Ejemplo n.º 1
0
//Checks if user is admin and redirects to login page if s/he isn't
func NotAdministrator(user *models.User, c *AdminController, rw http.ResponseWriter) bool {

	if user.Role != "admin" {
		user.Message = "You are not an administrator."
		c.HTML(rw, http.StatusOK, "user/login", user)
		return true
	} else {
		return false
	}
}
Ejemplo n.º 2
0
//profile page
func (c *UserController) Profile(rw http.ResponseWriter, r *http.Request, p httprouter.Params) {
	if r.Method == "GET" {
		RedirectToLogin(c, rw, r, p)

	} else if r.Method == "POST" {
		// if logged in, go to profile / else login page
		var user *models.User

		if getUserName(r) != "" {
			user = GetUserByUsername(getUserName(r))

		} else {
			c.HTML(rw, http.StatusOK, "user/login", nil)
			return
		}

		r.ParseForm()

		currentPassword := r.FormValue("currentpassword")
		password := r.FormValue("password")
		confirmpassword := r.FormValue("confirmpassword")

		user.Password = currentPassword

		//Check to make sure password matches record
		if CheckForMatchingPassword(user) {
			//Passwords Match
			//Validate new password, make sure they match, update user,display success message

			user.Password = password
			user.ConfirmPassword = confirmpassword

			user.ValidateNewPassword()

			if user.Message != "" {
				c.HTML(rw, http.StatusOK, "user/profile", user)
				return
			} else {
				user.Message = "Updated user"
				UpdateUser(user)
				c.HTML(rw, http.StatusOK, "user/profile", user)
				return
			}

		} else {
			user.Message = "Password doesn't match record for " + user.Username
		}

		c.HTML(rw, http.StatusOK, "user/profile", user)
	}
}
Ejemplo n.º 3
0
func (au AuthorizeSocialController) HandleAuthCallback(rw http.ResponseWriter, r *http.Request, p httprouter.Params) {
	userResponse, err := gothic.CompleteUserAuth(rw, r, p)
	if err != nil {
		fmt.Println(err.Error())
		return
	}

	if err != nil {
		fmt.Println(err.Error())
		return
	}

	newUser := models.User{
		Username:  userResponse.Email,
		Email:     userResponse.Email,
		FirstName: userResponse.Name,
		Surname:   userResponse.Name,
		Password:  "******",
		Role:      "user",
	}
	if CheckForExistingEmail(&newUser) {
		CreateUser(&newUser)
		newUser.Message = "User " + newUser.Username + " successfully created."
		http.HandlerFunc("user/profile")

		return
	} else {
		setSession(newUser.Username, rw)
		newUser.Message = "Email: " + newUser.Email + " already taken."
		http.HandlerFunc("user/profile")
		return
	}
	clearSession(rw)
	http.HandlerFunc("user/login")
	return

}
Ejemplo n.º 4
0
//Registration page
func (c *UserController) Register(rw http.ResponseWriter, r *http.Request, p httprouter.Params) {

	if r.Method == "GET" {

		var user *models.User

		if getUserName(r) != "" {
			user = GetUserByUsername(getUserName(r))
			c.HTML(rw, http.StatusOK, "user/profile", user)

		} else {
			c.HTML(rw, http.StatusOK, "user/register", nil)
		}

	} else if r.Method == "POST" {
		r.ParseForm()
		username := strings.ToLower(r.FormValue("username"))
		email := r.FormValue("email")
		firstname := r.FormValue("firstname")
		surname := r.FormValue("lastname")
		password := r.FormValue("password")
		confirmpassword := r.FormValue("confirmpassword")

		newUser := models.User{
			Username:        username,
			Email:           email,
			FirstName:       firstname,
			Surname:         surname,
			Password:        password,
			ConfirmPassword: confirmpassword,
			Role:            "user"}

		newUser.ValidateRegister()

		if newUser.Message != "" {

			c.HTML(rw, http.StatusOK, "user/register", newUser)
			return
		}

		if CheckForExistingUsername(&newUser) {
			if CheckForExistingEmail(&newUser) {
				CreateUser(&newUser)
				newUser.Message = "User " + newUser.Username + " successfully created."
			} else {
				newUser.Message = "Email: " + newUser.Email + " already taken."
			}
		} else {
			newUser.Message = "User: "******" already exists."
		}

		c.HTML(rw, http.StatusOK, "user/register", newUser)

	}

}
Ejemplo n.º 5
0
//Login page
func (c *UserController) Login(rw http.ResponseWriter, r *http.Request, p httprouter.Params) {
	if r.Method == "GET" {
		// if logged in, go to profile / else login page
		RedirectToLogin(c, rw, r, p)

	} else if r.Method == "POST" {
		r.ParseForm()

		username := strings.ToLower(r.FormValue("username"))
		password := r.FormValue("password")

		newUser := models.User{
			Username: username,
			Password: password}

		newUser.ValidateLogin()

		if newUser.Message != "" {
			newUser.Username = ""

			c.HTML(rw, http.StatusOK, "user/login", newUser)
			return
		}

		if !CheckForExistingUsername(&newUser) {
			//User Exists
			if CheckForMatchingPassword(&newUser) {
				//Passwords Match
				//Open Session and forward back to front page
				newUser.Message = "Passwords match."
				setSession(newUser.Username, rw)
				c.HTML(rw, http.StatusOK, "user/loggedIn", newUser)
				return

			} else {
				newUser.Message = "Password doesn't match record for " + newUser.Username
			}

		} else {
			//User Doesn't exist
			newUser.Message = "User " + newUser.Username + " doesn't exist."
		}

		c.HTML(rw, http.StatusOK, "user/login", newUser)
	}
}