puerta/internal/server/admin.go

// SPDX-License-Identifier: Apache-2.0
// Copyright © 2022 Roberto Hidalgo <nidito@un.rob.mx>
package server

import (
	"encoding/json"
	"net/http"
	"strconv"
	"time"

	"git.rob.mx/nidito/puerta/internal/auth"
	"github.com/julienschmidt/httprouter"
	"github.com/sirupsen/logrus"
	"github.com/upper/db/v4"
	"golang.org/x/crypto/bcrypt"
)

func sendError(w http.ResponseWriter, err error) {
	logrus.Error(err)
	http.Error(w, http.StatusText(http.StatusInternalServerError), http.StatusInternalServerError)
}

func writeJSON(w http.ResponseWriter, data any) error {
	res, err := json.Marshal(data)
	if err != nil {
		return err
	}

	w.Header().Add("content-type", "application/json")
	w.WriteHeader(http.StatusOK)
	_, err = w.Write(res)
	return err
}

func listUsers(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
	users := []*auth.User{}
	if err := _db.Collection("user").Find().All(&users); err != nil {
		sendError(w, err)
		return
	}

	writeJSON(w, users)
}

func userFromRequest(r *http.Request, user *auth.User) (*auth.User, error) {
	r.ParseForm()
	if user == nil {
		user = &auth.User{}
	}

	isAdmin, err := strconv.ParseBool(r.FormValue("is_admin"))
	if err != nil {
		return nil, err
	}
	secondFactor, err := strconv.ParseBool(r.FormValue("second_factor"))
	if err != nil {
		return nil, err
	}

	user.Handle = r.FormValue("handle")
	user.Name = r.FormValue("name")
	user.Greeting = r.FormValue("greeting")
	user.Require2FA = secondFactor
	user.IsAdmin = isAdmin

	if r.FormValue("password") != "" {
		password, err := bcrypt.GenerateFromPassword([]byte(r.FormValue("password")), bcrypt.DefaultCost)
		if err != nil {
			return nil, err
		}
		user.Password = string(password)
	}

	if r.Form.Has("schedule") {
		schedule := &auth.UserSchedule{}
		err := schedule.UnmarshalDB([]byte(r.FormValue("schedule")))
		if err != nil {
			return nil, err
		}
		user.Schedule = schedule
	}

	if r.Form.Has("expires") {
		expires, err := time.Parse(time.RFC3339, r.FormValue("expires"))
		if err != nil {
			return nil, err
		}
		user.Expires = &expires
	}

	if r.Form.Has("max_ttl") {
		*user.TTL = auth.TTL(r.FormValue("max_ttl"))
	}

	return user, nil

}

func createUser(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
	user, err := userFromRequest(r, nil)
	if err != nil {
		sendError(w, err)
		return
	}

	if _, err := _db.Collection("user").Insert(user); err != nil {
		sendError(w, err)
		return
	}

	w.WriteHeader(http.StatusCreated)
}

func getUser(w http.ResponseWriter, r *http.Request, params httprouter.Params) {
	var user *auth.User
	idString := params.ByName("id")

	if err := _db.Collection("user").Find(db.Cond{"handle": idString}).One(&user); err != nil {
		sendError(w, err)
		return
	}

	writeJSON(w, user)
}

func updateUser(w http.ResponseWriter, r *http.Request, params httprouter.Params) {
	var user *auth.User
	if err := _db.Collection("user").Find(db.Cond{"handle": params.ByName("id")}).One(user); err != nil {
		http.NotFound(w, r)
		return
	}

	user, err := userFromRequest(r, user)
	if err != nil {
		sendError(w, err)
		return
	}

	if err := _db.Collection("user").UpdateReturning(user); err != nil {
		sendError(w, err)
		return
	}

	w.WriteHeader(http.StatusNoContent)
}

func deleteUser(w http.ResponseWriter, r *http.Request, params httprouter.Params) {
	err := _db.Collection("user").Find(db.Cond{"handle": params.ByName("id")}).Delete()
	if err != nil {
		sendError(w, err)
		return
	}

	w.WriteHeader(http.StatusNoContent)
}
some user rest crud, refactor middleware, start admin 2023-01-02 06:54:23 +00:00			`// SPDX-License-Identifier: Apache-2.0`
			`// Copyright © 2022 Roberto Hidalgo <nidito@un.rob.mx>`
			`package server`

			`import (`
			`"encoding/json"`
			`"net/http"`
			`"strconv"`
			`"time"`

			`"git.rob.mx/nidito/puerta/internal/auth"`
			`"github.com/julienschmidt/httprouter"`
			`"github.com/sirupsen/logrus"`
			`"github.com/upper/db/v4"`
			`"golang.org/x/crypto/bcrypt"`
			`)`

			`func sendError(w http.ResponseWriter, err error) {`
			`logrus.Error(err)`
			`http.Error(w, http.StatusText(http.StatusInternalServerError), http.StatusInternalServerError)`
			`}`

			`func writeJSON(w http.ResponseWriter, data any) error {`
			`res, err := json.Marshal(data)`
			`if err != nil {`
			`return err`
			`}`

			`w.Header().Add("content-type", "application/json")`
			`w.WriteHeader(http.StatusOK)`
			`_, err = w.Write(res)`
			`return err`
			`}`

			`func listUsers(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {`
			`users := []*auth.User{}`
			`if err := _db.Collection("user").Find().All(&users); err != nil {`
			`sendError(w, err)`
			`return`
			`}`

			`writeJSON(w, users)`
			`}`

			`func userFromRequest(r http.Request, user auth.User) (*auth.User, error) {`
			`r.ParseForm()`
			`if user == nil {`
			`user = &auth.User{}`
			`}`

			`isAdmin, err := strconv.ParseBool(r.FormValue("is_admin"))`
			`if err != nil {`
			`return nil, err`
			`}`
			`secondFactor, err := strconv.ParseBool(r.FormValue("second_factor"))`
			`if err != nil {`
			`return nil, err`
			`}`

			`user.Handle = r.FormValue("handle")`
			`user.Name = r.FormValue("name")`
			`user.Greeting = r.FormValue("greeting")`
			`user.Require2FA = secondFactor`
			`user.IsAdmin = isAdmin`

			`if r.FormValue("password") != "" {`
			`password, err := bcrypt.GenerateFromPassword([]byte(r.FormValue("password")), bcrypt.DefaultCost)`
			`if err != nil {`
			`return nil, err`
			`}`
			`user.Password = string(password)`
			`}`

			`if r.Form.Has("schedule") {`
			`schedule := &auth.UserSchedule{}`
			`err := schedule.UnmarshalDB([]byte(r.FormValue("schedule")))`
			`if err != nil {`
			`return nil, err`
			`}`
			`user.Schedule = schedule`
			`}`

			`if r.Form.Has("expires") {`
			`expires, err := time.Parse(time.RFC3339, r.FormValue("expires"))`
			`if err != nil {`
			`return nil, err`
			`}`
			`user.Expires = &expires`
			`}`

			`if r.Form.Has("max_ttl") {`
			`*user.TTL = auth.TTL(r.FormValue("max_ttl"))`
			`}`

			`return user, nil`

			`}`

			`func createUser(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {`
			`user, err := userFromRequest(r, nil)`
			`if err != nil {`
			`sendError(w, err)`
			`return`
			`}`

			`if _, err := _db.Collection("user").Insert(user); err != nil {`
			`sendError(w, err)`
			`return`
			`}`

			`w.WriteHeader(http.StatusCreated)`
			`}`

			`func getUser(w http.ResponseWriter, r *http.Request, params httprouter.Params) {`
			`var user *auth.User`
			`idString := params.ByName("id")`

			`if err := _db.Collection("user").Find(db.Cond{"handle": idString}).One(&user); err != nil {`
			`sendError(w, err)`
			`return`
			`}`

			`writeJSON(w, user)`
			`}`

			`func updateUser(w http.ResponseWriter, r *http.Request, params httprouter.Params) {`
			`var user *auth.User`
			`if err := _db.Collection("user").Find(db.Cond{"handle": params.ByName("id")}).One(user); err != nil {`
			`http.NotFound(w, r)`
			`return`
			`}`

			`user, err := userFromRequest(r, user)`
			`if err != nil {`
			`sendError(w, err)`
			`return`
			`}`

			`if err := _db.Collection("user").UpdateReturning(user); err != nil {`
			`sendError(w, err)`
			`return`
			`}`

			`w.WriteHeader(http.StatusNoContent)`
			`}`

			`func deleteUser(w http.ResponseWriter, r *http.Request, params httprouter.Params) {`
			`err := _db.Collection("user").Find(db.Cond{"handle": params.ByName("id")}).Delete()`
			`if err != nil {`
			`sendError(w, err)`
			`return`
			`}`

			`w.WriteHeader(http.StatusNoContent)`
			`}`