diff options
author | Kevin Chabowski <kevin@kch42.de> | 2013-08-30 11:46:22 +0200 |
---|---|---|
committer | Kevin Chabowski <kevin@kch42.de> | 2013-08-30 11:46:22 +0200 |
commit | 5c0a901b1b3e522ed523e966feb9901b8c7e01ff (patch) | |
tree | 736a57beb2a341005ec230c74a91d0613ed4d93b /login.go | |
parent | 8e7883db8b21fdb2190bfcaafa7f3ee6788eb290 (diff) | |
download | mailremind-5c0a901b1b3e522ed523e966feb9901b8c7e01ff.tar.gz mailremind-5c0a901b1b3e522ed523e966feb9901b8c7e01ff.tar.bz2 mailremind-5c0a901b1b3e522ed523e966feb9901b8c7e01ff.zip |
Login implemented
Diffstat (limited to 'login.go')
-rw-r--r-- | login.go | 115 |
1 files changed, 115 insertions, 0 deletions
diff --git a/login.go b/login.go new file mode 100644 index 0000000..f678216 --- /dev/null +++ b/login.go @@ -0,0 +1,115 @@ +package main + +import ( + "code.google.com/p/go.crypto/bcrypt" + "github.com/gorilla/sessions" + "kch42.de/gostuff/mailremind/model" + "log" + "net/http" +) + +type loginTpldata struct { + Error, Success string +} + +type loginFormdata struct { + Mail, Password string +} + +func userFromSess(sess *sessions.Session) model.User { + _id, ok := sess.Values["uid"] + if !ok { + return nil + } + + id, ok := _id.(string) + if !ok { + return nil + } + + uid, err := db.ParseDBID(id) + if err != nil { + return nil + } + + user, err := dbcon.UserByID(uid) + if err != nil { + return nil + } + + return user +} + +func login(rw http.ResponseWriter, req *http.Request) { + outdata := &loginTpldata{} + defer func() { + if err := tplLogin.Execute(rw, outdata); err != nil { + log.Printf("Error executing template in login: %s", err) + } + }() + + sess, err := SessionStorage.Get(req, "mailremind-sess") + if err != nil { + sess, _ = SessionStorage.New(req, "mailremind-sess") + } + defer func() { + if err := sess.Save(req, rw); err != nil { + log.Printf("Error while saving session: %s", err) + outdata.Success = "" + outdata.Error = "Error while saving session." + return + } + }() + + if user := userFromSess(sess); user != nil { + outdata.Success = "You are already logged in" + return + } + + if req.Method != "POST" { + return + } + + if err := req.ParseForm(); err != nil { + outdata.Error = "Data of form could not be understand. If this happens again, please contact support!" + return + } + + indata := new(loginFormdata) + if err := formdec.Decode(indata, req.Form); (err != nil) || (indata.Mail == "") || (indata.Password == "") { + outdata.Error = "Input data wrong or missing. Please fill in all values." + return + } + + user, err := dbcon.UserByMail(indata.Mail) + switch err { + case nil: + case model.NotFound: + outdata.Error = "E-Mail or password was wrong." + return + default: + log.Printf("Error while loding user data (login): %s", err) + outdata.Error = "User data could not be loaded. Please contact support, if this happens again." + return + } + + if bcrypt.CompareHashAndPassword(user.PWHash(), []byte(indata.Password)) != nil { + outdata.Error = "E-Mail or password was wrong." + return + } + + sess.Values["uid"] = user.ID().String() + outdata.Success = "Login successful" +} + +func logincheck(rw http.ResponseWriter, req *http.Request) { + sess, _ := SessionStorage.Get(req, "mailremind-sess") + user := userFromSess(sess) + outdata := new(msgTpldata) + if user == nil { + outdata.Msg = "<nil>" + } else { + outdata.Msg = user.Email() + } + tplMsg.Execute(rw, outdata) +} |