Allow logging in using an email address (#4337)

sandhose · web-flow · commit 4a14e36942cb · 2025-04-10T20:01:56.000+02:00
diff --git a/crates/cli/src/util.rs b/crates/cli/src/util.rs
@@ -214,6 +214,7 @@ pub fn site_config_from_config(
         captcha,
         minimum_password_complexity: password_config.minimum_complexity(),
         session_expiration,
+        login_with_email_allowed: account_config.login_with_email_allowed,
     })
 }
 
diff --git a/crates/config/src/sections/account.rs b/crates/config/src/sections/account.rs
@@ -66,6 +66,12 @@ pub struct AccountConfig {
     /// `true`.
     #[serde(default = "default_true", skip_serializing_if = "is_default_true")]
     pub account_deactivation_allowed: bool,
+
+    /// Whether users can log in with their email address. Defaults to `false`.
+    ///
+    /// This has no effect if password login is disabled.
+    #[serde(default = "default_false", skip_serializing_if = "is_default_false")]
+    pub login_with_email_allowed: bool,
 }
 
 impl Default for AccountConfig {
@@ -77,6 +83,7 @@ impl Default for AccountConfig {
             password_change_allowed: default_true(),
             password_recovery_enabled: default_false(),
             account_deactivation_allowed: default_true(),
+            login_with_email_allowed: default_false(),
         }
     }
 }
@@ -90,6 +97,7 @@ impl AccountConfig {
             && is_default_true(&self.password_change_allowed)
             && is_default_false(&self.password_recovery_enabled)
             && is_default_true(&self.account_deactivation_allowed)
+            && is_default_false(&self.login_with_email_allowed)
     }
 }
 
diff --git a/crates/data-model/src/site_config.rs b/crates/data-model/src/site_config.rs
@@ -87,4 +87,7 @@ pub struct SiteConfig {
     pub minimum_password_complexity: u8,
 
     pub session_expiration: Option<SessionExpirationConfig>,
+
+    /// Whether users can log in with their email address.
+    pub login_with_email_allowed: bool,
 }
diff --git a/crates/handlers/src/graphql/model/site_config.rs b/crates/handlers/src/graphql/model/site_config.rs
@@ -53,6 +53,9 @@ pub struct SiteConfig {
     /// The exact scorer (including dictionaries and other data tables)
     /// in use is <https://crates.io/crates/zxcvbn>.
     minimum_password_complexity: u8,
+
+    /// Whether users can log in with their email address.
+    login_with_email_allowed: bool,
 }
 
 #[derive(SimpleObject)]
@@ -98,6 +101,7 @@ impl SiteConfig {
             password_registration_enabled: data_model.password_registration_enabled,
             account_deactivation_allowed: data_model.account_deactivation_allowed,
             minimum_password_complexity: data_model.minimum_password_complexity,
+            login_with_email_allowed: data_model.login_with_email_allowed,
         }
     }
 }
diff --git a/crates/handlers/src/test_utils.rs b/crates/handlers/src/test_utils.rs
@@ -141,6 +141,7 @@ pub fn test_site_config() -> SiteConfig {
         captcha: None,
         minimum_password_complexity: 1,
         session_expiration: None,
+        login_with_email_allowed: true,
     }
 }
 
diff --git a/crates/handlers/src/views/login.rs b/crates/handlers/src/views/login.rs
@@ -187,7 +187,8 @@ pub(crate) async fn post(
         .unwrap_or(&form.username);
 
     // First, lookup the user
-    let Some(user) = repo.user().find_by_username(username).await? else {
+    let Some(user) = get_user_by_email_or_by_username(site_config, &mut repo, username).await?
+    else {
         let form_state = form_state.with_error_on_form(FormError::InvalidCredentials);
         PASSWORD_LOGIN_COUNTER.add(1, &[KeyValue::new(RESULT, "error")]);
         return render(
@@ -337,6 +338,28 @@ pub(crate) async fn post(
     Ok((cookie_jar, reply).into_response())
 }
 
+async fn get_user_by_email_or_by_username(
+    site_config: SiteConfig,
+    repo: &mut impl RepositoryAccess,
+    username_or_email: &str,
+) -> Result<Option<mas_data_model::User>, Box<dyn std::error::Error>> {
+    if site_config.login_with_email_allowed && username_or_email.contains('@') {
+        let maybe_user_email = repo.user_email().find_by_email(username_or_email).await?;
+
+        if let Some(user_email) = maybe_user_email {
+            let user = repo.user().lookup(user_email.user_id).await?;
+
+            if user.is_some() {
+                return Ok(user);
+            }
+        }
+    }
+
+    let user = repo.user().find_by_username(username_or_email).await?;
+
+    Ok(user)
+}
+
 fn handle_login_hint(
     mut ctx: LoginContext,
     next: &PostAuthContext,
diff --git a/crates/storage-pg/.sqlx/query-f3b043b69e0554b5b4d8f5cf05960632fb2ebd38916dd2e9beac232c7e14c1ec.json b/crates/storage-pg/.sqlx/query-f3b043b69e0554b5b4d8f5cf05960632fb2ebd38916dd2e9beac232c7e14c1ec.json
diff --git a/crates/storage-pg/src/user/email.rs b/crates/storage-pg/src/user/email.rs
@@ -191,6 +191,43 @@ impl UserEmailRepository for PgUserEmailRepository<'_> {
         Ok(Some(user_email.into()))
     }
 
+    #[tracing::instrument(
+        name = "db.user_email.find_by_email",
+        skip_all,
+        fields(
+            db.query.text,
+            user_email.email = email,
+        ),
+        err,
+    )]
+    async fn find_by_email(&mut self, email: &str) -> Result<Option<UserEmail>, Self::Error> {
+        let res = sqlx::query_as!(
+            UserEmailLookup,
+            r#"
+                SELECT user_email_id
+                     , user_id
+                     , email
+                     , created_at
+                FROM user_emails
+                WHERE email = $1
+            "#,
+            email,
+        )
+        .traced()
+        .fetch_all(&mut *self.conn)
+        .await?;
+
+        if res.len() != 1 {
+            return Ok(None);
+        }
+
+        let Some(user_email) = res.into_iter().next() else {
+            return Ok(None);
+        };
+
+        Ok(Some(user_email.into()))
+    }
+
     #[tracing::instrument(
         name = "db.user_email.all",
         skip_all,
diff --git a/crates/storage/src/user/email.rs b/crates/storage/src/user/email.rs
@@ -93,6 +93,19 @@ pub trait UserEmailRepository: Send + Sync {
     /// Returns [`Self::Error`] if the underlying repository fails
     async fn find(&mut self, user: &User, email: &str) -> Result<Option<UserEmail>, Self::Error>;
 
+    /// Lookup an [`UserEmail`] by its email address
+    ///
+    /// Returns `None` if no matching [`UserEmail`] was found or if multiple
+    /// [`UserEmail`] are found
+    ///
+    /// # Parameters
+    /// * `email`: The email address to lookup
+    ///
+    /// # Errors
+    ///
+    /// Returns [`Self::Error`] if the underlying repository fails
+    async fn find_by_email(&mut self, email: &str) -> Result<Option<UserEmail>, Self::Error>;
+
     /// Get all [`UserEmail`] of a [`User`]
     ///
     /// # Parameters
@@ -298,6 +311,7 @@ pub trait UserEmailRepository: Send + Sync {
 repository_impl!(UserEmailRepository:
     async fn lookup(&mut self, id: Ulid) -> Result<Option<UserEmail>, Self::Error>;
     async fn find(&mut self, user: &User, email: &str) -> Result<Option<UserEmail>, Self::Error>;
+    async fn find_by_email(&mut self, email: &str) -> Result<Option<UserEmail>, Self::Error>;
 
     async fn all(&mut self, user: &User) -> Result<Vec<UserEmail>, Self::Error>;
     async fn list(
diff --git a/crates/templates/src/context/ext.rs b/crates/templates/src/context/ext.rs
@@ -47,6 +47,7 @@ impl SiteConfigExt for SiteConfig {
             password_registration: self.password_registration_enabled,
             password_login: self.password_login_enabled,
             account_recovery: self.account_recovery_allowed,
+            login_with_email_allowed: self.login_with_email_allowed,
         }
     }
 }
diff --git a/crates/templates/src/context/features.rs b/crates/templates/src/context/features.rs
@@ -12,6 +12,7 @@ use minijinja::{
 };
 
 /// Site features information.
+#[allow(clippy::struct_excessive_bools)]
 #[derive(Debug, Clone, Copy, PartialEq, Eq)]
 pub struct SiteFeatures {
     /// Whether local password-based registration is enabled.
@@ -22,6 +23,9 @@ pub struct SiteFeatures {
 
     /// Whether email-based account recovery is enabled.
     pub account_recovery: bool,
+
+    /// Whether users can log in with their email address.
+    pub login_with_email_allowed: bool,
 }
 
 impl Object for SiteFeatures {
@@ -30,6 +34,7 @@ impl Object for SiteFeatures {
             "password_registration" => Some(Value::from(self.password_registration)),
             "password_login" => Some(Value::from(self.password_login)),
             "account_recovery" => Some(Value::from(self.account_recovery)),
+            "login_with_email_allowed" => Some(Value::from(self.login_with_email_allowed)),
             _ => None,
         }
     }
@@ -39,6 +44,7 @@ impl Object for SiteFeatures {
             "password_registration",
             "password_login",
             "account_recovery",
+            "login_with_email_allowed",
         ])
     }
 }
diff --git a/crates/templates/src/lib.rs b/crates/templates/src/lib.rs
@@ -487,6 +487,7 @@ mod tests {
             password_login: true,
             password_registration: true,
             account_recovery: true,
+            login_with_email_allowed: true,
         };
         let vite_manifest_path =
             Utf8Path::new(env!("CARGO_MANIFEST_DIR")).join("../../frontend/dist/manifest.json");
diff --git a/docs/config.schema.json b/docs/config.schema.json
@@ -2504,6 +2504,10 @@
         "account_deactivation_allowed": {
           "description": "Whether users are allowed to delete their own account. Defaults to `true`.",
           "type": "boolean"
+        },
+        "login_with_email_allowed": {
+          "description": "Whether users can log in with their email address. Defaults to `false`.\n\nThis has no effect if password login is disabled.",
+          "type": "boolean"
         }
       }
     },
diff --git a/docs/reference/configuration.md b/docs/reference/configuration.md
@@ -314,6 +314,12 @@ account:
   #
   # Defaults to `true`.
   account_deactivation_allowed: true
+
+  # Whether users can log in with their email address.
+  #
+  # Defaults to `false`.
+  # This has no effect if password login is disabled.
+  login_with_email_allowed: false
 ```
 
 ## `captcha`
diff --git a/frontend/schema.graphql b/frontend/schema.graphql
@@ -1662,6 +1662,10 @@ type SiteConfig implements Node {
   """
   minimumPasswordComplexity: Int!
   """
+  Whether users can log in with their email address.
+  """
+  loginWithEmailAllowed: Boolean!
+  """
   The ID of the site configuration.
   """
   id: ID!
diff --git a/frontend/src/gql/graphql.ts b/frontend/src/gql/graphql.ts
@@ -1218,6 +1218,8 @@ export type SiteConfig = Node & {
   id: Scalars['ID']['output'];
   /** Imprint to show in the footer. */
   imprint?: Maybe<Scalars['String']['output']>;
+  /** Whether users can log in with their email address. */
+  loginWithEmailAllowed: Scalars['Boolean']['output'];
   /**
    * Minimum password complexity, from 0 to 4, in terms of a zxcvbn score.
    * The exact scorer (including dictionaries and other data tables)
diff --git a/templates/pages/login.html b/templates/pages/login.html
@@ -42,9 +42,15 @@ <h1 class="title">{{ _("mas.login.headline") }}</h1>
 
       <input type="hidden" name="csrf" value="{{ csrf_token }}" />
 
-      {% call(f) field.field(label=_("common.username"), name="username", form_state=form) %}
-        <input {{ field.attributes(f) }} class="cpd-text-control" type="text" autocomplete="username" autocorrect="off" autocapitalize="off" required />
-      {% endcall %}
+      {% if features.login_with_email_allowed %}
+        {% call(f) field.field(label=_("mas.login.username_or_email"), name="username", form_state=form) %}
+          <input {{ field.attributes(f) }} class="cpd-text-control" type="text" autocomplete="username" autocorrect="off" autocapitalize="off" required />
+        {% endcall %}
+      {% else %}
+        {% call(f) field.field(label=_("common.username"), name="username", form_state=form) %}
+          <input {{ field.attributes(f) }} class="cpd-text-control" type="text" autocomplete="username" autocorrect="off" autocapitalize="off" required />
+        {% endcall %}
+      {% endif %}
 
       {% if features.password_login %}
         {% call(f) field.field(label=_("common.password"), name="password", form_state=form) %}
diff --git a/translations/en.json b/translations/en.json

Original file line number	Diff line number	Diff line change
`@@ -214,6 +214,7 @@ pub fn site_config_from_config(`
`214`	`214`	`captcha,`
`215`	`215`	`minimum_password_complexity: password_config.minimum_complexity(),`
`216`	`216`	`session_expiration,`
	`217`	`+ login_with_email_allowed: account_config.login_with_email_allowed,`
`217`	`218`	`})`
`218`	`219`	`}`
`219`	`220`
Original file line number	Diff line number	Diff line change
`@@ -66,6 +66,12 @@ pub struct AccountConfig {`
`66`	`66`	/// `true`.
`67`	`67`	`#[serde(default = "default_true", skip_serializing_if = "is_default_true")]`
`68`	`68`	`pub account_deactivation_allowed: bool,`
	`69`	`+`
	`70`	+ /// Whether users can log in with their email address. Defaults to `false`.
	`71`	`+ ///`
	`72`	`+ /// This has no effect if password login is disabled.`
	`73`	`+ #[serde(default = "default_false", skip_serializing_if = "is_default_false")]`
	`74`	`+ pub login_with_email_allowed: bool,`
`69`	`75`	`}`
`70`	`76`
`71`	`77`	`impl Default for AccountConfig {`
`@@ -77,6 +83,7 @@ impl Default for AccountConfig {`
`77`	`83`	`password_change_allowed: default_true(),`
`78`	`84`	`password_recovery_enabled: default_false(),`
`79`	`85`	`account_deactivation_allowed: default_true(),`
	`86`	`+ login_with_email_allowed: default_false(),`
`80`	`87`	`}`
`81`	`88`	`}`
`82`	`89`	`}`
`@@ -90,6 +97,7 @@ impl AccountConfig {`
`90`	`97`	`&& is_default_true(&self.password_change_allowed)`
`91`	`98`	`&& is_default_false(&self.password_recovery_enabled)`
`92`	`99`	`&& is_default_true(&self.account_deactivation_allowed)`
	`100`	`+ && is_default_false(&self.login_with_email_allowed)`
`93`	`101`	`}`
`94`	`102`	`}`
`95`	`103`
Original file line number	Diff line number	Diff line change
`@@ -87,4 +87,7 @@ pub struct SiteConfig {`
`87`	`87`	`pub minimum_password_complexity: u8,`
`88`	`88`
`89`	`89`	`pub session_expiration: Option<SessionExpirationConfig>,`
	`90`	`+`
	`91`	`+ /// Whether users can log in with their email address.`
	`92`	`+ pub login_with_email_allowed: bool,`
`90`	`93`	`}`
Original file line number	Diff line number	Diff line change
`@@ -53,6 +53,9 @@ pub struct SiteConfig {`
`53`	`53`	`/// The exact scorer (including dictionaries and other data tables)`
`54`	`54`	`/// in use is <https://crates.io/crates/zxcvbn>.`
`55`	`55`	`minimum_password_complexity: u8,`
	`56`	`+`
	`57`	`+ /// Whether users can log in with their email address.`
	`58`	`+ login_with_email_allowed: bool,`
`56`	`59`	`}`
`57`	`60`
`58`	`61`	`#[derive(SimpleObject)]`
`@@ -98,6 +101,7 @@ impl SiteConfig {`
`98`	`101`	`password_registration_enabled: data_model.password_registration_enabled,`
`99`	`102`	`account_deactivation_allowed: data_model.account_deactivation_allowed,`
`100`	`103`	`minimum_password_complexity: data_model.minimum_password_complexity,`
	`104`	`+ login_with_email_allowed: data_model.login_with_email_allowed,`
`101`	`105`	`}`
`102`	`106`	`}`
`103`	`107`	`}`
Original file line number	Diff line number	Diff line change
`@@ -141,6 +141,7 @@ pub fn test_site_config() -> SiteConfig {`
`141`	`141`	`captcha: None,`
`142`	`142`	`minimum_password_complexity: 1,`
`143`	`143`	`session_expiration: None,`
	`144`	`+ login_with_email_allowed: true,`
`144`	`145`	`}`
`145`	`146`	`}`
`146`	`147`
Original file line number	Diff line number	Diff line change
`@@ -47,6 +47,7 @@ impl SiteConfigExt for SiteConfig {`
`47`	`47`	`password_registration: self.password_registration_enabled,`
`48`	`48`	`password_login: self.password_login_enabled,`
`49`	`49`	`account_recovery: self.account_recovery_allowed,`
	`50`	`+ login_with_email_allowed: self.login_with_email_allowed,`
`50`	`51`	`}`
`51`	`52`	`}`
`52`	`53`	`}`