tovi
/
Envelope
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
Encrypted messaging app
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
35 Commits
3 Branches
16 MiB
Tree: 19fbb9c25a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '19fbb9c25a'
${ noResults }
Envelope/Backend/Api/Auth/Login.go

108 lines
2.6 KiB
Raw Normal View History

Working on initial encryption key generation & authentication
3 years ago
Update the profile page Add change password page and route Add disappearing messages page and route Add the ability to change the server URL Update the look and feel of the qr code
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Update the profile page Add change password page and route Add disappearing messages page and route Add the ability to change the server URL Update the look and feel of the qr code
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Message conversations syncing to device
2 years ago
Finish sending messages
2 years ago
Add profile images for user profiles
2 years ago
Update the profile page Add change password page and route Add disappearing messages page and route Add the ability to change the server URL Update the look and feel of the qr code
2 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Add profile images for user profiles
2 years ago
Update the profile page Add change password page and route Add disappearing messages page and route Add the ability to change the server URL Update the look and feel of the qr code
2 years ago
Add profile images for user profiles
2 years ago
Update the profile page Add change password page and route Add disappearing messages page and route Add the ability to change the server URL Update the look and feel of the qr code
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Message conversations syncing to device
2 years ago
Friends and conversations sync to device
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Friends and conversations sync to device
2 years ago
Add profile images for user profiles
2 years ago
Friends and conversations sync to device
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Friends and conversations sync to device
2 years ago
Add profile images for user profiles
2 years ago
Friends and conversations sync to device
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Friends and conversations sync to device
2 years ago
Working on initial encryption key generation & authentication
3 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
3 years ago
 
  1. package Auth
  2. 

  3. import (
  4. 	"database/sql/driver"
  5. 	"encoding/json"
  6. 	"fmt"
  7. 	"net/http"
  8. 	"time"
  9. 

  10. 	"git.tovijaeschke.xyz/tovi/Envelope/Backend/Database"
  11. 	"git.tovijaeschke.xyz/tovi/Envelope/Backend/Models"
  12. )
  13. 

  14. type credentials struct {
  15. 	Username string `json:"username"`
  16. 	Password string `json:"password"`
  17. }
  18. 

  19. type loginResponse struct {
  20. 	UserID               string `json:"user_id"`
  21. 	Username             string `json:"username"`
  22. 	AsymmetricPublicKey  string `json:"asymmetric_public_key"`
  23. 	AsymmetricPrivateKey string `json:"asymmetric_private_key"`
  24. 	SymmetricKey         string `json:"symmetric_key"`
  25. 	MessageExpiryDefault string `json:"message_expiry_default"`
  26. 	ImageLink            string `json:"image_link"`
  27. }
  28. 

  29. // Login logs the user into the system

  30. func Login(w http.ResponseWriter, r *http.Request) {
  31. 	var (
  32. 		creds            credentials
  33. 		user             Models.User
  34. 		session          Models.Session
  35. 		expiresAt        time.Time
  36. 		messageExpiryRaw driver.Value
  37. 		messageExpiry    string
  38. 		imageLink        string
  39. 		returnJSON       []byte
  40. 		err              error
  41. 	)
  42. 

  43. 	err = json.NewDecoder(r.Body).Decode(&creds)
  44. 	if err != nil {
  45. 		http.Error(w, "Unauthorized", http.StatusUnauthorized)
  46. 		return
  47. 	}
  48. 

  49. 	user, err = Database.GetUserByUsername(creds.Username)
  50. 	if err != nil {
  51. 		http.Error(w, "Unauthorized", http.StatusUnauthorized)
  52. 		return
  53. 	}
  54. 

  55. 	if !CheckPasswordHash(creds.Password, user.Password) {
  56. 		http.Error(w, "Unauthorized", http.StatusUnauthorized)
  57. 		return
  58. 	}
  59. 

  60. 	// TODO: Revisit before production

  61. 	expiresAt = time.Now().Add(12 * time.Hour)
  62. 

  63. 	session = Models.Session{
  64. 		UserID: user.ID,
  65. 		Expiry: expiresAt,
  66. 	}
  67. 

  68. 	err = Database.CreateSession(&session)
  69. 	if err != nil {
  70. 		http.Error(w, "Unauthorized", http.StatusUnauthorized)
  71. 		return
  72. 	}
  73. 

  74. 	http.SetCookie(w, &http.Cookie{
  75. 		Name:    "session_token",
  76. 		Value:   session.ID.String(),
  77. 		Expires: expiresAt,
  78. 	})
  79. 

  80. 	if user.AttachmentID != nil {
  81. 		imageLink = fmt.Sprintf(
  82. 			"http://192.168.1.5:8080/files/%s",
  83. 			user.Attachment.FilePath,
  84. 		)
  85. 	}
  86. 

  87. 	messageExpiryRaw, _ = user.MessageExpiryDefault.Value()
  88. 	messageExpiry, _ = messageExpiryRaw.(string)
  89. 

  90. 	returnJSON, err = json.MarshalIndent(loginResponse{
  91. 		UserID:               user.ID.String(),
  92. 		Username:             user.Username,
  93. 		AsymmetricPublicKey:  user.AsymmetricPublicKey,
  94. 		AsymmetricPrivateKey: user.AsymmetricPrivateKey,
  95. 		SymmetricKey:         user.SymmetricKey,
  96. 		MessageExpiryDefault: messageExpiry,
  97. 		ImageLink:            imageLink,
  98. 	}, "", "  ")
  99. 

  100. 	if err != nil {
  101. 		http.Error(w, "Unauthorized", http.StatusUnauthorized)
  102. 		return
  103. 	}
  104. 

  105. 	// Return updated json

  106. 	w.WriteHeader(http.StatusOK)
  107. 	w.Write(returnJSON)
  108. }