x
/
users
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
32 Commits
1 Branch
0 Tags
177 KiB
Tree: a286bdc17f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'a286bdc17f'
${ noResults }
users/server/server.go

273 lines
6.9 KiB
Raw Normal View History

Cleanup
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Fix pointer references
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Fix pointer references
1 year ago
Add user roles
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Implement methods
1 year ago
Add UUID to user model
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Add user roles
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Add user roles
1 year ago
Implement methods
1 year ago
Use chained calls for query
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Implement methods
1 year ago
Implement logout
1 year ago
Use chained calls for query
1 year ago
Implement logout
1 year ago
Use chained calls for query
1 year ago
Implement logout
1 year ago
Implement methods
1 year ago
Fix pointer references
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Add user roles
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Add user roles
1 year ago
Add UUID to user model
1 year ago
Add user roles
1 year ago
Add UUID to user model
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use chained calls for query
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Add user roles
1 year ago
Fix pointer references
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Add user roles
1 year ago
Fix pointer references
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Add user roles
1 year ago
Use chained calls for query
1 year ago
Add fallback
1 year ago
Add user roles
1 year ago
  1. package server
  3. import (
  4. "context"
  5. "errors"
  6. "log"
  7. "time"
  9. "github.com/google/uuid"
  10. "golang.org/x/crypto/bcrypt"
  11. "gorm.io/gorm"
  13. "git.chrishayward.xyz/x/users/proto"
  14. "git.chrishayward.xyz/x/users/server/models"
  15. )
  17. type usersServer struct {
  18. proto.UsersServer
  19. secret string
  20. db *gorm.DB
  21. }
  23. func NewUsersServer(secret string, db *gorm.DB) proto.UsersServer {
  24. db.AutoMigrate(&models.User{}, &models.Role{}, &models.Session{}, &models.PasswordToken{})
  25. return &usersServer{
  26. secret: secret,
  27. db: db,
  28. }
  29. }
  31. func (m *usersServer) Register(ctx context.Context, in *proto.RegisterRequest) (*proto.RegisterResponse, error) {
  32. // Make sure both passwords are included and match.
  33. if in.Form.Password == nil || in.Form.PasswordAgain == nil {
  34. return nil, errors.New("Must include password(s).")
  35. }
  37. if *in.Form.Password != *in.Form.PasswordAgain {
  38. return nil, errors.New("Passwords do not match.")
  39. }
  41. // Check for an existing user.
  42. var u models.User
  43. if m.db.Where(&u, "email = ?", in.Form.Email).RowsAffected > 0 {
  44. return nil, errors.New("User already exists.")
  45. }
  47. // Encode the password.
  48. bytes, err := bcrypt.GenerateFromPassword([]byte(*in.Form.Password), bcrypt.MaxCost)
  49. if err != nil {
  50. log.Fatalf("Failed to encode password: %v", err)
  51. return nil, errors.New("Failed to encode password.")
  52. }
  54. // Create the new user.
  55. u.UUID = uuid.NewString()
  56. u.Email = in.Form.Email
  57. u.Password = string(bytes)
  58. if m.db.Create(&u).RowsAffected == 0 {
  59. log.Fatalf("Failed to save user: %v", err)
  60. return nil, errors.New("Failed to save user.")
  61. }
  63. // Return the response.
  64. return &proto.RegisterResponse{}, nil
  65. }
  67. func (m *usersServer) Login(ctx context.Context, in *proto.LoginRequest) (*proto.LoginResponse, error) {
  68. // Make sure the password is included.
  69. if in.Form.Password == nil {
  70. return nil, errors.New("Password must be included.")
  71. }
  73. // Find the user.
  74. var u models.User
  75. if m.db.Where(&u, "email = ?", in.Form.Email).RowsAffected > 0 {
  76. return nil, errors.New("User not found.")
  77. }
  79. // Compare the passwords.
  80. if err := bcrypt.CompareHashAndPassword([]byte(u.Password), []byte(*in.Form.Password)); err != nil {
  81. return nil, errors.New("Passwords do not match.")
  82. }
  84. // Create a session.
  85. s := &models.Session{
  86. Token: uuid.NewString(),
  87. Expires: time.Now().AddDate(0, 0, 1).UnixNano(),
  88. UserID: u.ID,
  89. }
  91. // Save the token.
  92. if m.db.Create(&s).RowsAffected == 0 {
  93. return nil, errors.New("Failed to create session.")
  94. }
  96. // Return the response.
  97. return &proto.LoginResponse{
  98. Token: &proto.UserToken{
  99. Token: s.Token,
  100. Expires: &s.Expires,
  101. },
  102. }, nil
  103. }
  105. func (m *usersServer) Logout(ctx context.Context, in *proto.LogoutRequest) (*proto.LogoutResponse, error) {
  106. // Find the session.
  107. var s models.Session
  108. if m.db.First(&s, "token = ?", in.Token.Token).RowsAffected == 0 {
  109. return nil, errors.New("Failed to find session.")
  110. }
  112. // Expire the token.
  113. s.Expires = time.Now().UnixNano()
  114. if m.db.Save(&s).RowsAffected == 0 {
  115. return nil, errors.New("Failed to close session.")
  116. }
  118. return &proto.LogoutResponse{}, nil
  119. }
  121. func (m *usersServer) Authorize(ctx context.Context, in *proto.AuthorizeRequest) (*proto.AuthorizeResponse, error) {
  122. // Make sure the secrets match.
  123. if in.Secret != m.secret {
  124. return nil, errors.New("Secrets do not match.")
  125. }
  127. // Find the session.
  128. var s models.Session
  129. if m.db.First(&s, "token = ?", in.Token.Token).RowsAffected == 0 {
  130. return nil, errors.New("Session not found.")
  131. }
  133. // Make sure the session hasn't expired.
  134. if time.Now().UnixNano() > s.Expires {
  135. return nil, errors.New("Token is expired.")
  136. }
  138. // Find the user.
  139. var u models.User
  140. if m.db.Model(&models.User{}).Preload("Roles").First(&u, "id = ?", s.UserID).RowsAffected == 0 {
  141. return nil, errors.New("Failed to load roles.")
  142. }
  144. // Return the response.
  145. res := &proto.AuthorizeResponse{
  146. User: &proto.UserInfo{
  147. Id: int64(u.ID),
  148. Uuid: u.UUID,
  149. },
  150. }
  152. for _, r := range u.Roles {
  153. res.Roles = append(res.Roles, &proto.UserRole{
  154. Id: int64(r.ID),
  155. Name: r.Name,
  156. })
  157. }
  159. return res, nil
  160. }
  162. func (m *usersServer) ResetPassword(ctx context.Context, in *proto.ResetPasswordRequest) (*proto.ResetPasswordResponse, error) {
  163. // Find the u.
  164. var u models.User
  165. if m.db.First(&u, "email = ?", in.Form.Email).RowsAffected == 0 {
  166. return nil, errors.New("User not found.")
  167. }
  169. // Generate a reset token.
  170. rt := &models.PasswordToken{
  171. UserID: u.ID,
  172. Token: uuid.NewString(),
  173. Expires: time.Now().UnixNano(),
  174. }
  176. // Save the token.
  177. if m.db.Create(rt).RowsAffected == 0 {
  178. return nil, errors.New("Failed to create token.")
  179. }
  181. // Return the response.
  182. return &proto.ResetPasswordResponse{
  183. Token: &proto.UserToken{
  184. Token: rt.Token,
  185. },
  186. }, nil
  187. }
  189. func (m *usersServer) ChangePassword(ctx context.Context, in *proto.ChangePasswordRequest) (*proto.ChangePasswordResponse, error) {
  190. // Find the reset token.
  191. var rt models.PasswordToken
  192. if m.db.First(&rt, "token = ?", in.Token.Token).RowsAffected == 0 {
  193. return nil, errors.New("Token not found.")
  194. }
  196. // Find the user.
  197. var u models.User
  198. if m.db.First(&u, "id = ?", rt.UserID).RowsAffected == 0 {
  199. return nil, errors.New("User not found.")
  200. }
  202. // Update the password.
  203. bytes, err := bcrypt.GenerateFromPassword([]byte(*in.Form.Password), bcrypt.MaxCost)
  204. if err != nil {
  205. log.Fatalf("Failed to encode password: %v", err)
  206. return nil, errors.New("Failed to encode password.")
  207. }
  209. u.Password = string(bytes)
  210. if m.db.Save(u).RowsAffected == 0 {
  211. return nil, errors.New("Failed to update password.")
  212. }
  214. // Expire current token.
  215. rt.Expires = time.Now().UnixNano()
  216. if m.db.Save(&rt).RowsAffected == 0 {
  217. return nil, errors.New("Failed to update password.")
  218. }
  220. // Return the response.
  221. return nil, nil
  222. }
  224. func (m *usersServer) ListRoles(ctx context.Context, in *proto.ListRolesRequest) (*proto.ListRolesResponse, error) {
  225. // Make sure the secrets match.
  226. if in.Secret != m.secret {
  227. return nil, errors.New("Secrets do not match.")
  228. }
  230. // Get all of the available roles.
  231. var roles []models.Role
  232. if m.db.Find(&roles).RowsAffected == 0 {
  233. return nil, errors.New("Failed to find roles.")
  234. }
  236. // Return the response.
  237. res := &proto.ListRolesResponse{}
  238. for _, r := range roles {
  239. res.Roles = append(res.Roles, &proto.UserRole{
  240. Id: int64(r.ID),
  241. Name: r.Name,
  242. })
  243. }
  244. return res, nil
  245. }
  247. func (m *usersServer) SetRoles(ctx context.Context, in *proto.SetRolesRequest) (*proto.SetRolesResponse, error) {
  248. // Make sure the secrets match.
  249. if in.Secret != m.secret {
  250. return nil, errors.New("Secrets do not match.")
  251. }
  253. // Find the user.
  254. var u models.User
  255. if m.db.First(&u, "id = ?", in.User.Id).RowsAffected == 0 {
  256. return nil, errors.New("User not found.")
  257. }
  259. // Add the roles.
  260. var r models.Role
  261. for _, x := range in.Roles {
  262. if m.db.First(&r, "id = ?", x.Id).RowsAffected != 0 {
  263. u.Roles = append(u.Roles, &r)
  264. }
  265. }
  267. // Save the user.
  268. if tx := m.db.Save(&u); tx.RowsAffected == 0 {
  269. return nil, errors.New("Failed to add roles.")
  270. }
  272. return nil, nil
  273. }