homebox/backend/app/api/v1/v1_ctrl_auth.go

package v1

import (
	"errors"
	"net/http"
	"time"

	"github.com/hay-kot/homebox/backend/internal/services"
	"github.com/hay-kot/homebox/backend/pkgs/server"
	"github.com/rs/zerolog/log"
)

type (
	TokenResponse struct {
		Token     string    `json:"token"`
		ExpiresAt time.Time `json:"expiresAt"`
	}

	LoginForm struct {
		Username string `json:"username"`
		Password string `json:"password"`
	}
)

// HandleAuthLogin godoc
// @Summary User Login
// @Tags    Authentication
// @Accept  x-www-form-urlencoded
// @Accept  application/json
// @Param   username formData string false "string" example(admin@admin.com)
// @Param   password formData string false "string" example(admin)
// @Produce json
// @Success 200 {object} TokenResponse
// @Router  /v1/users/login [POST]
func (ctrl *V1Controller) HandleAuthLogin() http.HandlerFunc {
	return func(w http.ResponseWriter, r *http.Request) {
		loginForm := &LoginForm{}

		switch r.Header.Get("Content-Type") {
		case server.ContentFormUrlEncoded:
			err := r.ParseForm()
			if err != nil {
				server.Respond(w, http.StatusBadRequest, server.Wrap(err))
				log.Error().Err(err).Msg("failed to parse form")
				return
			}

			loginForm.Username = r.PostFormValue("username")
			loginForm.Password = r.PostFormValue("password")
		case server.ContentJSON:
			err := server.Decode(r, loginForm)

			if err != nil {
				log.Err(err).Msg("failed to decode login form")
				server.Respond(w, http.StatusBadRequest, server.Wrap(err))
				return
			}
		default:
			server.Respond(w, http.StatusBadRequest, errors.New("invalid content type"))
			return
		}

		if loginForm.Username == "" || loginForm.Password == "" {
			server.RespondError(w, http.StatusBadRequest, errors.New("username and password are required"))
			return
		}

		newToken, err := ctrl.svc.User.Login(r.Context(), loginForm.Username, loginForm.Password)

		if err != nil {
			server.RespondError(w, http.StatusInternalServerError, err)
			return
		}

		server.Respond(w, http.StatusOK, TokenResponse{
			Token:     "Bearer " + newToken.Raw,
			ExpiresAt: newToken.ExpiresAt,
		})
	}
}

// HandleAuthLogout godoc
// @Summary  User Logout
// @Tags     Authentication
// @Success  204
// @Router   /v1/users/logout [POST]
// @Security Bearer
func (ctrl *V1Controller) HandleAuthLogout() http.HandlerFunc {
	return func(w http.ResponseWriter, r *http.Request) {
		token := services.UseTokenCtx(r.Context())

		if token == "" {
			server.RespondError(w, http.StatusUnauthorized, errors.New("no token within request context"))
			return
		}

		err := ctrl.svc.User.Logout(r.Context(), token)

		if err != nil {
			server.RespondError(w, http.StatusInternalServerError, err)
			return
		}

		server.Respond(w, http.StatusNoContent, nil)
	}
}

// HandleAuthLogout godoc
// @Summary     User Token Refresh
// @Description handleAuthRefresh returns a handler that will issue a new token from an existing token.
// @Description This does not validate that the user still exists within the database.
// @Tags        Authentication
// @Success     200
// @Router      /v1/users/refresh [GET]
// @Security    Bearer
func (ctrl *V1Controller) HandleAuthRefresh() http.HandlerFunc {
	return func(w http.ResponseWriter, r *http.Request) {
		requestToken := services.UseTokenCtx(r.Context())

		if requestToken == "" {
			server.RespondError(w, http.StatusUnauthorized, errors.New("no user token found"))
			return
		}

		newToken, err := ctrl.svc.User.RenewToken(r.Context(), requestToken)

		if err != nil {
			server.RespondUnauthorized(w)
			return
		}

		server.Respond(w, http.StatusOK, newToken)
	}
}
Initial commit 2022-08-30 02:30:36 +00:00			`package v1`

			`import (`
			`"errors"`
			`"net/http"`
refactor: repositories (#28) * cleanup unnecessary mocks * refactor document storage location * remove unused function * move ownership to document types to repo package * move types and mappers to repo package * refactor sets to own package 2022-09-27 23:52:13 +00:00			`"time"`
Initial commit 2022-08-30 02:30:36 +00:00
feat: item-attachments CRUD (#22) * change /content/ -> /homebox/ * add cache to code generators * update env variables to set data storage * update env variables * set env variables in prod container * implement attachment post route (WIP) * get attachment endpoint * attachment download * implement string utilities lib * implement generic drop zone * use explicit truncate * remove clean dir * drop strings composable for lib * update item types and add attachments * add attachment API * implement service context * consolidate API code * implement editing attachments * implement upload limit configuration * improve error handling * add docs for max upload size * fix test cases 2022-09-24 19:33:38 +00:00			`"github.com/hay-kot/homebox/backend/internal/services"`
			`"github.com/hay-kot/homebox/backend/pkgs/server"`
switch to zero log 2022-09-03 18:38:35 +00:00			`"github.com/rs/zerolog/log"`
Initial commit 2022-08-30 02:30:36 +00:00			`)`

refactor: repositories (#28) * cleanup unnecessary mocks * refactor document storage location * remove unused function * move ownership to document types to repo package * move types and mappers to repo package * refactor sets to own package 2022-09-27 23:52:13 +00:00			`type (`
			`TokenResponse struct {`
			Token string `json:"token"`
			ExpiresAt time.Time `json:"expiresAt"`
			`}`

			`LoginForm struct {`
			Username string `json:"username"`
			Password string `json:"password"`
			`}`
			`)`

Initial commit 2022-08-30 02:30:36 +00:00			`// HandleAuthLogin godoc`
feat: expanded search for items (#46) * expanded search for items * range domain from email to example * implement pagination for items 2022-10-13 05:13:07 +00:00			`// @Summary User Login`
			`// @Tags Authentication`
			`// @Accept x-www-form-urlencoded`
			`// @Accept application/json`
			`// @Param username formData string false "string" example(admin@admin.com)`
			`// @Param password formData string false "string" example(admin)`
			`// @Produce json`
			`// @Success 200 {object} TokenResponse`
			`// @Router /v1/users/login [POST]`
Initial commit 2022-08-30 02:30:36 +00:00			`func (ctrl *V1Controller) HandleAuthLogin() http.HandlerFunc {`
			`return func(w http.ResponseWriter, r *http.Request) {`
refactor: repositories (#28) * cleanup unnecessary mocks * refactor document storage location * remove unused function * move ownership to document types to repo package * move types and mappers to repo package * refactor sets to own package 2022-09-27 23:52:13 +00:00			`loginForm := &LoginForm{}`
Initial commit 2022-08-30 02:30:36 +00:00
feat: change password (#35) * refactor: implement factories for testing * add additional factories * change protection for dropFields * prevent timed attacks on login * use switch instead of else-if * API implementation for changing password * add change-password dialog 2022-10-09 17:23:21 +00:00			`switch r.Header.Get("Content-Type") {`
			`case server.ContentFormUrlEncoded:`
Initial commit 2022-08-30 02:30:36 +00:00			`err := r.ParseForm()`
			`if err != nil {`
			`server.Respond(w, http.StatusBadRequest, server.Wrap(err))`
switch to zero log 2022-09-03 18:38:35 +00:00			`log.Error().Err(err).Msg("failed to parse form")`
Initial commit 2022-08-30 02:30:36 +00:00			`return`
			`}`

			`loginForm.Username = r.PostFormValue("username")`
			`loginForm.Password = r.PostFormValue("password")`
feat: change password (#35) * refactor: implement factories for testing * add additional factories * change protection for dropFields * prevent timed attacks on login * use switch instead of else-if * API implementation for changing password * add change-password dialog 2022-10-09 17:23:21 +00:00			`case server.ContentJSON:`
Initial commit 2022-08-30 02:30:36 +00:00			`err := server.Decode(r, loginForm)`

			`if err != nil {`
switch to zero log 2022-09-03 18:38:35 +00:00			`log.Err(err).Msg("failed to decode login form")`
Initial commit 2022-08-30 02:30:36 +00:00			`server.Respond(w, http.StatusBadRequest, server.Wrap(err))`
			`return`
			`}`
feat: change password (#35) * refactor: implement factories for testing * add additional factories * change protection for dropFields * prevent timed attacks on login * use switch instead of else-if * API implementation for changing password * add change-password dialog 2022-10-09 17:23:21 +00:00			`default:`
Initial commit 2022-08-30 02:30:36 +00:00			`server.Respond(w, http.StatusBadRequest, errors.New("invalid content type"))`
			`return`
			`}`

			`if loginForm.Username == "" \|\| loginForm.Password == "" {`
			`server.RespondError(w, http.StatusBadRequest, errors.New("username and password are required"))`
			`return`
			`}`

			`newToken, err := ctrl.svc.User.Login(r.Context(), loginForm.Username, loginForm.Password)`

			`if err != nil {`
feat: change password (#35) * refactor: implement factories for testing * add additional factories * change protection for dropFields * prevent timed attacks on login * use switch instead of else-if * API implementation for changing password * add change-password dialog 2022-10-09 17:23:21 +00:00			`server.RespondError(w, http.StatusInternalServerError, err)`
Initial commit 2022-08-30 02:30:36 +00:00			`return`
			`}`

refactor: repositories (#28) * cleanup unnecessary mocks * refactor document storage location * remove unused function * move ownership to document types to repo package * move types and mappers to repo package * refactor sets to own package 2022-09-27 23:52:13 +00:00			`server.Respond(w, http.StatusOK, TokenResponse{`
			`Token: "Bearer " + newToken.Raw,`
			`ExpiresAt: newToken.ExpiresAt,`
Initial commit 2022-08-30 02:30:36 +00:00			`})`
			`}`
			`}`

			`// HandleAuthLogout godoc`
feat: expanded search for items (#46) * expanded search for items * range domain from email to example * implement pagination for items 2022-10-13 05:13:07 +00:00			`// @Summary User Logout`
			`// @Tags Authentication`
			`// @Success 204`
			`// @Router /v1/users/logout [POST]`
			`// @Security Bearer`
Initial commit 2022-08-30 02:30:36 +00:00			`func (ctrl *V1Controller) HandleAuthLogout() http.HandlerFunc {`
			`return func(w http.ResponseWriter, r *http.Request) {`
			`token := services.UseTokenCtx(r.Context())`

			`if token == "" {`
			`server.RespondError(w, http.StatusUnauthorized, errors.New("no token within request context"))`
			`return`
			`}`

			`err := ctrl.svc.User.Logout(r.Context(), token)`

			`if err != nil {`
			`server.RespondError(w, http.StatusInternalServerError, err)`
			`return`
			`}`

logger 2022-08-31 00:07:05 +00:00			`server.Respond(w, http.StatusNoContent, nil)`
Initial commit 2022-08-30 02:30:36 +00:00			`}`
			`}`

			`// HandleAuthLogout godoc`
feat: expanded search for items (#46) * expanded search for items * range domain from email to example * implement pagination for items 2022-10-13 05:13:07 +00:00			`// @Summary User Token Refresh`
			`// @Description handleAuthRefresh returns a handler that will issue a new token from an existing token.`
			`// @Description This does not validate that the user still exists within the database.`
			`// @Tags Authentication`
			`// @Success 200`
			`// @Router /v1/users/refresh [GET]`
			`// @Security Bearer`
Initial commit 2022-08-30 02:30:36 +00:00			`func (ctrl *V1Controller) HandleAuthRefresh() http.HandlerFunc {`
			`return func(w http.ResponseWriter, r *http.Request) {`
			`requestToken := services.UseTokenCtx(r.Context())`

			`if requestToken == "" {`
			`server.RespondError(w, http.StatusUnauthorized, errors.New("no user token found"))`
			`return`
			`}`

			`newToken, err := ctrl.svc.User.RenewToken(r.Context(), requestToken)`

			`if err != nil {`
			`server.RespondUnauthorized(w)`
			`return`
			`}`

cleanup user implementation 2022-08-31 00:40:39 +00:00			`server.Respond(w, http.StatusOK, newToken)`
Initial commit 2022-08-30 02:30:36 +00:00			`}`
			`}`