func (this *Handler) HandleRegister(login string, password string) string { result := map[string]string{"result": "ok"} salt := time.Now().Unix() fmt.Println("register salt: ", salt) hash := GetMD5Hash(password + strconv.Itoa(int(salt))) passHasInvalidChars := false for i := 0; i < len(password); i++ { if strconv.IsPrint(rune(password[i])) == false { passHasInvalidChars = true break } } isExist, _, _, _ := IsExist(login) if isExist == true { result["result"] = "loginExists" } else if !MatchRegexp("^[a-zA-Z0-9]{2,36}$", login) { result["result"] = "badLogin" } else if !MatchRegexp("^.{6,36}$", password) && !passHasInvalidChars { result["result"] = "badPassword" } else { db := connect.DBConnect() query := connect.DBInsert("users", []string{"login", "password", "salt"}) stmt, err := db.Prepare(query) utils.HandleErr("[HandleRegister] Prepare error :", err) defer stmt.Close() _, err = stmt.Exec(login, hash, salt) utils.HandleErr("[HandleRegister] Query error :", err) } response, err := json.Marshal(result) utils.HandleErr("[HandleRegister] json.Marshal: ", err) return string(response) }
func (this Entity) Insert(fields []string, params []interface{}) { db := connect.DBConnect() query := connect.DBInsert(this.TableName, fields) stmt, err := db.Prepare(query) utils.HandleErr("[Entity.Insert] Prepare: ", err) defer connect.DBClose(db, stmt) _, err = stmt.Exec(params...) utils.HandleErr("[Entity.Insert] Exec: ", err) }
func (this *Handler) Index() { var ( request interface{} response = "" ) this.Response.Header().Set("Access-Control-Allow-Origin", "*") this.Response.Header().Set("Access-Control-Allow-Methods", "GET, POST, OPTIONS") this.Response.Header().Set("Content-type", "application/json") decoder := json.NewDecoder(this.Request.Body) err := decoder.Decode(&request) utils.HandleErr("[Handler] Decode :", err) data := request.(map[string]interface{}) switch data["action"] { case "register": login, password := data["login"].(string), data["password"].(string) response = this.HandleRegister(login, password) fmt.Fprintf(this.Response, "%s", response) break case "login": login, password := data["login"].(string), data["password"].(string) response = this.HandleLogin(login, password) fmt.Fprintf(this.Response, "%s", response) break case "logout": response = this.HandleLogout() fmt.Fprintf(this.Response, "%s", response) break case "getId": sess := this.Session.SessionStart(this.Response, this.Request) ans := map[string]interface{}{"id": sess.Get("id")} res, err := json.Marshal(ans) utils.HandleErr("[Handle.Index] json.Marshal: ", err) fmt.Fprintf(this.Response, "%s", string(res)) break case "select": tableName := data["table"].(string) fields := data["fields"].([]interface{}) base := new(models.ModelManager) var model models.Entity var length int switch tableName { case "Users": length = len(base.Users().UserColumns) model = base.Users().Entity break case "Contests": length = len(base.Contests().Columns) model = base.Contests().Entity break } p := make([]string, length) j := 0 for i, v := range fields { if v != nil { p[i] = v.(string) j++ } } pp := make([]string, j) copy(pp[:], p[:j]) answer := model.Select(nil, pp...) response, err := json.Marshal(answer) utils.HandleErr("[HandleLogin] json.Marshal: ", err) fmt.Fprintf(this.Response, "%s", response) case "update": tableName := data["table"].(string) base := new(models.ModelManager) var model models.Entity var length int switch tableName { case "Users": length = len(base.Users().UserColumns) model = base.Users().Entity break case "Contests": length = len(base.Contests().Columns) model = base.Contests().Entity break } d := data["data"].(map[string](interface{})) fields := utils.ArrayInterfaceToString(d["fields"].([]interface{}), length-1) values := d["userData"].([]interface{}) model.Update(fields, values, fmt.Sprintf("id=%s", data["id"])) response, err := json.Marshal(map[string]interface{}{"result": "ok"}) utils.HandleErr("[HandleLogin] json.Marshal: ", err) fmt.Fprintf(this.Response, "%s", response) break case "editBlanks": id := data["id"].(string) inf := data["data"].([]interface{}) columns := connect.DBGetColumnNames("blank_" + id) fmt.Println(columns) used := make(map[string][]int, len(columns)) for i, v := range columns { used[v] = make([]int, 2) used[v][0] = 0 used[v][1] = i } used["id"][0] = 1 n := len(columns) db := connect.DBConnect() defer connect.DBClose(db) base := new(models.ModelManager) blanks := base.Blanks() for i := 0; i < len(inf); i = i + 4 { colNameObj := inf[i].(map[string]interface{}) colNameDBObj := inf[i+1].(map[string]interface{}) colTypeObj := inf[i+2].(map[string]interface{}) colLenObj := inf[i+3].(map[string]interface{}) var type_ string switch colTypeObj["value"].(string) { case "input": type_ = "varchar(" + colLenObj["value"].(string) + ")" break case "select": type_ = "varchar(" + colLenObj["value"].(string) + ")[]" break case "date": type_ = colLenObj["value"].(string) break } if utils.IsExist(columns, colNameDBObj["value"].(string)) == false { query := "ALTER TABLE blank_" + id + " ADD COLUMN " + colNameDBObj["value"].(string) + " " + type_ stmt, err := db.Prepare(query) defer connect.DBClose(stmt) utils.HandleErr("[Handler.Index->editBlank] Prepare: ", err) _, err = stmt.Exec() utils.HandleErr("[Handler.Index->editBlank] Exec: ", err) blanks.Update([]string{"columns[" + strconv.Itoa(n) + "]"}, []interface{}{colNameDBObj["value"].(string)}, fmt.Sprintf("contest_id=%s", id)) blanks.Update([]string{"colNames[" + strconv.Itoa(n) + "]"}, []interface{}{colNameObj["value"].(string)}, fmt.Sprintf("contest_id=%s", id)) blanks.Update([]string{"types[" + strconv.Itoa(n) + "]"}, []interface{}{type_}, fmt.Sprintf("contest_id=%s", id)) n++ } else { used[colNameDBObj["value"].(string)][0] = 1 query := "ALTER TABLE blank_" + id + " ALTER COLUMN " + colNameDBObj["value"].(string) + " TYPE " + type_ stmt, err := db.Prepare(query) defer connect.DBClose(stmt) utils.HandleErr("[Handler.Index->editBlank] Prepare: ", err) _, err = stmt.Exec() utils.HandleErr("[Handler.Index->editBlank] Exec: ", err) blanks.Update([]string{"types[" + strconv.Itoa(used[colNameDBObj["value"].(string)][1]) + "]"}, []interface{}{type_}, fmt.Sprintf("contest_id=%s", id)) } } for i, v := range used { if v[0] == 0 { query := "UPDATE blanks SET columns = " query += "(SELECT del_elem_by_index (" query += "(SELECT columns FROM blanks WHERE contest_id =" + id + ")," query += strconv.Itoa(v[1]) + "))" query += "WHERE contest_id =" + id stmt, err := db.Prepare(query) defer connect.DBClose(stmt) utils.HandleErr("[Handler.Index->editBlank] Prepare: ", err) _, err = stmt.Exec() utils.HandleErr("[Handler.Index->editBlank] Exec: ", err) query = "UPDATE blanks SET colnames = " query += "(SELECT del_elem_by_index (" query += "(SELECT colnames FROM blanks WHERE contest_id =" + id + ")," query += strconv.Itoa(v[1]) + "))" query += "WHERE contest_id =" + id stmt, err = db.Prepare(query) defer connect.DBClose(stmt) utils.HandleErr("[Handler.Index->editBlank] Prepare: ", err) _, err = stmt.Exec() utils.HandleErr("[Handler.Index->editBlank] Exec: ", err) query = "UPDATE blanks SET types = " query += "(SELECT del_elem_by_index (" query += "(SELECT types FROM blanks WHERE contest_id =" + id + ")," query += strconv.Itoa(v[1]) + "))" query += "WHERE contest_id =" + id stmt, err = db.Prepare(query) defer connect.DBClose(stmt) utils.HandleErr("[Handler.Index->editBlank] Prepare: ", err) _, err = stmt.Exec() utils.HandleErr("[Handler.Index->editBlank] Exec: ", err) query = "ALTER TABLE blank_" + id + " DROP COLUMN IF EXISTS " + i stmt, err = db.Prepare(query) defer connect.DBClose(stmt) utils.HandleErr("[Handler.Index->editBlank] Prepare: ", err) _, err = stmt.Exec() utils.HandleErr("[Handler.Index->editBlank] Exec: ", err) } } query := "UPDATE blanks SET columns = " query += "(SELECT del_null_from_arr (" query += "(SELECT columns FROM blanks WHERE contest_id =" + id + ")))" query += "WHERE contest_id =" + id stmt, err := db.Prepare(query) defer connect.DBClose(stmt) utils.HandleErr("[Handler.Index->editBlank] Prepare: ", err) _, err = stmt.Exec() utils.HandleErr("[Handler.Index->editBlank] Exec: ", err) query = "UPDATE blanks SET colnames = " query += "(SELECT del_null_from_arr (" query += "(SELECT colnames FROM blanks WHERE contest_id =" + id + ")))" query += "WHERE contest_id =" + id stmt, err = db.Prepare(query) defer connect.DBClose(stmt) utils.HandleErr("[Handler.Index->editBlank] Prepare: ", err) _, err = stmt.Exec() utils.HandleErr("[Handler.Index->editBlank] Exec: ", err) query = "UPDATE blanks SET types = " query += "(SELECT del_null_from_arr (" query += "(SELECT types FROM blanks WHERE contest_id =" + id + ")))" query += "WHERE contest_id =" + id stmt, err = db.Prepare(query) defer connect.DBClose(stmt) utils.HandleErr("[Handler.Index->editBlank] Prepare: ", err) _, err = stmt.Exec() utils.HandleErr("[Handler.Index->editBlank] Exec: ", err) break case "addBlank": id := data["id"].(string) inf := data["data"].([]interface{}) fmt.Println("inf: ", inf) columns := connect.DBGetColumnNames("blank_" + id) var fields []interface{} for i := 0; i < len(inf); i++ { field := inf[i].(map[string]interface{}) fields = append(fields, field["value"].(string)) } query := connect.DBInsert("blank_"+id, columns[1:]) db := connect.DBConnect() stmt, err := db.Prepare(query) defer connect.DBClose(db, stmt) utils.HandleErr("[addBlank] Prepare: ", err) _, err = stmt.Exec(fields...) utils.HandleErr("[addBlank] Exec: ", err) ans := map[string]interface{}{"response": "ok"} res, err := json.Marshal(ans) utils.HandleErr("[Handle.Index] json.Marshal: ", err) fmt.Fprintf(this.Response, "%s", string(res)) } }