2018-04-17 09:16:03 +00:00
|
|
|
package account
|
|
|
|
|
|
|
|
|
|
import (
|
2018-04-18 06:16:29 +00:00
|
|
|
"crypto/rand"
|
|
|
|
|
"crypto/sha512"
|
|
|
|
|
"encoding/hex"
|
|
|
|
|
"encoding/json"
|
2018-04-17 10:04:36 +00:00
|
|
|
"log"
|
2018-04-18 06:16:29 +00:00
|
|
|
"reflect"
|
|
|
|
|
"strings"
|
|
|
|
|
|
|
|
|
|
"git.trj.tw/golang/go-gallery/modules/memstore"
|
2018-04-17 10:04:36 +00:00
|
|
|
|
|
|
|
|
"git.trj.tw/golang/go-gallery/models"
|
2018-04-17 09:16:03 +00:00
|
|
|
"git.trj.tw/golang/go-gallery/modules/context"
|
2018-04-17 10:04:36 +00:00
|
|
|
"git.trj.tw/golang/go-gallery/modules/utils"
|
2018-04-18 06:16:29 +00:00
|
|
|
"golang.org/x/crypto/pbkdf2"
|
2018-04-17 09:16:03 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// UserLogin route
|
|
|
|
|
func UserLogin(c *context.Context) {
|
|
|
|
|
loginArg := struct {
|
|
|
|
|
Account string `form:"account" json:"account" binding:"required"`
|
|
|
|
|
Password string `form:"password" json:"password" binding:"required"`
|
|
|
|
|
}{
|
|
|
|
|
Account: "",
|
|
|
|
|
Password: "",
|
|
|
|
|
}
|
2018-04-18 06:16:29 +00:00
|
|
|
err := c.BindData(&loginArg)
|
2018-04-17 09:16:03 +00:00
|
|
|
if err != nil {
|
2018-04-17 10:04:36 +00:00
|
|
|
c.DataFormat(nil)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
acc, err := models.GetAccount(loginArg.Account)
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
log.Println(err)
|
|
|
|
|
c.ServerError(nil)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
if acc == nil {
|
|
|
|
|
c.NotFound("User not found")
|
2018-04-17 09:16:03 +00:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2018-04-18 06:16:29 +00:00
|
|
|
strs := strings.Split(acc.Password, ".")
|
|
|
|
|
if len(strs) != 2 {
|
|
|
|
|
c.ServerError("store pass format error")
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
b, err := hex.DecodeString(strs[0])
|
|
|
|
|
if err != nil {
|
|
|
|
|
c.ServerError(nil)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
hashPass, err := hex.DecodeString(strs[1])
|
|
|
|
|
if err != nil {
|
|
|
|
|
c.ServerError(nil)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
enc := pbkdf2.Key([]byte(loginArg.Password), b, 2048, 64, sha512.New)
|
|
|
|
|
|
|
|
|
|
if enc == nil || !reflect.DeepEqual(enc, hashPass) {
|
|
|
|
|
c.DataFormat("password error")
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
res := utils.ToMap(acc)
|
|
|
|
|
|
|
|
|
|
m := make(map[string]interface{})
|
|
|
|
|
|
|
|
|
|
m["user"] = res
|
|
|
|
|
|
|
|
|
|
jsonStr, err := json.Marshal(m)
|
|
|
|
|
if err != nil {
|
|
|
|
|
c.ServerError(nil)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
tByte := make([]byte, 20)
|
|
|
|
|
_, err = rand.Read(tByte)
|
|
|
|
|
if err != nil {
|
|
|
|
|
c.ServerError(nil)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err = memstore.RedisSet("golang", hex.EncodeToString(tByte), string(jsonStr), 600)
|
|
|
|
|
if err != nil {
|
|
|
|
|
c.ServerError(nil)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
m["token"] = hex.EncodeToString(tByte)
|
|
|
|
|
|
|
|
|
|
c.Success(m)
|
2018-04-17 09:16:03 +00:00
|
|
|
}
|
2018-04-18 07:05:37 +00:00
|
|
|
|
|
|
|
|
// UserLogout route
|
|
|
|
|
func UserLogout(c *context.Context) {
|
|
|
|
|
token := c.GetHeader("X-Auth-Token")
|
|
|
|
|
// token, ok := c.C["token"]
|
|
|
|
|
if len(token) == 0 {
|
|
|
|
|
c.DataFormat("token not found")
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err := memstore.RedisDel("golang", token)
|
|
|
|
|
if err != nil {
|
|
|
|
|
c.ServerError("remvoe session fail")
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
c.Success(nil)
|
|
|
|
|
}
|
