simon987/task_tracker
1
0
Fork 0
mirror of https://github.com/simon987/task_tracker.git synced 2025-04-10 05:56:42 +00:00
Code Issues Projects Releases Wiki Activity
task_tracker/storage/auth.go
simon987 15a3e66b70 change imports
2019-03-10 09:47:11 -04:00

222 lines
5.3 KiB
Go
Raw Blame History

package storage
import (
"bytes"
"crypto"
"database/sql"
"errors"
"github.com/sirupsen/logrus"
)
type ManagerRole int
const (
RoleNone ManagerRole = 0
RoleRead ManagerRole = 1
RoleEdit ManagerRole = 2
RoleManageAccess ManagerRole = 4
RoleSecret ManagerRole = 8
RoleMaintenance ManagerRole = 16
)
type Manager struct {
Id int64 `json:"id"`
Username string `json:"username"`
WebsiteAdmin bool `json:"tracker_admin"`
RegisterTime int64 `json:"register_time"`
}
type ManagerRoleOn struct {
Manager Manager `json:"manager"`
Role ManagerRole `json:"role"`
}
func (database *Database) ValidateCredentials(username []byte, password []byte) (*Manager, error) {
db := database.getDB()
row := db.QueryRow(`SELECT id, password, tracker_admin, register_time FROM manager WHERE username=$1`,
username)
manager := &Manager{}
var passwordHash []byte
err := row.Scan(&manager.Id, &passwordHash, &manager.WebsiteAdmin, &manager.RegisterTime)
if err != nil {
logrus.WithError(err).WithFields(logrus.Fields{
"username": username,
}).Warning("Database.ValidateCredentials: user not found")
return nil, errors.New("username not found")
}
hash := crypto.SHA512.New()
hash.Write([]byte(password))
hash.Write([]byte(username))
if bytes.Compare(passwordHash, hash.Sum(nil)) != 0 {
logrus.WithFields(logrus.Fields{
"username": username,
}).Warning("Database.ValidateCredentials: password does not match")
return nil, errors.New("password does not match")
}
manager.Username = string(username)
return manager, nil
}
func (database *Database) SaveManager(manager *Manager, password []byte) error {
db := database.getDB()
hash := crypto.SHA512.New()
hash.Write(password)
hash.Write([]byte(manager.Username))
hashedPassword := hash.Sum(nil)
row := db.QueryRow(`INSERT INTO manager (username, password, tracker_admin, register_time)
VALUES ($1,$2,$3, extract(epoch from now() at time zone 'utc')) RETURNING ID, register_time`,
manager.Username, hashedPassword, manager.WebsiteAdmin)
err := row.Scan(&manager.Id, &manager.RegisterTime)
if err != nil {
logrus.WithError(err).WithFields(logrus.Fields{
"username": manager,
}).Warning("Database.SaveManager INSERT error")
return err
}
manager.WebsiteAdmin = manager.Id == 1
logrus.WithFields(logrus.Fields{
"manager": manager,
}).Info("Database.SaveManager INSERT")
return nil
}
func (database *Database) UpdateManager(manager *Manager) {
db := database.getDB()
res, err := db.Exec(`UPDATE manager SET tracker_admin=$1 WHERE id=$2`,
manager.WebsiteAdmin, manager.Id)
handleErr(err)
rowsAffected, _ := res.RowsAffected()
logrus.WithFields(logrus.Fields{
"rowsAffected": rowsAffected,
"manager": manager,
}).Trace("Database.UpdateManager UPDATE")
}
func (database *Database) UpdateManagerPassword(manager *Manager, newPassword []byte) {
hash := crypto.SHA512.New()
hash.Write(newPassword)
hash.Write([]byte(manager.Username))
hashedPassword := hash.Sum(nil)
db := database.getDB()
res, err := db.Exec(`UPDATE manager SET password=$1 WHERE id=$2`,
hashedPassword, manager.Id)
handleErr(err)
rowsAffected, _ := res.RowsAffected()
logrus.WithFields(logrus.Fields{
"rowsAffected": rowsAffected,
"id": manager.Id,
}).Trace("Database.UpdateManagerPassword UPDATE")
}
func (database *Database) GetManagerRoleOn(manager *Manager, projectId int64) ManagerRole {
db := database.getDB()
row := db.QueryRow(`SELECT role FROM manager_has_role_on_project
WHERE project=$1 AND manager=$2`, projectId, manager.Id)
var role ManagerRole
err := row.Scan(&role)
if err != nil {
return RoleNone
}
return role
}
func (database *Database) SetManagerRoleOn(manager int64, projectId int64, role ManagerRole) {
db := database.getDB()
var res sql.Result
var err error
if role == 0 {
res, err = db.Exec(`DELETE FROM manager_has_role_on_project WHERE manager=$1 AND project=$2`,
manager, projectId)
} else {
res, err = db.Exec(`INSERT INTO manager_has_role_on_project (manager, role, project)
VALUES ($1,$2,$3) ON CONFLICT (manager, project) DO UPDATE SET role=$2`,
manager, role, projectId)
}
handleErr(err)
rowsAffected, _ := res.RowsAffected()
logrus.WithFields(logrus.Fields{
"role": role,
"manager": manager,
"rowsAffected": rowsAffected,
"project": projectId,
}).Info("Set manager role on project")
}
func (database *Database) GetManagerList() *[]Manager {
db := database.getDB()
rows, _ := db.Query(`SELECT id, register_time, tracker_admin, username FROM manager`)
managers := make([]Manager, 0)
for rows.Next() {
m := Manager{}
_ = rows.Scan(&m.Id, &m.RegisterTime, &m.WebsiteAdmin, &m.Username)
managers = append(managers, m)
}
return &managers
}
func (database *Database) GetManagerListWithRoleOn(project int64) *[]ManagerRoleOn {
db := database.getDB()
rows, err := db.Query(`SELECT id, register_time, tracker_admin, username, role
FROM manager
LEFT JOIN manager_has_role_on_project mhrop on
manager.id = mhrop.manager
WHERE project=$1 ORDER BY id`, project)
handleErr(err)
managers := make([]ManagerRoleOn, 0)
for rows.Next() {
m := Manager{}
var role ManagerRole
_ = rows.Scan(&m.Id, &m.RegisterTime, &m.WebsiteAdmin, &m.Username, &role)
managers = append(managers, ManagerRoleOn{
Manager: m,
Role: role,
})
}
return &managers
}
Reference in New Issue View Git Blame Copy Permalink