mirror of
https://github.com/1f349/lavender.git
synced 2025-01-22 06:36:27 +00:00
51 lines
1.3 KiB
Go
51 lines
1.3 KiB
Go
package providers
|
|
|
|
import (
|
|
"context"
|
|
"database/sql"
|
|
"errors"
|
|
"fmt"
|
|
"github.com/1f349/lavender/auth"
|
|
"github.com/1f349/lavender/database"
|
|
"html/template"
|
|
"net/http"
|
|
)
|
|
|
|
type basicLoginDB interface {
|
|
auth.LookupUserDB
|
|
CheckLogin(ctx context.Context, un, pw string) (database.CheckLoginResult, error)
|
|
}
|
|
|
|
var _ auth.Provider = (*BasicLogin)(nil)
|
|
|
|
type BasicLogin struct {
|
|
DB basicLoginDB
|
|
}
|
|
|
|
func (b *BasicLogin) AccessState() auth.State { return auth.StateUnauthorized }
|
|
|
|
func (b *BasicLogin) Name() string { return "basic" }
|
|
|
|
func (b *BasicLogin) RenderTemplate(ctx context.Context, req *http.Request, user *database.User) (template.HTML, error) {
|
|
// TODO(melon): rewrite this
|
|
return template.HTML(fmt.Sprintf("<div>%s</div>", req.FormValue("username"))), nil
|
|
}
|
|
|
|
func (b *BasicLogin) AttemptLogin(ctx context.Context, req *http.Request, user *database.User) error {
|
|
un := req.FormValue("username")
|
|
pw := req.FormValue("password")
|
|
if len(pw) < 8 {
|
|
return auth.BasicUserSafeError(http.StatusBadRequest, "Password too short")
|
|
}
|
|
|
|
login, err := b.DB.CheckLogin(ctx, un, pw)
|
|
switch {
|
|
case err == nil:
|
|
return auth.LookupUser(ctx, b.DB, login.Subject, user)
|
|
case errors.Is(err, sql.ErrNoRows):
|
|
return auth.BasicUserSafeError(http.StatusForbidden, "Username or password is invalid")
|
|
default:
|
|
return err
|
|
}
|
|
}
|