mirror of
https://github.com/openziti/zrok.git
synced 2025-03-28 07:06:53 +01:00
82 lines
2.8 KiB
Go
82 lines
2.8 KiB
Go
package controller
|
|
|
|
import (
|
|
"github.com/go-openapi/runtime/middleware"
|
|
"github.com/openziti/zrok/controller/config"
|
|
"github.com/openziti/zrok/controller/store"
|
|
"github.com/openziti/zrok/rest_model_zrok"
|
|
"github.com/openziti/zrok/rest_server_zrok/operations/account"
|
|
"github.com/sirupsen/logrus"
|
|
)
|
|
|
|
type registerHandler struct {
|
|
cfg *config.Config
|
|
}
|
|
|
|
func newRegisterHandler(cfg *config.Config) *registerHandler {
|
|
return ®isterHandler{
|
|
cfg: cfg,
|
|
}
|
|
}
|
|
func (h *registerHandler) Handle(params account.RegisterParams) middleware.Responder {
|
|
if params.Body.RegToken == "" || params.Body.Password == "" {
|
|
logrus.Error("missing token or password")
|
|
return account.NewRegisterNotFound()
|
|
}
|
|
logrus.Infof("received register request for registration token '%v'", params.Body.RegToken)
|
|
|
|
tx, err := str.Begin()
|
|
if err != nil {
|
|
logrus.Errorf("error starting transaction for registration token '%v': %v", params.Body.RegToken, err)
|
|
return account.NewRegisterInternalServerError()
|
|
}
|
|
defer func() { _ = tx.Rollback() }()
|
|
|
|
ar, err := str.FindAccountRequestWithToken(params.Body.RegToken, tx)
|
|
if err != nil {
|
|
logrus.Errorf("error finding account request with registration token '%v': %v", params.Body.RegToken, err)
|
|
return account.NewRegisterNotFound()
|
|
}
|
|
|
|
accountToken, err := CreateToken()
|
|
if err != nil {
|
|
logrus.Errorf("error creating account token for request '%v' (%v): %v", params.Body.RegToken, ar.Email, err)
|
|
return account.NewRegisterInternalServerError()
|
|
}
|
|
|
|
if err := validatePassword(h.cfg, params.Body.Password); err != nil {
|
|
logrus.Errorf("password not valid for request '%v', (%v): %v", params.Body.RegToken, ar.Email, err)
|
|
return account.NewRegisterUnprocessableEntity().WithPayload(rest_model_zrok.ErrorMessage(err.Error()))
|
|
}
|
|
|
|
hpwd, err := HashPassword(params.Body.Password)
|
|
if err != nil {
|
|
logrus.Errorf("error hashing password for request '%v' (%v): %v", params.Body.RegToken, ar.Email, err)
|
|
return account.NewRegisterInternalServerError()
|
|
}
|
|
a := &store.Account{
|
|
Email: ar.Email,
|
|
Salt: hpwd.Salt,
|
|
Password: hpwd.Password,
|
|
Token: accountToken,
|
|
}
|
|
if _, err := str.CreateAccount(a, tx); err != nil {
|
|
logrus.Errorf("error creating account for request '%v' (%v): %v", params.Body.RegToken, ar.Email, err)
|
|
return account.NewRegisterInternalServerError()
|
|
}
|
|
|
|
if err := str.DeleteAccountRequest(ar.Id, tx); err != nil {
|
|
logrus.Errorf("error deleteing account request '%v' (%v): %v", params.Body.RegToken, ar.Email, err)
|
|
return account.NewRegisterInternalServerError()
|
|
}
|
|
|
|
if err := tx.Commit(); err != nil {
|
|
logrus.Errorf("error committing '%v' (%v): %v", params.Body.RegToken, ar.Email, err)
|
|
return account.NewRegisterInternalServerError()
|
|
}
|
|
|
|
logrus.Infof("created account '%v'", a.Email)
|
|
|
|
return account.NewRegisterOK().WithPayload(&account.RegisterOKBody{AccountToken: a.Token})
|
|
}
|