core/model/user.go

package model

import (
	"context"
	"errors"
	"log"
	"regexp"
	"time"

	"github.com/mailgun/mailgun-go/v4"
	"github.com/openaccounting/oa-server/core/model/types"
	"github.com/openaccounting/oa-server/core/util"
)

type UserInterface interface {
	CreateUser(user *types.User) error
	VerifyUser(string) error
	UpdateUser(user *types.User) error
	ResetPassword(email string) error
	ConfirmResetPassword(string, string) (*types.User, error)
}

func (model *Model) CreateUser(user *types.User) error {
	if user.Id == "" {
		return errors.New("id required")
	}

	if user.FirstName == "" {
		return errors.New("first name required")
	}

	if user.LastName == "" {
		return errors.New("last name required")
	}

	if user.Email == "" {
		return errors.New("email required")
	}

	re := regexp.MustCompile(".+@.+\\..+")

	if re.FindString(user.Email) == "" {
		return errors.New("invalid email address")
	}

	if user.Password == "" {
		return errors.New("password required")
	}

	if user.AgreeToTerms != true {
		return errors.New("must agree to terms")
	}

	// hash password
	// bcrypt's function also generates a salt

	passwordHash, err := model.bcrypt.GenerateFromPassword([]byte(user.Password), model.bcrypt.GetDefaultCost())
	if err != nil {
		return err
	}

	user.PasswordHash = string(passwordHash)
	user.Password = ""
	user.EmailVerified = false
	user.EmailVerifyCode, err = util.NewGuid()

	if err != nil {
		return err
	}

	err = model.db.InsertUser(user)

	if err != nil {
		return err
	}

	err = model.SendVerificationEmail(user)

	if err != nil {
		log.Println(err)
	}

	return nil
}

func (model *Model) VerifyUser(code string) error {
	if code == "" {
		return errors.New("code required")
	}

	return model.db.VerifyUser(code)
}

func (model *Model) UpdateUser(user *types.User) error {
	if user.Id == "" {
		return errors.New("id required")
	}

	if user.Password == "" {
		return errors.New("password required")
	}

	// hash password
	// bcrypt's function also generates a salt

	passwordHash, err := model.bcrypt.GenerateFromPassword([]byte(user.Password), model.bcrypt.GetDefaultCost())
	if err != nil {
		return err
	}

	user.PasswordHash = string(passwordHash)
	user.Password = ""

	return model.db.UpdateUser(user)
}

func (model *Model) ResetPassword(email string) error {
	if email == "" {
		return errors.New("email required")
	}

	user, err := model.db.GetVerifiedUserByEmail(email)

	if err != nil {
		// Don't send back error so people can't try to find user accounts
		log.Printf("Invalid email for reset password " + email)
		return nil
	}

	user.PasswordReset, err = util.NewGuid()

	if err != nil {
		return err
	}

	err = model.db.UpdateUserResetPassword(user)

	if err != nil {
		return err
	}

	return model.SendPasswordResetEmail(user)
}

func (model *Model) ConfirmResetPassword(password string, code string) (*types.User, error) {
	if password == "" {
		return nil, errors.New("password required")
	}

	if code == "" {
		return nil, errors.New("code required")
	}

	user, err := model.db.GetUserByResetCode(code)

	if err != nil {
		return nil, errors.New("Invalid code")
	}

	passwordHash, err := model.bcrypt.GenerateFromPassword([]byte(password), model.bcrypt.GetDefaultCost())
	if err != nil {
		return nil, err
	}

	user.PasswordHash = string(passwordHash)
	user.Password = ""

	err = model.db.UpdateUser(user)

	if err != nil {
		return nil, err
	}

	return user, nil
}

func (model *Model) SendVerificationEmail(user *types.User) error {
	log.Println("Sending verification email to " + user.Email)

	mg := mailgun.NewMailgun(model.config.MailgunDomain, model.config.MailgunKey)

	link := model.config.WebUrl + "/user/verify?code=" + user.EmailVerifyCode

	from := model.config.MailgunSender + " <" + model.config.MailgunEmail + ">"
	subject := "Verify your email"
	to := user.Email

	plainTextContent := "Thank you for signing up with Open Accounting! " +
		"Please click on the link below to verify your email address:\n\n" + link
	htmlContent := "Thank you for signing up with Open Accounting! " +
		"Please click on the link below to verify your email address:<br><br>" +
		"<a href=\"" + link + "\">" + link + "</a>"

	message := mg.NewMessage(from, subject, plainTextContent, to)
	message.AddHeader("Sender", from)
	message.SetHtml(htmlContent)

	ctx, cancel := context.WithTimeout(context.Background(), time.Second*10)
	defer cancel()

	// Send the message with a 10 second timeout
	resp, id, err := mg.Send(ctx, message)

	if err != nil {
		return err
	}

	log.Printf("ID: %s Resp: %s\n", id, resp)

	return nil
}

func (model *Model) SendPasswordResetEmail(user *types.User) error {
	log.Println("Sending password reset email to " + user.Email)

	mg := mailgun.NewMailgun(model.config.MailgunDomain, model.config.MailgunKey)

	link := model.config.WebUrl + "/user/reset-password?code=" + user.PasswordReset

	from := model.config.MailgunSender + " <" + model.config.MailgunEmail + ">"
	subject := "Reset password"
	to := user.Email

	plainTextContent := "Please click the following link to reset your password:\n\n" + link +
		"If you did not request to have your password reset, please ignore this email and " +
		"nothing will happen."
	htmlContent := "Please click the following link to reset your password:<br><br>\n" +
		"<a href=\"" + link + "\">" + link + "</a><br><br>\n" +
		"If you did not request to have your password reset, please ignore this email and " +
		"nothing will happen."

	message := mg.NewMessage(from, subject, plainTextContent, to)
	message.AddHeader("Sender", from)
	message.SetHtml(htmlContent)

	ctx, cancel := context.WithTimeout(context.Background(), time.Second*10)
	defer cancel()

	// Send the message with a 10 second timeout
	resp, id, err := mg.Send(ctx, message)

	if err != nil {
		return err
	}

	log.Printf("ID: %s Resp: %s\n", id, resp)

	return nil
}
initial commit 2018-10-19 15:31:41 -04:00			`package model`

			`import (`
switch to mailgun 2020-11-23 11:13:23 -05:00			`"context"`
initial commit 2018-10-19 15:31:41 -04:00			`"errors"`
			`"log"`
validate email address 2018-11-15 10:14:59 -05:00			`"regexp"`
switch to mailgun 2020-11-23 11:13:23 -05:00			`"time"`

			`"github.com/mailgun/mailgun-go/v4"`
			`"github.com/openaccounting/oa-server/core/model/types"`
			`"github.com/openaccounting/oa-server/core/util"`
initial commit 2018-10-19 15:31:41 -04:00			`)`

			`type UserInterface interface {`
			`CreateUser(user *types.User) error`
			`VerifyUser(string) error`
			`UpdateUser(user *types.User) error`
			`ResetPassword(email string) error`
			`ConfirmResetPassword(string, string) (*types.User, error)`
			`}`

			`func (model Model) CreateUser(user types.User) error {`
			`if user.Id == "" {`
			`return errors.New("id required")`
			`}`

			`if user.FirstName == "" {`
			`return errors.New("first name required")`
			`}`

			`if user.LastName == "" {`
			`return errors.New("last name required")`
			`}`

			`if user.Email == "" {`
			`return errors.New("email required")`
			`}`

validate email address 2018-11-15 10:14:59 -05:00			`re := regexp.MustCompile(".+@.+\\..+")`

			`if re.FindString(user.Email) == "" {`
			`return errors.New("invalid email address")`
			`}`

initial commit 2018-10-19 15:31:41 -04:00			`if user.Password == "" {`
			`return errors.New("password required")`
			`}`

			`if user.AgreeToTerms != true {`
			`return errors.New("must agree to terms")`
			`}`

			`// hash password`
			`// bcrypt's function also generates a salt`

			`passwordHash, err := model.bcrypt.GenerateFromPassword([]byte(user.Password), model.bcrypt.GetDefaultCost())`
			`if err != nil {`
			`return err`
			`}`

			`user.PasswordHash = string(passwordHash)`
			`user.Password = ""`
			`user.EmailVerified = false`
			`user.EmailVerifyCode, err = util.NewGuid()`

			`if err != nil {`
			`return err`
			`}`

			`err = model.db.InsertUser(user)`

			`if err != nil {`
			`return err`
			`}`

			`err = model.SendVerificationEmail(user)`

			`if err != nil {`
			`log.Println(err)`
			`}`

			`return nil`
			`}`

			`func (model *Model) VerifyUser(code string) error {`
			`if code == "" {`
			`return errors.New("code required")`
			`}`

			`return model.db.VerifyUser(code)`
			`}`

			`func (model Model) UpdateUser(user types.User) error {`
			`if user.Id == "" {`
			`return errors.New("id required")`
			`}`

			`if user.Password == "" {`
			`return errors.New("password required")`
			`}`

			`// hash password`
			`// bcrypt's function also generates a salt`

			`passwordHash, err := model.bcrypt.GenerateFromPassword([]byte(user.Password), model.bcrypt.GetDefaultCost())`
			`if err != nil {`
			`return err`
			`}`

			`user.PasswordHash = string(passwordHash)`
			`user.Password = ""`

			`return model.db.UpdateUser(user)`
			`}`

			`func (model *Model) ResetPassword(email string) error {`
			`if email == "" {`
			`return errors.New("email required")`
			`}`

			`user, err := model.db.GetVerifiedUserByEmail(email)`

			`if err != nil {`
			`// Don't send back error so people can't try to find user accounts`
			`log.Printf("Invalid email for reset password " + email)`
			`return nil`
			`}`

			`user.PasswordReset, err = util.NewGuid()`

			`if err != nil {`
			`return err`
			`}`

			`err = model.db.UpdateUserResetPassword(user)`

			`if err != nil {`
			`return err`
			`}`

			`return model.SendPasswordResetEmail(user)`
			`}`

			`func (model Model) ConfirmResetPassword(password string, code string) (types.User, error) {`
			`if password == "" {`
			`return nil, errors.New("password required")`
			`}`

			`if code == "" {`
			`return nil, errors.New("code required")`
			`}`

			`user, err := model.db.GetUserByResetCode(code)`

			`if err != nil {`
			`return nil, errors.New("Invalid code")`
			`}`

			`passwordHash, err := model.bcrypt.GenerateFromPassword([]byte(password), model.bcrypt.GetDefaultCost())`
			`if err != nil {`
			`return nil, err`
			`}`

			`user.PasswordHash = string(passwordHash)`
			`user.Password = ""`

			`err = model.db.UpdateUser(user)`

			`if err != nil {`
			`return nil, err`
			`}`

			`return user, nil`
			`}`

			`func (model Model) SendVerificationEmail(user types.User) error {`
			`log.Println("Sending verification email to " + user.Email)`

switch to mailgun 2020-11-23 11:13:23 -05:00			`mg := mailgun.NewMailgun(model.config.MailgunDomain, model.config.MailgunKey)`

initial commit 2018-10-19 15:31:41 -04:00			`link := model.config.WebUrl + "/user/verify?code=" + user.EmailVerifyCode`

fix from 2020-11-25 10:25:20 -05:00			`from := model.config.MailgunSender + " <" + model.config.MailgunEmail + ">"`
initial commit 2018-10-19 15:31:41 -04:00			`subject := "Verify your email"`
switch to mailgun 2020-11-23 11:13:23 -05:00			`to := user.Email`
initial commit 2018-10-19 15:31:41 -04:00
			`plainTextContent := "Thank you for signing up with Open Accounting! " +`
			`"Please click on the link below to verify your email address:\n\n" + link`
			`htmlContent := "Thank you for signing up with Open Accounting! " +`
			`"Please click on the link below to verify your email address:<br><br>" +`
			`"<a href=\"" + link + "\">" + link + "</a>"`

switch to mailgun 2020-11-23 11:13:23 -05:00			`message := mg.NewMessage(from, subject, plainTextContent, to)`
make Sender header match From 2020-11-25 10:15:10 -05:00			`message.AddHeader("Sender", from)`
switch to mailgun 2020-11-23 11:13:23 -05:00			`message.SetHtml(htmlContent)`

			`ctx, cancel := context.WithTimeout(context.Background(), time.Second*10)`
			`defer cancel()`

			`// Send the message with a 10 second timeout`
			`resp, id, err := mg.Send(ctx, message)`
initial commit 2018-10-19 15:31:41 -04:00
			`if err != nil {`
			`return err`
			`}`

switch to mailgun 2020-11-23 11:13:23 -05:00			`log.Printf("ID: %s Resp: %s\n", id, resp)`
initial commit 2018-10-19 15:31:41 -04:00
			`return nil`
			`}`

			`func (model Model) SendPasswordResetEmail(user types.User) error {`
			`log.Println("Sending password reset email to " + user.Email)`

switch to mailgun 2020-11-23 11:13:23 -05:00			`mg := mailgun.NewMailgun(model.config.MailgunDomain, model.config.MailgunKey)`

initial commit 2018-10-19 15:31:41 -04:00			`link := model.config.WebUrl + "/user/reset-password?code=" + user.PasswordReset`

fix from 2020-11-25 10:25:20 -05:00			`from := model.config.MailgunSender + " <" + model.config.MailgunEmail + ">"`
initial commit 2018-10-19 15:31:41 -04:00			`subject := "Reset password"`
switch to mailgun 2020-11-23 11:13:23 -05:00			`to := user.Email`
initial commit 2018-10-19 15:31:41 -04:00
			`plainTextContent := "Please click the following link to reset your password:\n\n" + link +`
			`"If you did not request to have your password reset, please ignore this email and " +`
			`"nothing will happen."`
			`htmlContent := "Please click the following link to reset your password:<br><br>\n" +`
			`"<a href=\"" + link + "\">" + link + "</a><br><br>\n" +`
			`"If you did not request to have your password reset, please ignore this email and " +`
			`"nothing will happen."`

switch to mailgun 2020-11-23 11:13:23 -05:00			`message := mg.NewMessage(from, subject, plainTextContent, to)`
make Sender header match From 2020-11-25 10:15:10 -05:00			`message.AddHeader("Sender", from)`
switch to mailgun 2020-11-23 11:13:23 -05:00			`message.SetHtml(htmlContent)`

			`ctx, cancel := context.WithTimeout(context.Background(), time.Second*10)`
			`defer cancel()`

			`// Send the message with a 10 second timeout`
			`resp, id, err := mg.Send(ctx, message)`
initial commit 2018-10-19 15:31:41 -04:00
			`if err != nil {`
			`return err`
			`}`

switch to mailgun 2020-11-23 11:13:23 -05:00			`log.Printf("ID: %s Resp: %s\n", id, resp)`
initial commit 2018-10-19 15:31:41 -04:00
			`return nil`
			`}`