2014-03-06 02:21:44 -05:00
// Copyright 2014 The Gogs Authors. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.
package auth
import (
"reflect"
2014-07-26 00:24:27 -04:00
"strings"
2015-08-19 06:22:33 +08:00
"time"
2014-03-06 02:21:44 -05:00
2015-02-01 12:41:03 -05:00
"github.com/Unknwon/com"
2014-10-15 11:19:20 -04:00
"github.com/Unknwon/macaron"
"github.com/macaron-contrib/binding"
2014-07-26 00:24:27 -04:00
"github.com/macaron-contrib/session"
2014-03-06 02:21:44 -05:00
2014-07-26 00:24:27 -04:00
"github.com/gogits/gogs/models"
2014-11-10 05:30:07 -05:00
"github.com/gogits/gogs/modules/base"
2014-07-26 00:24:27 -04:00
"github.com/gogits/gogs/modules/log"
"github.com/gogits/gogs/modules/setting"
2014-12-05 18:08:09 -05:00
"github.com/gogits/gogs/modules/uuid"
2014-03-06 02:21:44 -05:00
)
2015-07-15 19:17:57 +08:00
func IsAPIPath ( url string ) bool {
return strings . HasPrefix ( url , "/api/" )
}
2015-09-02 02:40:15 -04:00
// SignedInID returns the id of signed in user.
func SignedInID ( ctx * macaron . Context , sess session . Store ) int64 {
2014-07-26 00:24:27 -04:00
if ! models . HasEngine {
return 0
}
2015-09-02 02:40:15 -04:00
// Check access token.
2015-09-02 02:45:01 -04:00
if IsAPIPath ( ctx . Req . URL . Path ) {
tokenSHA := ctx . Query ( "token" )
if len ( tokenSHA ) == 0 {
// Well, check with header again.
auHead := ctx . Req . Header . Get ( "Authorization" )
if len ( auHead ) > 0 {
auths := strings . Fields ( auHead )
if len ( auths ) == 2 && auths [ 0 ] == "token" {
tokenSHA = auths [ 1 ]
}
2015-09-02 02:40:15 -04:00
}
}
2015-09-02 02:45:01 -04:00
// Let's see if token is valid.
if len ( tokenSHA ) > 0 {
t , err := models . GetAccessTokenBySHA ( tokenSHA )
if err != nil {
if models . IsErrAccessTokenNotExist ( err ) {
log . Error ( 4 , "GetAccessTokenBySHA: %v" , err )
}
return 0
2014-11-12 06:48:50 -05:00
}
2015-09-02 02:45:01 -04:00
t . Updated = time . Now ( )
if err = models . UpdateAccessToekn ( t ) ; err != nil {
log . Error ( 4 , "UpdateAccessToekn: %v" , err )
}
return t . UID
2014-11-12 06:48:50 -05:00
}
}
2014-11-13 02:32:18 -05:00
uid := sess . Get ( "uid" )
if uid == nil {
return 0
}
if id , ok := uid . ( int64 ) ; ok {
2015-08-08 22:43:14 +08:00
if _ , err := models . GetUserByID ( id ) ; err != nil {
2015-08-05 11:14:17 +08:00
if ! models . IsErrUserNotExist ( err ) {
2014-11-13 02:32:18 -05:00
log . Error ( 4 , "GetUserById: %v" , err )
}
return 0
}
return id
}
2014-07-26 00:24:27 -04:00
return 0
2014-07-02 16:42:16 -04:00
}
2014-07-26 00:24:27 -04:00
// SignedInUser returns the user object of signed user.
2014-12-05 17:54:57 -05:00
// It returns a bool value to indicate whether user uses basic auth or not.
2015-09-02 02:40:15 -04:00
func SignedInUser ( ctx * macaron . Context , sess session . Store ) ( * models . User , bool ) {
2014-11-10 05:30:07 -05:00
if ! models . HasEngine {
2014-11-18 11:07:16 -05:00
return nil , false
2014-11-10 05:30:07 -05:00
}
2015-09-02 02:40:15 -04:00
uid := SignedInID ( ctx , sess )
2014-11-10 05:30:07 -05:00
2014-07-26 00:24:27 -04:00
if uid <= 0 {
2014-11-10 05:30:07 -05:00
if setting . Service . EnableReverseProxyAuth {
2015-09-02 02:40:15 -04:00
webAuthUser := ctx . Req . Header . Get ( setting . ReverseProxyAuthUser )
2014-11-10 05:30:07 -05:00
if len ( webAuthUser ) > 0 {
u , err := models . GetUserByName ( webAuthUser )
if err != nil {
2015-08-05 11:14:17 +08:00
if ! models . IsErrUserNotExist ( err ) {
2014-11-10 05:30:07 -05:00
log . Error ( 4 , "GetUserByName: %v" , err )
2014-12-05 17:54:57 -05:00
return nil , false
}
2014-12-06 20:22:48 -05:00
// Check if enabled auto-registration.
2014-12-05 17:54:57 -05:00
if setting . Service . EnableReverseProxyAutoRegister {
u := & models . User {
Name : webAuthUser ,
2014-12-05 18:08:09 -05:00
Email : uuid . NewV4 ( ) . String ( ) + "@localhost" ,
2014-12-05 17:54:57 -05:00
Passwd : webAuthUser ,
IsActive : true ,
}
if err = models . CreateUser ( u ) ; err != nil {
// FIXME: should I create a system notice?
log . Error ( 4 , "CreateUser: %v" , err )
return nil , false
} else {
return u , false
}
2014-11-10 05:30:07 -05:00
}
}
2014-11-18 11:07:16 -05:00
return u , false
2014-11-10 05:30:07 -05:00
}
}
// Check with basic auth.
2015-09-02 02:40:15 -04:00
baHead := ctx . Req . Header . Get ( "Authorization" )
2014-11-10 05:30:07 -05:00
if len ( baHead ) > 0 {
auths := strings . Fields ( baHead )
if len ( auths ) == 2 && auths [ 0 ] == "Basic" {
uname , passwd , _ := base . BasicAuthDecode ( auths [ 1 ] )
2015-02-27 12:42:03 +00:00
u , err := models . UserSignIn ( uname , passwd )
2014-11-10 05:30:07 -05:00
if err != nil {
2015-08-05 11:14:17 +08:00
if ! models . IsErrUserNotExist ( err ) {
2015-02-27 12:42:03 +00:00
log . Error ( 4 , "UserSignIn: %v" , err )
2014-11-10 05:30:07 -05:00
}
2014-11-18 11:07:16 -05:00
return nil , false
2014-11-10 05:30:07 -05:00
}
2015-02-27 12:42:03 +00:00
return u , true
2014-11-10 05:30:07 -05:00
}
}
2014-11-18 11:07:16 -05:00
return nil , false
2014-07-26 00:24:27 -04:00
}
2015-08-08 22:43:14 +08:00
u , err := models . GetUserByID ( uid )
2014-07-26 00:24:27 -04:00
if err != nil {
log . Error ( 4 , "GetUserById: %v" , err )
2014-11-18 11:07:16 -05:00
return nil , false
2014-07-26 00:24:27 -04:00
}
2014-11-18 11:07:16 -05:00
return u , false
2014-03-28 18:40:31 -04:00
}
2014-10-15 11:19:20 -04:00
type Form interface {
binding . Validator
}
2015-02-01 12:41:03 -05:00
func init ( ) {
binding . SetNameMapper ( com . ToSnakeCase )
}
2014-07-26 00:24:27 -04:00
// AssignForm assign form values back to the template data.
func AssignForm ( form interface { } , data map [ string ] interface { } ) {
typ := reflect . TypeOf ( form )
val := reflect . ValueOf ( form )
if typ . Kind ( ) == reflect . Ptr {
typ = typ . Elem ( )
val = val . Elem ( )
}
for i := 0 ; i < typ . NumField ( ) ; i ++ {
field := typ . Field ( i )
fieldName := field . Tag . Get ( "form" )
// Allow ignored fields in the struct
if fieldName == "-" {
continue
2015-02-01 12:41:03 -05:00
} else if len ( fieldName ) == 0 {
fieldName = com . ToSnakeCase ( field . Name )
2014-07-26 00:24:27 -04:00
}
data [ fieldName ] = val . Field ( i ) . Interface ( )
}
}
2014-08-01 06:12:14 -04:00
func getSize ( field reflect . StructField , prefix string ) string {
2014-07-26 00:24:27 -04:00
for _ , rule := range strings . Split ( field . Tag . Get ( "binding" ) , ";" ) {
2014-08-01 06:12:14 -04:00
if strings . HasPrefix ( rule , prefix ) {
2015-07-24 21:02:49 +08:00
return rule [ len ( prefix ) : len ( rule ) - 1 ]
2014-07-26 00:24:27 -04:00
}
}
return ""
}
2015-07-24 21:02:49 +08:00
func GetSize ( field reflect . StructField ) string {
return getSize ( field , "Size(" )
}
2014-08-01 06:12:14 -04:00
func GetMinSize ( field reflect . StructField ) string {
return getSize ( field , "MinSize(" )
}
func GetMaxSize ( field reflect . StructField ) string {
return getSize ( field , "MaxSize(" )
}
2015-08-28 18:33:09 +08:00
// FIXME: struct contains a struct
func validateStruct ( obj interface { } ) binding . Errors {
return nil
}
2014-10-15 11:19:20 -04:00
func validate ( errs binding . Errors , data map [ string ] interface { } , f Form , l macaron . Locale ) binding . Errors {
if errs . Len ( ) == 0 {
return errs
2014-07-26 00:24:27 -04:00
}
data [ "HasError" ] = true
AssignForm ( f , data )
typ := reflect . TypeOf ( f )
val := reflect . ValueOf ( f )
if typ . Kind ( ) == reflect . Ptr {
typ = typ . Elem ( )
val = val . Elem ( )
}
for i := 0 ; i < typ . NumField ( ) ; i ++ {
field := typ . Field ( i )
fieldName := field . Tag . Get ( "form" )
// Allow ignored fields in the struct
if fieldName == "-" {
continue
}
2014-10-15 11:19:20 -04:00
if errs [ 0 ] . FieldNames [ 0 ] == field . Name {
2014-07-26 00:24:27 -04:00
data [ "Err_" + field . Name ] = true
2015-07-08 19:47:56 +08:00
trName := field . Tag . Get ( "locale" )
if len ( trName ) == 0 {
trName = l . Tr ( "form." + field . Name )
} else {
trName = l . Tr ( trName )
}
2014-10-15 11:19:20 -04:00
switch errs [ 0 ] . Classification {
2014-12-15 01:49:59 -05:00
case binding . ERR_REQUIRED :
2014-07-26 00:24:27 -04:00
data [ "ErrorMsg" ] = trName + l . Tr ( "form.require_error" )
2014-12-15 01:49:59 -05:00
case binding . ERR_ALPHA_DASH :
2014-07-26 00:24:27 -04:00
data [ "ErrorMsg" ] = trName + l . Tr ( "form.alpha_dash_error" )
2014-12-15 01:49:59 -05:00
case binding . ERR_ALPHA_DASH_DOT :
2014-07-26 00:24:27 -04:00
data [ "ErrorMsg" ] = trName + l . Tr ( "form.alpha_dash_dot_error" )
2015-07-24 21:02:49 +08:00
case binding . ERR_SIZE :
data [ "ErrorMsg" ] = trName + l . Tr ( "form.size_error" , GetSize ( field ) )
2014-12-15 01:49:59 -05:00
case binding . ERR_MIN_SIZE :
2014-08-01 06:12:14 -04:00
data [ "ErrorMsg" ] = trName + l . Tr ( "form.min_size_error" , GetMinSize ( field ) )
2014-12-15 01:49:59 -05:00
case binding . ERR_MAX_SIZE :
2014-08-01 06:12:14 -04:00
data [ "ErrorMsg" ] = trName + l . Tr ( "form.max_size_error" , GetMaxSize ( field ) )
2014-12-15 01:49:59 -05:00
case binding . ERR_EMAIL :
2014-07-26 00:24:27 -04:00
data [ "ErrorMsg" ] = trName + l . Tr ( "form.email_error" )
2014-12-15 01:49:59 -05:00
case binding . ERR_URL :
2014-07-26 00:24:27 -04:00
data [ "ErrorMsg" ] = trName + l . Tr ( "form.url_error" )
default :
2014-10-15 11:19:20 -04:00
data [ "ErrorMsg" ] = l . Tr ( "form.unknown_error" ) + " " + errs [ 0 ] . Classification
2014-07-26 00:24:27 -04:00
}
2014-10-15 11:19:20 -04:00
return errs
2014-07-26 00:24:27 -04:00
}
}
2014-10-15 11:19:20 -04:00
return errs
2014-03-28 18:40:31 -04:00
}