2016-08-13 11:03:03 +02:00
|
|
|
package system
|
|
|
|
|
|
|
|
import (
|
|
|
|
"encoding/json"
|
|
|
|
"log"
|
|
|
|
"net/http"
|
|
|
|
|
|
|
|
"github.com/astaxie/session"
|
|
|
|
"github.com/go-xorm/xorm"
|
|
|
|
"github.com/julienschmidt/httprouter"
|
|
|
|
|
|
|
|
libconfig "dev.sum7.de/sum7/warehost/config"
|
|
|
|
libapi "dev.sum7.de/sum7/warehost/lib/api"
|
|
|
|
libpassword "dev.sum7.de/sum7/warehost/lib/password"
|
|
|
|
)
|
|
|
|
|
|
|
|
//API keep data in module global
|
|
|
|
type API struct {
|
|
|
|
config *libconfig.Config
|
|
|
|
sessions *session.Manager
|
|
|
|
dbconnection *xorm.Engine
|
|
|
|
}
|
|
|
|
|
|
|
|
// NewAPI sets the routes to the api functions
|
|
|
|
func NewAPI(config *libconfig.Config, sessions *session.Manager, dbconnection *xorm.Engine, router *httprouter.Router, prefix string) {
|
|
|
|
api := &API{config: config, sessions: sessions, dbconnection: dbconnection}
|
|
|
|
router.GET(prefix+"/status", api.Status)
|
|
|
|
router.GET(prefix+"/logout", api.Logout)
|
2016-08-14 13:33:53 +02:00
|
|
|
|
|
|
|
router.POST(prefix+"/login", api.Login)
|
|
|
|
//router.OPTIONS(prefix+"/login", api.Login)
|
2016-08-13 11:03:03 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
// Status to get Login and Server status
|
|
|
|
func (api *API) Status(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
|
|
|
|
result, err := api.dbconnection.Count(new(Login))
|
|
|
|
connection := false
|
|
|
|
if err != nil {
|
|
|
|
log.Print("[error][system]-status: get login count: ", err)
|
|
|
|
} else {
|
|
|
|
if result > 0 {
|
|
|
|
connection = true
|
|
|
|
}
|
|
|
|
}
|
|
|
|
libapi.JsonOutput(api.sessions, w, r, connection)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Logout current user
|
|
|
|
func (api *API) Logout(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
|
|
|
|
api.sessions.SessionDestroy(w, r)
|
|
|
|
libapi.JsonOutput(api.sessions, w, r, true)
|
|
|
|
}
|
|
|
|
|
|
|
|
// Login of system
|
|
|
|
func (api *API) Login(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
|
|
|
|
sess := api.sessions.SessionStart(w, r)
|
|
|
|
var requestlogin RequestLogin
|
|
|
|
err := json.NewDecoder(r.Body).Decode(&requestlogin)
|
|
|
|
if err != nil {
|
|
|
|
log.Println("[system]-login error fetch request")
|
2016-08-14 13:33:53 +02:00
|
|
|
http.Error(w, err.Error(), http.StatusInternalServerError)
|
|
|
|
libapi.JsonOutput(api.sessions, w, r, false)
|
2016-08-13 11:03:03 +02:00
|
|
|
return
|
|
|
|
}
|
|
|
|
var login = Login{Username: requestlogin.Username}
|
|
|
|
_, err = api.dbconnection.Get(&login)
|
|
|
|
if err != nil {
|
|
|
|
log.Println("[system]-login error fetch database")
|
2016-08-14 13:33:53 +02:00
|
|
|
libapi.JsonOutput(api.sessions, w, r, false)
|
|
|
|
return
|
2016-08-13 11:03:03 +02:00
|
|
|
}
|
|
|
|
result := false
|
2016-08-14 13:33:53 +02:00
|
|
|
if login.Active {
|
|
|
|
output, _ := libpassword.Validate(login.Password, requestlogin.Password)
|
|
|
|
if output {
|
|
|
|
result = true
|
|
|
|
sess.Set("login", login)
|
|
|
|
}
|
2016-08-13 11:03:03 +02:00
|
|
|
}
|
2016-08-14 13:33:53 +02:00
|
|
|
log.Println("[system]-login worked", result)
|
2016-08-13 11:03:03 +02:00
|
|
|
libapi.JsonOutput(api.sessions, w, r, result)
|
|
|
|
}
|