2021-03-03 12:58:06 +00:00
|
|
|
package admin
|
|
|
|
|
|
|
|
|
|
import (
|
2021-03-04 14:09:14 +00:00
|
|
|
"errors"
|
2021-03-04 10:12:37 +00:00
|
|
|
"fmt"
|
2021-03-03 12:58:06 +00:00
|
|
|
"net/http"
|
2021-03-04 14:09:14 +00:00
|
|
|
"strconv"
|
2021-03-03 12:58:06 +00:00
|
|
|
|
2021-03-04 14:09:14 +00:00
|
|
|
"github.com/gorilla/csrf"
|
2021-03-03 12:58:06 +00:00
|
|
|
"go.mindeco.de/http/render"
|
|
|
|
|
|
2021-03-10 15:44:46 +00:00
|
|
|
"github.com/ssb-ngi-pointer/go-ssb-room/roomdb"
|
2021-03-04 14:09:14 +00:00
|
|
|
"github.com/ssb-ngi-pointer/go-ssb-room/web"
|
|
|
|
|
weberrors "github.com/ssb-ngi-pointer/go-ssb-room/web/errors"
|
2021-03-22 14:25:00 +00:00
|
|
|
"github.com/ssb-ngi-pointer/go-ssb-room/web/members"
|
2021-03-04 14:09:14 +00:00
|
|
|
"github.com/ssb-ngi-pointer/go-ssb-room/web/router"
|
2021-03-03 12:58:06 +00:00
|
|
|
)
|
|
|
|
|
|
2021-03-04 11:26:49 +00:00
|
|
|
type invitesHandler struct {
|
2021-03-03 12:58:06 +00:00
|
|
|
r *render.Renderer
|
|
|
|
|
|
2021-03-19 09:43:46 +00:00
|
|
|
db roomdb.InvitesService
|
2021-03-04 14:09:14 +00:00
|
|
|
|
|
|
|
|
domainName string
|
2021-03-03 12:58:06 +00:00
|
|
|
}
|
|
|
|
|
|
2021-03-04 11:26:49 +00:00
|
|
|
func (h invitesHandler) overview(rw http.ResponseWriter, req *http.Request) (interface{}, error) {
|
2021-03-03 12:58:06 +00:00
|
|
|
lst, err := h.db.List(req.Context())
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Reverse the slice to provide recent-to-oldest results
|
|
|
|
|
for i, j := 0, len(lst)-1; i < j; i, j = i+1, j-1 {
|
|
|
|
|
lst[i], lst[j] = lst[j], lst[i]
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-04 09:32:39 +00:00
|
|
|
pageData, err := paginate(lst, len(lst), req.URL.Query())
|
2021-03-03 12:58:06 +00:00
|
|
|
if err != nil {
|
2021-03-04 09:32:39 +00:00
|
|
|
return nil, err
|
2021-03-03 12:58:06 +00:00
|
|
|
}
|
|
|
|
|
|
2021-03-04 09:32:39 +00:00
|
|
|
pageData[csrf.TemplateTag] = csrf.TemplateField(req)
|
|
|
|
|
return pageData, nil
|
2021-03-03 12:58:06 +00:00
|
|
|
}
|
2021-03-04 10:12:37 +00:00
|
|
|
|
2021-03-04 14:09:14 +00:00
|
|
|
func (h invitesHandler) create(w http.ResponseWriter, req *http.Request) (interface{}, error) {
|
2021-03-04 10:12:37 +00:00
|
|
|
if req.Method != "POST" {
|
|
|
|
|
// TODO: proper error type
|
2021-03-04 14:09:14 +00:00
|
|
|
return nil, fmt.Errorf("bad request")
|
2021-03-04 10:12:37 +00:00
|
|
|
}
|
|
|
|
|
if err := req.ParseForm(); err != nil {
|
|
|
|
|
// TODO: proper error type
|
2021-03-04 14:09:14 +00:00
|
|
|
return nil, fmt.Errorf("bad request: %w", err)
|
2021-03-04 10:12:37 +00:00
|
|
|
}
|
|
|
|
|
|
2021-03-22 14:25:00 +00:00
|
|
|
member := members.FromContext(req.Context())
|
|
|
|
|
if member == nil {
|
2021-03-04 14:09:14 +00:00
|
|
|
return nil, fmt.Errorf("warning: no user session for elevated access request")
|
2021-03-04 10:14:59 +00:00
|
|
|
}
|
2021-03-04 10:12:37 +00:00
|
|
|
|
2021-03-29 08:23:03 +00:00
|
|
|
token, err := h.db.Create(req.Context(), member.ID)
|
2021-03-04 10:12:37 +00:00
|
|
|
if err != nil {
|
2021-03-04 14:09:14 +00:00
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
urlTo := web.NewURLTo(router.CompleteApp())
|
2021-03-26 19:08:13 +00:00
|
|
|
facadeURL := urlTo(router.CompleteInviteFacade, "token", token)
|
|
|
|
|
facadeURL.Host = h.domainName
|
|
|
|
|
facadeURL.Scheme = "https"
|
2021-03-04 14:09:14 +00:00
|
|
|
|
|
|
|
|
return map[string]interface{}{
|
2021-03-26 19:08:13 +00:00
|
|
|
"FacadeURL": facadeURL.String(),
|
2021-03-04 14:09:14 +00:00
|
|
|
}, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (h invitesHandler) revokeConfirm(rw http.ResponseWriter, req *http.Request) (interface{}, error) {
|
|
|
|
|
id, err := strconv.ParseInt(req.URL.Query().Get("id"), 10, 64)
|
|
|
|
|
if err != nil {
|
|
|
|
|
err = weberrors.ErrBadRequest{Where: "ID", Details: err}
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-05 09:46:59 +00:00
|
|
|
invite, err := h.db.GetByID(req.Context(), id)
|
2021-03-04 14:09:14 +00:00
|
|
|
if err != nil {
|
2021-03-10 15:44:46 +00:00
|
|
|
if errors.Is(err, roomdb.ErrNotFound) {
|
2021-03-05 09:46:59 +00:00
|
|
|
return nil, weberrors.ErrNotFound{What: "invite"}
|
2021-03-04 14:09:14 +00:00
|
|
|
}
|
2021-03-05 09:46:59 +00:00
|
|
|
return nil, err
|
2021-03-04 14:09:14 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return map[string]interface{}{
|
|
|
|
|
"Invite": invite,
|
|
|
|
|
csrf.TemplateTag: csrf.TemplateField(req),
|
|
|
|
|
}, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const redirectToInvites = "/admin/invites"
|
|
|
|
|
|
|
|
|
|
func (h invitesHandler) revoke(rw http.ResponseWriter, req *http.Request) {
|
|
|
|
|
err := req.ParseForm()
|
|
|
|
|
if err != nil {
|
|
|
|
|
err = weberrors.ErrBadRequest{Where: "Form data", Details: err}
|
|
|
|
|
// TODO "flash" errors
|
|
|
|
|
http.Redirect(rw, req, redirectToInvites, http.StatusFound)
|
2021-03-04 10:12:37 +00:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2021-03-04 14:09:14 +00:00
|
|
|
id, err := strconv.ParseInt(req.FormValue("id"), 10, 64)
|
|
|
|
|
if err != nil {
|
|
|
|
|
err = weberrors.ErrBadRequest{Where: "ID", Details: err}
|
|
|
|
|
// TODO "flash" errors
|
|
|
|
|
http.Redirect(rw, req, redirectToInvites, http.StatusFound)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
status := http.StatusFound
|
|
|
|
|
err = h.db.Revoke(req.Context(), id)
|
|
|
|
|
if err != nil {
|
2021-03-10 15:44:46 +00:00
|
|
|
if !errors.Is(err, roomdb.ErrNotFound) {
|
2021-03-04 14:09:14 +00:00
|
|
|
// TODO "flash" errors
|
|
|
|
|
h.r.Error(rw, req, http.StatusInternalServerError, err)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
status = http.StatusNotFound
|
|
|
|
|
}
|
2021-03-04 10:12:37 +00:00
|
|
|
|
2021-03-04 14:09:14 +00:00
|
|
|
http.Redirect(rw, req, redirectToInvites, status)
|
2021-03-04 10:12:37 +00:00
|
|
|
}
|
