writefreely
/
writefreely
огледало од https://github.com/writefreely/writefreely.git
2
0
Креирај огранак 0
Код Дискусије Издања 25 Вики Activity
A clean, Markdown-based publishing platform made for writers. Write together, and build a community. https://writefreely.org
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
107 Комити
45 Гране
187 MiB
 
 
 
 
 
Дрво: 2de37a4ddb
Гране Ознаке
${ item.name }
Create branch ${ searchTerm }
from '2de37a4ddb'
${ noResults }
writefreely/unregisteredusers.go

131 lines
3.7 KiB
Датотека Blame Историја 

  1. package writefreely

  2. 

  3. import (

  4. 	"database/sql"

  5. 	"encoding/json"

  6. 	"github.com/writeas/impart"

  7. 	"github.com/writeas/web-core/log"

  8. 	"net/http"

  9. )

  10. 

  11. func handleWebSignup(app *app, w http.ResponseWriter, r *http.Request) error {

  12. 	reqJSON := IsJSON(r.Header.Get("Content-Type"))

  13. 

  14. 	// Get params

  15. 	var ur userRegistration

  16. 	if reqJSON {

  17. 		decoder := json.NewDecoder(r.Body)

  18. 		err := decoder.Decode(&ur)

  19. 		if err != nil {

  20. 			log.Error("Couldn't parse signup JSON request: %v\n", err)

  21. 			return ErrBadJSON

  22. 		}

  23. 	} else {

  24. 		err := r.ParseForm()

  25. 		if err != nil {

  26. 			log.Error("Couldn't parse signup form request: %v\n", err)

  27. 			return ErrBadFormData

  28. 		}

  29. 

  30. 		err = app.formDecoder.Decode(&ur, r.PostForm)

  31. 		if err != nil {

  32. 			log.Error("Couldn't decode signup form request: %v\n", err)

  33. 			return ErrBadFormData

  34. 		}

  35. 	}

  36. 	ur.Web = true

  37. 	ur.Normalize = true

  38. 

  39. 	_, err := signupWithRegistration(app, ur, w, r)

  40. 	if err != nil {

  41. 		if err, ok := err.(impart.HTTPError); ok {

  42. 			session, _ := app.sessionStore.Get(r, cookieName)

  43. 			if session != nil {

  44. 				session.AddFlash(err.Message)

  45. 				session.Save(r, w)

  46. 				return impart.HTTPError{http.StatusFound, "/"}

  47. 			}

  48. 		}

  49. 		return err

  50. 	}

  51. 	return impart.HTTPError{http.StatusFound, "/"}

  52. }

  53. 

  54. // { "username": "asdf" }

  55. // result: { code: 204 }

  56. func handleUsernameCheck(app *app, w http.ResponseWriter, r *http.Request) error {

  57. 	reqJSON := IsJSON(r.Header.Get("Content-Type"))

  58. 

  59. 	// Get params

  60. 	var d struct {

  61. 		Username string `json:"username"`

  62. 	}

  63. 	if reqJSON {

  64. 		decoder := json.NewDecoder(r.Body)

  65. 		err := decoder.Decode(&d)

  66. 		if err != nil {

  67. 			log.Error("Couldn't decode username check: %v\n", err)

  68. 			return ErrBadFormData

  69. 		}

  70. 	} else {

  71. 		return impart.HTTPError{http.StatusNotAcceptable, "Must be JSON request"}

  72. 	}

  73. 

  74. 	// Check if username is okay

  75. 	finalUsername := getSlug(d.Username, "")

  76. 	if finalUsername == "" {

  77. 		errMsg := "Invalid username"

  78. 		if d.Username != "" {

  79. 			// Username was provided, but didn't convert into valid latin characters

  80. 			errMsg += " - must have at least 2 letters or numbers"

  81. 		}

  82. 		return impart.HTTPError{http.StatusBadRequest, errMsg + "."}

  83. 	}

  84. 	if app.db.PostIDExists(finalUsername) {

  85. 		return impart.HTTPError{http.StatusConflict, "Username is already taken."}

  86. 	}

  87. 	var un string

  88. 	err := app.db.QueryRow("SELECT username FROM users WHERE username = ?", finalUsername).Scan(&un)

  89. 	switch {

  90. 	case err == sql.ErrNoRows:

  91. 		return impart.WriteSuccess(w, finalUsername, http.StatusOK)

  92. 	case err != nil:

  93. 		log.Error("Couldn't SELECT username: %v", err)

  94. 		return impart.HTTPError{http.StatusInternalServerError, "We messed up."}

  95. 	}

  96. 

  97. 	// Username was found, so it's taken

  98. 	return impart.HTTPError{http.StatusConflict, "Username is already taken."}

  99. }

  100. 

  101. func getValidUsername(app *app, reqName, prevName string) (string, *impart.HTTPError) {

  102. 	// Check if username is okay

  103. 	finalUsername := getSlug(reqName, "")

  104. 	if finalUsername == "" {

  105. 		errMsg := "Invalid username"

  106. 		if reqName != "" {

  107. 			// Username was provided, but didn't convert into valid latin characters

  108. 			errMsg += " - must have at least 2 letters or numbers"

  109. 		}

  110. 		return "", &impart.HTTPError{http.StatusBadRequest, errMsg + "."}

  111. 	}

  112. 	if finalUsername == prevName {

  113. 		return "", &impart.HTTPError{http.StatusNotModified, "Username unchanged."}

  114. 	}

  115. 	if app.db.PostIDExists(finalUsername) {

  116. 		return "", &impart.HTTPError{http.StatusConflict, "Username is already taken."}

  117. 	}

  118. 	var un string

  119. 	err := app.db.QueryRow("SELECT username FROM users WHERE username = ?", finalUsername).Scan(&un)

  120. 	switch {

  121. 	case err == sql.ErrNoRows:

  122. 		return finalUsername, nil

  123. 	case err != nil:

  124. 		log.Error("Couldn't SELECT username: %v", err)

  125. 		return "", &impart.HTTPError{http.StatusInternalServerError, "We messed up."}

  126. 	}

  127. 

  128. 	// Username was found, so it's taken

  129. 	return "", &impart.HTTPError{http.StatusConflict, "Username is already taken."}

  130. }