gochan/pkg/manage/actionsNoPerm.go

package manage

import (
	"bytes"
	"errors"
	"net/http"
	"path"

	"github.com/gochan-org/gochan/pkg/config"
	"github.com/gochan-org/gochan/pkg/gcsql"
	"github.com/gochan-org/gochan/pkg/gctemplates"
	"github.com/gochan-org/gochan/pkg/gcutil"
	"github.com/gochan-org/gochan/pkg/server/serverutil"
	"github.com/rs/zerolog"
)

func loginCallback(writer http.ResponseWriter, request *http.Request, staff *gcsql.Staff, _ bool, _, errEv *zerolog.Event) (output interface{}, err error) {
	systemCritical := config.GetSystemCriticalConfig()
	if staff.Rank > 0 {
		http.Redirect(writer, request, path.Join(systemCritical.WebRoot, "manage"), http.StatusFound)
	}
	username := request.FormValue("username")
	password := request.FormValue("password")
	redirectAction := request.FormValue("action")
	if redirectAction == "" || redirectAction == "logout" {
		redirectAction = "dashboard"
	}

	if username == "" || password == "" {
		//assume that they haven't logged in
		manageLoginBuffer := bytes.NewBufferString("")
		if err = serverutil.MinifyTemplate(gctemplates.ManageLogin, map[string]interface{}{
			"siteConfig":  config.GetSiteConfig(),
			"sections":    gcsql.AllSections,
			"boards":      gcsql.AllBoards,
			"boardConfig": config.GetBoardConfig(""),
			"redirect":    redirectAction,
		}, manageLoginBuffer, "text/html"); err != nil {
			errEv.Err(err).Str("template", "manage_login.html").Send()
			return "", errors.New("Error executing staff login page template: " + err.Error())
		}
		output = manageLoginBuffer.String()
	} else {
		key := gcutil.Md5Sum(request.RemoteAddr + username + password + systemCritical.RandomSeed + gcutil.RandomString(3))[0:10]
		if err = createSession(key, username, password, request, writer); err != nil {
			if errors.Is(err, ErrBadCredentials) {
				writer.WriteHeader(http.StatusUnauthorized)
			}
			return "", err
		}
		http.Redirect(writer, request, path.Join(systemCritical.WebRoot, "manage/"+request.FormValue("redirect")), http.StatusFound)
	}
	return
}

type staffInfoJSON struct {
	Username string   `json:"username"`
	Rank     int      `json:"rank"`
	Actions  []Action `json:"actions,omitempty"`
}

func staffInfoCallback(_ http.ResponseWriter, _ *http.Request, staff *gcsql.Staff, _ bool, _ *zerolog.Event, _ *zerolog.Event) (output interface{}, err error) {
	info := staffInfoJSON{
		Username: staff.Username,
		Rank:     staff.Rank,
	}
	if staff.Rank >= JanitorPerms {
		info.Actions = getAvailableActions(staff.Rank, false)
	}
	return info, nil
}

func registerNoPermPages() {
	RegisterManagePage("staffinfo", "", NoPerms, AlwaysJSON, staffInfoCallback)
	RegisterManagePage("login", "Login", NoPerms, NoJSON, loginCallback)
}
Split actions.go by rank requirement for staff 2023-04-13 10:45:30 -07:00			`package manage`

			`import (`
			`"bytes"`
			`"errors"`
			`"net/http"`
			`"path"`

			`"github.com/gochan-org/gochan/pkg/config"`
			`"github.com/gochan-org/gochan/pkg/gcsql"`
			`"github.com/gochan-org/gochan/pkg/gctemplates"`
			`"github.com/gochan-org/gochan/pkg/gcutil"`
			`"github.com/gochan-org/gochan/pkg/server/serverutil"`
			`"github.com/rs/zerolog"`
			`)`

refactor: unused parameter should be replaced by underscore Unused parameters in functions or methods should be replaced with `_` (underscore) or removed. 2024-02-07 05:54:09 +00:00			`func loginCallback(writer http.ResponseWriter, request http.Request, staff gcsql.Staff, _ bool, _, errEv *zerolog.Event) (output interface{}, err error) {`
Refactor manage function callbacks into their own separate functions 2024-02-06 21:46:42 -08:00			`systemCritical := config.GetSystemCriticalConfig()`
			`if staff.Rank > 0 {`
			`http.Redirect(writer, request, path.Join(systemCritical.WebRoot, "manage"), http.StatusFound)`
			`}`
			`username := request.FormValue("username")`
			`password := request.FormValue("password")`
			`redirectAction := request.FormValue("action")`
			`if redirectAction == "" \|\| redirectAction == "logout" {`
			`redirectAction = "dashboard"`
			`}`

			`if username == "" \|\| password == "" {`
			`//assume that they haven't logged in`
			`manageLoginBuffer := bytes.NewBufferString("")`
			`if err = serverutil.MinifyTemplate(gctemplates.ManageLogin, map[string]interface{}{`
			`"siteConfig": config.GetSiteConfig(),`
			`"sections": gcsql.AllSections,`
			`"boards": gcsql.AllBoards,`
			`"boardConfig": config.GetBoardConfig(""),`
			`"redirect": redirectAction,`
			`}, manageLoginBuffer, "text/html"); err != nil {`
			`errEv.Err(err).Str("template", "manage_login.html").Send()`
			`return "", errors.New("Error executing staff login page template: " + err.Error())`
			`}`
			`output = manageLoginBuffer.String()`
			`} else {`
			`key := gcutil.Md5Sum(request.RemoteAddr + username + password + systemCritical.RandomSeed + gcutil.RandomString(3))[0:10]`
			`if err = createSession(key, username, password, request, writer); err != nil {`
			`if errors.Is(err, ErrBadCredentials) {`
			`writer.WriteHeader(http.StatusUnauthorized)`
Properly handle accessing all-access staff page when logged out 2023-06-06 13:37:49 -07:00			`}`
Refactor manage function callbacks into their own separate functions 2024-02-06 21:46:42 -08:00			`return "", err`
			`}`
			`http.Redirect(writer, request, path.Join(systemCritical.WebRoot, "manage/"+request.FormValue("redirect")), http.StatusFound)`
Properly handle accessing all-access staff page when logged out 2023-06-06 13:37:49 -07:00			`}`
Refactor manage function callbacks into their own separate functions 2024-02-06 21:46:42 -08:00			`return`
			`}`
Properly handle accessing all-access staff page when logged out 2023-06-06 13:37:49 -07:00
Move staff options to staffinfo callback 2024-02-18 15:09:46 -08:00			`type staffInfoJSON struct {`
Fix manage router group not showing login page 2024-08-30 21:54:51 -07:00			Username string `json:"username"`
			Rank int `json:"rank"`
			Actions []Action `json:"actions,omitempty"`
Move staff options to staffinfo callback 2024-02-18 15:09:46 -08:00			`}`

refactor: unused parameter should be replaced by underscore Unused parameters in functions or methods should be replaced with `_` (underscore) or removed. 2024-02-28 17:45:52 +00:00			`func staffInfoCallback(_ http.ResponseWriter, _ http.Request, staff gcsql.Staff, _ bool, _ zerolog.Event, _ zerolog.Event) (output interface{}, err error) {`
Move staff options to staffinfo callback 2024-02-18 15:09:46 -08:00			`info := staffInfoJSON{`
			`Username: staff.Username,`
			`Rank: staff.Rank,`
			`}`
			`if staff.Rank >= JanitorPerms {`
			`info.Actions = getAvailableActions(staff.Rank, false)`
			`}`
			`return info, nil`
			`}`

Make actino registration functions for individual staff roles private 2023-06-06 13:44:42 -07:00			`func registerNoPermPages() {`
Add filter hits page, refactor manage action resolving to use the router 2024-08-25 16:59:25 -07:00			`RegisterManagePage("staffinfo", "", NoPerms, AlwaysJSON, staffInfoCallback)`
Fix manage router group not showing login page 2024-08-30 21:54:51 -07:00			`RegisterManagePage("login", "Login", NoPerms, NoJSON, loginCallback)`
Split actions.go by rank requirement for staff 2023-04-13 10:45:30 -07:00			`}`