benutzerverwaltung

pages/user_edit.go

@@ -1,6 +1,8 @@
 package pages
 
 import (
+	"log/slog"
+
 	"github.com/Theodor-Springmann-Stiftung/musenalm/app"
 	"github.com/Theodor-Springmann-Stiftung/musenalm/dbmodels"
 	"github.com/Theodor-Springmann-Stiftung/musenalm/middleware"
@@ -158,6 +160,7 @@ func (p *UserEditPage) POST(engine *templating.Engine, app core.App) HandleFunc
 			Password       string `form:"password"`
 			PasswordRepeat string `form:"password_repeat"`
 			OldPassword    string `form:"old_password"`
+			Logout         string `form:"logout"`
 		}{}
 
 		if err := e.BindBody(&formdata); err != nil {
@@ -191,6 +194,7 @@ func (p *UserEditPage) POST(engine *templating.Engine, app core.App) HandleFunc
 			}
 		}
 
+		passwordchanged := false
 		if formdata.Password != "" || formdata.PasswordRepeat != "" || formdata.OldPassword != "" {
 			if user.Role != "Admin" && formdata.OldPassword == "" {
 				return InvalidDataResponse(engine, e, "Altes Passwort erforderlich", &fu)
@@ -203,13 +207,16 @@ func (p *UserEditPage) POST(engine *templating.Engine, app core.App) HandleFunc
 			}
 
 			user_proxy.SetPassword(formdata.Password)
+			passwordchanged = true
 		}
 
 		if err := app.Save(user_proxy); err != nil {
 			return InvalidDataResponse(engine, e, err.Error(), &fu)
 		}
 
-		if rolechanged {
+		slog.Info("UserEditPage: User edited", "user_id", user_proxy.Id, "role_changed", rolechanged, "password_changed", passwordchanged, "formdata", formdata)
+		if rolechanged || (passwordchanged && formdata.Logout == "on") {
+			slog.Error("UserEditPage: Deleting sessions for user", "user_id", user_proxy.Id, "role_changed", rolechanged, "password_changed", passwordchanged)
 			if err := DeleteSessionsForUser(app, user_proxy.Id); err != nil {
 				return InvalidDataResponse(engine, e, "Fehler beim Löschen der Sitzungen: "+err.Error(), &fu)
 			}
@@ -220,6 +227,8 @@ func (p *UserEditPage) POST(engine *templating.Engine, app core.App) HandleFunc
 			}
 		}
 
+		go middleware.SESSION_CACHE.DeleteSessionByUserID(user_proxy.Id)
+
 		fu = user_proxy.Fixed()
 		data["user"] = &fu
 		if user_proxy.Id == user.Id {

pages/user_management.go

@@ -17,6 +17,11 @@ const (
 	TEMPLATE_USER_MANAGEMENT = "/user/management/"
 )
 
+type SessionCount struct {
+	Count  int    `json:"count" db:"count"`
+	UserId string `json:"user" db:"user"`
+}
+
 func init() {
 	ump := &UserManagementPage{
 		StaticPage: pagemodels.StaticPage{
@@ -41,6 +46,21 @@ func (p *UserManagementPage) Setup(router *router.Router[*core.RequestEvent], ap
 	return nil
 }
 
+func GetSessionsCounts(app core.App) ([]*SessionCount, error) {
+	query := app.RecordQuery(dbmodels.SESSIONS_TABLE).
+		Select("COUNT(*) AS count", dbmodels.SESSIONS_USER_FIELD).
+		GroupBy(dbmodels.SESSIONS_USER_FIELD).
+		OrderBy("count DESC")
+
+	var counts []*SessionCount
+	err := query.All(&counts)
+	if err != nil {
+		return nil, fmt.Errorf("failed to get session counts: %w", err)
+	}
+
+	return counts, nil
+}
+
 func (p *UserManagementPage) GET(engine *templating.Engine, app core.App) HandleFunc {
 	return func(e *core.RequestEvent) error {
 		records := []*core.Record{}
@@ -54,9 +74,20 @@ func (p *UserManagementPage) GET(engine *templating.Engine, app core.App) Handle
 			users = append(users, dbmodels.NewUser(record))
 		}
 
+		sessionCounts, err := GetSessionsCounts(app)
+		if err != nil {
+			return engine.Response500(e, err, nil)
+		}
+
+		scmap := make(map[string]int)
+		for _, sc := range sessionCounts {
+			scmap[sc.UserId] = sc.Count
+		}
+
 		data := make(map[string]any)
 		data["users"] = users
 		data["len"] = len(users)
+		data["session_counts"] = scmap
 
 		nonce, token, err := CSRF_CACHE.GenerateTokenBundle()
 		if err != nil {