guichet/login.go

/*
login handles login and current-user verification
*/

package main

import (
	"fmt"
	"log"
	"net/http"
	"strings"

	"github.com/go-ldap/ldap/v3"
)

type LoginInfo struct {
	Username string
	DN       string
	Password string
}

type LoginStatus struct {
	Info      *LoginInfo
	conn      *ldap.Conn
	UserEntry *ldap.Entry
	CanAdmin  bool
	CanInvite bool
}

func (login *LoginStatus) WelcomeName() string {
	ret := login.UserEntry.GetAttributeValue("givenName")
	if ret == "" {
		ret = login.UserEntry.GetAttributeValue("displayName")
	}
	if ret == "" {
		ret = login.Info.Username
	}
	return ret
}

func handleLogout(w http.ResponseWriter, r *http.Request) {

	err := logout(w, r)
	if err != nil {
		http.Error(w, err.Error(), http.StatusInternalServerError)
		return
	}

	http.Redirect(w, r, "/", http.StatusFound)
}

type LoginFormData struct {
	Username     string
	WrongUser    bool
	WrongPass    bool
	ErrorMessage string
	LoggedIn     bool
	CanAdmin     bool
}

func handleLogin(w http.ResponseWriter, r *http.Request) *LoginInfo {
	templateLogin := getTemplate("login.html")

	loginStatus := checkLogin(w, r)
	if loginStatus != nil {
		handleHome(w, r)
		return loginStatus.Info
	}

	if r.Method == "GET" {
		templateLogin.Execute(w, LoginFormData{CanAdmin: false})
		return nil
	} else if r.Method == "POST" {
		// log.Printf("%v", "Parsing Form handleLogin")
		r.ParseForm()

		username := strings.Join(r.Form["username"], "")
		password := strings.Join(r.Form["password"], "")
		user_dn := fmt.Sprintf("%s=%s,%s", config.UserNameAttr, username, config.UserBaseDN)

		// log.Printf("%v", user_dn)
		// log.Printf("%v", username)

		if strings.EqualFold(username, config.AdminAccount) {
			user_dn = username
		}
		loginInfo, err := doLogin(w, r, username, user_dn, password)
		// log.Printf("%v", loginInfo)
		if err != nil {
			data := &LoginFormData{
				Username: username,
				LoggedIn: false,
				CanAdmin: false,
			}
			if ldap.IsErrorWithCode(err, ldap.LDAPResultInvalidCredentials) {
				data.WrongPass = true
			} else if ldap.IsErrorWithCode(err, ldap.LDAPResultNoSuchObject) {
				data.WrongUser = true
			} else {
				log.Printf("%v", err)
				log.Printf("%v", user_dn)
				log.Printf("%v", username)
				data.ErrorMessage = err.Error()
			}
			templateLogin.Execute(w, data)
		}
		return loginInfo

	} else {
		http.Error(w, "Unsupported method", http.StatusBadRequest)
		return nil
	}
}

func doLogin(w http.ResponseWriter, r *http.Request, username string, user_dn string, password string) (*LoginInfo, error) {
	l, _ := ldapOpen(w)

	err := l.Bind(user_dn, password)
	if err != nil {
		log.Printf("doLogin : %v", err)
		log.Printf("doLogin : %v", user_dn)
		return nil, err
	}

	// Successfully logged in, save it to session
	session, err := store.Get(r, SESSION_NAME)
	if err != nil {
		session, _ = store.New(r, SESSION_NAME)
	}

	session.Values["login_username"] = username
	session.Values["login_password"] = password
	session.Values["login_dn"] = user_dn

	err = session.Save(r, w)
	if err != nil {
		log.Printf("doLogin Session Save: %v", err)
		http.Error(w, err.Error(), http.StatusInternalServerError)
		return nil, err
	}

	LoginInfo := LoginInfo{
		DN:       user_dn,
		Username: username,
		Password: password,
	}

	return &LoginInfo, nil
}
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00			`/*`
			`login handles login and current-user verification`
			`*/`

			`package main`

			`import (`
			`"fmt"`
Factoring the model user and correcting password 2023-07-22 05:48:18 +00:00			`"log"`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00			`"net/http"`
			`"strings"`

			`"github.com/go-ldap/ldap/v3"`
			`)`

			`type LoginInfo struct {`
			`Username string`
			`DN string`
			`Password string`
			`}`

			`type LoginStatus struct {`
			`Info *LoginInfo`
			`conn *ldap.Conn`
			`UserEntry *ldap.Entry`
			`CanAdmin bool`
			`CanInvite bool`
			`}`

			`func (login *LoginStatus) WelcomeName() string {`
			`ret := login.UserEntry.GetAttributeValue("givenName")`
			`if ret == "" {`
			`ret = login.UserEntry.GetAttributeValue("displayName")`
			`}`
			`if ret == "" {`
			`ret = login.Info.Username`
			`}`
			`return ret`
			`}`

			`func handleLogout(w http.ResponseWriter, r *http.Request) {`

Fixed Change Password Bug 2023-07-25 12:13:14 +00:00			`err := logout(w, r)`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00			`if err != nil {`
			`http.Error(w, err.Error(), http.StatusInternalServerError)`
			`return`
			`}`

			`http.Redirect(w, r, "/", http.StatusFound)`
			`}`

			`type LoginFormData struct {`
			`Username string`
			`WrongUser bool`
			`WrongPass bool`
			`ErrorMessage string`
Fixed Change Password Bug 2023-07-24 14:28:22 +00:00			`LoggedIn bool`
Menu system conform / propagation CanAdmin 2023-07-24 09:05:05 +00:00			`CanAdmin bool`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00			`}`

			`func handleLogin(w http.ResponseWriter, r http.Request) LoginInfo {`
			`templateLogin := getTemplate("login.html")`

Fixed Change Password Bug 2023-07-25 12:13:14 +00:00			`loginStatus := checkLogin(w, r)`
			`if loginStatus != nil {`
			`handleHome(w, r)`
			`return loginStatus.Info`
			`}`

Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00			`if r.Method == "GET" {`
Menu system conform / propagation CanAdmin 2023-07-24 09:12:46 +00:00			`templateLogin.Execute(w, LoginFormData{CanAdmin: false})`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00			`return nil`
			`} else if r.Method == "POST" {`
Factoring the model user and correcting password 2023-07-22 08:18:05 +00:00			`// log.Printf("%v", "Parsing Form handleLogin")`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00			`r.ParseForm()`

			`username := strings.Join(r.Form["username"], "")`
			`password := strings.Join(r.Form["password"], "")`
			`user_dn := fmt.Sprintf("%s=%s,%s", config.UserNameAttr, username, config.UserBaseDN)`
Implementing Activate User 2023-07-21 08:16:51 +00:00
Factoring the model user and correcting password 2023-07-22 08:18:05 +00:00			`// log.Printf("%v", user_dn)`
			`// log.Printf("%v", username)`
Factoring the model user and correcting password 2023-07-22 05:53:21 +00:00
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00			`if strings.EqualFold(username, config.AdminAccount) {`
			`user_dn = username`
			`}`
Implementing Activate User 2023-07-21 11:52:05 +00:00			`loginInfo, err := doLogin(w, r, username, user_dn, password)`
Factoring the model user and correcting password 2023-07-22 08:18:05 +00:00			`// log.Printf("%v", loginInfo)`
Implementing Activate User 2023-07-21 08:30:17 +00:00			`if err != nil {`
			`data := &LoginFormData{`
			`Username: username,`
Fixed Change Password Bug 2023-07-24 14:28:22 +00:00			`LoggedIn: false,`
Menu system conform / propagation CanAdmin 2023-07-24 09:12:46 +00:00			`CanAdmin: false,`
Implementing Activate User 2023-07-21 08:30:17 +00:00			`}`
			`if ldap.IsErrorWithCode(err, ldap.LDAPResultInvalidCredentials) {`
			`data.WrongPass = true`
			`} else if ldap.IsErrorWithCode(err, ldap.LDAPResultNoSuchObject) {`
			`data.WrongUser = true`
			`} else {`
Factoring the model user and correcting password 2023-07-22 05:50:45 +00:00			`log.Printf("%v", err)`
			`log.Printf("%v", user_dn)`
			`log.Printf("%v", username)`
Implementing Activate User 2023-07-21 08:30:17 +00:00			`data.ErrorMessage = err.Error()`
			`}`
			`templateLogin.Execute(w, data)`
			`}`
Implementing Activate User 2023-07-21 08:26:35 +00:00			`return loginInfo`
Implementing Activate User 2023-07-21 08:22:23 +00:00
Implementing Activate User 2023-07-21 08:16:51 +00:00			`} else {`
			`http.Error(w, "Unsupported method", http.StatusBadRequest)`
			`return nil`
			`}`
			`}`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00
Implementing Activate User 2023-07-21 11:50:34 +00:00			`func doLogin(w http.ResponseWriter, r http.Request, username string, user_dn string, password string) (LoginInfo, error) {`
Implementing Activate User 2023-07-21 12:15:44 +00:00			`l, _ := ldapOpen(w)`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00
Implementing Activate User 2023-07-21 08:16:51 +00:00			`err := l.Bind(user_dn, password)`
Implementing Activate User 2023-07-21 08:30:17 +00:00			`if err != nil {`
Factoring the model user and correcting password 2023-07-22 08:18:05 +00:00			`log.Printf("doLogin : %v", err)`
			`log.Printf("doLogin : %v", user_dn)`
Implementing Activate User 2023-07-21 11:50:34 +00:00			`return nil, err`
Implementing Activate User 2023-07-21 08:16:51 +00:00			`}`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00
Implementing Activate User 2023-07-21 08:16:51 +00:00			`// Successfully logged in, save it to session`
			`session, err := store.Get(r, SESSION_NAME)`
			`if err != nil {`
			`session, _ = store.New(r, SESSION_NAME)`
			`}`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00
Implementing Activate User 2023-07-21 08:16:51 +00:00			`session.Values["login_username"] = username`
			`session.Values["login_password"] = password`
			`session.Values["login_dn"] = user_dn`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00
Implementing Activate User 2023-07-21 08:16:51 +00:00			`err = session.Save(r, w)`
			`if err != nil {`
Factoring the model user and correcting password 2023-07-22 08:18:05 +00:00			`log.Printf("doLogin Session Save: %v", err)`
Implementing Activate User 2023-07-21 08:16:51 +00:00			`http.Error(w, err.Error(), http.StatusInternalServerError)`
Implementing Activate User 2023-07-21 11:50:34 +00:00			`return nil, err`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00			`}`
Implementing Activate User 2023-07-21 08:16:51 +00:00
Implementing Activate User 2023-07-21 08:30:17 +00:00			`LoginInfo := LoginInfo{`
Implementing Activate User 2023-07-21 08:16:51 +00:00			`DN: user_dn,`
			`Username: username,`
			`Password: password,`
			`}`

Implementing Activate User 2023-07-21 11:50:34 +00:00			`return &LoginInfo, nil`
Refactoring into login.go and config.go 2023-07-21 04:23:52 +00:00			`}`