focalboard/server/model/auth.go

package model

import (
	"encoding/json"
	"fmt"
	"io"
	"strings"

	"github.com/mattermost/focalboard/server/services/auth"
)

const (
	MinimumPasswordLength = 8
)

func NewErrAuthParam(msg string) *ErrAuthParam {
	return &ErrAuthParam{
		msg: msg,
	}
}

type ErrAuthParam struct {
	msg string
}

func (pe *ErrAuthParam) Error() string {
	return pe.msg
}

// LoginRequest is a login request
// swagger:model
type LoginRequest struct {
	// Type of login, currently must be set to "normal"
	// required: true
	Type string `json:"type"`

	// If specified, login using username
	// required: false
	Username string `json:"username"`

	// If specified, login using email
	// required: false
	Email string `json:"email"`

	// Password
	// required: true
	Password string `json:"password"`

	// MFA token
	// required: false
	// swagger:ignore
	MfaToken string `json:"mfa_token"`
}

// LoginResponse is a login response
// swagger:model
type LoginResponse struct {
	// Session token
	// required: true
	Token string `json:"token"`
}

func LoginResponseFromJSON(data io.Reader) (*LoginResponse, error) {
	var resp LoginResponse
	if err := json.NewDecoder(data).Decode(&resp); err != nil {
		return nil, err
	}
	return &resp, nil
}

// RegisterRequest is a user registration request
// swagger:model
type RegisterRequest struct {
	// User name
	// required: true
	Username string `json:"username"`

	// User's email
	// required: true
	Email string `json:"email"`

	// Password
	// required: true
	Password string `json:"password"`

	// Registration authorization token
	// required: true
	Token string `json:"token"`
}

func (rd *RegisterRequest) IsValid() error {
	if strings.TrimSpace(rd.Username) == "" {
		return NewErrAuthParam("username is required")
	}
	if strings.TrimSpace(rd.Email) == "" {
		return NewErrAuthParam("email is required")
	}
	if !auth.IsEmailValid(rd.Email) {
		return NewErrAuthParam("invalid email format")
	}
	if rd.Password == "" {
		return NewErrAuthParam("password is required")
	}
	return isValidPassword(rd.Password)
}

// ChangePasswordRequest is a user password change request
// swagger:model
type ChangePasswordRequest struct {
	// Old password
	// required: true
	OldPassword string `json:"oldPassword"`

	// New password
	// required: true
	NewPassword string `json:"newPassword"`
}

// IsValid validates a password change request.
func (rd *ChangePasswordRequest) IsValid() error {
	if rd.OldPassword == "" {
		return NewErrAuthParam("old password is required")
	}
	if rd.NewPassword == "" {
		return NewErrAuthParam("new password is required")
	}
	return isValidPassword(rd.NewPassword)
}

func isValidPassword(password string) error {
	if len(password) < MinimumPasswordLength {
		return NewErrAuthParam(fmt.Sprintf("password must be at least %d characters", MinimumPasswordLength))
	}
	return nil
}
Rest API reorganization (#3624) * reorg API * reorg api * fix system route * remove newline Co-authored-by: Mattermod <mattermod@users.noreply.github.com> 2022-08-10 14:20:42 +02:00			`package model`

			`import (`
			`"encoding/json"`
			`"fmt"`
			`"io"`
			`"strings"`

			`"github.com/mattermost/focalboard/server/services/auth"`
			`)`

			`const (`
			`MinimumPasswordLength = 8`
			`)`

Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`func NewErrAuthParam(msg string) *ErrAuthParam {`
			`return &ErrAuthParam{`
			`msg: msg,`
			`}`
			`}`

			`type ErrAuthParam struct {`
Rest API reorganization (#3624) * reorg API * reorg api * fix system route * remove newline Co-authored-by: Mattermod <mattermod@users.noreply.github.com> 2022-08-10 14:20:42 +02:00			`msg string`
			`}`

Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`func (pe *ErrAuthParam) Error() string {`
Rest API reorganization (#3624) * reorg API * reorg api * fix system route * remove newline Co-authored-by: Mattermod <mattermod@users.noreply.github.com> 2022-08-10 14:20:42 +02:00			`return pe.msg`
			`}`

			`// LoginRequest is a login request`
			`// swagger:model`
			`type LoginRequest struct {`
			`// Type of login, currently must be set to "normal"`
			`// required: true`
			Type string `json:"type"`

			`// If specified, login using username`
			`// required: false`
			Username string `json:"username"`

			`// If specified, login using email`
			`// required: false`
			Email string `json:"email"`

			`// Password`
			`// required: true`
			Password string `json:"password"`

			`// MFA token`
			`// required: false`
			`// swagger:ignore`
			MfaToken string `json:"mfa_token"`
			`}`

			`// LoginResponse is a login response`
			`// swagger:model`
			`type LoginResponse struct {`
			`// Session token`
			`// required: true`
			Token string `json:"token"`
			`}`

			`func LoginResponseFromJSON(data io.Reader) (*LoginResponse, error) {`
			`var resp LoginResponse`
			`if err := json.NewDecoder(data).Decode(&resp); err != nil {`
			`return nil, err`
			`}`
			`return &resp, nil`
			`}`

			`// RegisterRequest is a user registration request`
			`// swagger:model`
			`type RegisterRequest struct {`
			`// User name`
			`// required: true`
			Username string `json:"username"`

			`// User's email`
			`// required: true`
			Email string `json:"email"`

			`// Password`
			`// required: true`
			Password string `json:"password"`

			`// Registration authorization token`
			`// required: true`
			Token string `json:"token"`
			`}`

			`func (rd *RegisterRequest) IsValid() error {`
			`if strings.TrimSpace(rd.Username) == "" {`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`return NewErrAuthParam("username is required")`
Rest API reorganization (#3624) * reorg API * reorg api * fix system route * remove newline Co-authored-by: Mattermod <mattermod@users.noreply.github.com> 2022-08-10 14:20:42 +02:00			`}`
			`if strings.TrimSpace(rd.Email) == "" {`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`return NewErrAuthParam("email is required")`
Rest API reorganization (#3624) * reorg API * reorg api * fix system route * remove newline Co-authored-by: Mattermod <mattermod@users.noreply.github.com> 2022-08-10 14:20:42 +02:00			`}`
			`if !auth.IsEmailValid(rd.Email) {`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`return NewErrAuthParam("invalid email format")`
Rest API reorganization (#3624) * reorg API * reorg api * fix system route * remove newline Co-authored-by: Mattermod <mattermod@users.noreply.github.com> 2022-08-10 14:20:42 +02:00			`}`
			`if rd.Password == "" {`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`return NewErrAuthParam("password is required")`
Rest API reorganization (#3624) * reorg API * reorg api * fix system route * remove newline Co-authored-by: Mattermod <mattermod@users.noreply.github.com> 2022-08-10 14:20:42 +02:00			`}`
			`return isValidPassword(rd.Password)`
			`}`

			`// ChangePasswordRequest is a user password change request`
			`// swagger:model`
			`type ChangePasswordRequest struct {`
			`// Old password`
			`// required: true`
			OldPassword string `json:"oldPassword"`

			`// New password`
			`// required: true`
			NewPassword string `json:"newPassword"`
			`}`

			`// IsValid validates a password change request.`
			`func (rd *ChangePasswordRequest) IsValid() error {`
			`if rd.OldPassword == "" {`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`return NewErrAuthParam("old password is required")`
Rest API reorganization (#3624) * reorg API * reorg api * fix system route * remove newline Co-authored-by: Mattermod <mattermod@users.noreply.github.com> 2022-08-10 14:20:42 +02:00			`}`
			`if rd.NewPassword == "" {`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`return NewErrAuthParam("new password is required")`
Rest API reorganization (#3624) * reorg API * reorg api * fix system route * remove newline Co-authored-by: Mattermod <mattermod@users.noreply.github.com> 2022-08-10 14:20:42 +02:00			`}`
			`return isValidPassword(rd.NewPassword)`
			`}`

			`func isValidPassword(password string) error {`
			`if len(password) < MinimumPasswordLength {`
Refactor error usage from the store level up and add API helpers (#3792) * Refactor error usage from the store level up and add API helpers * Complete API tests * Fix merge errorResponse calls * Remove ensure helpers to allow for custom messages on permission errors * Fix bad import and call * Remove bad user check on auth that was added as part of the main merge * Fix empty list test * Replace deprecated proxy calls to ioutil.ReadAll with io.ReadAll * Add information to the NotFound errors * Add context to all remaining errors and address review comments * Fix linter * Adapt the new card API endpoints to the error refactor * Remove almost all customErrorResponse calls * Add request entity too large to errorResponse and remove customErrorResponse * Fix linter 2022-09-13 12:18:40 +02:00			`return NewErrAuthParam(fmt.Sprintf("password must be at least %d characters", MinimumPasswordLength))`
Rest API reorganization (#3624) * reorg API * reorg api * fix system route * remove newline Co-authored-by: Mattermod <mattermod@users.noreply.github.com> 2022-08-10 14:20:42 +02:00			`}`
			`return nil`
			`}`