authboss/auth/auth.go

package auth

import (
	"errors"
	"net/http"
	"path"
	"path/filepath"

	"gopkg.in/authboss.v0"

	"html/template"
	"io/ioutil"

	"bytes"
	"io"
	"log"
)

const (
	methodGET  = "GET"
	methodPOST = "POST"
)

var errAuthFailed = errors.New("invalid username and/or password")

func init() {
	a := &Auth{}
	authboss.RegisterModule("auth", a)
}

type Auth struct {
	routes         authboss.RouteTable
	storageOptions authboss.StorageOptions
	users          authboss.Storer
	loginPage      *bytes.Buffer
	logoutRedirect string
	logger         io.Writer
}

func (a *Auth) Initialize(c *authboss.Config) (err error) {
	var data []byte

	if data, err = ioutil.ReadFile(filepath.Join(c.ViewsPath, "login.tpl")); err != nil {
		if data, err = views_login_tpl_bytes(); err != nil {
			return err
		}
	}

	var tpl *template.Template
	if tpl, err = template.New("login.tpl").Parse(string(data)); err != nil {
		return err
	} else {
		a.loginPage = &bytes.Buffer{}
		if err = tpl.Execute(a.loginPage, nil); err != nil {
			return err
		}
	}

	a.storageOptions = authboss.StorageOptions{
		"Username": authboss.String,
		"Password": authboss.String,
	}
	a.routes = authboss.RouteTable{
		"login":  a.loginHandler,
		"logout": a.logoutHandler,
	}
	a.users = c.Storer

	a.logoutRedirect = path.Join(c.MountPath, c.AuthLogoutRoute)

	return nil
}

func (a *Auth) Routes() authboss.RouteTable {
	return a.routes
}

func (a *Auth) Storage() authboss.StorageOptions {
	return a.storageOptions
}

func (a *Auth) loginHandler(w http.ResponseWriter, r *http.Request) {
	switch r.Method {
	case methodGET:
		w.Write(a.loginPage.Bytes())
	case methodPOST:
		log.Println("in post")
		a.authenticate(r.PostFormValue("username"), r.PostFormValue("password"))
	default:
		w.WriteHeader(http.StatusMethodNotAllowed)
	}
}

func (a *Auth) authenticate(username, password string) error {
	userInter, err := a.users.Get(username, nil)
	if err != nil {
		return errAuthFailed
	}

	userAttrs := authboss.Unbind(userInter)

	if pwd, ok := userAttrs["Password"]; !ok {
		return errAuthFailed
	} else if pwd.Value.(string) != password {
		return errAuthFailed
	}

	return nil
}

func (a *Auth) logoutHandler(w http.ResponseWriter, r *http.Request) {
	switch r.Method {
	case methodGET:
		http.Redirect(w, r, a.logoutRedirect, http.StatusTemporaryRedirect)
	default:
		w.WriteHeader(http.StatusMethodNotAllowed)
	}
}
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`package auth`

			`import (`
Added auth endpoint POST 2015-01-10 22:49:06 -08:00			`"errors"`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`"net/http"`
			`"path"`
Aaron broke my world. 2015-01-07 23:45:41 -08:00			`"path/filepath"`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00
Fixed auth to work with root changes 2015-01-09 22:51:02 -08:00			`"gopkg.in/authboss.v0"`

Aaron broke my world. 2015-01-07 23:45:41 -08:00			`"html/template"`
Added auth module view overriding 2015-01-04 14:50:34 -08:00			`"io/ioutil"`

			`"bytes"`
Fixed auth to work with root changes 2015-01-09 22:51:02 -08:00			`"io"`
Added auth endpoint POST 2015-01-10 22:49:06 -08:00			`"log"`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`)`

			`const (`
			`methodGET = "GET"`
			`methodPOST = "POST"`
			`)`

Added auth endpoint POST 2015-01-10 22:49:06 -08:00			`var errAuthFailed = errors.New("invalid username and/or password")`

started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`func init() {`
			`a := &Auth{}`
Aaron broke my world. 2015-01-07 23:45:41 -08:00			`authboss.RegisterModule("auth", a)`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`}`

			`type Auth struct {`
Aaron broke my world. 2015-01-07 23:45:41 -08:00			`routes authboss.RouteTable`
Fixed auth to work with root changes 2015-01-09 22:51:02 -08:00			`storageOptions authboss.StorageOptions`
Added auth endpoint POST 2015-01-10 22:49:06 -08:00			`users authboss.Storer`
Added auth module view overriding 2015-01-04 14:50:34 -08:00			`loginPage *bytes.Buffer`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`logoutRedirect string`
Fixed auth to work with root changes 2015-01-09 22:51:02 -08:00			`logger io.Writer`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`}`

Aaron broke my world. 2015-01-07 23:45:41 -08:00			`func (a Auth) Initialize(c authboss.Config) (err error) {`
Added auth module view overriding 2015-01-04 14:50:34 -08:00			`var data []byte`
Aaron broke my world. 2015-01-07 23:45:41 -08:00
Added auth endpoint POST 2015-01-10 22:49:06 -08:00			`if data, err = ioutil.ReadFile(filepath.Join(c.ViewsPath, "login.tpl")); err != nil {`
Aaron broke my world. 2015-01-07 23:45:41 -08:00			`if data, err = views_login_tpl_bytes(); err != nil {`
Added auth module view overriding 2015-01-04 14:50:34 -08:00			`return err`
			`}`
			`}`
Added styles to modules. Stylized login module. Added tester 2015-01-04 20:41:20 -08:00
			`var tpl *template.Template`
file extension fix 2015-01-08 21:48:02 -08:00			`if tpl, err = template.New("login.tpl").Parse(string(data)); err != nil {`
Added styles to modules. Stylized login module. Added tester 2015-01-04 20:41:20 -08:00			`return err`
			`} else {`
			`a.loginPage = &bytes.Buffer{}`
			`if err = tpl.Execute(a.loginPage, nil); err != nil {`
			`return err`
			`}`
			`}`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00
Added auth endpoint POST 2015-01-10 22:49:06 -08:00			`a.storageOptions = authboss.StorageOptions{`
			`"Username": authboss.String,`
			`"Password": authboss.String,`
			`}`
Aaron broke my world. 2015-01-07 23:45:41 -08:00			`a.routes = authboss.RouteTable{`
Fixed auth to work with root changes 2015-01-09 22:51:02 -08:00			`"login": a.loginHandler,`
			`"logout": a.logoutHandler,`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`}`
Added auth endpoint POST 2015-01-10 22:49:06 -08:00			`a.users = c.Storer`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00
Aaron broke my world. 2015-01-07 23:45:41 -08:00			`a.logoutRedirect = path.Join(c.MountPath, c.AuthLogoutRoute)`
Added auth module view overriding 2015-01-04 14:50:34 -08:00
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`return nil`
			`}`

Aaron broke my world. 2015-01-07 23:45:41 -08:00			`func (a *Auth) Routes() authboss.RouteTable {`
Added auth module view overriding 2015-01-04 14:50:34 -08:00			`return a.routes`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`}`

Aaron broke my world. 2015-01-07 23:45:41 -08:00			`func (a *Auth) Storage() authboss.StorageOptions {`
Fixed auth to work with root changes 2015-01-09 22:51:02 -08:00			`return a.storageOptions`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`}`

			`func (a Auth) loginHandler(w http.ResponseWriter, r http.Request) {`
			`switch r.Method {`
			`case methodGET:`
Added styles to modules. Stylized login module. Added tester 2015-01-04 20:41:20 -08:00			`w.Write(a.loginPage.Bytes())`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`case methodPOST:`
Added auth endpoint POST 2015-01-10 22:49:06 -08:00			`log.Println("in post")`
			`a.authenticate(r.PostFormValue("username"), r.PostFormValue("password"))`
started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`default:`
			`w.WriteHeader(http.StatusMethodNotAllowed)`
			`}`
			`}`

Added auth endpoint POST 2015-01-10 22:49:06 -08:00			`func (a *Auth) authenticate(username, password string) error {`
			`userInter, err := a.users.Get(username, nil)`
			`if err != nil {`
			`return errAuthFailed`
			`}`

			`userAttrs := authboss.Unbind(userInter)`

			`if pwd, ok := userAttrs["Password"]; !ok {`
			`return errAuthFailed`
			`} else if pwd.Value.(string) != password {`
			`return errAuthFailed`
			`}`

			`return nil`
			`}`

started work on auth module. redefined how configuration is going to work and where core is going to reside 2015-01-04 10:33:53 -08:00			`func (a Auth) logoutHandler(w http.ResponseWriter, r http.Request) {`
			`switch r.Method {`
			`case methodGET:`
			`http.Redirect(w, r, a.logoutRedirect, http.StatusTemporaryRedirect)`
			`default:`
			`w.WriteHeader(http.StatusMethodNotAllowed)`
			`}`
			`}`