135 lines
2.9 KiB
Go
135 lines
2.9 KiB
Go
package models
|
|
|
|
import (
|
|
"golang.org/x/crypto/bcrypt"
|
|
)
|
|
|
|
// CreateUser creates a new user and inserts it into the database
|
|
func CreateUser(user User, doer *User) (newUser User, err error) {
|
|
|
|
newUser = user
|
|
|
|
// Check if we have all needed informations
|
|
if newUser.Password == "" || newUser.Username == "" {
|
|
return User{}, ErrNoUsernamePassword{}
|
|
}
|
|
|
|
// Check if the user already existst with that username
|
|
existingUser, exists, err := GetUser(User{Username: newUser.Username})
|
|
if err != nil {
|
|
return User{}, err
|
|
}
|
|
if exists {
|
|
return User{}, ErrUsernameExists{existingUser.ID, existingUser.Username}
|
|
}
|
|
|
|
// Check if the user already existst with that username
|
|
existingUser, exists, err = GetUser(User{Email: newUser.Email})
|
|
if err != nil {
|
|
return User{}, err
|
|
}
|
|
if exists {
|
|
return User{}, ErrUserEmailExists{existingUser.ID, existingUser.Email}
|
|
}
|
|
|
|
// Hash the password
|
|
newUser.Password, err = hashPassword(user.Password)
|
|
if err != nil {
|
|
return User{}, err
|
|
}
|
|
|
|
// Insert it
|
|
_, err = x.Insert(newUser)
|
|
if err != nil {
|
|
return User{}, err
|
|
}
|
|
|
|
// Get the full new User
|
|
newUserOut, _, err := GetUser(newUser)
|
|
if err != nil {
|
|
return User{}, err
|
|
}
|
|
|
|
// Logging
|
|
err = logAction(ActionTypeUserAdded, doer, newUser.ID)
|
|
|
|
return newUserOut, err
|
|
}
|
|
|
|
// HashPassword hashes a password
|
|
func hashPassword(password string) (string, error) {
|
|
bytes, err := bcrypt.GenerateFromPassword([]byte(password), 14)
|
|
return string(bytes), err
|
|
}
|
|
|
|
// UpdateUser updates a user
|
|
func UpdateUser(user User, doer *User) (updatedUser User, err error) {
|
|
|
|
// Check if it exists
|
|
theUser, exists, err := GetUserByID(user.ID)
|
|
if err != nil {
|
|
return User{}, err
|
|
}
|
|
|
|
if exists {
|
|
// Check if we have at least a username
|
|
if user.Username == "" {
|
|
//return User{}, ErrNoUsername{user.ID}
|
|
user.Username = theUser.Username // Dont change the username if we dont have one
|
|
}
|
|
|
|
user.Password = theUser.Password // set the password to the one in the database to not accedently resetting it
|
|
|
|
// Update it
|
|
_, err = x.Id(user.ID).Update(user)
|
|
if err != nil {
|
|
return User{}, err
|
|
}
|
|
|
|
// Get the newly updated user
|
|
updatedUser, _, err = GetUserByID(user.ID)
|
|
if err != nil {
|
|
return User{}, err
|
|
}
|
|
|
|
// Logging
|
|
err = logAction(ActionTypeUserUpdated, doer, user.ID)
|
|
|
|
return updatedUser, err
|
|
}
|
|
|
|
return User{}, ErrUserDoesNotExist{user.ID}
|
|
}
|
|
|
|
// UpdateUserPassword updates the password of a user
|
|
func UpdateUserPassword(userID int64, newPassword string, doer *User) (err error) {
|
|
|
|
// Get all user details
|
|
user, exists, err := GetUserByID(userID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if !exists {
|
|
return ErrUserDoesNotExist{userID}
|
|
}
|
|
|
|
// Hash the new password and set it
|
|
hashed, err := hashPassword(newPassword)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
user.Password = hashed
|
|
|
|
// Update it
|
|
_, err = x.Id(user.ID).Update(user)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// Logging
|
|
err = logAction(ActionTypeChangedUserPassword, doer, user.ID)
|
|
|
|
return err
|
|
}
|