Compare commits
No commits in common. "13fdc848014bda1f04cdf2d9384996668d1702c7" and "fbacfdb0d9699d1a4eb7129b386ab95931078334" have entirely different histories.
13fdc84801
...
fbacfdb0d9
@ -14,15 +14,19 @@ import (
|
|||||||
func Login(w http.ResponseWriter, r *http.Request) {
|
func Login(w http.ResponseWriter, r *http.Request) {
|
||||||
var u *types.LoginUser
|
var u *types.LoginUser
|
||||||
|
|
||||||
if r.Header.Get("HX-Request") == "true" {
|
isHtmx := r.Header.Get("HX-Request")
|
||||||
u = handleHtmxLogin(r)
|
|
||||||
} else {
|
|
||||||
u = handleHttpLogin(w, r, u)
|
|
||||||
}
|
|
||||||
|
|
||||||
if u == nil {
|
if isHtmx == "true" {
|
||||||
|
u = &types.LoginUser{
|
||||||
|
Email: r.PostFormValue("email"),
|
||||||
|
Password: r.PostFormValue("password"),
|
||||||
|
}
|
||||||
|
} else {
|
||||||
|
if err := json.NewDecoder(r.Body).Decode(&u); err != nil {
|
||||||
|
InternalServerErrorHandler(w, err)
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
}
|
||||||
|
|
||||||
User, err := query.GetLogin(context.Background(), u)
|
User, err := query.GetLogin(context.Background(), u)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
@ -30,18 +34,16 @@ func Login(w http.ResponseWriter, r *http.Request) {
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
if !bcrypt.CheckPasswordHash(u.Password, User.Password) {
|
if bcrypt.CheckPasswordHash(u.Password, User.Password) {
|
||||||
UnauthorizedHandler(w)
|
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
jwtToken := jwt.CreateUserJWT(User.Name, User.ID, string(User.Role))
|
jwtToken := jwt.CreateUserJWT(User.Name, User.ID, string(User.Role))
|
||||||
|
|
||||||
cookie := &http.Cookie{
|
if jwtToken != "" {
|
||||||
Name: "jwt",
|
|
||||||
|
cookie := &http.Cookie{Name: "jwt",
|
||||||
Value: jwtToken,
|
Value: jwtToken,
|
||||||
HttpOnly: true,
|
//HttpOnly: true,
|
||||||
Secure: true,
|
//Secure: true,
|
||||||
SameSite: http.SameSiteLaxMode,
|
SameSite: http.SameSiteLaxMode,
|
||||||
Expires: time.Now().Add(24 * time.Hour),
|
Expires: time.Now().Add(24 * time.Hour),
|
||||||
}
|
}
|
||||||
@ -50,21 +52,17 @@ func Login(w http.ResponseWriter, r *http.Request) {
|
|||||||
|
|
||||||
w.WriteHeader(http.StatusOK)
|
w.WriteHeader(http.StatusOK)
|
||||||
_, err = w.Write([]byte("login success"))
|
_, err = w.Write([]byte("login success"))
|
||||||
}
|
return
|
||||||
|
} else {
|
||||||
func handleHtmxLogin(r *http.Request) *types.LoginUser {
|
|
||||||
return &types.LoginUser{
|
|
||||||
Email: r.PostFormValue("email"),
|
|
||||||
Password: r.PostFormValue("password"),
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
func handleHttpLogin(w http.ResponseWriter, r *http.Request, u *types.LoginUser) *types.LoginUser {
|
|
||||||
if err := json.NewDecoder(r.Body).Decode(&u); err != nil {
|
|
||||||
InternalServerErrorHandler(w, err)
|
InternalServerErrorHandler(w, err)
|
||||||
return nil
|
return
|
||||||
|
}
|
||||||
|
|
||||||
|
} else {
|
||||||
|
UnauthorizedHandler(w)
|
||||||
|
|
||||||
|
println("unauthorized")
|
||||||
}
|
}
|
||||||
return u
|
|
||||||
}
|
}
|
||||||
|
|
||||||
func CanEdit(w http.ResponseWriter, r *http.Request) {
|
func CanEdit(w http.ResponseWriter, r *http.Request) {
|
||||||
@ -73,12 +71,14 @@ func CanEdit(w http.ResponseWriter, r *http.Request) {
|
|||||||
if err != nil {
|
if err != nil {
|
||||||
w.WriteHeader(http.StatusOK)
|
w.WriteHeader(http.StatusOK)
|
||||||
w.Write([]byte(""))
|
w.Write([]byte(""))
|
||||||
|
return
|
||||||
}
|
}
|
||||||
if audience == "owner" || audience == "admin" {
|
if audience == "owner" || audience == "visitor" {
|
||||||
w.WriteHeader(http.StatusOK)
|
w.WriteHeader(http.StatusOK)
|
||||||
w.Write([]byte("<button class=\"button is-link\">Edit</button>"))
|
w.Write([]byte("<button class=\"button is-link\">Edit</button>"))
|
||||||
} else {
|
} else {
|
||||||
w.WriteHeader(http.StatusOK)
|
w.WriteHeader(http.StatusOK)
|
||||||
w.Write([]byte(""))
|
w.Write([]byte(""))
|
||||||
}
|
}
|
||||||
|
return
|
||||||
}
|
}
|
||||||
|
|||||||
@ -22,7 +22,6 @@ func UnprocessableEntityHandler(w http.ResponseWriter, err error) {
|
|||||||
}
|
}
|
||||||
|
|
||||||
func UnauthorizedHandler(w http.ResponseWriter) {
|
func UnauthorizedHandler(w http.ResponseWriter) {
|
||||||
log.Println("unauthorized")
|
|
||||||
setError(w, http.StatusUnauthorized, "Unauthorized")
|
setError(w, http.StatusUnauthorized, "Unauthorized")
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
@ -15,11 +15,11 @@ func CreateUserHandler(w http.ResponseWriter, r *http.Request) {
|
|||||||
|
|
||||||
var u *types.RegisterUser
|
var u *types.RegisterUser
|
||||||
|
|
||||||
if r.Header.Get("HX-Request") == "true" {
|
isHtmx := r.Header.Get("HX-Request")
|
||||||
|
|
||||||
|
if isHtmx == "true" {
|
||||||
u = &types.RegisterUser{
|
u = &types.RegisterUser{
|
||||||
Name: r.PostFormValue("name"),
|
Name: r.PostFormValue("name"),
|
||||||
Password: r.PostFormValue("password"),
|
|
||||||
Email: r.PostFormValue("email"),
|
|
||||||
//Role: user.Role(r.PostFormValue("role")),
|
//Role: user.Role(r.PostFormValue("role")),
|
||||||
}
|
}
|
||||||
} else {
|
} else {
|
||||||
@ -28,6 +28,7 @@ func CreateUserHandler(w http.ResponseWriter, r *http.Request) {
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
u.Password = "123"
|
||||||
if !validate.UserIsValid(u) {
|
if !validate.UserIsValid(u) {
|
||||||
BadRequestHandler(w)
|
BadRequestHandler(w)
|
||||||
return
|
return
|
||||||
|
|||||||
@ -69,5 +69,9 @@ func EditProject(project *ent.Project) g.Node {
|
|||||||
b.Content(
|
b.Content(
|
||||||
b.Textarea(project.Description, e.Name("project_description")),
|
b.Textarea(project.Description, e.Name("project_description")),
|
||||||
),
|
),
|
||||||
|
|
||||||
|
//b.CardFooter(
|
||||||
|
//Save(),
|
||||||
|
//),
|
||||||
)
|
)
|
||||||
}
|
}
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user