scsusers/main.go

package scsusers

import (
	"database/sql"
	"fmt"
	"html/template"
	"log"
	"strings"

	"github.com/jmoiron/sqlx"
	"golang.org/x/crypto/bcrypt"
)

type templates struct {
	Registration *template.Template
	Alert        *template.Template
	Recovery     *template.Template
	TwoFA        *template.Template
}

type config struct {
	SiteName    string
	FromEmail   string
	Templates   templates
	SMTPServer  string
	db          *sqlx.DB
	Testing     bool
	TablePrefix string
}

type UserData struct {
	UserID   int64  `db:"id"`
	Username string `db:"username"`
	Password string `db:"password"`

	Meta map[string]metadata
}

type metadata struct {
	Key   string `db:"meta_key"`
	Value string `db:"meta_value"`
	ID    int64  `db:"id"`
}

var c config

func Init(dbin *sqlx.DB, tp, sitename, fromaddr, smtpserver string, testing bool) {
	c.db = dbin
	c.TablePrefix = tp
	c.SiteName = sitename
	c.FromEmail = fromaddr
	c.SMTPServer = smtpserver
	c.Testing = testing

	SetRegistrationTemplate("")
	SetAlertTemplate("")
	SetRecoveryTemplate("")
	Set2faTemplate("")
}

func UsernameAvailable(username string) bool {
	if len(username) == 0 {
		return false
	}
	var tmp string
	username = strings.ToLower(username)

	q := fmt.Sprintf("select username from %s_users where username = ?", c.TablePrefix)
	err := c.db.Get(&tmp, q, username)
	if err == sql.ErrNoRows {
		return true
	}
	if err != nil {
		log.Printf("UsernameAvailable returned error: " + err.Error() + " Query was " + q)
		return false
	}
	return false
}

/* Check for username availability, add to database, send email */

func Register(username, email, ip string) error {
	if !UsernameAvailable(username) {
		return fmt.Errorf("Username %s is not available", username)
	}
	username = strings.ToLower(username)

	pass := generatePassword(16)
	crypt, err := bcrypt.GenerateFromPassword(pass, 10)
	if err != nil {
		log.Printf("scsusers.Register: Bcrypt GenerateFromPassword failed? Pass is %s and error is %s\n", pass, err.Error())
		return fmt.Errorf("Failed to generate password")
	}
	_, err = c.db.Query(fmt.Sprintf("insert into %s_users (username, password) VALUES (?,?)", c.TablePrefix), username, crypt)
	if err != nil {
		log.Printf("scsusers.Register: insert failed: %s\n", err.Error())
		return fmt.Errorf("failed to insert user")
	}

	if SendRegistrationEmail(email, username, string(pass)) {
		log.Printf("scsusers.Register: New user registration: %s from %s\n", username, ip)
		return nil
	}
	log.Printf("scsusers.Register: Failed to send registration email, deleting user %s\n", username)
	q := fmt.Sprintf("delete from %s_users where username = ? AND password=?", c.TablePrefix)
	_, err = c.db.Exec(q, username, string(crypt))
	if err != nil {
		log.Printf("scsusers.Register: Failed to delete new user %s: %s\n", username, err.Error())
	}
	return fmt.Errorf("failed to send registration email")
}

func NewUser() *UserData {
	var u UserData
	u.Meta = make(map[string]metadata)
	return &u
}

func Get(username string) (*UserData, bool) {
	u := NewUser()
	q := fmt.Sprintf("select username, password, id from %s_users where username=?", c.TablePrefix)
	err := c.db.Get(u, q, username)
	if err != nil {
		if err == sql.ErrNoRows {
			return nil, false
		}
		log.Printf("scsusers.Get: %s", err.Error())
		return nil, false
	}
	ok := u.LoadMeta()
	return u, ok
}

func GetById(id int64) (*UserData, bool) {
	u := NewUser()
	q := fmt.Sprintf("select username, password, id from %s_users where id=?", c.TablePrefix)
	err := c.db.Get(u, q, id)
	if err != nil {
		if err == sql.ErrNoRows {
			return nil, false
		}
		log.Printf("scsusers.GetById: %s", err.Error())
		return nil, false
	}
	ok := u.LoadMeta()
	return u, ok
}

func GetUsersByMeta(key string, value string) []string {
	var u []string
	var userids []int64
	q := fmt.Sprintf("select user from %s_meta where meta_key=? AND meta_value=?", c.TablePrefix)
	err := c.db.Select(&userids, q, key, value)
	if err != nil && err != sql.ErrNoRows {
		log.Printf("scsusers.getusersByMeta: %s", err)
		return nil
	}
	if len(userids) == 0 {
		return nil
	}
	q = fmt.Sprintf("select username from %s_users where id IN (?)", c.TablePrefix)
	query, args, err := sqlx.In(q, userids)
	if err != nil {
		log.Printf("scsusers.getusersbymeta: %s", err.Error())
		return nil
	}
	query = c.db.Rebind(query)
	err = c.db.Select(&u, query, args...)
	if err != nil {
		log.Printf("scsusers.getusersbymeta: %s", err.Error())
		return nil
	}
	return u
}

func GetUserid(username string) int64 {
	var i int64
	username = strings.ToLower(username)

	q := fmt.Sprintf("select userid from %s_users where username = ?", c.TablePrefix)
	err := c.db.Get(&i, q, username)
	if err != nil {
		log.Printf("scsusers.getUserId: Error loading user: %s : %s\n", username, err.Error())
		return 0
	}
	return i
}
Adding code 2018-12-25 19:22:13 +00:00			`package scsusers`

			`import (`
			`"database/sql"`
			`"fmt"`
			`"html/template"`
			`"log"`
			`"strings"`
limit bumps to 1 record 2020-12-19 01:41:28 +00:00
			`"github.com/jmoiron/sqlx"`
			`"golang.org/x/crypto/bcrypt"`
Add bump with ip 2020-06-04 20:02:46 +00:00			`)`
Ready for first test? 2018-12-27 21:49:59 +00:00
Adding code 2018-12-25 19:22:13 +00:00			`type templates struct {`
			`Registration *template.Template`
			`Alert *template.Template`
			`Recovery *template.Template`
validate 2fa. more cleanups 2023-09-26 20:45:19 +00:00			`TwoFA *template.Template`
Adding code 2018-12-25 19:22:13 +00:00			`}`

			`type config struct {`
			`SiteName string`
			`FromEmail string`
			`Templates templates`
Add bump with ip 2020-06-04 20:02:46 +00:00			`SMTPServer string`
Adding code 2018-12-25 19:22:13 +00:00			`db *sqlx.DB`
export testing 2024-01-02 15:13:52 +00:00			`Testing bool`
Adding code 2018-12-25 19:22:13 +00:00			`TablePrefix string`
			`}`

Export bump 2018-12-28 19:33:36 +00:00			`type UserData struct {`
updates 2023-09-19 22:01:41 +00:00			UserID int64 `db:"id"`
			Username string `db:"username"`
			Password string `db:"password"`

			`Meta map[string]metadata`
			`}`

			`type metadata struct {`
			Key string `db:"meta_key"`
			Value string `db:"meta_value"`
			ID int64 `db:"id"`
Export bump 2018-12-28 19:33:36 +00:00			`}`

Adding code 2018-12-25 19:22:13 +00:00			`var c config`

export testing 2024-01-02 15:15:57 +00:00			`func Init(dbin *sqlx.DB, tp, sitename, fromaddr, smtpserver string, testing bool) {`
Adding code 2018-12-25 19:22:13 +00:00			`c.db = dbin`
			`c.TablePrefix = tp`
			`c.SiteName = sitename`
			`c.FromEmail = fromaddr`
Add bump with ip 2020-06-04 20:02:46 +00:00			`c.SMTPServer = smtpserver`
generic set template 2024-01-11 17:02:16 +00:00			`c.Testing = testing`
Adding code 2018-12-25 19:22:13 +00:00
			`SetRegistrationTemplate("")`
			`SetAlertTemplate("")`
			`SetRecoveryTemplate("")`
some 2fa, split main into multiple files 2023-09-26 20:36:03 +00:00			`Set2faTemplate("")`
Adding code 2018-12-25 19:22:13 +00:00			`}`

			`func UsernameAvailable(username string) bool {`
Add bump with ip 2020-06-04 20:02:46 +00:00			`if len(username) == 0 {`
Export bump 2018-12-28 19:33:36 +00:00			`return false`
			`}`
Some case fixes 2020-07-18 11:55:19 +00:00			`var tmp string`
lose a temp variable 2020-07-18 12:03:31 +00:00			`username = strings.ToLower(username)`
Some case fixes 2020-07-18 11:55:19 +00:00
more 2023-10-09 15:42:29 +00:00			`q := fmt.Sprintf("select username from %s_users where username = ?", c.TablePrefix)`
lose a temp variable 2020-07-18 12:03:31 +00:00			`err := c.db.Get(&tmp, q, username)`
Adding code 2018-12-25 19:22:13 +00:00			`if err == sql.ErrNoRows {`
			`return true`
			`}`
Adjustments 2018-12-27 22:09:23 +00:00			`if err != nil {`
			`log.Printf("UsernameAvailable returned error: " + err.Error() + " Query was " + q)`
			`return false`
			`}`
Adding code 2018-12-25 19:22:13 +00:00			`return false`
			`}`

			`/* Check for username availability, add to database, send email */`

register return error instead of bool 2024-03-01 15:37:41 +00:00			`func Register(username, email, ip string) error {`
Adding code 2018-12-25 19:22:13 +00:00			`if !UsernameAvailable(username) {`
register return error instead of bool 2024-03-01 15:37:41 +00:00			`return fmt.Errorf("Username %s is not available", username)`
Adding code 2018-12-25 19:22:13 +00:00			`}`
lose a temp variable 2020-07-18 12:03:31 +00:00			`username = strings.ToLower(username)`
Some case fixes 2020-07-18 11:55:19 +00:00
beef up password generation 2023-10-07 13:22:30 +00:00			`pass := generatePassword(16)`
Adjustments 2018-12-27 22:09:23 +00:00			`crypt, err := bcrypt.GenerateFromPassword(pass, 10)`
Adding code 2018-12-25 19:22:13 +00:00			`if err != nil {`
Clean up log output. Add account status check 2019-01-02 15:21:05 +00:00			`log.Printf("scsusers.Register: Bcrypt GenerateFromPassword failed? Pass is %s and error is %s\n", pass, err.Error())`
register return error instead of bool 2024-03-01 15:37:41 +00:00			`return fmt.Errorf("Failed to generate password")`
Adding code 2018-12-25 19:22:13 +00:00			`}`
more 2023-10-09 15:42:29 +00:00			`_, err = c.db.Query(fmt.Sprintf("insert into %s_users (username, password) VALUES (?,?)", c.TablePrefix), username, crypt)`
Adding code 2018-12-25 19:22:13 +00:00			`if err != nil {`
Clean up log output. Add account status check 2019-01-02 15:21:05 +00:00			`log.Printf("scsusers.Register: insert failed: %s\n", err.Error())`
register return error instead of bool 2024-03-01 15:40:12 +00:00			`return fmt.Errorf("failed to insert user")`
Adding code 2018-12-25 19:22:13 +00:00			`}`
move testing to just alerts 2024-01-10 19:35:09 +00:00
lets enable alert emails 2020-07-23 22:12:44 +00:00			`if SendRegistrationEmail(email, username, string(pass)) {`
Clean up log output. Add account status check 2019-01-02 15:21:05 +00:00			`log.Printf("scsusers.Register: New user registration: %s from %s\n", username, ip)`
register return error instead of bool 2024-03-01 15:37:41 +00:00			`return nil`
Adjustments 2018-12-27 22:09:23 +00:00			`}`
Clean up log output. Add account status check 2019-01-02 15:21:05 +00:00			`log.Printf("scsusers.Register: Failed to send registration email, deleting user %s\n", username)`
more 2023-10-09 15:42:29 +00:00			`q := fmt.Sprintf("delete from %s_users where username = ? AND password=?", c.TablePrefix)`
lose a temp variable 2020-07-18 12:03:31 +00:00			`_, err = c.db.Exec(q, username, string(crypt))`
Adjustments 2018-12-27 22:09:23 +00:00			`if err != nil {`
Clean up log output. Add account status check 2019-01-02 15:21:05 +00:00			`log.Printf("scsusers.Register: Failed to delete new user %s: %s\n", username, err.Error())`
Adjustments 2018-12-27 22:09:23 +00:00			`}`
register return error instead of bool 2024-03-01 15:40:12 +00:00			`return fmt.Errorf("failed to send registration email")`
Adding code 2018-12-25 19:22:13 +00:00			`}`

updates 2023-09-19 22:01:41 +00:00			`func NewUser() *UserData {`
			`var u UserData`
			`u.Meta = make(map[string]metadata)`
			`return &u`
			`}`

			`func Get(username string) (*UserData, bool) {`
			`u := NewUser()`
more 2023-10-09 15:42:29 +00:00			`q := fmt.Sprintf("select username, password, id from %s_users where username=?", c.TablePrefix)`
select fot struct 2023-09-19 22:12:55 +00:00			`err := c.db.Get(u, q, username)`
Ready for first test? 2018-12-27 21:49:59 +00:00			`if err != nil {`
updates 2023-09-19 22:01:41 +00:00			`if err == sql.ErrNoRows {`
			`return nil, false`
			`}`
			`log.Printf("scsusers.Get: %s", err.Error())`
			`return nil, false`
			`}`
more 2023-10-09 15:36:43 +00:00			`ok := u.LoadMeta()`
			`return u, ok`
updates 2023-09-19 22:01:41 +00:00			`}`

get by id 2023-11-29 23:06:29 +00:00			`func GetById(id int64) (*UserData, bool) {`
			`u := NewUser()`
			`q := fmt.Sprintf("select username, password, id from %s_users where id=?", c.TablePrefix)`
			`err := c.db.Get(u, q, id)`
			`if err != nil {`
			`if err == sql.ErrNoRows {`
			`return nil, false`
			`}`
add suspend and unsuspend calls 2023-12-13 20:46:02 +00:00			`log.Printf("scsusers.GetById: %s", err.Error())`
get by id 2023-11-29 23:06:29 +00:00			`return nil, false`
			`}`
			`ok := u.LoadMeta()`
			`return u, ok`
			`}`

			`func GetUsersByMeta(key string, value string) []string {`
			`var u []string`
			`var userids []int64`
			`q := fmt.Sprintf("select user from %s_meta where meta_key=? AND meta_value=?", c.TablePrefix)`
			`err := c.db.Select(&userids, q, key, value)`
			`if err != nil && err != sql.ErrNoRows {`
			`log.Printf("scsusers.getusersByMeta: %s", err)`
			`return nil`
			`}`
			`if len(userids) == 0 {`
			`return nil`
			`}`
			`q = fmt.Sprintf("select username from %s_users where id IN (?)", c.TablePrefix)`
			`query, args, err := sqlx.In(q, userids)`
			`if err != nil {`
			`log.Printf("scsusers.getusersbymeta: %s", err.Error())`
			`return nil`
			`}`
			`query = c.db.Rebind(query)`
			`err = c.db.Select(&u, query, args...)`
			`if err != nil {`
			`log.Printf("scsusers.getusersbymeta: %s", err.Error())`
			`return nil`
			`}`
			`return u`
			`}`

Add Getuserid 2019-01-11 21:39:47 +00:00			`func GetUserid(username string) int64 {`
			`var i int64`
lose a temp variable 2020-07-18 12:03:31 +00:00			`username = strings.ToLower(username)`
Some case fixes 2020-07-18 11:55:19 +00:00
more 2023-10-09 15:42:29 +00:00			`q := fmt.Sprintf("select userid from %s_users where username = ?", c.TablePrefix)`
lose a temp variable 2020-07-18 12:03:31 +00:00			`err := c.db.Get(&i, q, username)`
Add Getuserid 2019-01-11 21:39:47 +00:00			`if err != nil {`
			`log.Printf("scsusers.getUserId: Error loading user: %s : %s\n", username, err.Error())`
			`return 0`
			`}`
			`return i`
			`}`