mirror of
https://github.com/osmarks/mycorrhiza.git
synced 2025-03-10 13:38:20 +00:00
41733c50bd
Didn't have the chance to migrate //all// templates just yet. We'll get there. * Implement yet another template system * Move orphans to the new system and fix a bug in it * Link orphans in the admin panel * Move the backlink handlers to the web package * Move auth routing to web * Move /user-list to the new system * Move change password and translate it * Move stuff * Move admin-related stuff to the web * Move a lot of files into internal dir Outside of it are web and stuff that needs further refactoring * Fix static not loading and de-qtpl tree * Move tree to internal * Keep the globe on the same line #230 * Revert "Keep the globe on the same line #230" This reverts commit ae78e5e459b1e980ba89bf29e61f75c0625ed2c7. * Migrate templates from hypview: delete, edit, start empty and existing WIP The delete media view was removed, I didn't even know it still existed as a GET. A rudiment. * Make views multi-file and break compilation * Megarefactoring of hypha views * Auth-related stuffs * Fix some of those weird imports * Migrate cat views * Fix cat js * Lower standards * Internalize trauma
274 lines
8.2 KiB
Go
274 lines
8.2 KiB
Go
package web
|
||
|
||
import (
|
||
"fmt"
|
||
"log"
|
||
"mime"
|
||
"net/http"
|
||
"os"
|
||
"sort"
|
||
|
||
"github.com/bouncepaw/mycorrhiza/internal/cfg"
|
||
"github.com/bouncepaw/mycorrhiza/internal/user"
|
||
"github.com/bouncepaw/mycorrhiza/util"
|
||
"github.com/bouncepaw/mycorrhiza/web/viewutil"
|
||
"github.com/gorilla/mux"
|
||
)
|
||
|
||
const adminTranslationRu = `
|
||
{{define "panel title"}}Панель админстратора{{end}}
|
||
{{define "panel safe section title"}}Безопасная секция{{end}}
|
||
{{define "panel link about"}}Об этой вики{{end}}
|
||
{{define "panel update header"}}Обновить ссылки в верхней панели{{end}}
|
||
{{define "panel link user list"}}Список пользователей{{end}}
|
||
{{define "panel users"}}Управление пользователями{{end}}
|
||
{{define "panel unsafe section title"}}Опасная секция{{end}}
|
||
{{define "panel shutdown"}}Выключить вики{{end}}
|
||
{{define "panel reindex hyphae"}}Переиндексировать гифы{{end}}
|
||
{{define "panel interwiki"}}Интервики{{end}}
|
||
|
||
{{define "manage users"}}Управление пользователями{{end}}
|
||
{{define "create user"}}Создать пользователя{{end}}
|
||
{{define "reindex users"}}Переиндексировать пользователей{{end}}
|
||
{{define "name"}}Имя{{end}}
|
||
{{define "group"}}Группа{{end}}
|
||
{{define "registered at"}}Зарегистрирован{{end}}
|
||
{{define "actions"}}Действия{{end}}
|
||
{{define "edit"}}Изменить{{end}}
|
||
|
||
{{define "new user"}}Новый пользователь{{end}}
|
||
{{define "password"}}Пароль{{end}}
|
||
{{define "confirm password"}}Подтвердить пароль{{end}}
|
||
{{define "change password"}}Изменить пароль{{end}}
|
||
{{define "non local password change"}}Поменять пароль можно только у локальных пользователей.{{end}}
|
||
{{define "create"}}Создать{{end}}
|
||
|
||
{{define "change group"}}Изменить группу{{end}}
|
||
{{define "user x"}}Пользователь {{.}}{{end}}
|
||
{{define "update"}}Обновить{{end}}
|
||
{{define "delete user"}}Удалить пользователя{{end}}
|
||
{{define "delete user tip"}}Удаляет пользователя из базы данных. Правки пользователя будут сохранены. Имя пользователя освободится для повторной регистрации.{{end}}
|
||
|
||
{{define "delete user?"}}Удалить пользователя {{.}}?{{end}}
|
||
{{define "delete user warning"}}Вы уверены, что хотите удалить этого пользователя из базы данных? Это действие нельзя отменить.{{end}}
|
||
`
|
||
|
||
func viewPanel(meta viewutil.Meta) {
|
||
viewutil.ExecutePage(meta, panelChain, &viewutil.BaseData{})
|
||
}
|
||
|
||
type listData struct {
|
||
*viewutil.BaseData
|
||
UserHypha string
|
||
Users []*user.User
|
||
}
|
||
|
||
func viewList(meta viewutil.Meta, users []*user.User) {
|
||
viewutil.ExecutePage(meta, listChain, listData{
|
||
BaseData: &viewutil.BaseData{},
|
||
UserHypha: cfg.UserHypha,
|
||
Users: users,
|
||
})
|
||
}
|
||
|
||
type newUserData struct {
|
||
*viewutil.BaseData
|
||
Form util.FormData
|
||
}
|
||
|
||
func viewNewUser(meta viewutil.Meta, form util.FormData) {
|
||
viewutil.ExecutePage(meta, newUserChain, newUserData{
|
||
BaseData: &viewutil.BaseData{},
|
||
Form: form,
|
||
})
|
||
}
|
||
|
||
type editDeleteUserData struct {
|
||
*viewutil.BaseData
|
||
Form util.FormData
|
||
U *user.User
|
||
}
|
||
|
||
func viewEditUser(meta viewutil.Meta, form util.FormData, u *user.User) {
|
||
viewutil.ExecutePage(meta, editUserChain, editDeleteUserData{
|
||
BaseData: &viewutil.BaseData{},
|
||
Form: form,
|
||
U: u,
|
||
})
|
||
}
|
||
|
||
func viewDeleteUser(meta viewutil.Meta, form util.FormData, u *user.User) {
|
||
viewutil.ExecutePage(meta, deleteUserChain, editDeleteUserData{
|
||
BaseData: &viewutil.BaseData{},
|
||
Form: form,
|
||
U: u,
|
||
})
|
||
}
|
||
|
||
// handlerAdmin provides the admin panel.
|
||
func handlerAdmin(w http.ResponseWriter, rq *http.Request) {
|
||
w.Header().Set("Content-Type", "text/html;charset=utf-8")
|
||
w.WriteHeader(http.StatusOK)
|
||
viewPanel(viewutil.MetaFrom(w, rq))
|
||
}
|
||
|
||
// handlerAdminShutdown kills the wiki.
|
||
func handlerAdminShutdown(w http.ResponseWriter, rq *http.Request) {
|
||
if user.CanProceed(rq, "admin/shutdown") {
|
||
log.Println("An admin commanded the wiki to shutdown")
|
||
os.Exit(0)
|
||
}
|
||
}
|
||
|
||
// handlerAdminReindexUsers reinitialises the user system.
|
||
func handlerAdminReindexUsers(w http.ResponseWriter, rq *http.Request) {
|
||
user.ReadUsersFromFilesystem()
|
||
redirectTo := rq.Referer()
|
||
if redirectTo == "" {
|
||
redirectTo = "/hypha/" + cfg.UserHypha
|
||
}
|
||
http.Redirect(w, rq, redirectTo, http.StatusSeeOther)
|
||
}
|
||
|
||
func handlerAdminUsers(w http.ResponseWriter, rq *http.Request) {
|
||
// Get a sorted list of users
|
||
var users []*user.User
|
||
for u := range user.YieldUsers() {
|
||
users = append(users, u)
|
||
}
|
||
|
||
sort.Slice(users, func(i, j int) bool {
|
||
less := users[i].RegisteredAt.Before(users[j].RegisteredAt)
|
||
return less
|
||
})
|
||
viewList(viewutil.MetaFrom(w, rq), users)
|
||
}
|
||
|
||
func handlerAdminUserEdit(w http.ResponseWriter, rq *http.Request) {
|
||
vars := mux.Vars(rq)
|
||
u := user.ByName(vars["username"])
|
||
if u == nil {
|
||
util.HTTP404Page(w, "404 page not found")
|
||
return
|
||
}
|
||
|
||
f := util.FormDataFromRequest(rq, []string{"group"})
|
||
|
||
if rq.Method == http.MethodPost {
|
||
oldGroup := u.Group
|
||
newGroup := f.Get("group")
|
||
|
||
if user.ValidGroup(newGroup) {
|
||
u.Group = newGroup
|
||
if err := user.SaveUserDatabase(); err != nil {
|
||
u.Group = oldGroup
|
||
log.Println(err)
|
||
f = f.WithError(err)
|
||
} else {
|
||
http.Redirect(w, rq, "/admin/users/", http.StatusSeeOther)
|
||
return
|
||
}
|
||
} else {
|
||
f = f.WithError(fmt.Errorf("invalid group ‘%s’", newGroup))
|
||
}
|
||
}
|
||
|
||
f.Put("group", u.Group)
|
||
|
||
if f.HasError() {
|
||
w.WriteHeader(http.StatusBadRequest)
|
||
}
|
||
w.Header().Set("Content-Type", mime.TypeByExtension(".html"))
|
||
|
||
viewEditUser(viewutil.MetaFrom(w, rq), f, u)
|
||
}
|
||
|
||
func handlerAdminUserChangePassword(w http.ResponseWriter, rq *http.Request) {
|
||
vars := mux.Vars(rq)
|
||
u := user.ByName(vars["username"])
|
||
if u == nil {
|
||
util.HTTP404Page(w, "404 page not found")
|
||
return
|
||
}
|
||
|
||
f := util.FormDataFromRequest(rq, []string{"password", "password_confirm"})
|
||
|
||
password := f.Get("password")
|
||
passwordConfirm := f.Get("password_confirm")
|
||
// server side validation
|
||
if password == "" {
|
||
err := fmt.Errorf("passwords should not be empty")
|
||
f = f.WithError(err)
|
||
}
|
||
if password == passwordConfirm {
|
||
previousPassword := u.Password // for rollback
|
||
if err := u.ChangePassword(password); err != nil {
|
||
f = f.WithError(err)
|
||
} else {
|
||
if err := user.SaveUserDatabase(); err != nil {
|
||
u.Password = previousPassword
|
||
f = f.WithError(err)
|
||
} else {
|
||
http.Redirect(w, rq, "/admin/users/", http.StatusSeeOther)
|
||
return
|
||
}
|
||
}
|
||
} else {
|
||
err := fmt.Errorf("passwords do not match")
|
||
f = f.WithError(err)
|
||
}
|
||
|
||
if f.HasError() {
|
||
w.WriteHeader(http.StatusBadRequest)
|
||
}
|
||
w.Header().Set("Content-Type", mime.TypeByExtension(".html"))
|
||
|
||
viewEditUser(viewutil.MetaFrom(w, rq), f, u)
|
||
}
|
||
|
||
func handlerAdminUserDelete(w http.ResponseWriter, rq *http.Request) {
|
||
vars := mux.Vars(rq)
|
||
u := user.ByName(vars["username"])
|
||
if u == nil {
|
||
util.HTTP404Page(w, "404 page not found")
|
||
return
|
||
}
|
||
|
||
f := util.NewFormData()
|
||
|
||
if rq.Method == http.MethodPost {
|
||
f = f.WithError(user.DeleteUser(u.Name))
|
||
if !f.HasError() {
|
||
http.Redirect(w, rq, "/admin/users/", http.StatusSeeOther)
|
||
} else {
|
||
log.Println(f.Error())
|
||
}
|
||
}
|
||
|
||
if f.HasError() {
|
||
w.WriteHeader(http.StatusBadRequest)
|
||
}
|
||
w.Header().Set("Content-Type", mime.TypeByExtension(".html"))
|
||
viewDeleteUser(viewutil.MetaFrom(w, rq), f, u)
|
||
}
|
||
|
||
func handlerAdminUserNew(w http.ResponseWriter, rq *http.Request) {
|
||
if rq.Method == http.MethodGet {
|
||
w.Header().Set("Content-Type", mime.TypeByExtension(".html"))
|
||
viewNewUser(viewutil.MetaFrom(w, rq), util.NewFormData())
|
||
} else if rq.Method == http.MethodPost {
|
||
// Create a user
|
||
f := util.FormDataFromRequest(rq, []string{"name", "password", "group"})
|
||
|
||
err := user.Register(f.Get("name"), f.Get("password"), f.Get("group"), "local", true)
|
||
|
||
if err != nil {
|
||
w.WriteHeader(http.StatusBadRequest)
|
||
w.Header().Set("Content-Type", mime.TypeByExtension(".html"))
|
||
viewNewUser(viewutil.MetaFrom(w, rq), f.WithError(err))
|
||
} else {
|
||
http.Redirect(w, rq, "/admin/users/", http.StatusSeeOther)
|
||
}
|
||
}
|
||
}
|