tovi
/
Envelope
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
Encrypted messaging app
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
44 Commits
3 Branches
16 MiB
Tree: 9a29a9d82c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '9a29a9d82c'
${ noResults }
Envelope/Backend/Api/Auth/Login.go

104 lines
2.5 KiB
Raw Normal View History

Working on initial encryption key generation & authentication
2 years ago
Update the profile page Add change password page and route Add disappearing messages page and route Add the ability to change the server URL Update the look and feel of the qr code
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Move go server into docker container and start adding tests
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Update the profile page Add change password page and route Add disappearing messages page and route Add the ability to change the server URL Update the look and feel of the qr code
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Message conversations syncing to device
2 years ago
Finish sending messages
2 years ago
Add profile images for user profiles
2 years ago
Update the profile page Add change password page and route Add disappearing messages page and route Add the ability to change the server URL Update the look and feel of the qr code
2 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Add profile images for user profiles
2 years ago
Update the profile page Add change password page and route Add disappearing messages page and route Add the ability to change the server URL Update the look and feel of the qr code
2 years ago
Add profile images for user profiles
2 years ago
Update the profile page Add change password page and route Add disappearing messages page and route Add the ability to change the server URL Update the look and feel of the qr code
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Message conversations syncing to device
2 years ago
Friends and conversations sync to device
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Friends and conversations sync to device
2 years ago
Add profile images for user profiles
2 years ago
Friends and conversations sync to device
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Friends and conversations sync to device
2 years ago
Add profile images for user profiles
2 years ago
Friends and conversations sync to device
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Friends and conversations sync to device
2 years ago
Working on initial encryption key generation & authentication
2 years ago
Add profile images for user profiles
2 years ago
Update attachements to send back filename not link
2 years ago
Add profile images for user profiles
2 years ago
Working on initial encryption key generation & authentication
2 years ago
 
  1. package Auth
  2. 

  3. import (
  4. 	"database/sql/driver"
  5. 	"encoding/json"
  6. 	"net/http"
  7. 	"time"
  8. 

  9. 	"git.tovijaeschke.xyz/tovi/Capsule/Backend/Database"
  10. 	"git.tovijaeschke.xyz/tovi/Capsule/Backend/Models"
  11. )
  12. 

  13. type credentials struct {
  14. 	Username string `json:"username"`
  15. 	Password string `json:"password"`
  16. }
  17. 

  18. type loginResponse struct {
  19. 	UserID               string `json:"user_id"`
  20. 	Username             string `json:"username"`
  21. 	AsymmetricPublicKey  string `json:"asymmetric_public_key"`
  22. 	AsymmetricPrivateKey string `json:"asymmetric_private_key"`
  23. 	SymmetricKey         string `json:"symmetric_key"`
  24. 	MessageExpiryDefault string `json:"message_expiry_default"`
  25. 	ImageLink            string `json:"image_link"`
  26. }
  27. 

  28. // Login logs the user into the system

  29. func Login(w http.ResponseWriter, r *http.Request) {
  30. 	var (
  31. 		creds            credentials
  32. 		user             Models.User
  33. 		session          Models.Session
  34. 		expiresAt        time.Time
  35. 		messageExpiryRaw driver.Value
  36. 		messageExpiry    string
  37. 		imageLink        string
  38. 		returnJSON       []byte
  39. 		err              error
  40. 	)
  41. 

  42. 	err = json.NewDecoder(r.Body).Decode(&creds)
  43. 	if err != nil {
  44. 		http.Error(w, "Unauthorized", http.StatusUnauthorized)
  45. 		return
  46. 	}
  47. 

  48. 	user, err = Database.GetUserByUsername(creds.Username)
  49. 	if err != nil {
  50. 		http.Error(w, "Unauthorized", http.StatusUnauthorized)
  51. 		return
  52. 	}
  53. 

  54. 	if !CheckPasswordHash(creds.Password, user.Password) {
  55. 		http.Error(w, "Unauthorized", http.StatusUnauthorized)
  56. 		return
  57. 	}
  58. 

  59. 	// TODO: Revisit before production

  60. 	expiresAt = time.Now().Add(12 * time.Hour)
  61. 

  62. 	session = Models.Session{
  63. 		UserID: user.ID,
  64. 		Expiry: expiresAt,
  65. 	}
  66. 

  67. 	err = Database.CreateSession(&session)
  68. 	if err != nil {
  69. 		http.Error(w, "Unauthorized", http.StatusUnauthorized)
  70. 		return
  71. 	}
  72. 

  73. 	http.SetCookie(w, &http.Cookie{
  74. 		Name:    "session_token",
  75. 		Value:   session.ID.String(),
  76. 		Expires: expiresAt,
  77. 	})
  78. 

  79. 	if user.AttachmentID != nil {
  80. 		imageLink = user.Attachment.FilePath
  81. 	}
  82. 

  83. 	messageExpiryRaw, _ = user.MessageExpiryDefault.Value()
  84. 	messageExpiry, _ = messageExpiryRaw.(string)
  85. 

  86. 	returnJSON, err = json.MarshalIndent(loginResponse{
  87. 		UserID:               user.ID.String(),
  88. 		Username:             user.Username,
  89. 		AsymmetricPublicKey:  user.AsymmetricPublicKey,
  90. 		AsymmetricPrivateKey: user.AsymmetricPrivateKey,
  91. 		SymmetricKey:         user.SymmetricKey,
  92. 		MessageExpiryDefault: messageExpiry,
  93. 		ImageLink:            imageLink,
  94. 	}, "", "  ")
  95. 

  96. 	if err != nil {
  97. 		http.Error(w, "Unauthorized", http.StatusUnauthorized)
  98. 		return
  99. 	}
  100. 

  101. 	// Return updated json

  102. 	w.WriteHeader(http.StatusOK)
  103. 	w.Write(returnJSON)
  104. }