fix: remove email requirement for the user, and use the username if no email provided (#900)

* fix: remove email requirement for the user, and use the username if no email provided * fix: update translations * fix: remove useless console.log * test: fix user list test * fix: disallow Plex users from changing their email
2026-01-03 05:09:43 -05:00 · 2024-07-29 21:27:31 +02:00
parent 422085523e
commit d5f817e734
10 changed files with 85 additions and 45 deletions
--- a/server/routes/auth.ts
+++ b/server/routes/auth.ts
@@ -320,7 +320,7 @@ authRoutes.post('/jellyfin', async (req, res, next) => {
      // with admin permission
      settings.main.mediaServerType = MediaServerType.JELLYFIN;
      user = new User({
-        email: body.email,
+        email: body.email || account.User.Name,
        jellyfinUsername: account.User.Name,
        jellyfinUserId: account.User.Id,
        jellyfinDeviceId: deviceId,
@@ -328,7 +328,10 @@ authRoutes.post('/jellyfin', async (req, res, next) => {
        permissions: Permission.ADMIN,
        avatar: account.User.PrimaryImageTag
          ? `${jellyfinHost}/Users/${account.User.Id}/Images/Primary/?tag=${account.User.PrimaryImageTag}&quality=90`
-          : gravatarUrl(body.email ?? '', { default: 'mm', size: 200 }),
+          : gravatarUrl(body.email || account.User.Name, {
+              default: 'mm',
+              size: 200,
+            }),
        userType: UserType.JELLYFIN,
      });

@@ -371,7 +374,7 @@ authRoutes.post('/jellyfin', async (req, res, next) => {
      if (account.User.PrimaryImageTag) {
        user.avatar = `${jellyfinHost}/Users/${account.User.Id}/Images/Primary/?tag=${account.User.PrimaryImageTag}&quality=90`;
      } else {
-        user.avatar = gravatarUrl(user.email, {
+        user.avatar = gravatarUrl(user.email || account.User.Name, {
          default: 'mm',
          size: 200,
        });
@@ -413,10 +416,6 @@ authRoutes.post('/jellyfin', async (req, res, next) => {
        }
      );

-      if (!body.email) {
-        throw new Error('add_email');
-      }
-
      user = new User({
        email: body.email,
        jellyfinUsername: account.User.Name,
@@ -426,7 +425,10 @@ authRoutes.post('/jellyfin', async (req, res, next) => {
        permissions: settings.main.defaultPermissions,
        avatar: account.User.PrimaryImageTag
          ? `${jellyfinHost}/Users/${account.User.Id}/Images/Primary/?tag=${account.User.PrimaryImageTag}&quality=90`
-          : gravatarUrl(body.email, { default: 'mm', size: 200 }),
+          : gravatarUrl(body.email || account.User.Name, {
+              default: 'mm',
+              size: 200,
+            }),
        userType: UserType.JELLYFIN,
      });
      //initialize Jellyfin/Emby users with local login
--- a/server/routes/user/index.ts
+++ b/server/routes/user/index.ts
@@ -41,7 +41,19 @@ router.get('/', async (req, res, next) => {
        break;
      case 'displayname':
        query = query.orderBy(
-          "(CASE WHEN (user.username IS NULL OR user.username = '') THEN (CASE WHEN (user.plexUsername IS NULL OR user.plexUsername = '') THEN user.email ELSE LOWER(user.plexUsername) END) ELSE LOWER(user.username) END)",
+          `CASE WHEN (user.username IS NULL OR user.username = '') THEN (
+             CASE WHEN (user.plexUsername IS NULL OR user.plexUsername = '') THEN (
+               CASE WHEN (user.jellyfinUsername IS NULL OR user.jellyfinUsername = '') THEN
+                 user.email
+               ELSE
+                 LOWER(user.jellyfinUsername)
+               END)
+             ELSE
+               LOWER(user.jellyfinUsername)
+             END)
+           ELSE
+             LOWER(user.username)
+           END`,
          'ASC'
        );
        break;
@@ -90,12 +102,13 @@ router.post(
      const settings = getSettings();

      const body = req.body;
+      const email = body.email || body.username;
      const userRepository = getRepository(User);

      const existingUser = await userRepository
        .createQueryBuilder('user')
        .where('user.email = :email', {
-          email: body.email.toLowerCase(),
+          email: email.toLowerCase(),
        })
        .getOne();

@@ -108,7 +121,7 @@ router.post(
      }

      const passedExplicitPassword = body.password && body.password.length > 0;
-      const avatar = gravatarUrl(body.email, { default: 'mm', size: 200 });
+      const avatar = gravatarUrl(email, { default: 'mm', size: 200 });

      if (
        !passedExplicitPassword &&
@@ -118,9 +131,9 @@ router.post(
      }

      const user = new User({
+        email,
        avatar: body.avatar ?? avatar,
        username: body.username,
-        email: body.email,
        password: body.password,
        permissions: settings.main.defaultPermissions,
        plexToken: '',
--- a/server/routes/user/usersettings.ts
+++ b/server/routes/user/usersettings.ts
@@ -98,7 +98,9 @@ userSettingsRoutes.post<
    }

    user.username = req.body.username;
-    user.email = req.body.email ?? user.email;
+    if (user.jellyfinUsername) {
+      user.email = req.body.email || user.jellyfinUsername || user.email;
+    }

    // Update quota values only if the user has the correct permissions
    if (