cybercinch/openaccounting-server
0
0
Fork 1
mirror of https://github.com/openaccounting/oa-server.git synced 2025-12-09 00:50:59 +13:00
Code Issues Actions Packages Projects Releases Wiki Activity

allow limited login via email verify code

Browse Source
This commit is contained in:
Patrick Nagurny
2018-11-02 15:14:26 -04:00
parent 988dc7c05c
commit 9b9124f730
2 changed files with 36 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

17
core/auth/auth.go
View File

@@ -19,6 +19,7 @@ type Interface interface {
AuthenticateUser(email string, password string) (*types.User, error) AuthenticateUser(email string, password string) (*types.User, error)
AuthenticateSession(string) (*types.User, error) AuthenticateSession(string) (*types.User, error)
AuthenticateApiKey(string) (*types.User, error) AuthenticateApiKey(string) (*types.User, error)
AuthenticateEmailVerifyCode(string) (*types.User, error)
} }
func NewAuthService(db db.Datastore, bcrypt util.Bcrypt) *AuthService { func NewAuthService(db db.Datastore, bcrypt util.Bcrypt) *AuthService {
@@ -47,6 +48,12 @@ func (auth *AuthService) Authenticate(emailOrKey string, password string) (*type
return user, nil return user, nil
} }
user, err = auth.AuthenticateEmailVerifyCode(emailOrKey)
if err == nil {
return user, nil
}
return nil, errors.New("Unauthorized") return nil, errors.New("Unauthorized")
} }
@@ -89,3 +96,13 @@ func (auth *AuthService) AuthenticateApiKey(id string) (*types.User, error) {
return u, nil return u, nil
} }
func (auth *AuthService) AuthenticateEmailVerifyCode(code string) (*types.User, error) {
u, err := auth.db.GetUserByEmailVerifyCode(code)
if err != nil {
return nil, errors.New("Access denied")
}
return u, nil
}

21
core/model/db/user.go
View File

@@ -3,7 +3,6 @@ package db
import ( import (
"database/sql" "database/sql"
"errors" "errors"
"fmt"
"github.com/openaccounting/oa-server/core/model/types" "github.com/openaccounting/oa-server/core/model/types"
"github.com/openaccounting/oa-server/core/util" "github.com/openaccounting/oa-server/core/util"
"time" "time"
@@ -20,6 +19,7 @@ type UserInterface interface {
GetUserByActiveSession(string) (*types.User, error) GetUserByActiveSession(string) (*types.User, error)
GetUserByApiKey(string) (*types.User, error) GetUserByApiKey(string) (*types.User, error)
GetUserByResetCode(string) (*types.User, error) GetUserByResetCode(string) (*types.User, error)
GetUserByEmailVerifyCode(string) (*types.User, error)
GetOrgAdmins(string) ([]*types.User, error) GetOrgAdmins(string) ([]*types.User, error)
} }
@@ -172,7 +172,24 @@ func (db *DB) GetUserByResetCode(code string) (*types.User, error) {
return nil, err return nil, err
} }
fmt.Println(u) return u, nil
}
func (db *DB) GetUserByEmailVerifyCode(code string) (*types.User, error) {
// only allow this for 3 days
minInserted := (time.Now().UnixNano() / 1000000) - (3 * 24 * 60 * 60 * 1000)
qSelect := "SELECT " + userFields
qFrom := " FROM user u"
qWhere := " WHERE u.emailVerifyCode = ? AND inserted > ?"
query := qSelect + qFrom + qWhere
row := db.QueryRow(query, code, minInserted)
u, err := db.unmarshalUser(row)
if err != nil {
return nil, err
}
return u, nil return u, nil
} }