func handleReviewLogin(resp http.ResponseWriter, req *http.Request) {
email := public.EmailFilter(req.FormValue("email"))
password := req.FormValue("password")
if len(email) <= 0 || len(password) <= 0 {
r := public.SimpleResult{
Message: "Error",
Description: "Incorrect email or password",
}
public.ResponseStatusAsJson(resp, 403, &r)
return
}
//Check login status
if _, err := public.GetSessionReviewerId(req); err == nil {
r := public.SimpleResult{
Message: "Already Login",
Description: email,
}
public.ResponseOkAsJson(resp, &r)
return
}
reviewerDb := public.GetNewReviewerDatabase()
defer reviewerDb.Session.Close()
profiles := reviewerDb.C(REVIEWER_DB_PROFILE_COLLECTION)
q := profiles.Find(bson.M{"baseprofile.email": email})
reviewer := db.Reviewer{}
if q.One(&reviewer) == nil {
//Check password
if bcrypt.CompareHashAndPassword([]byte(reviewer.BaseProfile.AuthInfo.BcyptHash), []byte(password)) != nil {
r := public.SimpleResult{
Message: "Error",
Description: "Incorrect email or password",
}
public.ResponseStatusAsJson(resp, 403, &r)
return
}
if err := public.SetReviewerSessionValue(req, resp, public.REVIEWER_ID_SESSION_KEY, reviewer.Id.Hex()); err != nil {
public.LogE.Printf("Error setting session user id: %s\n", err.Error())
}
r := public.SimpleResult{
Message: "Login Successed",
Description: email,
}
public.ResponseOkAsJson(resp, &r)
} else {
r := public.SimpleResult{
Message: "Error",
Description: "Incorrect email or password",
}
public.ResponseStatusAsJson(resp, 403, &r)
return
}
}
func handleReviewRegister(resp http.ResponseWriter, req *http.Request) {
email := public.EmailFilter(req.FormValue("email"))
username := req.FormValue("username")
formalId := req.FormValue("formalId")
password := req.FormValue("password")
//Verify values first
var errorFields []string
if len(email) <= 0 {
errorFields = append(errorFields, "Email")
}
if len(username) <= 0 {
errorFields = append(errorFields, "Username")
}
if len(password) <= 0 {
errorFields = append(errorFields, "Password")
}
if len(formalId) != 10 {
errorFields = append(errorFields, "FormalId")
} else {
if match, _ := regexp.MatchString("[A-Z][12][0-9]{8}", formalId); match {
if !public.FormalIdVerifier(formalId) {
errorFields = append(errorFields, "FormalId")
}
} else {
errorFields = append(errorFields, "FormalId")
}
}
if len(errorFields) > 0 {
r := public.SimpleResult{
Message: "Error",
Description: "Wrong Format: " + strings.Join(errorFields, ","),
}
public.ResponseStatusAsJson(resp, 400, &r)
} else {
//Get thumbnail if exist
var thumb multipart.File = nil
var thumbHeader *multipart.FileHeader = nil
if f, h, err := req.FormFile("thumbnail"); err == nil && f != nil {
thumb = f
thumbHeader = h
}
reviewerDb := public.GetNewReviewerDatabase()
defer reviewerDb.Session.Close()
profile := reviewerDb.C(REVIEWER_DB_PROFILE_COLLECTION)
q := profile.Find(bson.M{"baseprofile.email": email})
if cnt, err := q.Count(); cnt != 0 || err != nil {
if err != nil {
r := public.SimpleResult{
Message: "Error",
Description: err.Error(),
}
public.ResponseStatusAsJson(resp, 500, &r)
} else {
//User exist
r := public.SimpleResult{
Message: "Error",
Description: "User Exists",
}
public.ResponseStatusAsJson(resp, 400, &r)
}
} else {
baseUser := db.User{
Email: email,
Username: username,
FormalId: formalId,
}
hash, _ := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost)
baseUser.AuthInfo = db.UserAuth{
BcryptCost: bcrypt.DefaultCost,
BcyptHash: string(hash),
}
//Store thumbnail
if thumb != nil {
defer thumb.Close()
if client, err := storage.GetNewStorageClient(); err == nil {
h := public.NewHashString()
objName := storage.PathJoin(storage.THUMBNAILS_FOLDER_NAME, h)
//Determine the extension
var ext string = ""
if thumbHeader != nil {
if segs := strings.Split(thumbHeader.Filename, "."); len(segs) > 1 {
ext = "." + segs[len(segs)-1]
objName = (objName + ext)
}
}
obj := client.GetDefaultBucket().Object(objName)
if attr, _ := obj.Attrs(client.Ctx); attr != nil {
if mimeStr := mime.TypeByExtension(ext); len(mimeStr) > 0 {
attr.ContentType = mimeStr
}
}
objWriter := obj.NewWriter(client.Ctx)
defer objWriter.Close()
_, err = io.Copy(objWriter, thumb)
if err == nil {
baseUser.Thumbnail = objName
}
}
}
newUser := db.Reviewer{
BaseProfile: baseUser,
}
if err := profile.Insert(&newUser); err != nil {
r := public.SimpleResult{
Message: "Register Failed",
Description: err.Error(),
}
public.ResponseStatusAsJson(resp, 400, &r)
} else {
if err := public.SetReviewerSessionValue(req, resp, public.REVIEWER_ID_SESSION_KEY, newUser.Id.Hex()); err != nil {
public.LogE.Printf("Error setting session user id: %s\n", err.Error())
}
r := public.SimpleResult{
Message: "Register Successed",
Description: email,
}
public.ResponseOkAsJson(resp, &r)
}
}
}
}
func handleGMLogin(resp http.ResponseWriter, req *http.Request) {
email := public.EmailFilter(req.FormValue("email"))
password := req.FormValue("password")
if len(email) <= 0 || len(password) <= 0 {
r := public.SimpleResult{
Message: "Error",
Description: "Incorrect email or password",
}
public.ResponseStatusAsJson(resp, 403, &r)
return
}
//Check login status
if _, err := public.GetSessionGMId(req); err == nil {
r := public.SimpleResult{
Message: "Already Login",
Description: email,
}
public.ResponseOkAsJson(resp, &r)
return
}
userDb := public.GetNewUserDatabase()
defer userDb.Session.Close()
profiles := userDb.C(USER_DB_PROFILE_COLLECTION)
q := profiles.Find(bson.M{"email": email})
user := db.User{}
if q.One(&user) == nil {
//Check password
if bcrypt.CompareHashAndPassword([]byte(user.AuthInfo.BcyptHash), []byte(password)) != nil {
r := public.SimpleResult{
Message: "Error",
Description: "Incorrect email or password",
}
public.ResponseStatusAsJson(resp, 403, &r)
return
}
//Check whether is GM
admin := userDb.C(USER_DB_GM_COLLECTION)
admin_q := admin.Find(bson.M{"userid": user.Id})
if n, _ := admin_q.Count(); n <= 0 {
//Not GM
public.ResponseStatusAsJson(resp, 403, &public.SimpleResult{
Message: "Error",
Description: "Not GM, YOU SHALL NOT PASS",
})
return
}
if err := public.SetGMSessionValue(req, resp, public.GM_ID_SESSION_KEY, user.Id.Hex()); err != nil {
public.LogE.Printf("Error setting session user id: %s\n", err.Error())
}
r := public.SimpleResult{
Message: "Login Successed",
Description: email,
}
public.ResponseOkAsJson(resp, &r)
} else {
r := public.SimpleResult{
Message: "Error",
Description: "Incorrect email or password",
}
public.ResponseStatusAsJson(resp, 403, &r)
return
}
}