fix(server): don't publicly reveal user count (#4409)

* fix: don't reveal user count publicly * fix: mobile and user controller * fix: update other frontend endpoints * fix: revert openapi change * chore: open api * fix: initialize * openapi --------- Co-authored-by: Alex Tran <alex.tran1502@gmail.com>
2025-12-08 20:29:05 +00:00 · 2023-10-11 04:37:13 +02:00
parent 09bf1c9175
commit 41befc0948
20 changed files with 101 additions and 15 deletions
--- a/mobile/lib/shared/providers/server_info.provider.dart
+++ b/mobile/lib/shared/providers/server_info.provider.dart
@@ -34,6 +34,7 @@ class ServerInfoNotifier extends StateNotifier<ServerInfoState> {
              mapTileUrl: "https://tile.openstreetmap.org/{z}/{x}/{y}.png",
              oauthButtonText: "",
              trashDays: 30,
+              isInitialized: false,
            ),
            isVersionMismatch: false,
            versionMismatchErrorMessage: "",
--- a/mobile/openapi/doc/ServerConfigDto.md
+++ b/mobile/openapi/doc/ServerConfigDto.md
@@ -8,6 +8,7 @@ import 'package:openapi/api.dart';
 ## Properties
 Name | Type | Description | Notes
 ------------ | ------------- | ------------- | -------------
+**isInitialized** | **bool** |  | 
 **loginPageMessage** | **String** |  | 
 **mapTileUrl** | **String** |  | 
 **oauthButtonText** | **String** |  | 
--- a/mobile/openapi/doc/UserApi.md
+++ b/mobile/openapi/doc/UserApi.md
@@ -410,6 +410,20 @@ Name | Type | Description  | Notes
 ### Example
 ```dart
 import 'package:openapi/api.dart';
+// TODO Configure API key authorization: cookie
+//defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKey = 'YOUR_API_KEY';
+// uncomment below to setup prefix (e.g. Bearer) for API key, if needed
+//defaultApiClient.getAuthentication<ApiKeyAuth>('cookie').apiKeyPrefix = 'Bearer';
+// TODO Configure API key authorization: api_key
+//defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKey = 'YOUR_API_KEY';
+// uncomment below to setup prefix (e.g. Bearer) for API key, if needed
+//defaultApiClient.getAuthentication<ApiKeyAuth>('api_key').apiKeyPrefix = 'Bearer';
+// TODO Configure HTTP Bearer authorization: bearer
+// Case 1. Use String Token
+//defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken('YOUR_ACCESS_TOKEN');
+// Case 2. Use Function which generate token.
+// String yourTokenGeneratorFunction() { ... }
+//defaultApiClient.getAuthentication<HttpBearerAuth>('bearer').setAccessToken(yourTokenGeneratorFunction);

 final api_instance = UserApi();
 final admin = true; // bool | 
@@ -434,7 +448,7 @@ Name | Type | Description  | Notes

 ### Authorization

-No authorization required
+[cookie](../README.md#cookie), [api_key](../README.md#api_key), [bearer](../README.md#bearer)

 ### HTTP request headers

--- a/mobile/openapi/lib/model/server_config_dto.dart
+++ b/mobile/openapi/lib/model/server_config_dto.dart
@@ -13,12 +13,15 @@ part of openapi.api;
 class ServerConfigDto {
  /// Returns a new [ServerConfigDto] instance.
  ServerConfigDto({
+    required this.isInitialized,
    required this.loginPageMessage,
    required this.mapTileUrl,
    required this.oauthButtonText,
    required this.trashDays,
  });

+  bool isInitialized;
+
  String loginPageMessage;

  String mapTileUrl;
@@ -29,6 +32,7 @@ class ServerConfigDto {

  @override
  bool operator ==(Object other) => identical(this, other) || other is ServerConfigDto &&
+     other.isInitialized == isInitialized &&
     other.loginPageMessage == loginPageMessage &&
     other.mapTileUrl == mapTileUrl &&
     other.oauthButtonText == oauthButtonText &&
@@ -37,16 +41,18 @@ class ServerConfigDto {
  @override
  int get hashCode =>
    // ignore: unnecessary_parenthesis
+    (isInitialized.hashCode) +
    (loginPageMessage.hashCode) +
    (mapTileUrl.hashCode) +
    (oauthButtonText.hashCode) +
    (trashDays.hashCode);

  @override
-  String toString() => 'ServerConfigDto[loginPageMessage=$loginPageMessage, mapTileUrl=$mapTileUrl, oauthButtonText=$oauthButtonText, trashDays=$trashDays]';
+  String toString() => 'ServerConfigDto[isInitialized=$isInitialized, loginPageMessage=$loginPageMessage, mapTileUrl=$mapTileUrl, oauthButtonText=$oauthButtonText, trashDays=$trashDays]';

  Map<String, dynamic> toJson() {
    final json = <String, dynamic>{};
+      json[r'isInitialized'] = this.isInitialized;
      json[r'loginPageMessage'] = this.loginPageMessage;
      json[r'mapTileUrl'] = this.mapTileUrl;
      json[r'oauthButtonText'] = this.oauthButtonText;
@@ -62,6 +68,7 @@ class ServerConfigDto {
      final json = value.cast<String, dynamic>();

      return ServerConfigDto(
+        isInitialized: mapValueOfType<bool>(json, r'isInitialized')!,
        loginPageMessage: mapValueOfType<String>(json, r'loginPageMessage')!,
        mapTileUrl: mapValueOfType<String>(json, r'mapTileUrl')!,
        oauthButtonText: mapValueOfType<String>(json, r'oauthButtonText')!,
@@ -113,6 +120,7 @@ class ServerConfigDto {

  /// The list of required keys that must be present in a JSON.
  static const requiredKeys = <String>{
+    'isInitialized',
    'loginPageMessage',
    'mapTileUrl',
    'oauthButtonText',
--- a/mobile/openapi/test/server_config_dto_test.dart
+++ b/mobile/openapi/test/server_config_dto_test.dart
@@ -16,6 +16,11 @@ void main() {
  // final instance = ServerConfigDto();

  group('test ServerConfigDto', () {
+    // bool isInitialized
+    test('to test the property `isInitialized`', () async {
+      // TODO
+    });
+
    // String loginPageMessage
    test('to test the property `loginPageMessage`', () async {
      // TODO