x
/
users
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
10 Commits
1 Branch
0 Tags
177 KiB
Tree: f6346f5c7b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'f6346f5c7b'
${ noResults }
users/server/server.go

198 lines
5.0 KiB
Raw Normal View History

Cleanup
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
Use gorm db
1 year ago
Implement methods
1 year ago
  1. package server
  3. import (
  4. "context"
  5. "errors"
  6. "log"
  7. "time"
  9. "github.com/google/uuid"
  10. "golang.org/x/crypto/bcrypt"
  11. "gorm.io/gorm"
  13. "git.chrishayward.xyz/x/users/proto"
  14. "git.chrishayward.xyz/x/users/server/models"
  15. )
  17. type usersServer struct {
  18. proto.UsersServer
  19. secret *string
  20. db *gorm.DB
  21. }
  23. func NewUsersServer(secret *string, db *gorm.DB) proto.UsersServer {
  24. db.AutoMigrate(&models.User{}, &models.Session{}, &models.PasswordToken{})
  25. return &usersServer{
  26. secret: secret,
  27. db: db,
  28. }
  29. }
  31. func (m *usersServer) Register(ctx context.Context, in *proto.RegisterRequest) (*proto.RegisterResponse, error) {
  32. // Make sure both passwords are included and match.
  33. if in.Form.Password == nil || in.Form.PasswordAgain == nil {
  34. return nil, errors.New("Must include password(s).")
  35. }
  37. if *in.Form.Password != *in.Form.PasswordAgain {
  38. return nil, errors.New("Passwords do not match.")
  39. }
  41. // Check for an existing user.
  42. var user models.User
  43. tx := m.db.First(&user, "email = ?", in.Form.Email)
  44. if tx.RowsAffected != 0 {
  45. return nil, errors.New("User already exists.")
  46. }
  48. // Encode the password.
  49. bytes, err := bcrypt.GenerateFromPassword([]byte(*in.Form.Password), bcrypt.MaxCost)
  50. if err != nil {
  51. log.Fatalf("Failed to encode password: %v", err)
  52. return nil, errors.New("Failed to encode password.")
  53. }
  55. // Create the new user.
  56. user.Email = in.Form.Email
  57. user.Password = string(bytes)
  58. tx = m.db.Create(&user)
  59. if tx.RowsAffected == 0 {
  60. log.Fatalf("Failed to save user: %v", err)
  61. return nil, errors.New("Failed to save user.")
  62. }
  64. // Return the response.
  65. return &proto.RegisterResponse{}, nil
  66. }
  68. func (m *usersServer) Login(ctx context.Context, in *proto.LoginRequest) (*proto.LoginResponse, error) {
  69. // Make sure the password is included.
  70. if in.Form.Password == nil {
  71. return nil, errors.New("Password must be included.")
  72. }
  74. // Find the user.
  75. var user models.User
  76. tx := m.db.First(&user, "email = ?", in.Form.Email)
  77. if tx.RowsAffected == 0 {
  78. return nil, errors.New("User not found.")
  79. }
  81. // Compare the passwords.
  82. if err := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(*in.Form.Password)); err != nil {
  83. return nil, errors.New("Passwords do not match.")
  84. }
  86. // Create a session.
  87. session := &models.Session{
  88. Token: uuid.NewString(),
  89. Expires: time.Now().AddDate(0, 0, 1).UnixNano(),
  90. UserID: user.ID,
  91. }
  93. // Save the token.
  94. tx = m.db.Create(&session)
  95. if tx.RowsAffected == 0 {
  96. return nil, errors.New("Failed to create session.")
  97. }
  99. // Return the response.
  100. return &proto.LoginResponse{
  101. Token: &proto.UserToken{
  102. Token: session.Token,
  103. Expires: &session.Expires,
  104. },
  105. }, nil
  106. }
  108. func (m *usersServer) Authorize(ctx context.Context, in *proto.AuthorizeRequest) (*proto.AuthorizeResponse, error) {
  109. // Make sure the secrets match.
  110. if in.Secret != *m.secret {
  111. return nil, errors.New("Secrets do not match.")
  112. }
  114. // Find the session.
  115. var session models.Session
  116. tx := m.db.First(&session, "token = ?", in.Token.Token)
  117. if tx.RowsAffected == 0 {
  118. return nil, errors.New("Session not found.")
  119. }
  121. // Make sure the session hasn't expired.
  122. if time.Now().UnixNano() > session.Expires {
  123. return nil, errors.New("Token is expired.")
  124. }
  126. // Return the user ID.
  127. return &proto.AuthorizeResponse{
  128. User: &proto.UserInfo{
  129. Id: int64(session.UserID),
  130. },
  131. }, nil
  132. }
  134. func (m *usersServer) ResetPassword(ctx context.Context, in *proto.ResetPasswordRequest) (*proto.ResetPasswordResponse, error) {
  135. // Find the user.
  136. var user models.User
  137. tx := m.db.First(&user, "email = ?", in.Form.Email)
  138. if tx.RowsAffected == 0 {
  139. return nil, errors.New("User not found.")
  140. }
  142. // Generate a reset token.
  143. resetToken := &models.PasswordToken{
  144. UserID: user.ID,
  145. Token: uuid.NewString(),
  146. Expires: time.Now().UnixNano(),
  147. }
  149. // Save the token.
  150. tx = m.db.Create(resetToken)
  151. if tx.RowsAffected == 0 {
  152. return nil, errors.New("Failed to create token.")
  153. }
  155. // Return the response.
  156. return &proto.ResetPasswordResponse{
  157. Token: &proto.UserToken{
  158. Token: resetToken.Token,
  159. },
  160. }, nil
  161. }
  163. func (m *usersServer) ChangePassword(ctx context.Context, in *proto.ChangePasswordRequest) (*proto.ChangePasswordResponse, error) {
  164. // Find the reset token.
  165. var resetToken models.PasswordToken
  166. tx := m.db.First(&resetToken, "token = ?", in.Token.Token)
  167. if tx.RowsAffected == 0 {
  168. return nil, errors.New("Token not found.")
  169. }
  171. // Find the user.
  172. var user models.User
  173. tx = m.db.First(&user, "id = ?", resetToken.UserID)
  174. if tx.RowsAffected == 0 {
  175. return nil, errors.New("User not found.")
  176. }
  178. // Update the password.
  179. bytes, err := bcrypt.GenerateFromPassword([]byte(*in.Form.Password), bcrypt.MaxCost)
  180. if err != nil {
  181. log.Fatalf("Failed to encode password: %v", err)
  182. return nil, errors.New("Failed to encode password.")
  183. }
  185. user.Password = string(bytes)
  186. if tx = m.db.Save(user); tx.RowsAffected == 0 {
  187. return nil, errors.New("Failed to update password.")
  188. }
  190. // Expire current token.
  191. resetToken.Expires = time.Now().UnixNano()
  192. if tx = m.db.Save(&resetToken); tx.RowsAffected == 0 {
  193. return nil, errors.New("Failed to update password.")
  194. }
  196. // Return the response.
  197. return nil, nil
  198. }