cloudkeys-go/login.go

package main

import (
	"context"
	"crypto/sha1"
	"fmt"
	"net/http"
	"strconv"
	"strings"

	"golang.org/x/crypto/bcrypt"

	"github.com/flosch/pongo2"
	"github.com/gorilla/mux"
	"github.com/gorilla/sessions"
	log "github.com/sirupsen/logrus"
)

func loginHandler(c context.Context, res http.ResponseWriter, r *http.Request, session *sessions.Session, ctx *pongo2.Context) (*string, error) {
	var (
		username           = strings.ToLower(r.FormValue("username"))
		password           = r.FormValue("password")
		deprecatedPassword = fmt.Sprintf("%x", sha1.Sum([]byte(cfg.PasswordSalt+r.FormValue("password")))) // Here for backwards compatibility
	)

	if !storage.IsPresent(c, createUserFilename(username)) {
		(*ctx)["error"] = true
		return stringPointer("login.html"), nil
	}

	userFileRaw, err := storage.Read(c, createUserFilename(username))
	if err != nil {
		log.WithError(err).Error("Unable to read user file")
		(*ctx)["error"] = true
		return stringPointer("login.html"), nil
	}

	userFile, _ := readDataObject(userFileRaw)

	bcryptValidationError := bcrypt.CompareHashAndPassword([]byte(userFile.MetaData.Password), []byte(password))
	if bcryptValidationError != nil && userFile.MetaData.Password != deprecatedPassword {
		(*ctx)["error"] = true
		return stringPointer("login.html"), nil
	}

	auth, ok := session.Values["authorizedAccounts"].(authorizedAccounts)
	if !ok {
		auth = authorizedAccounts{}
	}

	for i, v := range auth {
		if v.Name == username {
			http.Redirect(res, r, fmt.Sprintf("u/%d/overview", i), http.StatusFound)
			return nil, nil
		}
	}

	auth = append(auth, authorizedAccount{
		Name:     username,
		UserFile: createUserFilename(username),
	})

	session.Values["authorizedAccounts"] = auth
	if err := session.Save(r, res); err != nil {
		return nil, err
	}

	http.Redirect(res, r, fmt.Sprintf("u/%d/overview", len(auth)-1), http.StatusFound)
	return nil, nil
}

func logoutHandler(c context.Context, res http.ResponseWriter, r *http.Request, session *sessions.Session, ctx *pongo2.Context) (*string, error) {
	session.Values["authorizedAccounts"] = authorizedAccounts{}
	session.Save(r, res)
	http.Redirect(res, r, "overview", http.StatusFound)
	return nil, nil
}

func checkLogin(c context.Context, r *http.Request, session *sessions.Session) (*authorizedAccount, error) {
	vars := mux.Vars(r)
	idx, err := strconv.ParseInt(vars["userIndex"], 10, 64)
	if err != nil {
		return nil, err
	}

	auth, ok := session.Values["authorizedAccounts"].(authorizedAccounts)
	if !ok {
		auth = authorizedAccounts{}
	}

	if len(auth)-1 < int(idx) {
		return nil, nil
	}

	return &auth[idx], nil
}
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`package main`

			`import (`
introduced context to all http handlers and use a specific http client for S3 requests 2017-12-28 01:40:20 +00:00			`"context"`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`"crypto/sha1"`
			`"fmt"`
			`"net/http"`
			`"strconv"`
Fix: Restored old behavior of making all usernames lowercase 2015-07-31 19:02:03 +00:00			`"strings"`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00
Squashed commit of the following: commit f0db1ff1f85d03e91705f44b9fdb6f896e0d6453 Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 12:19:56 2017 +0100 Mark option as deprecated Signed-off-by: Knut Ahlers <knut@ahlers.me> commit 9891df2a16f2a5ef4a1b22f97c0fa08d3700b85c Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 12:11:56 2017 +0100 Fix: Typo Signed-off-by: Knut Ahlers <knut@ahlers.me> commit 836006de64b9813717a600aea32fb1e3f0205bbb Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 12:04:20 2017 +0100 Add new dependencies Signed-off-by: Knut Ahlers <knut@ahlers.me> commit d64fee60c88222835c9c1358b3475d662c9fc368 Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 11:55:52 2017 +0100 Replace insecure password hashing Prior this commit passwords were hashed with a static salt and using the SHA1 hashing function. This could lead to passwords being attackable in case someone gets access to the raw data stored inside the database. This commit introduces password hashing using bcrypt hashing function which addresses this issue. Old passwords are not automatically re-hashed as they are unknown. Replacing the old password scheme is not that easy and needs #10 to be solved. Therefore the old hashing scheme is kept for compatibility reason. Signed-off-by: Knut Ahlers <knut@ahlers.me> Signed-off-by: Knut Ahlers <knut@ahlers.me> closes #14 closes #15 2017-12-24 18:44:24 +00:00			`"golang.org/x/crypto/bcrypt"`

Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`"github.com/flosch/pongo2"`
			`"github.com/gorilla/mux"`
			`"github.com/gorilla/sessions"`
Replace stdout logging with proper log package fixes #16 Signed-off-by: Knut Ahlers <knut@ahlers.me> 2017-12-24 19:10:43 +00:00			`log "github.com/sirupsen/logrus"`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`)`

introduced context to all http handlers and use a specific http client for S3 requests 2017-12-28 01:40:20 +00:00			`func loginHandler(c context.Context, res http.ResponseWriter, r http.Request, session sessions.Session, ctx pongo2.Context) (string, error) {`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`var (`
Squashed commit of the following: commit f0db1ff1f85d03e91705f44b9fdb6f896e0d6453 Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 12:19:56 2017 +0100 Mark option as deprecated Signed-off-by: Knut Ahlers <knut@ahlers.me> commit 9891df2a16f2a5ef4a1b22f97c0fa08d3700b85c Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 12:11:56 2017 +0100 Fix: Typo Signed-off-by: Knut Ahlers <knut@ahlers.me> commit 836006de64b9813717a600aea32fb1e3f0205bbb Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 12:04:20 2017 +0100 Add new dependencies Signed-off-by: Knut Ahlers <knut@ahlers.me> commit d64fee60c88222835c9c1358b3475d662c9fc368 Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 11:55:52 2017 +0100 Replace insecure password hashing Prior this commit passwords were hashed with a static salt and using the SHA1 hashing function. This could lead to passwords being attackable in case someone gets access to the raw data stored inside the database. This commit introduces password hashing using bcrypt hashing function which addresses this issue. Old passwords are not automatically re-hashed as they are unknown. Replacing the old password scheme is not that easy and needs #10 to be solved. Therefore the old hashing scheme is kept for compatibility reason. Signed-off-by: Knut Ahlers <knut@ahlers.me> Signed-off-by: Knut Ahlers <knut@ahlers.me> closes #14 closes #15 2017-12-24 18:44:24 +00:00			`username = strings.ToLower(r.FormValue("username"))`
			`password = r.FormValue("password")`
			`deprecatedPassword = fmt.Sprintf("%x", sha1.Sum([]byte(cfg.PasswordSalt+r.FormValue("password")))) // Here for backwards compatibility`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`)`

introduced context to all http handlers and use a specific http client for S3 requests 2017-12-28 01:40:20 +00:00			`if !storage.IsPresent(c, createUserFilename(username)) {`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`(*ctx)["error"] = true`
Fixed linter errors 2015-07-29 07:49:23 +00:00			`return stringPointer("login.html"), nil`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`}`

introduced context to all http handlers and use a specific http client for S3 requests 2017-12-28 01:40:20 +00:00			`userFileRaw, err := storage.Read(c, createUserFilename(username))`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`if err != nil {`
Replace stdout logging with proper log package fixes #16 Signed-off-by: Knut Ahlers <knut@ahlers.me> 2017-12-24 19:10:43 +00:00			`log.WithError(err).Error("Unable to read user file")`
Do not throw error messages at users, let the frontend handle errors fixes #1 2015-07-29 08:10:46 +00:00			`(*ctx)["error"] = true`
			`return stringPointer("login.html"), nil`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`}`

Do not throw error messages at users, let the frontend handle errors fixes #1 2015-07-29 08:10:46 +00:00			`userFile, _ := readDataObject(userFileRaw)`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00
Squashed commit of the following: commit f0db1ff1f85d03e91705f44b9fdb6f896e0d6453 Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 12:19:56 2017 +0100 Mark option as deprecated Signed-off-by: Knut Ahlers <knut@ahlers.me> commit 9891df2a16f2a5ef4a1b22f97c0fa08d3700b85c Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 12:11:56 2017 +0100 Fix: Typo Signed-off-by: Knut Ahlers <knut@ahlers.me> commit 836006de64b9813717a600aea32fb1e3f0205bbb Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 12:04:20 2017 +0100 Add new dependencies Signed-off-by: Knut Ahlers <knut@ahlers.me> commit d64fee60c88222835c9c1358b3475d662c9fc368 Author: Knut Ahlers <knut@ahlers.me> Date: Sun Dec 24 11:55:52 2017 +0100 Replace insecure password hashing Prior this commit passwords were hashed with a static salt and using the SHA1 hashing function. This could lead to passwords being attackable in case someone gets access to the raw data stored inside the database. This commit introduces password hashing using bcrypt hashing function which addresses this issue. Old passwords are not automatically re-hashed as they are unknown. Replacing the old password scheme is not that easy and needs #10 to be solved. Therefore the old hashing scheme is kept for compatibility reason. Signed-off-by: Knut Ahlers <knut@ahlers.me> Signed-off-by: Knut Ahlers <knut@ahlers.me> closes #14 closes #15 2017-12-24 18:44:24 +00:00			`bcryptValidationError := bcrypt.CompareHashAndPassword([]byte(userFile.MetaData.Password), []byte(password))`
			`if bcryptValidationError != nil && userFile.MetaData.Password != deprecatedPassword {`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`(*ctx)["error"] = true`
Fixed linter errors 2015-07-29 07:49:23 +00:00			`return stringPointer("login.html"), nil`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`}`

			`auth, ok := session.Values["authorizedAccounts"].(authorizedAccounts)`
			`if !ok {`
			`auth = authorizedAccounts{}`
			`}`

			`for i, v := range auth {`
			`if v.Name == username {`
			`http.Redirect(res, r, fmt.Sprintf("u/%d/overview", i), http.StatusFound)`
			`return nil, nil`
			`}`
			`}`

			`auth = append(auth, authorizedAccount{`
			`Name: username,`
			`UserFile: createUserFilename(username),`
			`})`

			`session.Values["authorizedAccounts"] = auth`
			`if err := session.Save(r, res); err != nil {`
			`return nil, err`
			`}`

			`http.Redirect(res, r, fmt.Sprintf("u/%d/overview", len(auth)-1), http.StatusFound)`
			`return nil, nil`
			`}`

introduced context to all http handlers and use a specific http client for S3 requests 2017-12-28 01:40:20 +00:00			`func logoutHandler(c context.Context, res http.ResponseWriter, r http.Request, session sessions.Session, ctx pongo2.Context) (string, error) {`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`session.Values["authorizedAccounts"] = authorizedAccounts{}`
			`session.Save(r, res)`
			`http.Redirect(res, r, "overview", http.StatusFound)`
			`return nil, nil`
			`}`

introduced context to all http handlers and use a specific http client for S3 requests 2017-12-28 01:40:20 +00:00			`func checkLogin(c context.Context, r http.Request, session sessions.Session) (*authorizedAccount, error) {`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`vars := mux.Vars(r)`
			`idx, err := strconv.ParseInt(vars["userIndex"], 10, 64)`
			`if err != nil {`
Do not throw error messages at users, let the frontend handle errors fixes #1 2015-07-29 08:10:46 +00:00			`return nil, err`
Initial port from PHP to Go 2015-07-29 07:01:23 +00:00			`}`

			`auth, ok := session.Values["authorizedAccounts"].(authorizedAccounts)`
			`if !ok {`
			`auth = authorizedAccounts{}`
			`}`

			`if len(auth)-1 < int(idx) {`
			`return nil, nil`
			`}`

			`return &auth[idx], nil`
			`}`