detect admin more reliably

commit: 618a3d45f7b60798e5affcb7c9c1bf5d16d8313c [log] [tgz]
author: Robert Newson <rnewson@apache.org> Thu Sep 12 17:02:59 2024 +0100
committer: Robert Newson <rnewson@apache.org> Thu Sep 12 18:21:53 2024 +0100
tree: 2c9d53664d1f96bd54892f7f71ae2924acb27a0a
parent: ee9984b2b900809b9e4566d1f028b59512278adc [diff]
diff --git a/src/couch/src/couch_password_hasher.erl b/src/couch/src/couch_password_hasher.erl
index d947500..55421a8 100644
--- a/src/couch/src/couch_password_hasher.erl
+++ b/src/couch/src/couch_password_hasher.erl

@@ -40,7 +40,7 @@
 
 maybe_upgrade_password_hash(AuthModule, UserName, Password, UserProps) ->
     UpgradeEnabled = config:get_boolean("chttpd_auth", "upgrade_hash_on_auth", true),
-    IsAdmin = is_admin(UserProps),
+    IsAdmin = is_admin(UserName),
     NeedsUpgrade = needs_upgrade(UserProps),
     InProgress = in_progress(AuthModule, UserName),
     if
@@ -106,9 +106,8 @@
         couch_passwords:get_unhashed_admins()
     ).
 
-is_admin(UserProps) ->
-    Roles = couch_util:get_value(<<"roles">>, UserProps, []),
-    lists:member(<<"_admin">>, Roles).
+is_admin(UserName) ->
+    config:get("admins", ?b2l(UserName)) /= undefined.
 
 needs_upgrade(UserProps) ->
     CurrentScheme = couch_util:get_value(<<"password_scheme">>, UserProps),
commit	618a3d45f7b60798e5affcb7c9c1bf5d16d8313c	[log] [tgz]
author	Robert Newson <rnewson@apache.org>	Thu Sep 12 17:02:59 2024 +0100
committer	Robert Newson <rnewson@apache.org>	Thu Sep 12 18:21:53 2024 +0100
tree	2c9d53664d1f96bd54892f7f71ae2924acb27a0a
parent	ee9984b2b900809b9e4566d1f028b59512278adc [diff]