Esempio n. 1
0
func PreventReauth(session sessions.Session, r render.Render) {
	_, ok := session.Get("id").(int64)
	if ok {
		session.AddFlash("warning: You are already signed in!")
		r.Redirect("/dashboard")
	}
}
Esempio n. 2
0
func Login(session sessions.Session, re render.Render, r *http.Request) {
	client_id := common.Config.OAuth2Client_ID

	letters := []rune("abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ")

	b := make([]rune, 10)
	for i := range b {
		b[i] = letters[rand.Intn(len(letters))]
	}
	session.AddFlash(string(b), "state")

	redirectBack := r.URL.Query().Get("redirect_back")
	ref := r.Referer()

	if redirectBack == "true" && ref != "" {
		session.Set("redirect_to", ref)
	} else {
		session.Set("redirect_to", nil)
	}

	query := url.Values{}
	query.Set("client_id", client_id)
	query.Set("state", string(b))
	query.Set("scope", "repo")

	dest := url.URL{
		Scheme:   "https",
		Host:     "github.com",
		Path:     "/login/oauth/authorize",
		RawQuery: query.Encode(),
	}
	re.Redirect(dest.String())
}
Esempio n. 3
0
// SectionsDelete deletes a section from user's CV
func SectionsDelete(r render.Render, tokens oauth2.Tokens, session sessions.Session, params martini.Params) {
	sectionID, _ := strconv.Atoi(params["section_id"])
	section := &Section{}

	db.Delete(section, sectionID)

	session.AddFlash("You have successfully deleted a section from your CV.", "success")
	r.Redirect(config.AppUrl+"/sections", 302)
}
Esempio n. 4
0
// ShowPrivate renders private user's CV
func ShowPrivate(r render.Render, req *http.Request, tokens oauth2.Tokens, session sessions.Session, params martini.Params) {
	pd := NewPageData(tokens, session)
	username := params["username"]
	if pd.User.Username == username {
		Show(r, req, username)
	} else {
		session.AddFlash("This is not your CV.", "error")
		r.Redirect(config.AppUrl+"/dashboard", 302)
	}
}
Esempio n. 5
0
// SaveSocial saves dashboard page
func SaveSocial(r render.Render, tokens oauth2.Tokens, session sessions.Session, social SocialNetworksForm, err binding.Errors) {
	pd := NewPageData(tokens, session)

	log.Printf("[SaveSocial] social: %s", social)

	user := pd.User
	user.LinkedIn = strings.Replace(strings.Replace(social.LinkedIn, "https://", "", -1), "http://", "", -1)
	user.Facebook = strings.Replace(strings.Replace(social.Facebook, "https://", "", -1), "http://", "", -1)
	user.Twitter = strings.Replace(strings.Replace(social.Twitter, "https://", "", -1), "http://", "", -1)
	user.GitHub = strings.Replace(strings.Replace(social.GitHub, "https://", "", -1), "http://", "", -1)
	user.Instagram = strings.Replace(strings.Replace(social.Instagram, "https://", "", -1), "http://", "", -1)
	db.Save(user)
	session.AddFlash("You have successfully updated your BareCV profile.", "success")
	r.Redirect(config.AppUrl+"/cv", 302)
}
Esempio n. 6
0
func EnsureAuth(session sessions.Session, r render.Render, req *http.Request, c martini.Context) {
	id, ok := session.Get("id").(int64)
	if !ok || id == 0 {
		session.AddFlash("warning: You must login first!")
		session.Set("previous_url", req.RequestURI)
		r.Redirect("/signin")
	} else if ok {
		var user models.User
		err := utils.ORM.First(&user, id).Error
		if err != nil {
			r.Error(500)
			return
		}
		c.Map(user)
	}
}
Esempio n. 7
0
// SettingsSave saves user's settings
func SettingsSave(r render.Render, tokens oauth2.Tokens, session sessions.Session, settings SettingsForm, err binding.Errors, req *http.Request) {
	pd := NewPageData(tokens, session)

	log.Printf("[SettingsSave] settings: %s", settings)
	log.Printf("[SettingsSave] settings.SearchIndexingEnabled: %s", settings.SearchIndexingEnabled)

	userSettings := pd.Settings
	userSettings.Color = settings.Color
	userSettings.Font = settings.Font
	userSettings.GoogleAnalytics = settings.GoogleAnalytics
	userSettings.SearchIndexingEnabled = settings.SearchIndexingEnabled == "on"
	userSettings.PrivacyLevel = settings.PrivacyLevel
	if userSettings.PrivacyLevel == PrivacyHash {
		userSettings.Hash = RandSeq(32)
	}
	db.Save(userSettings)

	session.AddFlash("You have successfully saved your settings.", "success")
	r.Redirect(config.AppUrl+"/settings", 302)
}
Esempio n. 8
0
// AccountSave renders user's account page
func AccountSave(r render.Render, tokens oauth2.Tokens, session sessions.Session, username UsernameForm, err binding.Errors) {
	pd := NewPageData(tokens, session)

	if len(username.Username) > 0 {
		existingUser := &User{Username: username.Username}
		db.Where(existingUser).First(existingUser)

		if existingUser.ID > 0 {
			err.Add([]string{"username"}, "RequiredError", "This username is already taken.")
		}

		log.Printf("[AccountSave] existing user: %s", existingUser)
	}

	if err.Len() == 0 {
		user := pd.User
		if user.Username != username.Username {
			path := filepath.Join(HomeDir(), "app/public/files/"+user.Username)
			if len(user.Username) == 0 {
				path = filepath.Join(HomeDir(), "app/public/files/"+username.Username)
			}
			if _, err := os.Stat(path); os.IsNotExist(err) || len(user.Username) == 0 {
				os.Mkdir(path, 0755)
			}
			if _, err := os.Stat(path); err == nil {
				newPath := filepath.Join(HomeDir(), "app/public/files/"+username.Username)
				os.Rename(path, newPath)
			}
			user.Username = username.Username
			db.Save(user)
		}
		session.AddFlash("You have successfully updated your BareCV username / domain.", "success")
		r.Redirect(config.AppUrl+"/account", 302)
	} else {
		pd.Errors = &err
		log.Printf("[AccountSave] errors: %s", err[0].Classification)
		r.HTML(200, "account", pd)
	}
}
Esempio n. 9
0
// Save saves dashboard page
func Save(r render.Render, tokens oauth2.Tokens, session sessions.Session, profile ProfileForm, err binding.Errors) {
	pd := NewPageData(tokens, session)

	log.Printf("[Save] profile: %s", profile)

	if err.Len() == 0 {
		user := pd.User
		user.Name = profile.Name
		user.Profession = profile.Profession
		user.Email = profile.Email
		user.Phone = profile.Phone
		user.Website = profile.Website
		user.Address = profile.Address
		db.Save(user)
		session.AddFlash("You have successfully updated your BareCV profile.", "success")
		r.Redirect(config.AppUrl+"/cv", 302)
	} else {
		pd.Errors = &err
		log.Printf("[Save] errors: %s", err[0].FieldNames)
		r.HTML(200, "cv", pd)
	}
}
Esempio n. 10
0
// AccountRedirect redirects user to the account page with a flash message
func AccountRedirect(r render.Render, tokens oauth2.Tokens, session sessions.Session) {
	session.AddFlash("First you must choose a BareCV username.", "error")
	r.Redirect(config.AppUrl+"/account", 302)
}
Esempio n. 11
0
// SectionsPost saves new section to the database
func SectionsPost(r render.Render, tokens oauth2.Tokens, session sessions.Session, params martini.Params, req *http.Request) {
	pd := NewPageData(tokens, session)
	req.ParseForm()

	pd.SectionType, _ = strconv.Atoi(params["type"])
	pd.Section = &Section{}
	action := req.Form.Get("action")

	log.Printf("[SectionPost] action: %s", action)

	var title, subtitle, left, right string

	errors := &binding.Errors{}
	req.ParseForm()

	if pd.SectionType == TypeTitle {
		title = req.Form.Get("title")
		pd.Section.Title = title
		log.Printf("[SectionsPost] title: %s", title)
		if len(title) == 0 {
			errors.Add([]string{"title"}, "RequiredError", "This field is required.")
		}
	} else if pd.SectionType == TypeSubtitle {
		subtitle = req.Form.Get("subtitle")
		pd.Section.Subtitle = subtitle
		if len(subtitle) == 0 {
			errors.Add([]string{"subtitle"}, "RequiredError", "This field is required.")
		}
	} else if pd.SectionType == TypeParagraph {
		left = req.Form.Get("left")
		right = req.Form.Get("right")
		pd.Section.Left = left
		pd.Section.Right = right
		if len(left) == 0 {
			errors.Add([]string{"left"}, "RequiredError", "This field is required.")
		}
		if len(right) == 0 {
			errors.Add([]string{"right"}, "RequiredError", "This field is required.")
		}
	}

	if errors.Len() == 0 {
		section := &Section{}
		if action == "update" {
			sectionID, _ := strconv.Atoi(params["section_id"])
			db.First(section, sectionID)
		} else {
			section.Type = pd.SectionType
			section.User = *pd.User
			section.OrderID = pd.User.GetLastSectionOrderId()
		}
		if pd.SectionType == TypeTitle {
			section.Title = title
		} else if pd.SectionType == TypeSubtitle {
			section.Subtitle = subtitle
		} else if pd.SectionType == TypeParagraph {
			section.Left = left
			section.Right = right
		}
		db.Save(section)
		if action == "update" {
			session.AddFlash("You have successfully updated a section of your CV.", "success")
		} else {
			session.AddFlash("You have successfully added a new section to your CV.", "success")
		}
		r.Redirect(config.AppUrl+"/sections", 302)
	} else {
		pd.Errors = errors
		log.Printf("[Save] errors: %s", errors)
		r.HTML(200, "sections-new", pd)
	}
}