mirror of
https://github.com/mickael-kerjean/filestash.git
synced 2025-10-31 10:07:15 +08:00
141 lines
3.2 KiB
Go
141 lines
3.2 KiB
Go
package ctrl
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
"github.com/gorilla/mux"
|
|
. "github.com/mickael-kerjean/filestash/server/common"
|
|
"github.com/mickael-kerjean/filestash/server/model"
|
|
"net/http"
|
|
"time"
|
|
)
|
|
|
|
type Session struct {
|
|
Home *string `json:"home,omitempty"`
|
|
IsAuth bool `json:"is_authenticated"`
|
|
}
|
|
|
|
func SessionGet(ctx App, res http.ResponseWriter, req *http.Request) {
|
|
r := Session {
|
|
IsAuth: false,
|
|
}
|
|
|
|
if ctx.Backend == nil {
|
|
SendSuccessResult(res, r)
|
|
return
|
|
}
|
|
home, err := model.GetHome(ctx.Backend, ctx.Session["path"])
|
|
if err != nil {
|
|
SendSuccessResult(res, r)
|
|
return
|
|
}
|
|
r.IsAuth = true
|
|
r.Home = NewString(home)
|
|
SendSuccessResult(res, r)
|
|
}
|
|
|
|
func SessionAuthenticate(ctx App, res http.ResponseWriter, req *http.Request) {
|
|
ctx.Body["timestamp"] = time.Now().String()
|
|
session := model.MapStringInterfaceToMapStringString(ctx.Body)
|
|
session["path"] = EnforceDirectory(session["path"])
|
|
|
|
backend, err := model.NewBackend(&ctx, session)
|
|
if err != nil {
|
|
SendErrorResult(res, err)
|
|
return
|
|
}
|
|
|
|
if obj, ok := backend.(interface {
|
|
OAuthToken(*map[string]interface{}) error
|
|
}); ok {
|
|
err := obj.OAuthToken(&ctx.Body)
|
|
if err != nil {
|
|
SendErrorResult(res, NewError("Can't authenticate (OAuth error)", 401))
|
|
return
|
|
}
|
|
session = model.MapStringInterfaceToMapStringString(ctx.Body)
|
|
backend, err = model.NewBackend(&ctx, session)
|
|
if err != nil {
|
|
SendErrorResult(res, NewError("Can't authenticate", 401))
|
|
return
|
|
}
|
|
}
|
|
|
|
home, err := model.GetHome(backend, session["path"])
|
|
if err != nil {
|
|
SendErrorResult(res, ErrInvalidPassword)
|
|
return
|
|
}
|
|
|
|
s, err := json.Marshal(session);
|
|
if err != nil {
|
|
SendErrorResult(res, NewError(err.Error(), 500))
|
|
return
|
|
}
|
|
obfuscate, err := EncryptString(SECRET_KEY_DERIVATE_FOR_USER, string(s))
|
|
if err != nil {
|
|
SendErrorResult(res, NewError(err.Error(), 500))
|
|
return
|
|
}
|
|
cookie := http.Cookie{
|
|
Name: COOKIE_NAME_AUTH,
|
|
Value: obfuscate,
|
|
MaxAge: 60 * 60 * 24 * 30,
|
|
Path: COOKIE_PATH,
|
|
HttpOnly: true,
|
|
SameSite: http.SameSiteStrictMode,
|
|
}
|
|
http.SetCookie(res, &cookie)
|
|
|
|
if home == "" {
|
|
SendSuccessResult(res, nil)
|
|
} else {
|
|
SendSuccessResult(res, home)
|
|
}
|
|
}
|
|
|
|
func SessionLogout(ctx App, res http.ResponseWriter, req *http.Request) {
|
|
if ctx.Backend != nil {
|
|
if obj, ok := ctx.Backend.(interface{ Close() error }); ok {
|
|
go obj.Close()
|
|
}
|
|
}
|
|
http.SetCookie(res, &http.Cookie{
|
|
Name: COOKIE_NAME_AUTH,
|
|
Value: "",
|
|
MaxAge: -1,
|
|
Path: COOKIE_PATH,
|
|
})
|
|
http.SetCookie(res, &http.Cookie{
|
|
Name: COOKIE_NAME_ADMIN,
|
|
Value: "",
|
|
MaxAge: -1,
|
|
Path: COOKIE_PATH_ADMIN,
|
|
})
|
|
http.SetCookie(res, &http.Cookie{
|
|
Name: COOKIE_NAME_PROOF,
|
|
Value: "",
|
|
MaxAge: -1,
|
|
Path: COOKIE_PATH,
|
|
})
|
|
SendSuccessResult(res, nil)
|
|
}
|
|
|
|
func SessionOAuthBackend(ctx App, res http.ResponseWriter, req *http.Request) {
|
|
vars := mux.Vars(req)
|
|
a := map[string]string{
|
|
"type": vars["service"],
|
|
}
|
|
b, err := model.NewBackend(&ctx, a)
|
|
if err != nil {
|
|
SendErrorResult(res, err)
|
|
return
|
|
}
|
|
obj, ok := b.(interface{ OAuthURL() string })
|
|
if ok == false {
|
|
SendErrorResult(res, NewError(fmt.Sprintf("This backend doesn't support oauth: '%s'", a["type"]), 500))
|
|
return
|
|
}
|
|
SendSuccessResult(res, obj.OAuthURL())
|
|
}
|