x
/
users
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
177 KiB
Tree: 4cf19f229e
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '4cf19f229e'
${ noResults }
users/server/server.go

192 lines
4.5 KiB
Raw Normal View History

Cleanup
1 year ago
Implement methods
1 year ago
Cleanup
1 year ago
Implement methods
1 year ago
  1. package server
  3. import (
  4. "context"
  5. "errors"
  6. "log"
  7. "time"
  9. "github.com/google/uuid"
  10. "golang.org/x/crypto/bcrypt"
  12. "git.chrishayward.xyz/x/users/proto"
  13. )
  15. type usersServer struct {
  16. proto.UsersServer
  17. secret *string
  18. users UserDB
  19. tokens TokenDB
  20. resetTokens TokenDB
  21. }
  23. func NewUsersServer(secret *string) proto.UsersServer {
  24. return &usersServer{
  25. secret: secret,
  26. users: newInMemoryUserDB(),
  27. tokens: newInMemoryTokenDB(),
  28. resetTokens: newInMemoryTokenDB(),
  29. }
  30. }
  32. func (m *usersServer) Register(ctx context.Context, in *proto.RegisterRequest) (*proto.RegisterResponse, error) {
  33. // Make sure both passwords are included and match.
  34. if in.Form.Password == nil || in.Form.PasswordAgain == nil {
  35. return nil, errors.New("Must include password(s).")
  36. }
  38. if *in.Form.Password != *in.Form.PasswordAgain {
  39. return nil, errors.New("Passwords do not match.")
  40. }
  42. // Check for an existing user.
  43. if u, _ := m.users.FindByEmail(in.Form.Email); u != nil {
  44. return nil, errors.New("User already exists.")
  45. }
  47. // Encode the password.
  48. bytes, err := bcrypt.GenerateFromPassword([]byte(*in.Form.Password), bcrypt.MaxCost)
  49. if err != nil {
  50. log.Fatalf("Failed to encode password: %v", err)
  51. return nil, errors.New("Failed to encode password.")
  52. }
  54. // Create the new user.
  55. if err := m.users.Save(&User{
  56. Email: in.Form.Email,
  57. Password: string(bytes),
  58. }); err != nil {
  59. log.Fatalf("Failed to save user: %v", err)
  60. return nil, errors.New("Failed to save user.")
  61. }
  63. // Return the response.
  64. return &proto.RegisterResponse{}, nil
  65. }
  67. func (m *usersServer) Login(ctx context.Context, in *proto.LoginRequest) (*proto.LoginResponse, error) {
  68. // Make sure the password is included.
  69. if in.Form.Password == nil {
  70. return nil, errors.New("Password must be included.")
  71. }
  73. // Find the user.
  74. user, err := m.users.FindByEmail(in.Form.Email)
  75. if err != nil {
  76. return nil, err
  77. }
  79. // Compare the passwords.
  80. if err := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(*in.Form.Password)); err != nil {
  81. return nil, errors.New("Passwords do not match.")
  82. }
  84. // Create a token.
  85. expires := time.Now().AddDate(0, 0, 1)
  86. token := &Token{
  87. UserID: user.ID,
  88. Token: uuid.NewString(),
  89. Expires: &expires,
  90. }
  92. // Save the token.
  93. m.tokens.Save(token)
  95. // Return the response.
  96. expiresNano := expires.UnixNano()
  97. return &proto.LoginResponse{
  98. Token: &proto.UserToken{
  99. Token: token.Token,
  100. Expires: &expiresNano,
  101. },
  102. }, nil
  103. }
  105. func (m *usersServer) Authorize(ctx context.Context, in *proto.AuthorizeRequest) (*proto.AuthorizeResponse, error) {
  106. // Make sure the secrets match.
  107. if in.Secret != *m.secret {
  108. return nil, errors.New("Secrets do not match.")
  109. }
  111. // Find the token.
  112. token, err := m.tokens.FindByToken(in.Token.Token)
  113. if err != nil {
  114. return nil, err
  115. }
  117. // Make sure the token hasn't expired.
  118. if token.Expires.After(time.Now()) {
  119. return nil, errors.New("Token is expired.")
  120. }
  122. // Return the user ID.
  123. return &proto.AuthorizeResponse{
  124. User: &proto.UserInfo{
  125. Id: int64(token.UserID),
  126. },
  127. }, nil
  128. }
  130. func (m *usersServer) ResetPassword(ctx context.Context, in *proto.ResetPasswordRequest) (*proto.ResetPasswordResponse, error) {
  131. // Find the user.
  132. user, err := m.users.FindByEmail(in.Form.Email)
  133. if err != nil {
  134. return nil, err
  135. }
  137. // Generate a reset token.
  138. expires := time.Now().AddDate(0, 0, 1)
  139. token := &Token{
  140. UserID: user.ID,
  141. Token: uuid.NewString(),
  142. Expires: &expires,
  143. }
  145. // Save the token.
  146. if err := m.resetTokens.Save(token); err != nil {
  147. return nil, err
  148. }
  150. // Return the response.
  151. return &proto.ResetPasswordResponse{
  152. Token: &proto.UserToken{
  153. Token: token.Token,
  154. },
  155. }, nil
  156. }
  158. func (m *usersServer) ChangePassword(ctx context.Context, in *proto.ChangePasswordRequest) (*proto.ChangePasswordResponse, error) {
  159. // Find the reset token.
  160. resetToken, err := m.resetTokens.FindByToken(in.Token.Token)
  161. if err != nil {
  162. return nil, err
  163. }
  165. // Find the user.
  166. user, err := m.users.FindByID(resetToken.UserID)
  167. if err != nil {
  168. return nil, err
  169. }
  171. // Update the password.
  172. bytes, err := bcrypt.GenerateFromPassword([]byte(*in.Form.Password), bcrypt.MaxCost)
  173. if err != nil {
  174. log.Fatalf("Failed to encode password: %v", err)
  175. return nil, errors.New("Failed to encode password.")
  176. }
  178. user.Password = string(bytes)
  179. if err := m.users.Save(user); err != nil {
  180. return nil, err
  181. }
  183. // Expire current token.
  184. if token, err := m.tokens.FindByUserID(user.ID); token != nil && err == nil {
  185. expires := time.Now()
  186. token.Expires = &expires
  187. _ = m.tokens.Save(token)
  188. }
  190. // Return the response.
  191. return nil, nil
  192. }