aboutsummaryrefslogtreecommitdiffstats
path: root/api/handlers/users.go
blob: efb2e297fe5ea659b98aad014c813099f83816c6 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98

package handlers

import (
	"errors"
	"net/http"

	"github.com/LMBishop/confplanner/api/dto"
	"github.com/LMBishop/confplanner/pkg/session"
	"github.com/LMBishop/confplanner/pkg/user"
)

func Register(service user.Service) http.HandlerFunc {
	return dto.WrapResponseFunc(func(w http.ResponseWriter, r *http.Request) error {
		var request dto.RegisterRequest
		if err := dto.ReadDto(r, &request); err != nil {
			return err
		}

		createdUser, err := service.CreateUser(request.Username, request.Password)
		if err != nil {
			if errors.Is(err, user.ErrUserExists) {
				return &dto.ErrorResponse{
					Code:    http.StatusConflict,
					Message: "User with that username already exists",
				}
			} else if errors.Is(err, user.ErrNotAcceptingRegistrations) {
				return &dto.ErrorResponse{
					Code:    http.StatusForbidden,
					Message: "This service is not currently accepting registrations",
				}
			}

			return err
		}

		return &dto.OkResponse{
			Code: http.StatusCreated,
			Data: &dto.RegisterResponse{
				ID: createdUser.ID,
			},
		}
	})
}

func Login(service user.Service, store session.Service) http.HandlerFunc {
	return dto.WrapResponseFunc(func(w http.ResponseWriter, r *http.Request) error {
		var request dto.LoginRequest
		if err := dto.ReadDto(r, &request); err != nil {
			return err
		}

		user, err := service.Authenticate(request.Username, request.Password)
		if err != nil {
			return err
		}

		if user == nil {
			return &dto.ErrorResponse{
				Code:    http.StatusBadRequest,
				Message: "Username and password combination not found",
			}
		}

		session, err := store.Create(user.ID, user.Username, r.RemoteAddr, r.UserAgent())
		if err != nil {
			return err
		}

		cookie := &http.Cookie{
			Name:  "confplanner_session",
			Value: session.Token,
		}
		http.SetCookie(w, cookie)

		return &dto.OkResponse{
			Code: http.StatusOK,
			Data: &dto.LoginResponse{
				ID:       user.ID,
				Username: user.Username,
			},
		}
	})
}

func Logout(store session.Service) http.HandlerFunc {
	return dto.WrapResponseFunc(func(w http.ResponseWriter, r *http.Request) error {
		session := r.Context().Value("session").(*session.UserSession)

		err := store.Destroy(session.SessionID)
		if err != nil {
			return err
		}

		return &dto.OkResponse{
			Code: http.StatusNoContent,
		}
	})
}
generated by cgit v1.2.3-70-g09d2 (git 2.51.2) at 2025-11-25 01:53:59 +0000