woodpecker/server/handler/login.go

package handler

import (
	"log"
	"net/http"
	"time"

	"github.com/drone/drone/server/database"
	"github.com/drone/drone/server/session"
	"github.com/drone/drone/shared/model"
	"github.com/gorilla/pat"
)

type LoginHandler struct {
	users database.UserManager
	repos database.RepoManager
	perms database.PermManager
	conf  database.ConfigManager
	sess  session.Session
}

func NewLoginHandler(users database.UserManager, repos database.RepoManager, perms database.PermManager, sess session.Session, conf database.ConfigManager) *LoginHandler {
	return &LoginHandler{users, repos, perms, conf, sess}
}

// GetLogin gets the login to the 3rd party remote system.
// GET /login/:host
func (h *LoginHandler) GetLogin(w http.ResponseWriter, r *http.Request) error {
	host := r.FormValue(":host")

	// get the remote system's client.
	remote := h.conf.Find().GetRemote(host)
	if remote == nil {
		return notFound{}
	}

	// authenticate the user
	login, err := remote.GetLogin(w, r)
	if err != nil {
		return badRequest{err}
	} else if login == nil {
		// in this case we probably just redirected
		// the user, so we can exit with no error
		return nil
	}

	// get the user from the database
	u, err := h.users.FindLogin(host, login.Login)
	if err != nil {
		// if self-registration is disabled we should
		// return a notAuthorized error. the only exception
		// is if no users exist yet in the system we'll proceed.
		if h.conf.Find().Registration == false && h.users.Exist() {
			return notAuthorized{}
		}

		// create the user account
		u = model.NewUser(remote.GetName(), login.Login, login.Email)
		u.Name = login.Name
		u.SetEmail(login.Email)

		// insert the user into the database
		if err := h.users.Insert(u); err != nil {
			return badRequest{err}
		}

		// if this is the first user, they
		// should be an admin.
		if u.ID == 1 {
			u.Admin = true
		}
	}

	// update the user access token
	// in case it changed in GitHub
	u.Access = login.Access
	u.Secret = login.Secret
	if err := h.users.Update(u); err != nil {
		return badRequest{err}
	}

	// look at the last synchronized date to determine if
	// we need to re-sync the account.
	//
	// TODO this should move to a server/sync package and
	//      should be injected into this struct, just like
	//      the database code.
	if u.IsStale() {
		log.Println("sync user account.", u.Login)

		// sync inside a goroutine. This should eventually be moved to
		// its own package / sync utility.
		go func() {
			// mark as synced
			u.Synced = time.Now().Unix()
			if err := h.users.Update(u); err != nil {
				log.Println("Error syncing user account, updating sync date", u.Login, err)
				return
			}

			// list all repositories
			client := remote.GetClient(u.Access, u.Secret)
			repos, err := client.GetRepos("")
			if err != nil {
				log.Println("Error syncing user account, listing repositories", u.Login, err)
				return
			}

			// insert all repositories
			for _, remoteRepo := range repos {
				repo, _ := model.NewRepo(remote.GetName(), remoteRepo.Owner, remoteRepo.Name)
				repo.Private = remoteRepo.Private
				repo.Host = remoteRepo.Host
				repo.CloneURL = remoteRepo.Clone
				repo.GitURL = remoteRepo.Git
				repo.SSHURL = remoteRepo.SSH
				repo.URL = remoteRepo.URL

				if err := h.repos.Insert(repo); err != nil {
					log.Println("Error adding repo.", u.Login, remoteRepo.Name, err)
					continue
				}

				// add user permissions
				if err := h.perms.Grant(u, repo, remoteRepo.Pull, remoteRepo.Push, remoteRepo.Admin); err != nil {
					log.Println("Error adding permissions.", u.Login, remoteRepo.Name, err)
					continue
				}

				log.Println("Successfully syced repo.", u.Login+"/"+remoteRepo.Name)
			}
		}()
	}

	// (re)-create the user session
	h.sess.SetUser(w, r, u)

	// redirect the user to their dashboard
	http.Redirect(w, r, "/", http.StatusSeeOther)
	return nil
}

// GetLogout terminates the current user session
// GET /logout
func (h *LoginHandler) GetLogout(w http.ResponseWriter, r *http.Request) error {
	h.sess.Clear(w, r)
	http.Redirect(w, r, "/", http.StatusSeeOther)
	return nil
}

func (h *LoginHandler) Register(r *pat.Router) {
	r.Get("/login/{host}", errorHandler(h.GetLogin))
	r.Get("/logout", errorHandler(h.GetLogout))
}
pushing my local branch 2014-06-04 21:25:38 +00:00			`package handler`

			`import (`
			`"log"`
			`"net/http"`
			`"time"`

Refactored to use Model and Database folders 2014-06-12 23:41:04 +00:00			`"github.com/drone/drone/server/database"`
pushing my local branch 2014-06-04 21:25:38 +00:00			`"github.com/drone/drone/server/session"`
Refactored to use Model and Database folders 2014-06-12 23:41:04 +00:00			`"github.com/drone/drone/shared/model"`
pushing my local branch 2014-06-04 21:25:38 +00:00			`"github.com/gorilla/pat"`
			`)`

			`type LoginHandler struct {`
Refactored to use Model and Database folders 2014-06-12 23:41:04 +00:00			`users database.UserManager`
			`repos database.RepoManager`
			`perms database.PermManager`
Get Config Data via ConfigManager 2014-06-13 00:17:59 +00:00			`conf database.ConfigManager`
pushing my local branch 2014-06-04 21:25:38 +00:00			`sess session.Session`
			`}`

Get Config Data via ConfigManager 2014-06-13 00:17:59 +00:00			`func NewLoginHandler(users database.UserManager, repos database.RepoManager, perms database.PermManager, sess session.Session, conf database.ConfigManager) *LoginHandler {`
			`return &LoginHandler{users, repos, perms, conf, sess}`
pushing my local branch 2014-06-04 21:25:38 +00:00			`}`

			`// GetLogin gets the login to the 3rd party remote system.`
			`// GET /login/:host`
			`func (h LoginHandler) GetLogin(w http.ResponseWriter, r http.Request) error {`
			`host := r.FormValue(":host")`

			`// get the remote system's client.`
Get Config Data via ConfigManager 2014-06-13 00:17:59 +00:00			`remote := h.conf.Find().GetRemote(host)`
pushing my local branch 2014-06-04 21:25:38 +00:00			`if remote == nil {`
			`return notFound{}`
			`}`

			`// authenticate the user`
			`login, err := remote.GetLogin(w, r)`
			`if err != nil {`
			`return badRequest{err}`
			`} else if login == nil {`
			`// in this case we probably just redirected`
			`// the user, so we can exit with no error`
			`return nil`
			`}`

			`// get the user from the database`
			`u, err := h.users.FindLogin(host, login.Login)`
			`if err != nil {`
added code to prevent user self-registration 2014-06-09 21:32:00 +00:00			`// if self-registration is disabled we should`
removed css files. designers will be providing removed amber files. replacing with angular removed queue package in favor or worker package removed channel package in favor of pubsub package 2014-06-21 21:22:38 +00:00			`// return a notAuthorized error. the only exception`
			`// is if no users exist yet in the system we'll proceed.`
			`if h.conf.Find().Registration == false && h.users.Exist() {`
added code to prevent user self-registration 2014-06-09 21:32:00 +00:00			`return notAuthorized{}`
			`}`

pushing my local branch 2014-06-04 21:25:38 +00:00			`// create the user account`
Refactored to use Model and Database folders 2014-06-12 23:41:04 +00:00			`u = model.NewUser(remote.GetName(), login.Login, login.Email)`
pushing my local branch 2014-06-04 21:25:38 +00:00			`u.Name = login.Name`
			`u.SetEmail(login.Email)`

			`// insert the user into the database`
			`if err := h.users.Insert(u); err != nil {`
			`return badRequest{err}`
			`}`

			`// if this is the first user, they`
			`// should be an admin.`
			`if u.ID == 1 {`
			`u.Admin = true`
			`}`
			`}`

			`// update the user access token`
			`// in case it changed in GitHub`
			`u.Access = login.Access`
			`u.Secret = login.Secret`
			`if err := h.users.Update(u); err != nil {`
			`return badRequest{err}`
			`}`

			`// look at the last synchronized date to determine if`
			`// we need to re-sync the account.`
altered repo to track repo hostname (ie github.com) and multiple clone urls 2014-06-05 22:04:59 +00:00			`//`
			`// TODO this should move to a server/sync package and`
			`// should be injected into this struct, just like`
			`// the database code.`
Refactored to use Model and Database folders 2014-06-12 23:41:04 +00:00			`if u.IsStale() {`
pushing my local branch 2014-06-04 21:25:38 +00:00			`log.Println("sync user account.", u.Login)`

			`// sync inside a goroutine. This should eventually be moved to`
			`// its own package / sync utility.`
			`go func() {`
			`// mark as synced`
			`u.Synced = time.Now().Unix()`
			`if err := h.users.Update(u); err != nil {`
			`log.Println("Error syncing user account, updating sync date", u.Login, err)`
			`return`
			`}`

			`// list all repositories`
			`client := remote.GetClient(u.Access, u.Secret)`
			`repos, err := client.GetRepos("")`
			`if err != nil {`
			`log.Println("Error syncing user account, listing repositories", u.Login, err)`
			`return`
			`}`

			`// insert all repositories`
			`for _, remoteRepo := range repos {`
Refactored to use Model and Database folders 2014-06-12 23:41:04 +00:00			`repo, _ := model.NewRepo(remote.GetName(), remoteRepo.Owner, remoteRepo.Name)`
pushing my local branch 2014-06-04 21:25:38 +00:00			`repo.Private = remoteRepo.Private`
persisting repository hostname to database 2014-06-05 23:02:54 +00:00			`repo.Host = remoteRepo.Host`
altered repo to track repo hostname (ie github.com) and multiple clone urls 2014-06-05 22:04:59 +00:00			`repo.CloneURL = remoteRepo.Clone`
			`repo.GitURL = remoteRepo.Git`
			`repo.SSHURL = remoteRepo.SSH`
pushing my local branch 2014-06-04 21:25:38 +00:00			`repo.URL = remoteRepo.URL`

			`if err := h.repos.Insert(repo); err != nil {`
			`log.Println("Error adding repo.", u.Login, remoteRepo.Name, err)`
			`continue`
			`}`

			`// add user permissions`
			`if err := h.perms.Grant(u, repo, remoteRepo.Pull, remoteRepo.Push, remoteRepo.Admin); err != nil {`
			`log.Println("Error adding permissions.", u.Login, remoteRepo.Name, err)`
			`continue`
			`}`

			`log.Println("Successfully syced repo.", u.Login+"/"+remoteRepo.Name)`
			`}`
			`}()`
			`}`

			`// (re)-create the user session`
			`h.sess.SetUser(w, r, u)`

			`// redirect the user to their dashboard`
			`http.Redirect(w, r, "/", http.StatusSeeOther)`
			`return nil`
			`}`

			`// GetLogout terminates the current user session`
			`// GET /logout`
			`func (h LoginHandler) GetLogout(w http.ResponseWriter, r http.Request) error {`
			`h.sess.Clear(w, r)`
			`http.Redirect(w, r, "/", http.StatusSeeOther)`
			`return nil`
			`}`

			`func (h LoginHandler) Register(r pat.Router) {`
			`r.Get("/login/{host}", errorHandler(h.GetLogin))`
			`r.Get("/logout", errorHandler(h.GetLogout))`
			`}`