/
session_controller.go
114 lines (105 loc) · 2.72 KB
/
session_controller.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
package uic
import (
"net/http"
"time"
log "github.com/Sirupsen/logrus"
"github.com/gin-gonic/gin"
h "github.com/open-falcon/falcon-plus/modules/api/app/helper"
"github.com/open-falcon/falcon-plus/modules/api/app/model/uic"
"github.com/open-falcon/falcon-plus/modules/api/app/utils"
)
type APILoginInput struct {
Name string `json:"name" form:"name" binding:"required"`
Password string `json:"password" form:"password" binding:"required"`
}
func Login(c *gin.Context) {
inputs := APILoginInput{}
if err := c.Bind(&inputs); err != nil {
h.JSONR(c, badstatus, "name or password is blank")
return
}
name := inputs.Name
password := inputs.Password
user := uic.User{
Name: name,
}
db.Uic.Where(&user).Find(&user)
switch {
case user.Name == "":
h.JSONR(c, badstatus, "no such user")
return
case user.Passwd != utils.HashIt(password):
h.JSONR(c, badstatus, "password error")
return
}
var session uic.Session
// response := map[string]string{}
s := db.Uic.Table("session").Where("uid = ?", user.ID).Scan(&session)
if s.Error != nil && s.Error.Error() != "record not found" {
h.JSONR(c, badstatus, s.Error)
return
} else if session.ID == 0 {
session.Sig = utils.GenerateUUID()
session.Expired = int(time.Now().Unix()) + 3600*24*30
session.Uid = user.ID
db.Uic.Create(&session)
}
log.Debugf("session: %v", session)
resp := struct {
Sig string `json:"sig,omitempty"`
Name string `json:"name,omitempty"`
Admin bool `json:"admin"`
}{session.Sig, user.Name, user.IsAdmin()}
h.JSONR(c, resp)
return
}
func Logout(c *gin.Context) {
wsession, err := h.GetSession(c)
if err != nil {
h.JSONR(c, badstatus, err.Error())
return
}
var session uic.Session
var user uic.User
db.Uic.Table("user").Where(uic.User{Name: wsession.Name}).Scan(&user)
db.Uic.Table("session").Where("sig = ? AND uid = ?", wsession.Sig, user.ID).Scan(&session)
if session.ID == 0 {
h.JSONR(c, badstatus, "not found this kind of session in database.")
return
} else {
r := db.Uic.Table("session").Delete(&session)
if r.Error != nil {
h.JSONR(c, badstatus, r.Error)
}
h.JSONR(c, "logout successful")
}
return
}
func AuthSession(c *gin.Context) {
auth, err := h.SessionChecking(c)
if err != nil || auth != true {
h.JSONR(c, http.StatusUnauthorized, err)
return
}
h.JSONR(c, "session is vaild!")
return
}
func CreateRoot(c *gin.Context) {
password := c.DefaultQuery("password", "")
if password == "" {
h.JSONR(c, badstatus, "password is empty, please check it")
return
}
password = utils.HashIt(password)
user := uic.User{
Name: "root",
Passwd: password,
}
dt := db.Uic.Table("user").Save(&user)
if dt.Error != nil {
h.JSONR(c, badstatus, dt.Error)
return
}
h.JSONR(c, "root created!")
return
}