Esempio n. 1
0
func GroupDestroyHandler(c echo.Context) error {
	session := session.NewSession(c)
	if !session.AuthFailed {
		id := bson.ObjectIdHex(session.GetParam("group_id").(string))
		group, _ := session.GetApplication().FindGroupById(id)

		if group.CanModify(session.User) {
			group.Delete()
		} else {
			session.SetError(1002)
		}
	} else {
		session.SetError(1001)
	}
	session.Write()

	return nil
}
Esempio n. 2
0
func FilesCreateHandler(c echo.Context) error {
	session := session.NewSession(c)

	request := session.GetParam("request").(map[string]interface{})
	file_params := request["file"].(map[string]interface{})

	var size int64
	url := ""

	if file_params["size"] != nil {
		size, _ = file_params["size"].(json.Number).Int64()
	}

	if file_params["url"] != nil {
		url = file_params["url"].(string)
	}

	if url != "" || size != 0 {
		if !session.AuthFailed {

			record_id := bson.ObjectIdHex(session.GetParam("record_id").(string))
			endpoint := session.GetEndpoint()

			record := endpoint.FindWriteRecordById(record_id, session.User)

			if record.Id != bson.ObjectId("") {
				file := model.File{}
				file.ApplicationId = session.GetApplication().Id
				file.RecordId = record.Id
				file.EndpointId = endpoint.Id
				file.Name = file_params["name"].(string)

				if size != 0 {
					file.Size = size
				} else {
					file.URL = url
				}

				file.Save()

				if file_params["size"] != nil {
					file.GenerateRequest()
				}

				record.AddFile(file)

				session.SetRecords("files", []model.File{file})
			}
		}
	} else {
		session.SetError(1400)
	}

	session.Write()

	return nil
}
Esempio n. 3
0
func UsersUpdateHandler(c echo.Context) error {
	session := session.NewSession(c)

	request_params := session.GetParam("request").(map[string]interface{})

	user_params := request_params["user"].(map[string]interface{})

	user_id := session.GetParam("user_id").(string)
	user := session.GetApplication().FindUserById(bson.ObjectIdHex(user_id))

	can_edit := session.User.SuperUser || session.User.Id == user.Id

	password := user_params["current_password"]
	valid := session.User.SuperUser || (password != nil && user.VerifyPassword(password.(string)))

	//fmt.Println(can_edit, user_id)

	if user.Id == bson.ObjectId("") || !can_edit {
		session.SetError(1101)
	} else if !valid {
		session.SetError(1106)
	} else {
		if user_params["name"] != nil {
			user.Name = user_params["name"].(string)
		}

		if user_params["email"] != nil {
			user.Email = user_params["email"].(string)
		}

		if user_params["password"] != nil {
			user.SetPassword(user_params["password"].(string))
		}

		user.Save()

		session.SetRecords("users", []interface{}{user})
	}
	session.Write()

	return nil
}
Esempio n. 4
0
func UsersCreateHandler(c echo.Context) error {
	session := session.NewSession(c)

	request_params := session.GetParam("request").(map[string]interface{})
	user_params := request_params["user"].(map[string]interface{})

	user := model.User{}
	user.ApplicationId = bson.ObjectIdHex(session.GetParam("application_id").(string))

	email := strings.ToLower(user_params["email"].(string))

	if user_params["name"] != nil && user_params["email"] != nil && user_params["facebook_id"] == nil {
		user.Name = user_params["name"].(string)
		user.Email = email
		user.SetPassword(user_params["password"].(string))
	} else {
		user.Name = user_params["name"].(string)
		user.Email = email
		user.FacebookId = user_params["facebook_id"].(string)

		if user_params["password"] != nil {
			user.SetPassword(user_params["password"].(string))
		}

	}

	err := user.Save()

	if err {
		logger.Error("1105" + user.Id.Hex())
		session.SetError(1105)
	} else {
		user.NewSession()
		logger.Error("Registered User: "******"users", []interface{}{user})
	}
	session.Write()

	return nil
}
Esempio n. 5
0
func UsersAuthenticateHandler(c echo.Context) error {
	session := session.NewSession(c)

	request_params := session.GetParam("request").(map[string]interface{})
	user_params := request_params["user"].(map[string]interface{})

	valid := false
	user := model.User{}

	if user_params["email"] != nil && user_params["password"] != nil {
		email := user_params["email"].(string)
		password := user_params["password"].(string)

		user = session.GetApplication().FindUserByEmail(email)
		valid = user.VerifyPassword(password)
	} else if user_params["facebook_id"] != nil && user_params["facebook_token"] != nil {
		facebook_id := user_params["facebook_id"].(string)
		facebook_token := user_params["facebook_token"].(string)

		user = session.GetApplication().FindUserByFacebookId(facebook_id)
		valid = user.VerifyFacebookToken(facebook_token)
	} else if user_params["transfer_id"] != nil && user_params["transfer_token"] != nil {
		user_id := user_params["transfer_id"].(string)
		transfer_token := user_params["transfer_token"].(string)

		user = session.GetApplication().FindUserByTransferId(user_id)

		valid = user.VerifyTransferToken(transfer_token)
	}

	if !valid || user.Id == bson.ObjectId("") {
		session.SetError(1101)
	} else {
		user.NewSession()
		session.SetRecords("users", []interface{}{user})
	}
	session.Write()

	return nil
}