tulip/cmd/red-tulip/serve.go

package main

import (
	"context"
	"crypto/rand"
	"database/sql"
	"encoding/json"
	"errors"
	"flag"
	"fmt"
	"github.com/1f349/mjwt"
	clientStore "github.com/1f349/tulip/client-store"
	"github.com/1f349/tulip/cmd/red-tulip/pages"
	"github.com/1f349/tulip/cmd/red-tulip/server"
	"github.com/1f349/tulip/database"
	"github.com/1f349/tulip/mail/templates"
	"github.com/1f349/tulip/oauth"
	"github.com/1f349/tulip/openid"
	"github.com/1f349/violet/utils"
	"github.com/MrMelon54/exit-reload"
	"github.com/google/subcommands"
	_ "github.com/mattn/go-sqlite3"
	"log"
	"os"
	"path/filepath"
)

type serveCmd struct{ configPath string }

func (s *serveCmd) Name() string { return "serve" }

func (s *serveCmd) Synopsis() string { return "Serve user authentication service" }

func (s *serveCmd) SetFlags(f *flag.FlagSet) {
	f.StringVar(&s.configPath, "conf", "", "/path/to/config.json : path to the config file")
}

func (s *serveCmd) Usage() string {
	return `serve [-conf <config file>]
  Serve user authentication service using information from the config file
`
}

func (s *serveCmd) Execute(_ context.Context, _ *flag.FlagSet, _ ...any) subcommands.ExitStatus {
	log.Println("[RedTulip] Starting...")

	if s.configPath == "" {
		log.Println("[RedTulip] Error: config flag is missing")
		return subcommands.ExitUsageError
	}

	var conf server.Conf
	err := loadConfig(s.configPath, &conf)
	if err != nil {
		if os.IsNotExist(err) {
			log.Println("[RedTulip] Error: missing config file")
		} else {
			log.Println("[RedTulip] Error: loading config file: ", err)
		}
		return subcommands.ExitFailure
	}

	configPathAbs, err := filepath.Abs(s.configPath)
	if err != nil {
		log.Fatal("[RedTulip] Failed to get absolute config path")
	}
	wd := filepath.Dir(configPathAbs)

	signer, err := mjwt.NewMJwtSignerFromFileOrCreate(conf.OtpIssuer, filepath.Join(wd, "red-tulip.key.pem"), rand.Reader, 4096)
	if err != nil {
		log.Fatal("[Tulip] Failed to open signing key file:", err)
	}

	db, err := database.Open(filepath.Join(wd, "red-tulip.db.sqlite"))
	if err != nil {
		log.Fatal("[RedTulip] Failed to open database:", err)
	}

	log.Println("[RedTulip] Checking database contains at least one user")
	if err := checkDbHasUser(db); err != nil {
		log.Fatal("[RedTulip] Failed check:", err)
	}

	if err = pages.LoadPages(wd); err != nil {
		log.Fatal("[RedTulip] Failed to load page templates:", err)
	}
	if err := templates.LoadMailTemplates(wd); err != nil {
		log.Fatal("[RedTulip] Failed to load mail templates:", err)
	}

	openIdConf := openid.GenConfig(conf.BaseUrl, []string{"openid", "name", "username", "profile", "email", "birthdate", "age", "zoneinfo", "locale"}, []string{"sub", "name", "preferred_username", "profile", "picture", "website", "email", "email_verified", "gender", "birthdate", "zoneinfo", "locale", "updated_at"})
	controller := oauth.NewOAuthController(signer, &server.RedAuthSource{DB: db}, clientStore.New(db), openIdConf)

	srv := server.NewHttpServer(conf, db, controller, signer)
	log.Printf("[RedTulip] Starting HTTP server on '%s'\n", srv.Addr)
	go utils.RunBackgroundHttp("HTTP", srv)

	exit_reload.ExitReload("RedTulip", func() {}, func() {
		// stop http server
		_ = srv.Close()
		_ = db.Close()
	})

	return subcommands.ExitSuccess
}

func loadConfig(configPath string, conf *server.Conf) error {
	openConf, err := os.Open(configPath)
	if err != nil {
		return err
	}

	return json.NewDecoder(openConf).Decode(conf)
}

func checkDbHasUser(db *database.DB) error {
	tx, err := db.Begin()
	if err != nil {
		return fmt.Errorf("failed to start transaction: %w", err)
	}
	defer tx.Rollback()
	if err := tx.HasUser(); err != nil {
		if errors.Is(err, sql.ErrNoRows) {
			_, err := tx.InsertUser("Admin", "admin", "admin", "admin@localhost", false, database.RoleAdmin, false)
			if err != nil {
				return fmt.Errorf("failed to add user: %w", err)
			}
			if err := tx.Commit(); err != nil {
				return fmt.Errorf("failed to commit transaction: %w", err)
			}
			// continue normal operation now
			return nil
		} else {
			return fmt.Errorf("failed to check if table has a user: %w", err)
		}
	}
	return nil
}
Lots of code changes 2023-09-06 22:20:09 +01:00			`package main`

			`import (`
			`"context"`
			`"crypto/rand"`
			`"database/sql"`
			`"encoding/json"`
			`"errors"`
			`"flag"`
			`"fmt"`
Save current user in encrypted cookie to prevent repetative logging in 2023-12-19 00:01:08 +00:00			`"github.com/1f349/mjwt"`
Start working on oauth controller 2024-01-29 23:45:46 +00:00			`clientStore "github.com/1f349/tulip/client-store"`
			`"github.com/1f349/tulip/cmd/red-tulip/pages"`
			`"github.com/1f349/tulip/cmd/red-tulip/server"`
Lots of code changes 2023-09-06 22:20:09 +01:00			`"github.com/1f349/tulip/database"`
Load custom templates from filesystem 2023-10-09 20:31:41 +01:00			`"github.com/1f349/tulip/mail/templates"`
Start working on oauth controller 2024-01-29 23:45:46 +00:00			`"github.com/1f349/tulip/oauth"`
			`"github.com/1f349/tulip/openid"`
Lots of code changes 2023-09-06 22:20:09 +01:00			`"github.com/1f349/violet/utils"`
			`"github.com/MrMelon54/exit-reload"`
			`"github.com/google/subcommands"`
			`_ "github.com/mattn/go-sqlite3"`
			`"log"`
			`"os"`
			`"path/filepath"`
			`)`

			`type serveCmd struct{ configPath string }`

			`func (s *serveCmd) Name() string { return "serve" }`

			`func (s *serveCmd) Synopsis() string { return "Serve user authentication service" }`

			`func (s serveCmd) SetFlags(f flag.FlagSet) {`
			`f.StringVar(&s.configPath, "conf", "", "/path/to/config.json : path to the config file")`
			`}`

			`func (s *serveCmd) Usage() string {`
			return `serve [-conf <config file>]
			`Serve user authentication service using information from the config file`
			`
			`}`

Add OTP and fix up oauth with the new page rendering system 2023-09-09 01:38:10 +01:00			`func (s serveCmd) Execute(_ context.Context, _ flag.FlagSet, _ ...any) subcommands.ExitStatus {`
Initial merging 2024-01-29 10:44:45 +00:00			`log.Println("[RedTulip] Starting...")`
Lots of code changes 2023-09-06 22:20:09 +01:00
			`if s.configPath == "" {`
Initial merging 2024-01-29 10:44:45 +00:00			`log.Println("[RedTulip] Error: config flag is missing")`
Lots of code changes 2023-09-06 22:20:09 +01:00			`return subcommands.ExitUsageError`
			`}`

Start working on oauth controller 2024-01-29 23:45:46 +00:00			`var conf server.Conf`
			`err := loadConfig(s.configPath, &conf)`
Lots of code changes 2023-09-06 22:20:09 +01:00			`if err != nil {`
			`if os.IsNotExist(err) {`
Initial merging 2024-01-29 10:44:45 +00:00			`log.Println("[RedTulip] Error: missing config file")`
Lots of code changes 2023-09-06 22:20:09 +01:00			`} else {`
Start working on oauth controller 2024-01-29 23:45:46 +00:00			`log.Println("[RedTulip] Error: loading config file: ", err)`
Lots of code changes 2023-09-06 22:20:09 +01:00			`}`
			`return subcommands.ExitFailure`
			`}`

			`configPathAbs, err := filepath.Abs(s.configPath)`
			`if err != nil {`
Initial merging 2024-01-29 10:44:45 +00:00			`log.Fatal("[RedTulip] Failed to get absolute config path")`
Lots of code changes 2023-09-06 22:20:09 +01:00			`}`
			`wd := filepath.Dir(configPathAbs)`

Start working on oauth controller 2024-01-29 23:45:46 +00:00			`signer, err := mjwt.NewMJwtSignerFromFileOrCreate(conf.OtpIssuer, filepath.Join(wd, "red-tulip.key.pem"), rand.Reader, 4096)`
Save current user in encrypted cookie to prevent repetative logging in 2023-12-19 00:01:08 +00:00			`if err != nil {`
			`log.Fatal("[Tulip] Failed to open signing key file:", err)`
			`}`
Lots of code changes 2023-09-06 22:20:09 +01:00
Start working on oauth controller 2024-01-29 23:45:46 +00:00			`db, err := database.Open(filepath.Join(wd, "red-tulip.db.sqlite"))`
Lots of code changes 2023-09-06 22:20:09 +01:00			`if err != nil {`
Initial merging 2024-01-29 10:44:45 +00:00			`log.Fatal("[RedTulip] Failed to open database:", err)`
Lots of code changes 2023-09-06 22:20:09 +01:00			`}`

Initial merging 2024-01-29 10:44:45 +00:00			`log.Println("[RedTulip] Checking database contains at least one user")`
Lots of code changes 2023-09-06 22:20:09 +01:00			`if err := checkDbHasUser(db); err != nil {`
Initial merging 2024-01-29 10:44:45 +00:00			`log.Fatal("[RedTulip] Failed check:", err)`
Lots of code changes 2023-09-06 22:20:09 +01:00			`}`

Start working on oauth controller 2024-01-29 23:45:46 +00:00			`if err = pages.LoadPages(wd); err != nil {`
Initial merging 2024-01-29 10:44:45 +00:00			`log.Fatal("[RedTulip] Failed to load page templates:", err)`
Load custom templates from filesystem 2023-10-09 20:31:41 +01:00			`}`
			`if err := templates.LoadMailTemplates(wd); err != nil {`
Initial merging 2024-01-29 10:44:45 +00:00			`log.Fatal("[RedTulip] Failed to load mail templates:", err)`
Load custom templates from filesystem 2023-10-09 20:31:41 +01:00			`}`

Start working on oauth controller 2024-01-29 23:45:46 +00:00			`openIdConf := openid.GenConfig(conf.BaseUrl, []string{"openid", "name", "username", "profile", "email", "birthdate", "age", "zoneinfo", "locale"}, []string{"sub", "name", "preferred_username", "profile", "picture", "website", "email", "email_verified", "gender", "birthdate", "zoneinfo", "locale", "updated_at"})`
			`controller := oauth.NewOAuthController(signer, &server.RedAuthSource{DB: db}, clientStore.New(db), openIdConf)`

			`srv := server.NewHttpServer(conf, db, controller, signer)`
			`log.Printf("[RedTulip] Starting HTTP server on '%s'\n", srv.Addr)`
Lots of code changes 2023-09-06 22:20:09 +01:00			`go utils.RunBackgroundHttp("HTTP", srv)`

Initial merging 2024-01-29 10:44:45 +00:00			`exit_reload.ExitReload("RedTulip", func() {}, func() {`
Start working on oauth controller 2024-01-29 23:45:46 +00:00			`// stop http server`
More improvements to the edit page 2023-09-08 00:30:03 +01:00			`_ = srv.Close()`
			`_ = db.Close()`
Lots of code changes 2023-09-06 22:20:09 +01:00			`})`
Start working on oauth controller 2024-01-29 23:45:46 +00:00
			`return subcommands.ExitSuccess`
Lots of code changes 2023-09-06 22:20:09 +01:00			`}`

Start working on oauth controller 2024-01-29 23:45:46 +00:00			`func loadConfig(configPath string, conf *server.Conf) error {`
			`openConf, err := os.Open(configPath)`
Lots of code changes 2023-09-06 22:20:09 +01:00			`if err != nil {`
Start working on oauth controller 2024-01-29 23:45:46 +00:00			`return err`
Lots of code changes 2023-09-06 22:20:09 +01:00			`}`
Start working on oauth controller 2024-01-29 23:45:46 +00:00
			`return json.NewDecoder(openConf).Decode(conf)`
Lots of code changes 2023-09-06 22:20:09 +01:00			`}`

			`func checkDbHasUser(db *database.DB) error {`
			`tx, err := db.Begin()`
			`if err != nil {`
			`return fmt.Errorf("failed to start transaction: %w", err)`
			`}`
More improvements to the edit page 2023-09-08 00:30:03 +01:00			`defer tx.Rollback()`
Lots of code changes 2023-09-06 22:20:09 +01:00			`if err := tx.HasUser(); err != nil {`
			`if errors.Is(err, sql.ErrNoRows) {`
Pass config directly to server 2023-10-10 18:06:43 +01:00			`_, err := tx.InsertUser("Admin", "admin", "admin", "admin@localhost", false, database.RoleAdmin, false)`
Lots of code changes 2023-09-06 22:20:09 +01:00			`if err != nil {`
			`return fmt.Errorf("failed to add user: %w", err)`
			`}`
			`if err := tx.Commit(); err != nil {`
			`return fmt.Errorf("failed to commit transaction: %w", err)`
			`}`
			`// continue normal operation now`
			`return nil`
			`} else {`
			`return fmt.Errorf("failed to check if table has a user: %w", err)`
			`}`
			`}`
			`return nil`
			`}`