1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
|
package main
import (
"code.google.com/p/go.crypto/bcrypt"
"github.com/gorilla/sessions"
"kch42.de/gostuff/mailremind/model"
"log"
"net/http"
)
type loginTpldata struct {
Error, Success string
}
type loginFormdata struct {
Mail, Password string
}
func userFromSess(sess *sessions.Session) model.User {
_id, ok := sess.Values["uid"]
if !ok {
return nil
}
id, ok := _id.(string)
if !ok {
return nil
}
uid, err := db.ParseDBID(id)
if err != nil {
return nil
}
user, err := dbcon.UserByID(uid)
if err != nil {
return nil
}
return user
}
func login(rw http.ResponseWriter, req *http.Request) {
outdata := &loginTpldata{}
defer func() {
if err := tplLogin.Execute(rw, outdata); err != nil {
log.Printf("Error executing template in login: %s", err)
}
}()
sess, err := SessionStorage.Get(req, "mailremind-sess")
if err != nil {
sess, _ = SessionStorage.New(req, "mailremind-sess")
}
defer func() {
if err := sess.Save(req, rw); err != nil {
log.Printf("Error while saving session: %s", err)
outdata.Success = ""
outdata.Error = "Error while saving session."
return
}
}()
if user := userFromSess(sess); user != nil {
outdata.Success = "You are already logged in"
return
}
if req.Method != "POST" {
return
}
if err := req.ParseForm(); err != nil {
outdata.Error = "Data of form could not be understand. If this happens again, please contact support!"
return
}
indata := new(loginFormdata)
if err := formdec.Decode(indata, req.Form); (err != nil) || (indata.Mail == "") || (indata.Password == "") {
outdata.Error = "Input data wrong or missing. Please fill in all values."
return
}
user, err := dbcon.UserByMail(indata.Mail)
switch err {
case nil:
case model.NotFound:
outdata.Error = "E-Mail or password was wrong."
return
default:
log.Printf("Error while loding user data (login): %s", err)
outdata.Error = "User data could not be loaded. Please contact support, if this happens again."
return
}
if bcrypt.CompareHashAndPassword(user.PWHash(), []byte(indata.Password)) != nil {
outdata.Error = "E-Mail or password was wrong."
return
}
sess.Values["uid"] = user.ID().String()
outdata.Success = "Login successful"
}
func logincheck(rw http.ResponseWriter, req *http.Request) {
sess, _ := SessionStorage.Get(req, "mailremind-sess")
user := userFromSess(sess)
outdata := new(msgTpldata)
if user == nil {
outdata.Msg = "<nil>"
} else {
outdata.Msg = user.Email()
}
tplMsg.Execute(rw, outdata)
}
|