  3695. 	}
    3696. 

  3696. 	sort.Slice(user.Groups, func(i, j int) bool {
    3697. 

  3697. 		return user.Groups[i].Name < user.Groups[j].Name
    3698. 

  3698. 	})
    3699. 

  3699. 	for idx := range user.Groups {
    3700. 

  3700. 		err = p.addUserToGroupMapping(user.Username, user.Groups[idx].Name, groupsBucket)
    3701. 

  3701. 		if err != nil {
    3702. 

  3702. 			return err
    3703. 

  3703. 		}
    3704. 

  3704. 	}
    3705. 

  3705. 	return p.addUserToRole(user.Username, user.Role, rolesBucket)
    3706. 

  3706. }
    3707. 

  3707. 

  3708. func (p *BoltProvider) adminExistsInternal(tx *bolt.Tx, username string) error {
    3709. 

  3709. 	bucket, err := p.getAdminsBucket(tx)
    3710. 

  3710. 	if err != nil {
    3711. 

  3711. 		return err
    3712. 

  3712. 	}
    3713. 

  3713. 	a := bucket.Get([]byte(username))
    3714. 

  3714. 	if a == nil {
    3715. 

  3715. 		return util.NewRecordNotFoundError(fmt.Sprintf("admin %v does not exist", username))
    3716. 

  3716. 	}
    3717. 

  3717. 	return nil
    3718. 

  3718. }
    3719. 

  3719. 

  3720. func (p *BoltProvider) userExistsInternal(tx *bolt.Tx, username string) error {
    3721. 

  3721. 	bucket, err := p.getUsersBucket(tx)
    3722. 

  3722. 	if err != nil {
    3723. 

  3723. 		return err
    3724. 

  3724. 	}
    3725. 

  3725. 	u := bucket.Get([]byte(username))
    3726. 

  3726. 	if u == nil {
    3727. 

  3727. 		return util.NewRecordNotFoundError(fmt.Sprintf("username %q does not exist", username))
    3728. 

  3728. 	}
    3729. 

  3729. 	return nil
    3730. 

  3730. }
    3731. 

  3731. 

  3732. func (p *BoltProvider) deleteRelatedShares(tx *bolt.Tx, username string) error {
    3733. 

  3733. 	bucket, err := p.getSharesBucket(tx)
    3734. 

  3734. 	if err != nil {
    3735. 

  3735. 		return err
    3736. 

  3736. 	}
    3737. 

  3737. 	var toRemove []string
    3738. 

  3738. 	cursor := bucket.Cursor()
    3739. 

  3739. 	for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    3740. 

  3740. 		var share Share
    3741. 

  3741. 		err = json.Unmarshal(v, &share)
    3742. 

  3742. 		if err != nil {
    3743. 

  3743. 			return err
    3744. 

  3744. 		}
    3745. 

  3745. 		if share.Username == username {
    3746. 

  3746. 			toRemove = append(toRemove, share.ShareID)
    3747. 

  3747. 		}
    3748. 

  3748. 	}
    3749. 

  3749. 

  3750. 	for _, k := range toRemove {
    3751. 

  3751. 		if err := bucket.Delete([]byte(k)); err != nil {
    3752. 

  3752. 			return err
    3753. 

  3753. 		}
    3754. 

  3754. 	}
    3755. 

  3755. 

  3756. 	return nil
    3757. 

  3757. }
    3758. 

  3758. 

  3759. func (p *BoltProvider) deleteRelatedAPIKey(tx *bolt.Tx, username string, scope APIKeyScope) error {
    3760. 

  3760. 	bucket, err := p.getAPIKeysBucket(tx)
    3761. 

  3761. 	if err != nil {
    3762. 

  3762. 		return err
    3763. 

  3763. 	}
    3764. 

  3764. 	var toRemove []string
    3765. 

  3765. 	cursor := bucket.Cursor()
    3766. 

  3766. 	for k, v := cursor.First(); k != nil; k, v = cursor.Next() {
    3767. 

  3767. 		var apiKey APIKey
    3768. 

  3768. 		err = json.Unmarshal(v, &apiKey)
    3769. 

  3769. 		if err != nil {
    3770. 

  3770. 			return err
    3771. 

  3771. 		}
    3772. 

  3772. 		if scope == APIKeyScopeUser {
    3773. 

  3773. 			if apiKey.User == username {
    3774. 

  3774. 				toRemove = append(toRemove, apiKey.KeyID)
    3775. 

  3775. 			}
    3776. 

  3776. 		} else {
    3777. 

  3777. 			if apiKey.Admin == username {
    3778. 

  3778. 				toRemove = append(toRemove, apiKey.KeyID)
    3779. 

  3779. 			}
    3780. 

  3780. 		}
    3781. 

  3781. 	}
    3782. 

  3782. 

  3783. 	for _, k := range toRemove {
    3784. 

  3784. 		if err := bucket.Delete([]byte(k)); err != nil {
    3785. 

  3785. 			return err
    3786. 

  3786. 		}
    3787. 

  3787. 	}
    3788. 

  3788. 

  3789. 	return nil
    3790. 

  3790. }
    3791. 

  3791. 

  3792. func (p *BoltProvider) getSharesBucket(tx *bolt.Tx) (*bolt.Bucket, error) {
    3793. 

  3793. 	var err error
    3794. 

  3794. 

  3795. 	bucket := tx.Bucket(sharesBucket)
    3796. 

  3796. 	if bucket == nil {
    3797. 

  3797. 		err = errors.New("unable to find shares bucket, bolt database structure not correcly defined")
    3798. 

  3798. 	}
    3799. 

  3799. 	return bucket, err
    3800. 

  3800. }
    3801. 

  3801. 

  3802. func (p *BoltProvider) getAPIKeysBucket(tx *bolt.Tx) (*bolt.Bucket, error) {
    3803. 

  3803. 	var err error
    3804. 

  3804. 

  3805. 	bucket := tx.Bucket(apiKeysBucket)
    3806. 

  3806. 	if bucket == nil {
    3807. 

  3807. 		err = errors.New("unable to find api keys bucket, bolt database structure not correcly defined")
    3808. 

  3808. 	}
    3809. 

  3809. 	return bucket, err
    3810. 

  3810. }
    3811. 

  3811. 

  3812. func (p *BoltProvider) getAdminsBucket(tx *bolt.Tx) (*bolt.Bucket, error) {
    3813. 

  3813. 	var err error
    3814. 

  3814. 

  3815. 	bucket := tx.Bucket(adminsBucket)
    3816. 

  3816. 	if bucket == nil {
    3817. 

  3817. 		err = errors.New("unable to find admins bucket, bolt database structure not correcly defined")
    3818. 

  3818. 	}
    3819. 

  3819. 	return bucket, err
    3820. 

  3820. }
    3821. 

  3821. 

  3822. func (p *BoltProvider) getUsersBucket(tx *bolt.Tx) (*bolt.Bucket, error) {
    3823. 

  3823. 	var err error
    3824. 

  3824. 	bucket := tx.Bucket(usersBucket)
    3825. 

  3825. 	if bucket == nil {
    3826. 

  3826. 		err = errors.New("unable to find users bucket, bolt database structure not correcly defined")
    3827. 

  3827. 	}
    3828. 

  3828. 	return bucket, err
    3829. 

  3829. }
    3830. 

  3830. 

  3831. func (p *BoltProvider) getGroupsBucket(tx *bolt.Tx) (*bolt.Bucket, error) {
    3832. 

  3832. 	var err error
    3833. 

  3833. 	bucket := tx.Bucket(groupsBucket)
    3834. 

  3834. 	if bucket == nil {
    3835. 

  3835. 		err = fmt.Errorf("unable to find groups bucket, bolt database structure not correcly defined")
    3836. 

  3836. 	}
    3837. 

  3837. 	return bucket, err
    3838. 

  3838. }
    3839. 

  3839. 

  3840. func (p *BoltProvider) getRolesBucket(tx *bolt.Tx) (*bolt.Bucket, error) {
    3841. 

  3841. 	var err error
    3842. 

  3842. 	bucket := tx.Bucket(rolesBucket)
    3843. 

  3843. 	if bucket == nil {
    3844. 

  3844. 		err = fmt.Errorf("unable to find roles bucket, bolt database structure not correcly defined")
    3845. 

  3845. 	}
    3846. 

  3846. 	return bucket, err
    3847. 

  3847. }
    3848. 

  3848. 

  3849. func (p *BoltProvider) getIPListsBucket(tx *bolt.Tx) (*bolt.Bucket, error) {
    3850. 

  3850. 	var err error
    3851. 

  3851. 	bucket := tx.Bucket(rolesBucket)
    3852. 

  3852. 	if bucket == nil {
    3853. 

  3853. 		err = fmt.Errorf("unable to find IP lists bucket, bolt database structure not correcly defined")
    3854. 

  3854. 	}
    3855. 

  3855. 	return bucket, err
    3856. 

  3856. }
    3857. 

  3857. 

  3858. func (p *BoltProvider) getFoldersBucket(tx *bolt.Tx) (*bolt.Bucket, error) {
    3859. 

  3859. 	var err error
    3860. 

  3860. 	bucket := tx.Bucket(foldersBucket)
    3861. 

  3861. 	if bucket == nil {
    3862. 

  3862. 		err = fmt.Errorf("unable to find folders bucket, bolt database structure not correcly defined")
    3863. 

  3863. 	}
    3864. 

  3864. 	return bucket, err
    3865. 

  3865. }
    3866. 

  3866. 

  3867. func (p *BoltProvider) getActionsBucket(tx *bolt.Tx) (*bolt.Bucket, error) {
    3868. 

  3868. 	var err error
    3869. 

  3869. 	bucket := tx.Bucket(actionsBucket)
    3870. 

  3870. 	if bucket == nil {
    3871. 

  3871. 		err = fmt.Errorf("unable to find event actions bucket, bolt database structure not correcly defined")
    3872. 

  3872. 	}
    3873. 

  3873. 	return bucket, err
    3874. 

  3874. }
    3875. 

  3875. 

  3876. func (p *BoltProvider) getRulesBucket(tx *bolt.Tx) (*bolt.Bucket, error) {
    3877. 

  3877. 	var err error
    3878. 

  3878. 	bucket := tx.Bucket(rulesBucket)
    3879. 

  3879. 	if bucket == nil {
    3880. 

  3880. 		err = fmt.Errorf("unable to find event rules bucket, bolt database structure not correcly defined")
    3881. 

  3881. 	}
    3882. 

  3882. 	return bucket, err
    3883. 

  3883. }
    3884. 

  3884. 

  3885. func getBoltDatabaseVersion(dbHandle *bolt.DB) (schemaVersion, error) {
    3886. 

  3886. 	var dbVersion schemaVersion
    3887. 

  3887. 	err := dbHandle.View(func(tx *bolt.Tx) error {
    3888. 

  3888. 		bucket := tx.Bucket(dbVersionBucket)
    3889. 

  3889. 		if bucket == nil {
    3890. 

  3890. 			return fmt.Errorf("unable to find database schema version bucket")
    3891. 

  3891. 		}
    3892. 

  3892. 		v := bucket.Get(dbVersionKey)
    3893. 

  3893. 		if v == nil {
    3894. 

  3894. 			dbVersion = schemaVersion{
    3895. 

  3895. 				Version: 29,
    3896. 

  3896. 			}
    3897. 

  3897. 			return nil
    3898. 

  3898. 		}
    3899. 

  3899. 		return json.Unmarshal(v, &dbVersion)
    3900. 

  3900. 	})
    3901. 

  3901. 	return dbVersion, err
    3902. 

  3902. }
    3903. 

  3903. 

  3904. /*func updateBoltDatabaseVersion(dbHandle *bolt.DB, version int) error {
    3905. 

  3905. 	err := dbHandle.Update(func(tx *bolt.Tx) error {
    3906. 

  3906. 		bucket := tx.Bucket(dbVersionBucket)
    3907. 

  3907. 		if bucket == nil {
    3908. 

  3908. 			return fmt.Errorf("unable to find database schema version bucket")
    3909. 

  3909. 		}
    3910. 

  3910. 		newDbVersion := schemaVersion{
    3911. 

  3911. 			Version: version,
    3912. 

  3912. 		}
    3913. 

  3913. 		buf, err := json.Marshal(newDbVersion)
    3914. 

  3914. 		if err != nil {
    3915. 

  3915. 			return err
    3916. 

  3916. 		}
    3917. 

  3917. 		return bucket.Put(dbVersionKey, buf)
    3918. 

  3918. 	})
    3919. 

  3919. 	return err
    3920. 

  3920. }*/
    3921.