1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
|
package core
import (
"errors"
"github.com/codemicro/walrss/walrss/internal/db"
"github.com/codemicro/walrss/walrss/internal/state"
"github.com/lithammer/shortuuid/v4"
bh "github.com/timshannon/bolthold"
"golang.org/x/crypto/bcrypt"
)
func RegisterUser(st *state.State, email, password string) (*db.User, error) {
if err := validateEmailAddress(email); err != nil {
return nil, err
}
if err := validatePassword(password); err != nil {
return nil, err
}
u := &db.User{
ID: shortuuid.New(),
Email: email,
Salt: generateRandomData(30),
}
hash, err := bcrypt.GenerateFromPassword(combineStringAndSalt(password, u.Salt), bcrypt.DefaultCost)
if err != nil {
return nil, err
}
u.Password = hash
if err := st.Data.Insert(u.ID, u); err != nil {
if errors.Is(err, bh.ErrUniqueExists) {
return nil, NewUserError("email address in use")
}
return nil, err
}
return u, nil
}
func AreUserCredentialsCorrect(st *state.State, email, password string) (bool, error) {
user, err := GetUserByEmail(st, email)
if err != nil {
return false, err
}
if err := bcrypt.CompareHashAndPassword(user.Password, combineStringAndSalt(password, user.Salt)); err != nil {
if errors.Is(err, bcrypt.ErrMismatchedHashAndPassword) {
return false, nil
}
return false, err
}
return true, nil
}
func GetUserByEmail(st *state.State, userID string) (*db.User, error) {
user := new(db.User)
if err := st.Data.FindOne(user, bh.Where("Email").Eq(userID)); err != nil {
if errors.Is(err, bh.ErrNotFound) {
return nil, ErrNotFound
}
return nil, err
}
return user, nil
}
|
