package controller import ( "crypto/ed25519" "encoding/hex" "errors" "git.lumeweb.com/LumeWeb/portal/db" "git.lumeweb.com/LumeWeb/portal/logger" "git.lumeweb.com/LumeWeb/portal/model" _validator "git.lumeweb.com/LumeWeb/portal/validator" "github.com/go-playground/validator/v10" "github.com/kataras/iris/v12" "go.uber.org/zap" "golang.org/x/crypto/bcrypt" "gorm.io/gorm" "reflect" ) type AccountController struct { Ctx iris.Context } type RegisterRequest struct { Email string `json:"email" validate:"required"` Password string `json:"password"` Pubkey string `json:"pubkey"` } func init() { jsonValidator := _validator.Get() jsonValidator.RegisterStructValidation(ValidateRegisterRequest, RegisterRequest{}) } func ValidateRegisterRequest(structLevel validator.StructLevel) { request := structLevel.Current().Interface().(RegisterRequest) pubkey := len(request.Pubkey) == 0 pass := len(request.Password) == 0 if pubkey == pass { structLevel.ReportError(reflect.ValueOf(request.Email), "email", "Email", "emailorpubkey", "") structLevel.ReportError(reflect.ValueOf(request.Pubkey), "pubkey", "Pubkey", "emailorpubkey", "") } if !pubkey { pubkeyBytes, err := hex.DecodeString(request.Pubkey) if err != nil || len(pubkeyBytes) != ed25519.PublicKeySize { structLevel.ReportError(reflect.ValueOf(request.Pubkey), "pubkey", "Pubkey", "pubkey", "") return } } } func hashPassword(password string) (string, error) { // Generate a new bcrypt hash from the provided password. hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost) if err != nil { logger.Get().Error("failed to hash password", zap.Error(err)) return "", err } // Convert the hashed password to a string and return it. return string(hashedPassword), nil } func (a *AccountController) PostRegister() { var r RegisterRequest if err := a.Ctx.ReadJSON(&r); err != nil { logger.Get().Debug("failed to parse request", zap.Error(err)) a.Ctx.StopWithError(iris.StatusBadRequest, err) return } // Check if an account with the same email address already exists. existingAccount := model.Account{} err := db.Get().Where("email = ?", r.Email).First(&existingAccount).Error if err == nil { logger.Get().Debug("account with email already exists", zap.Error(err), zap.String("email", r.Email)) // An account with the same email address already exists. // Return an error response to the client. a.Ctx.StopWithError(iris.StatusConflict, errors.New("an account with this email address already exists")) return } else if !errors.Is(err, gorm.ErrRecordNotFound) { logger.Get().Error("error querying accounts", zap.Error(err), zap.String("email", r.Email)) // An unexpected error occurred while querying the database. // Return an error response to the client. a.Ctx.StopWithError(iris.StatusInternalServerError, err) return } // Create a new Account model with the provided email and hashed password. account := model.Account{ Email: r.Email, } // Hash the password before saving it to the database. if len(r.Password) > 0 { hashedPassword, err := hashPassword(r.Password) if err != nil { a.Ctx.StopWithError(iris.StatusInternalServerError, err) return } account.Password = &hashedPassword } err = db.Get().Transaction(func(tx *gorm.DB) error { // do some database operations in the transaction (use 'tx' from this point, not 'db') if err := tx.Create(&account).Error; err != nil { return err } if len(r.Pubkey) > 0 { if err := tx.Create(&model.Key{Account: account, Pubkey: r.Pubkey}).Error; err != nil { return err } } // return nil will commit the whole transaction return nil }) if err != nil { logger.Get().Error("failed to create account", zap.Error(err)) a.Ctx.StopWithError(iris.StatusInternalServerError, err) return } // Return a success response to the client. a.Ctx.StatusCode(iris.StatusCreated) }