mycorrhiza/user/user.go

package user

import (
	"net/http"
	"regexp"
	"strings"
	"sync"
	"time"

	"github.com/bouncepaw/mycorrhiza/cfg"
	"golang.org/x/crypto/bcrypt"
)

var usernamePattern = regexp.MustCompile(`[^?!:#@><*|"'&%{}/]+`)

// User contains information about a given user required for identification.
type User struct {
	// Name is a username. It must follow hypha naming rules.
	Name         string    `json:"name"`
	Group        string    `json:"group"`
	Password     string    `json:"hashed_password"`
	RegisteredAt time.Time `json:"registered_on"`
	// Source is where the user from. Valid values: local, telegram.
	Source string `json:"source"`
	sync.RWMutex

	// A note about why HashedPassword is string and not []byte. The reason is
	// simple: golang's json marshals []byte as slice of numbers, which is not
	// acceptable.
}

// Route — Right (more is more right)
var minimalRights = map[string]int{
	"edit":                1,
	"upload-binary":       1,
	"upload-text":         1,
	"rename-ask":          2,
	"rename-confirm":      2,
	"unattach-ask":        2,
	"unattach-confirm":    2,
	"update-header-links": 3,
	"delete-ask":          3,
	"delete-confirm":      3,
	"reindex":             4,
	"admin":               4,
	"admin/shutdown":      4,
}

var groups = []string{
	"anon",
	"editor",
	"trusted",
	"moderator",
	"admin",
}

// Group — Right level
var groupRight = map[string]int{
	"anon":      0,
	"editor":    1,
	"trusted":   2,
	"moderator": 3,
	"admin":     4,
}

// ValidGroup checks whether provided user group name exists.
func ValidGroup(group string) bool {
	for _, grp := range groups {
		if grp == group {
			return true
		}
	}
	return false
}

// ValidSource checks whether provided user source name exists.
func ValidSource(source string) bool {
	return source == "local" || source == "telegram"
}

// EmptyUser constructs an anonymous user.
func EmptyUser() *User {
	return &User{
		Name:     "anon",
		Group:    "anon",
		Password: "",
		Source:   "local",
	}
}

// WikimindUser constructs the wikimind user, which is to be used for automated wiki edits and has admin privileges.
func WikimindUser() *User {
	return &User{
		Name:     "wikimind",
		Group:    "admin",
		Password: "",
		Source:   "local",
	}
}

// CanProceed checks whether user has rights to visit the provided path (and perform an action).
func (user *User) CanProceed(route string) bool {
	if !cfg.UseAuth {
		return true
	}

	user.RLock()
	defer user.RUnlock()

	right := groupRight[user.Group]
	minimalRight := minimalRights[route]

	return right >= minimalRight
}

func (user *User) isCorrectPassword(password string) bool {
	user.RLock()
	defer user.RUnlock()

	err := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(password))
	return err == nil
}

// ShowLockMaybe redirects to the lock page if the user is anon and the wiki has been configured to use the lock. It returns true if the user was redirected.
func (user *User) ShowLockMaybe(w http.ResponseWriter, rq *http.Request) bool {
	if cfg.Locked && user.Group == "anon" {
		http.Redirect(w, rq, "/lock", http.StatusSeeOther)
		return true
	}
	return false
}

// IsValidUsername checks if the given username is valid.
func IsValidUsername(username string) bool {
	return username != "anon" && username != "wikimind" &&
		usernamePattern.MatchString(strings.TrimSpace(username)) &&
		usernameIsWhiteListed(username)
}

func usernameIsWhiteListed(username string) bool {
	if !cfg.UseWhiteList {
		return true
	}
	for _, allowedUsername := range cfg.WhiteList {
		if allowedUsername == username {
			return true
		}
	}
	return false
}
Start implementing fixed authorization system 2020-11-13 18:45:42 +00:00			`package user`

			`import (`
Make the lock work There is a new config field: Authorization.Locked. I am a little bit sorry for how actually the lock is implemented. I've added the check on almost every handler there is. Good luck maintaining that ❤️ 2021-07-10 19:04:21 +00:00			`"net/http"`
Improve validation helpers Still, there are a lot of bugs in the shroom module to be fixed later. 2021-10-27 06:43:01 +00:00			`"regexp"`
			`"strings"`
Make account system concurrent-safe and refactor it a little 2021-01-09 20:49:48 +00:00			`"sync"`
Initial user panel draft 2021-06-29 10:34:36 +00:00			`"time"`
You can now register, but the new account is not saved on disk 2021-04-19 16:39:25 +00:00
Drop fixed authorization Important changes: - UseFixedAuth is now UseAuth and toggles all kinds of authorization and registration - UseRegistration is now AllowRegistration to better reflect the meaning - LimitRegistration is now RegistrationLimit because it's not a boolean, it's a value (not "limit registration?", but "registration limit is ...") - registered-users.json is now users.json, because all users are stored there - user.AuthUsed is dropped in favor of new cfg.UseAuth which has the same meaning I hope I have not forgotten anything. 2021-07-02 08:20:03 +00:00			`"github.com/bouncepaw/mycorrhiza/cfg"`
You can now register, but the new account is not saved on disk 2021-04-19 16:39:25 +00:00			`"golang.org/x/crypto/bcrypt"`
Start implementing fixed authorization system 2020-11-13 18:45:42 +00:00			`)`

Improve validation helpers Still, there are a lot of bugs in the shroom module to be fixed later. 2021-10-27 06:43:01 +00:00			var usernamePattern = regexp.MustCompile(`[^?!:#@><*\|"'&%{}/]+`)

			`// User contains information about a given user required for identification.`
Make account system concurrent-safe and refactor it a little 2021-01-09 20:49:48 +00:00			`type User struct {`
			`// Name is a username. It must follow hypha naming rules.`
Drop fixed authorization Important changes: - UseFixedAuth is now UseAuth and toggles all kinds of authorization and registration - UseRegistration is now AllowRegistration to better reflect the meaning - LimitRegistration is now RegistrationLimit because it's not a boolean, it's a value (not "limit registration?", but "registration limit is ...") - registered-users.json is now users.json, because all users are stored there - user.AuthUsed is dropped in favor of new cfg.UseAuth which has the same meaning I hope I have not forgotten anything. 2021-07-02 08:20:03 +00:00			Name string `json:"name"`
			Group string `json:"group"`
			Password string `json:"hashed_password"`
			RegisteredAt time.Time `json:"registered_on"`
Fix a typo 2021-11-10 07:21:11 +00:00			`// Source is where the user from. Valid values: local, telegram.`
Migrate to gorilla/mux for web needs What a wonderful package! 2021-07-15 17:46:35 +00:00			Source string `json:"source"`
Make account system concurrent-safe and refactor it a little 2021-01-09 20:49:48 +00:00			`sync.RWMutex`
You can now register, but the new account is not saved on disk 2021-04-19 16:39:25 +00:00
			`// A note about why HashedPassword is string and not []byte. The reason is`
			`// simple: golang's json marshals []byte as slice of numbers, which is not`
			`// acceptable.`
Implement logging out 2020-11-14 13:03:06 +00:00			`}`

Make account system concurrent-safe and refactor it a little 2021-01-09 20:49:48 +00:00			`// Route — Right (more is more right)`
			`var minimalRights = map[string]int{`
Add header links 2021-01-23 19:00:58 +00:00			`"edit": 1,`
			`"upload-binary": 1,`
			`"upload-text": 1,`
			`"rename-ask": 2,`
			`"rename-confirm": 2,`
			`"unattach-ask": 2,`
			`"unattach-confirm": 2,`
			`"update-header-links": 3,`
			`"delete-ask": 3,`
			`"delete-confirm": 3,`
			`"reindex": 4,`
Add primitive diffs accessible from history pages 2021-03-14 15:01:32 +00:00			`"admin": 4,`
Add /admin/shutdown 2021-02-18 14:50:37 +00:00			`"admin/shutdown": 4,`
Save active sessions between launches 2020-11-14 14:46:04 +00:00			`}`

Working user panel See https://mycorrhiza.wiki/hypha/idea/user_panel It's not pretty, but it works. The next step is to make it look good. 2021-06-29 15:10:48 +00:00			`var groups = []string{`
			`"anon",`
			`"editor",`
			`"trusted",`
			`"moderator",`
			`"admin",`
			`}`

Mark user's source: local or telegram 2021-07-14 21:00:35 +00:00			`// Group — Right level`
Make account system concurrent-safe and refactor it a little 2021-01-09 20:49:48 +00:00			`var groupRight = map[string]int{`
			`"anon": 0,`
			`"editor": 1,`
			`"trusted": 2,`
			`"moderator": 3,`
			`"admin": 4,`
Implement logging out 2020-11-14 13:03:06 +00:00			`}`

Housekeeping with linter 'I do as the golint guides' 2021-10-01 17:12:16 +00:00			`// ValidGroup checks whether provided user group name exists.`
Working user panel See https://mycorrhiza.wiki/hypha/idea/user_panel It's not pretty, but it works. The next step is to make it look good. 2021-06-29 15:10:48 +00:00			`func ValidGroup(group string) bool {`
			`for _, grp := range groups {`
			`if grp == group {`
			`return true`
			`}`
			`}`
			`return false`
			`}`

Housekeeping with linter 'I do as the golint guides' 2021-10-01 17:12:16 +00:00			`// ValidSource checks whether provided user source name exists.`
Mark user's source: local or telegram 2021-07-14 21:00:35 +00:00			`func ValidSource(source string) bool {`
			`return source == "local" \|\| source == "telegram"`
			`}`

Housekeeping with linter 'I do as the golint guides' 2021-10-01 17:12:16 +00:00			`// EmptyUser constructs an anonymous user.`
Move the user link to the header links 2021-01-24 07:30:14 +00:00			`func EmptyUser() *User {`
Make account system concurrent-safe and refactor it a little 2021-01-09 20:49:48 +00:00			`return &User{`
			`Name: "anon",`
			`Group: "anon",`
			`Password: "",`
Migrate to gorilla/mux for web needs What a wonderful package! 2021-07-15 17:46:35 +00:00			`Source: "local",`
Implement login form 2020-11-14 10:39:18 +00:00			`}`
			`}`

Implement the rocket link migration algorithm 2022-01-30 21:34:52 +00:00			`// WikimindUser constructs the wikimind user, which is to be used for automated wiki edits and has admin privileges.`
			`func WikimindUser() *User {`
			`return &User{`
			`Name: "wikimind",`
			`Group: "admin",`
			`Password: "",`
			`Source: "local",`
			`}`
			`}`

Housekeeping with linter 'I do as the golint guides' 2021-10-01 17:12:16 +00:00			`// CanProceed checks whether user has rights to visit the provided path (and perform an action).`
Make account system concurrent-safe and refactor it a little 2021-01-09 20:49:48 +00:00			`func (user *User) CanProceed(route string) bool {`
Drop fixed authorization Important changes: - UseFixedAuth is now UseAuth and toggles all kinds of authorization and registration - UseRegistration is now AllowRegistration to better reflect the meaning - LimitRegistration is now RegistrationLimit because it's not a boolean, it's a value (not "limit registration?", but "registration limit is ...") - registered-users.json is now users.json, because all users are stored there - user.AuthUsed is dropped in favor of new cfg.UseAuth which has the same meaning I hope I have not forgotten anything. 2021-07-02 08:20:03 +00:00			`if !cfg.UseAuth {`
Make account system concurrent-safe and refactor it a little 2021-01-09 20:49:48 +00:00			`return true`
Implement login form 2020-11-14 10:39:18 +00:00			`}`
Implement logging out 2020-11-14 13:03:06 +00:00
Make account system concurrent-safe and refactor it a little 2021-01-09 20:49:48 +00:00			`user.RLock()`
			`defer user.RUnlock()`
Implement login form 2020-11-14 10:39:18 +00:00
Simplify return statement 2021-10-29 08:59:30 +00:00			`right := groupRight[user.Group]`
			`minimalRight := minimalRights[route]`

			`return right >= minimalRight`
Implement login form 2020-11-14 10:39:18 +00:00			`}`

Make account system concurrent-safe and refactor it a little 2021-01-09 20:49:48 +00:00			`func (user *User) isCorrectPassword(password string) bool {`
			`user.RLock()`
			`defer user.RUnlock()`
Start implementing fixed authorization system 2020-11-13 18:45:42 +00:00
Drop fixed authorization Important changes: - UseFixedAuth is now UseAuth and toggles all kinds of authorization and registration - UseRegistration is now AllowRegistration to better reflect the meaning - LimitRegistration is now RegistrationLimit because it's not a boolean, it's a value (not "limit registration?", but "registration limit is ...") - registered-users.json is now users.json, because all users are stored there - user.AuthUsed is dropped in favor of new cfg.UseAuth which has the same meaning I hope I have not forgotten anything. 2021-07-02 08:20:03 +00:00			`err := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(password))`
			`return err == nil`
Implement login form 2020-11-14 10:39:18 +00:00			`}`
Make the lock work There is a new config field: Authorization.Locked. I am a little bit sorry for how actually the lock is implemented. I've added the check on almost every handler there is. Good luck maintaining that ❤️ 2021-07-10 19:04:21 +00:00
			`// ShowLockMaybe redirects to the lock page if the user is anon and the wiki has been configured to use the lock. It returns true if the user was redirected.`
			`func (user User) ShowLockMaybe(w http.ResponseWriter, rq http.Request) bool {`
			`if cfg.Locked && user.Group == "anon" {`
			`http.Redirect(w, rq, "/lock", http.StatusSeeOther)`
			`return true`
			`}`
			`return false`
			`}`
Improve validation helpers Still, there are a lot of bugs in the shroom module to be fixed later. 2021-10-27 06:43:01 +00:00
			`// IsValidUsername checks if the given username is valid.`
			`func IsValidUsername(username string) bool {`
			`return username != "anon" && username != "wikimind" &&`
			`usernamePattern.MatchString(strings.TrimSpace(username)) &&`
			`usernameIsWhiteListed(username)`
			`}`

			`func usernameIsWhiteListed(username string) bool {`
			`if !cfg.UseWhiteList {`
			`return true`
			`}`
			`for _, allowedUsername := range cfg.WhiteList {`
			`if allowedUsername == username {`
			`return true`
			`}`
			`}`
			`return false`
			`}`