portal/controller/account.go

package controller

import (
	"crypto/ed25519"
	"encoding/hex"
	"errors"
	"git.lumeweb.com/LumeWeb/portal/db"
	"git.lumeweb.com/LumeWeb/portal/model"
	_validator "git.lumeweb.com/LumeWeb/portal/validator"
	"github.com/go-playground/validator/v10"
	"github.com/kataras/iris/v12"
	"golang.org/x/crypto/bcrypt"
	"gorm.io/gorm"
	"reflect"
)

type AccountController struct {
	Ctx iris.Context
}

type RegisterRequest struct {
	Email    string `json:"email" validate:"required"`
	Password string `json:"password"`
	Pubkey   string `json:"pubkey"`
}

func init() {
	jsonValidator := _validator.Get()

	jsonValidator.RegisterStructValidation(ValidateRegisterRequest, RegisterRequest{})
}

func ValidateRegisterRequest(structLevel validator.StructLevel) {

	request := structLevel.Current().Interface().(RegisterRequest)

	pubkey := len(request.Pubkey) == 0
	pass := len(request.Password) == 0

	if pubkey == pass {
		structLevel.ReportError(reflect.ValueOf(request.Email), "email", "Email", "emailorpubkey", "")
		structLevel.ReportError(reflect.ValueOf(request.Pubkey), "pubkey", "Pubkey", "emailorpubkey", "")
	}

	if !pubkey {
		pubkeyBytes, err := hex.DecodeString(request.Pubkey)
		if err != nil || len(pubkeyBytes) != ed25519.PublicKeySize {
			structLevel.ReportError(reflect.ValueOf(request.Pubkey), "pubkey", "Pubkey", "pubkey", "")
			return
		}
	}

}

func hashPassword(password string) (string, error) {

	// Generate a new bcrypt hash from the provided password.
	hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost)
	if err != nil {
		return "", err
	}

	// Convert the hashed password to a string and return it.
	return string(hashedPassword), nil
}

func (a *AccountController) PostRegister() {
	var r RegisterRequest

	if err := a.Ctx.ReadJSON(&r); err != nil {
		a.Ctx.StopWithError(iris.StatusBadRequest, err)
		return
	}

	// Check if an account with the same email address already exists.
	existingAccount := model.Account{}
	err := db.Get().Where("email = ?", r.Email).First(&existingAccount).Error
	if err == nil {
		// An account with the same email address already exists.
		// Return an error response to the client.
		a.Ctx.StopWithError(iris.StatusConflict, errors.New("an account with this email address already exists"))
		return
	} else if !errors.Is(err, gorm.ErrRecordNotFound) {
		// An unexpected error occurred while querying the database.
		// Return an error response to the client.
		a.Ctx.StopWithError(iris.StatusInternalServerError, err)
		return
	}

	// Create a new Account model with the provided email and hashed password.
	account := model.Account{
		Email: r.Email,
	}

	// Hash the password before saving it to the database.
	if len(r.Password) > 0 {
		hashedPassword, err := hashPassword(r.Password)
		if err != nil {
			a.Ctx.StopWithError(iris.StatusInternalServerError, err)
			return
		}

		account.Password = &hashedPassword
	}

	err = db.Get().Transaction(func(tx *gorm.DB) error {
		// do some database operations in the transaction (use 'tx' from this point, not 'db')
		if err := tx.Create(&account).Error; err != nil {
			return err
		}

		if len(r.Pubkey) > 0 {
			if err := tx.Create(&model.Key{Account: account, Pubkey: r.Pubkey}).Error; err != nil {
				return err
			}
		}

		// return nil will commit the whole transaction
		return nil
	})
	if err != nil {
		a.Ctx.StopWithError(iris.StatusInternalServerError, err)
		return
	}

	// Return a success response to the client.
	a.Ctx.StatusCode(iris.StatusCreated)
}
refactor: rename services to controllers 2023-05-10 11:07:56 +00:00			`package controller`
feat: wip version 2023-04-29 17:38:21 +00:00
			`import (`
feat: add more validation, and put account creation, with optional pubkey in a transaction 2023-04-30 08:48:56 +00:00			`"crypto/ed25519"`
			`"encoding/hex"`
feat: wip version 2023-04-29 17:38:21 +00:00			`"errors"`
			`"git.lumeweb.com/LumeWeb/portal/db"`
			`"git.lumeweb.com/LumeWeb/portal/model"`
feat: add validation to account register 2023-04-30 08:09:24 +00:00			`_validator "git.lumeweb.com/LumeWeb/portal/validator"`
			`"github.com/go-playground/validator/v10"`
feat: wip version 2023-04-29 17:38:21 +00:00			`"github.com/kataras/iris/v12"`
			`"golang.org/x/crypto/bcrypt"`
			`"gorm.io/gorm"`
feat: add validation to account register 2023-04-30 08:09:24 +00:00			`"reflect"`
feat: wip version 2023-04-29 17:38:21 +00:00			`)`

refactor: rename services to controllers 2023-05-10 11:07:56 +00:00			`type AccountController struct {`
fix: Ctx must be public 2023-04-30 07:29:24 +00:00			`Ctx iris.Context`
feat: wip version 2023-04-29 17:38:21 +00:00			`}`

			`type RegisterRequest struct {`
feat: add validation to account register 2023-04-30 08:09:24 +00:00			Email string `json:"email" validate:"required"`
feat: wip version 2023-04-29 17:38:21 +00:00			Password string `json:"password"`
feat: add more validation, and put account creation, with optional pubkey in a transaction 2023-04-30 08:48:56 +00:00			Pubkey string `json:"pubkey"`
feat: wip version 2023-04-29 17:38:21 +00:00			`}`

feat: add validation to account register 2023-04-30 08:09:24 +00:00			`func init() {`
			`jsonValidator := _validator.Get()`

			`jsonValidator.RegisterStructValidation(ValidateRegisterRequest, RegisterRequest{})`
			`}`

			`func ValidateRegisterRequest(structLevel validator.StructLevel) {`

			`request := structLevel.Current().Interface().(RegisterRequest)`

feat: add more validation, and put account creation, with optional pubkey in a transaction 2023-04-30 08:48:56 +00:00			`pubkey := len(request.Pubkey) == 0`
			`pass := len(request.Password) == 0`

			`if pubkey == pass {`
			`structLevel.ReportError(reflect.ValueOf(request.Email), "email", "Email", "emailorpubkey", "")`
			`structLevel.ReportError(reflect.ValueOf(request.Pubkey), "pubkey", "Pubkey", "emailorpubkey", "")`
			`}`

			`if !pubkey {`
			`pubkeyBytes, err := hex.DecodeString(request.Pubkey)`
			`if err != nil \|\| len(pubkeyBytes) != ed25519.PublicKeySize {`
			`structLevel.ReportError(reflect.ValueOf(request.Pubkey), "pubkey", "Pubkey", "pubkey", "")`
			`return`
			`}`
feat: add validation to account register 2023-04-30 08:09:24 +00:00			`}`
feat: add more validation, and put account creation, with optional pubkey in a transaction 2023-04-30 08:48:56 +00:00
feat: add validation to account register 2023-04-30 08:09:24 +00:00			`}`

feat: wip version 2023-04-29 17:38:21 +00:00			`func hashPassword(password string) (string, error) {`

			`// Generate a new bcrypt hash from the provided password.`
			`hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost)`
			`if err != nil {`
			`return "", err`
			`}`

			`// Convert the hashed password to a string and return it.`
			`return string(hashedPassword), nil`
			`}`

refactor: rename services to controllers 2023-05-10 11:07:56 +00:00			`func (a *AccountController) PostRegister() {`
feat: wip version 2023-04-29 17:38:21 +00:00			`var r RegisterRequest`

fix: Ctx must be public 2023-04-30 07:29:24 +00:00			`if err := a.Ctx.ReadJSON(&r); err != nil {`
			`a.Ctx.StopWithError(iris.StatusBadRequest, err)`
feat: wip version 2023-04-29 17:38:21 +00:00			`return`
			`}`

			`// Check if an account with the same email address already exists.`
			`existingAccount := model.Account{}`
feat: add more validation, and put account creation, with optional pubkey in a transaction 2023-04-30 08:48:56 +00:00			`err := db.Get().Where("email = ?", r.Email).First(&existingAccount).Error`
feat: wip version 2023-04-29 17:38:21 +00:00			`if err == nil {`
			`// An account with the same email address already exists.`
			`// Return an error response to the client.`
fix: Ctx must be public 2023-04-30 07:29:24 +00:00			`a.Ctx.StopWithError(iris.StatusConflict, errors.New("an account with this email address already exists"))`
feat: wip version 2023-04-29 17:38:21 +00:00			`return`
			`} else if !errors.Is(err, gorm.ErrRecordNotFound) {`
			`// An unexpected error occurred while querying the database.`
			`// Return an error response to the client.`
fix: Ctx must be public 2023-04-30 07:29:24 +00:00			`a.Ctx.StopWithError(iris.StatusInternalServerError, err)`
feat: wip version 2023-04-29 17:38:21 +00:00			`return`
			`}`

			`// Create a new Account model with the provided email and hashed password.`
			`account := model.Account{`
feat: add more validation, and put account creation, with optional pubkey in a transaction 2023-04-30 08:48:56 +00:00			`Email: r.Email,`
			`}`

			`// Hash the password before saving it to the database.`
			`if len(r.Password) > 0 {`
			`hashedPassword, err := hashPassword(r.Password)`
			`if err != nil {`
			`a.Ctx.StopWithError(iris.StatusInternalServerError, err)`
			`return`
			`}`

			`account.Password = &hashedPassword`
feat: wip version 2023-04-29 17:38:21 +00:00			`}`

feat: add more validation, and put account creation, with optional pubkey in a transaction 2023-04-30 08:48:56 +00:00			`err = db.Get().Transaction(func(tx *gorm.DB) error {`
			`// do some database operations in the transaction (use 'tx' from this point, not 'db')`
			`if err := tx.Create(&account).Error; err != nil {`
			`return err`
			`}`

			`if len(r.Pubkey) > 0 {`
			`if err := tx.Create(&model.Key{Account: account, Pubkey: r.Pubkey}).Error; err != nil {`
			`return err`
			`}`
			`}`

			`// return nil will commit the whole transaction`
			`return nil`
			`})`
feat: wip version 2023-04-29 17:38:21 +00:00			`if err != nil {`
fix: Ctx must be public 2023-04-30 07:29:24 +00:00			`a.Ctx.StopWithError(iris.StatusInternalServerError, err)`
feat: wip version 2023-04-29 17:38:21 +00:00			`return`
			`}`

			`// Return a success response to the client.`
fix: Ctx must be public 2023-04-30 07:29:24 +00:00			`a.Ctx.StatusCode(iris.StatusCreated)`
feat: wip version 2023-04-29 17:38:21 +00:00			`}`