Home Explore Help
Sign In
golang
/
netmaker
mirror of https://github.com/gravitl/netmaker
2
0
Fork 0
Files Issues 0 Wiki
Tree: 9e0038f39c
Branches Tags
netmaker
/
controllers
/
user.go

user.go 14 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487 
  1. package controller
    2. 

  2. 

  3. import (
    4. 

  4. 	"encoding/json"
    5. 

  5. 	"errors"
    6. 

  6. 	"fmt"
    7. 

  7. 	"net/http"
    8. 

  8. 

  9. 	"github.com/gorilla/mux"
    10. 

  10. 	"github.com/gorilla/websocket"
    11. 

  11. 	"github.com/gravitl/netmaker/auth"
    12. 

  12. 	"github.com/gravitl/netmaker/logger"
    13. 

  13. 	"github.com/gravitl/netmaker/logic"
    14. 

  14. 	"github.com/gravitl/netmaker/models"
    15. 

  15. 	"github.com/gravitl/netmaker/servercfg"
    16. 

  16. )
    17. 

  17. 

  18. var (
    19. 

  19. 	upgrader = websocket.Upgrader{}
    20. 

  20. )
    21. 

  21. 

  22. func userHandlers(r *mux.Router) {
    23. 

  23. 

  24. 	r.HandleFunc("/api/users/adm/hasadmin", hasAdmin).Methods(http.MethodGet)
    25. 

  25. 	r.HandleFunc("/api/users/adm/createadmin", createAdmin).Methods(http.MethodPost)
    26. 

  26. 	r.HandleFunc("/api/users/adm/authenticate", authenticateUser).Methods(http.MethodPost)
    27. 

  27. 	r.HandleFunc("/api/users/{username}", logic.SecurityCheck(false, logic.ContinueIfUserMatch(http.HandlerFunc(updateUser)))).Methods(http.MethodPut)
    28. 

  28. 	r.HandleFunc("/api/users/networks/{username}", logic.SecurityCheck(true, http.HandlerFunc(updateUserNetworks))).Methods(http.MethodPut)
    29. 

  29. 	r.HandleFunc("/api/users/{username}/adm", logic.SecurityCheck(true, http.HandlerFunc(updateUserAdm))).Methods(http.MethodPut)
    30. 

  30. 	r.HandleFunc("/api/users/{username}", logic.SecurityCheck(true, checkFreeTierLimits(users_l, http.HandlerFunc(createUser)))).Methods(http.MethodPost)
    31. 

  31. 	r.HandleFunc("/api/users/{username}", logic.SecurityCheck(true, http.HandlerFunc(deleteUser))).Methods(http.MethodDelete)
    32. 

  32. 	r.HandleFunc("/api/users/{username}", logic.SecurityCheck(false, logic.ContinueIfUserMatch(http.HandlerFunc(getUser)))).Methods(http.MethodGet)
    33. 

  33. 	r.HandleFunc("/api/users", logic.SecurityCheck(true, http.HandlerFunc(getUsers))).Methods(http.MethodGet)
    34. 

  34. 	r.HandleFunc("/api/oauth/login", auth.HandleAuthLogin).Methods(http.MethodGet)
    35. 

  35. 	r.HandleFunc("/api/oauth/callback", auth.HandleAuthCallback).Methods(http.MethodGet)
    36. 

  36. 	r.HandleFunc("/api/oauth/headless", auth.HandleHeadlessSSO)
    37. 

  37. 	r.HandleFunc("/api/oauth/register/{regKey}", auth.RegisterHostSSO).Methods(http.MethodGet)
    38. 

  38. }
    39. 

  39. 

  40. // swagger:route POST /api/users/adm/authenticate user authenticateUser
    41. 

  41. //
    42. 

  42. // Node authenticates using its password and retrieves a JWT for authorization.
    43. 

  43. //
    44. 

  44. //			Schemes: https
    45. 

  45. //
    46. 

  46. //			Security:
    47. 

  47. //	  		oauth
    48. 

  48. //
    49. 

  49. //			Responses:
    50. 

  50. //				200: successResponse
    51. 

  51. func authenticateUser(response http.ResponseWriter, request *http.Request) {
    52. 

  52. 

  53. 	// Auth request consists of Mac Address and Password (from node that is authorizing
    54. 

  54. 	// in case of Master, auth is ignored and mac is set to "mastermac"
    55. 

  55. 	var authRequest models.UserAuthParams
    56. 

  56. 	var errorResponse = models.ErrorResponse{
    57. 

  57. 		Code: http.StatusInternalServerError, Message: "W1R3: It's not you it's me.",
    58. 

  58. 	}
    59. 

  59. 

  60. 	if !servercfg.IsBasicAuthEnabled() {
    61. 

  61. 		logic.ReturnErrorResponse(response, request, logic.FormatError(fmt.Errorf("basic auth is disabled"), "badrequest"))
    62. 

  62. 		return
    63. 

  63. 	}
    64. 

  64. 

  65. 	decoder := json.NewDecoder(request.Body)
    66. 

  66. 	decoderErr := decoder.Decode(&authRequest)
    67. 

  67. 	defer request.Body.Close()
    68. 

  68. 	if decoderErr != nil {
    69. 

  69. 		logger.Log(0, "error decoding request body: ",
    70. 

  70. 			decoderErr.Error())
    71. 

  71. 		logic.ReturnErrorResponse(response, request, errorResponse)
    72. 

  72. 		return
    73. 

  73. 	}
    74. 

  74. 	username := authRequest.UserName
    75. 

  75. 	jwt, err := logic.VerifyAuthRequest(authRequest)
    76. 

  76. 	if err != nil {
    77. 

  77. 		logger.Log(0, username, "user validation failed: ",
    78. 

  78. 			err.Error())
    79. 

  79. 		logic.ReturnErrorResponse(response, request, logic.FormatError(err, "badrequest"))
    80. 

  80. 		return
    81. 

  81. 	}
    82. 

  82. 

  83. 	if jwt == "" {
    84. 

  84. 		// very unlikely that err is !nil and no jwt returned, but handle it anyways.
    85. 

  85. 		logger.Log(0, username, "jwt token is empty")
    86. 

  86. 		logic.ReturnErrorResponse(response, request, logic.FormatError(errors.New("no token returned"), "internal"))
    87. 

  87. 		return
    88. 

  88. 	}
    89. 

  89. 

  90. 	var successResponse = models.SuccessResponse{
    91. 

  91. 		Code:    http.StatusOK,
    92. 

  92. 		Message: "W1R3: Device " + username + " Authorized",
    93. 

  93. 		Response: models.SuccessfulUserLoginResponse{
    94. 

  94. 			AuthToken: jwt,
    95. 

  95. 			UserName:  username,
    96. 

  96. 		},
    97. 

  97. 	}
    98. 

  98. 	// Send back the JWT
    99. 

  99. 	successJSONResponse, jsonError := json.Marshal(successResponse)
    100. 

  100. 

  101. 	if jsonError != nil {
    102. 

  102. 		logger.Log(0, username,
    103. 

  103. 			"error marshalling resp: ", err.Error())
    104. 

  104. 		logic.ReturnErrorResponse(response, request, errorResponse)
    105. 

  105. 		return
    106. 

  106. 	}
    107. 

  107. 	logger.Log(2, username, "was authenticated")
    108. 

  108. 	response.Header().Set("Content-Type", "application/json")
    109. 

  109. 	response.Write(successJSONResponse)
    110. 

  110. }
    111. 

  111. 

  112. // swagger:route GET /api/users/adm/hasadmin user hasAdmin
    113. 

  113. //
    114. 

  114. // Checks whether the server has an admin.
    115. 

  115. //
    116. 

  116. //			Schemes: https
    117. 

  117. //
    118. 

  118. //			Security:
    119. 

  119. //	  		oauth
    120. 

  120. //
    121. 

  121. //			Responses:
    122. 

  122. //				200: successResponse
    123. 

  123. func hasAdmin(w http.ResponseWriter, r *http.Request) {
    124. 

  124. 

  125. 	w.Header().Set("Content-Type", "application/json")
    126. 

  126. 

  127. 	hasadmin, err := logic.HasAdmin()
    128. 

  128. 	if err != nil {
    129. 

  129. 		logger.Log(0, "failed to check for admin: ", err.Error())
    130. 

  130. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    131. 

  131. 		return
    132. 

  132. 	}
    133. 

  133. 

  134. 	json.NewEncoder(w).Encode(hasadmin)
    135. 

  135. 

  136. }
    137. 

  137. 

  138. // swagger:route GET /api/users/{username} user getUser
    139. 

  139. //
    140. 

  140. // Get an individual user.
    141. 

  141. //
    142. 

  142. //			Schemes: https
    143. 

  143. //
    144. 

  144. //			Security:
    145. 

  145. //	  		oauth
    146. 

  146. //
    147. 

  147. //			Responses:
    148. 

  148. //				200: userBodyResponse
    149. 

  149. func getUser(w http.ResponseWriter, r *http.Request) {
    150. 

  150. 	// set header.
    151. 

  151. 	w.Header().Set("Content-Type", "application/json")
    152. 

  152. 

  153. 	var params = mux.Vars(r)
    154. 

  154. 	usernameFetched := params["username"]
    155. 

  155. 	user, err := logic.GetUser(usernameFetched)
    156. 

  156. 

  157. 	if err != nil {
    158. 

  158. 		logger.Log(0, usernameFetched, "failed to fetch user: ", err.Error())
    159. 

  159. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    160. 

  160. 		return
    161. 

  161. 	}
    162. 

  162. 	logger.Log(2, r.Header.Get("user"), "fetched user", usernameFetched)
    163. 

  163. 	json.NewEncoder(w).Encode(user)
    164. 

  164. }
    165. 

  165. 

  166. // swagger:route GET /api/users user getUsers
    167. 

  167. //
    168. 

  168. // Get all users.
    169. 

  169. //
    170. 

  170. //			Schemes: https
    171. 

  171. //
    172. 

  172. //			Security:
    173. 

  173. //	  		oauth
    174. 

  174. //
    175. 

  175. //			Responses:
    176. 

  176. //				200: userBodyResponse
    177. 

  177. func getUsers(w http.ResponseWriter, r *http.Request) {
    178. 

  178. 	// set header.
    179. 

  179. 	w.Header().Set("Content-Type", "application/json")
    180. 

  180. 

  181. 	users, err := logic.GetUsers()
    182. 

  182. 

  183. 	if err != nil {
    184. 

  184. 		logger.Log(0, "failed to fetch users: ", err.Error())
    185. 

  185. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    186. 

  186. 		return
    187. 

  187. 	}
    188. 

  188. 

  189. 	logic.SortUsers(users[:])
    190. 

  190. 	logger.Log(2, r.Header.Get("user"), "fetched users")
    191. 

  191. 	json.NewEncoder(w).Encode(users)
    192. 

  192. }
    193. 

  193. 

  194. // swagger:route POST /api/users/adm/createadmin user createAdmin
    195. 

  195. //
    196. 

  196. // Make a user an admin.
    197. 

  197. //
    198. 

  198. //			Schemes: https
    199. 

  199. //
    200. 

  200. //			Security:
    201. 

  201. //	  		oauth
    202. 

  202. //
    203. 

  203. //			Responses:
    204. 

  204. //				200: userBodyResponse
    205. 

  205. func createAdmin(w http.ResponseWriter, r *http.Request) {
    206. 

  206. 	w.Header().Set("Content-Type", "application/json")
    207. 

  207. 

  208. 	var admin models.User
    209. 

  209. 

  210. 	err := json.NewDecoder(r.Body).Decode(&admin)
    211. 

  211. 	if err != nil {
    212. 

  212. 

  213. 		logger.Log(0, admin.UserName, "error decoding request body: ",
    214. 

  214. 			err.Error())
    215. 

  215. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    216. 

  216. 		return
    217. 

  217. 	}
    218. 

  218. 

  219. 	if !servercfg.IsBasicAuthEnabled() {
    220. 

  220. 		logic.ReturnErrorResponse(w, r, logic.FormatError(fmt.Errorf("basic auth is disabled"), "badrequest"))
    221. 

  221. 		return
    222. 

  222. 	}
    223. 

  223. 

  224. 	err = logic.CreateAdmin(&admin)
    225. 

  225. 	if err != nil {
    226. 

  226. 		logger.Log(0, admin.UserName, "failed to create admin: ",
    227. 

  227. 			err.Error())
    228. 

  228. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    229. 

  229. 		return
    230. 

  230. 	}
    231. 

  231. 

  232. 	logger.Log(1, admin.UserName, "was made a new admin")
    233. 

  233. 	json.NewEncoder(w).Encode(admin)
    234. 

  234. }
    235. 

  235. 

  236. // swagger:route POST /api/users/{username} user createUser
    237. 

  237. //
    238. 

  238. // Create a user.
    239. 

  239. //
    240. 

  240. //			Schemes: https
    241. 

  241. //
    242. 

  242. //			Security:
    243. 

  243. //	  		oauth
    244. 

  244. //
    245. 

  245. //			Responses:
    246. 

  246. //				200: userBodyResponse
    247. 

  247. func createUser(w http.ResponseWriter, r *http.Request) {
    248. 

  248. 	w.Header().Set("Content-Type", "application/json")
    249. 

  249. 

  250. 	var user models.User
    251. 

  251. 	err := json.NewDecoder(r.Body).Decode(&user)
    252. 

  252. 	if err != nil {
    253. 

  253. 		logger.Log(0, user.UserName, "error decoding request body: ",
    254. 

  254. 			err.Error())
    255. 

  255. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    256. 

  256. 		return
    257. 

  257. 	}
    258. 

  258. 

  259. 	err = logic.CreateUser(&user)
    260. 

  260. 	if err != nil {
    261. 

  261. 		logger.Log(0, user.UserName, "error creating new user: ",
    262. 

  262. 			err.Error())
    263. 

  263. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    264. 

  264. 		return
    265. 

  265. 	}
    266. 

  266. 	logger.Log(1, user.UserName, "was created")
    267. 

  267. 	json.NewEncoder(w).Encode(user)
    268. 

  268. }
    269. 

  269. 

  270. // swagger:route PUT /api/users/networks/{username} user updateUserNetworks
    271. 

  271. //
    272. 

  272. // Updates the networks of the given user.
    273. 

  273. //
    274. 

  274. //			Schemes: https
    275. 

  275. //
    276. 

  276. //			Security:
    277. 

  277. //	  		oauth
    278. 

  278. //
    279. 

  279. //			Responses:
    280. 

  280. //				200: userBodyResponse
    281. 

  281. func updateUserNetworks(w http.ResponseWriter, r *http.Request) {
    282. 

  282. 	w.Header().Set("Content-Type", "application/json")
    283. 

  283. 	var params = mux.Vars(r)
    284. 

  284. 	// start here
    285. 

  285. 	username := params["username"]
    286. 

  286. 	user, err := logic.GetUser(username)
    287. 

  287. 	if err != nil {
    288. 

  288. 		logger.Log(0, username,
    289. 

  289. 			"failed to update user networks: ", err.Error())
    290. 

  290. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    291. 

  291. 		return
    292. 

  292. 	}
    293. 

  293. 	var userchange models.User
    294. 

  294. 	// we decode our body request params
    295. 

  295. 	err = json.NewDecoder(r.Body).Decode(&userchange)
    296. 

  296. 	if err != nil {
    297. 

  297. 		logger.Log(0, username, "error decoding request body: ",
    298. 

  298. 			err.Error())
    299. 

  299. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    300. 

  300. 		return
    301. 

  301. 	}
    302. 

  302. 	err = logic.UpdateUserNetworks(userchange.Networks, userchange.Groups, userchange.IsAdmin, &models.ReturnUser{
    303. 

  303. 		Groups:   user.Groups,
    304. 

  304. 		IsAdmin:  user.IsAdmin,
    305. 

  305. 		Networks: user.Networks,
    306. 

  306. 		UserName: user.UserName,
    307. 

  307. 	})
    308. 

  308. 

  309. 	if err != nil {
    310. 

  310. 		logger.Log(0, username,
    311. 

  311. 			"failed to update user networks: ", err.Error())
    312. 

  312. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    313. 

  313. 		return
    314. 

  314. 	}
    315. 

  315. 	logger.Log(1, username, "status was updated")
    316. 

  316. 	json.NewEncoder(w).Encode(user)
    317. 

  317. }
    318. 

  318. 

  319. // swagger:route PUT /api/users/{username} user updateUser
    320. 

  320. //
    321. 

  321. // Update a user.
    322. 

  322. //
    323. 

  323. //			Schemes: https
    324. 

  324. //
    325. 

  325. //			Security:
    326. 

  326. //	  		oauth
    327. 

  327. //
    328. 

  328. //			Responses:
    329. 

  329. //				200: userBodyResponse
    330. 

  330. func updateUser(w http.ResponseWriter, r *http.Request) {
    331. 

  331. 	w.Header().Set("Content-Type", "application/json")
    332. 

  332. 	var params = mux.Vars(r)
    333. 

  333. 	// start here
    334. 

  334. 	jwtUser, _, isadmin, err := logic.VerifyJWT(r.Header.Get("Authorization"))
    335. 

  335. 	if err != nil {
    336. 

  336. 		logger.Log(0, "verifyJWT error", err.Error())
    337. 

  337. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    338. 

  338. 		return
    339. 

  339. 	}
    340. 

  340. 	username := params["username"]
    341. 

  341. 	if username != jwtUser && !isadmin {
    342. 

  342. 		logger.Log(0, "non-admin user", jwtUser, "attempted to update user", username)
    343. 

  343. 		logic.ReturnErrorResponse(w, r, logic.FormatError(errors.New("not authorizied"), "unauthorized"))
    344. 

  344. 		return
    345. 

  345. 	}
    346. 

  346. 	user, err := logic.GetUser(username)
    347. 

  347. 	if err != nil {
    348. 

  348. 		logger.Log(0, username,
    349. 

  349. 			"failed to update user info: ", err.Error())
    350. 

  350. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    351. 

  351. 		return
    352. 

  352. 	}
    353. 

  353. 	if auth.IsOauthUser(user) == nil {
    354. 

  354. 		err := fmt.Errorf("cannot update user info for oauth user %s", username)
    355. 

  355. 		logger.Log(0, err.Error())
    356. 

  356. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "forbidden"))
    357. 

  357. 		return
    358. 

  358. 	}
    359. 

  359. 	var userchange models.User
    360. 

  360. 	// we decode our body request params
    361. 

  361. 	err = json.NewDecoder(r.Body).Decode(&userchange)
    362. 

  362. 	if err != nil {
    363. 

  363. 		logger.Log(0, username, "error decoding request body: ",
    364. 

  364. 			err.Error())
    365. 

  365. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    366. 

  366. 		return
    367. 

  367. 	}
    368. 

  368. 	if userchange.IsAdmin && !isadmin {
    369. 

  369. 		logger.Log(0, "non-admin user", jwtUser, "attempted get admin privilages")
    370. 

  370. 		logic.ReturnErrorResponse(w, r, logic.FormatError(errors.New("not authorizied"), "unauthorized"))
    371. 

  371. 		return
    372. 

  372. 	}
    373. 

  373. 	userchange.Networks = nil
    374. 

  374. 	user, err = logic.UpdateUser(&userchange, user)
    375. 

  375. 	if err != nil {
    376. 

  376. 		logger.Log(0, username,
    377. 

  377. 			"failed to update user info: ", err.Error())
    378. 

  378. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    379. 

  379. 		return
    380. 

  380. 	}
    381. 

  381. 	logger.Log(1, username, "was updated")
    382. 

  382. 	json.NewEncoder(w).Encode(user)
    383. 

  383. }
    384. 

  384. 

  385. // swagger:route PUT /api/users/{username}/adm user updateUserAdm
    386. 

  386. //
    387. 

  387. // Updates the given admin user's info (as long as the user is an admin).
    388. 

  388. //
    389. 

  389. //			Schemes: https
    390. 

  390. //
    391. 

  391. //			Security:
    392. 

  392. //	  		oauth
    393. 

  393. //
    394. 

  394. //			Responses:
    395. 

  395. //				200: userBodyResponse
    396. 

  396. func updateUserAdm(w http.ResponseWriter, r *http.Request) {
    397. 

  397. 	w.Header().Set("Content-Type", "application/json")
    398. 

  398. 	var params = mux.Vars(r)
    399. 

  399. 	// start here
    400. 

  400. 	username := params["username"]
    401. 

  401. 	user, err := logic.GetUser(username)
    402. 

  402. 	if err != nil {
    403. 

  403. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    404. 

  404. 		return
    405. 

  405. 	}
    406. 

  406. 	if auth.IsOauthUser(user) != nil {
    407. 

  407. 		err := fmt.Errorf("cannot update user info for oauth user %s", username)
    408. 

  408. 		logger.Log(0, err.Error())
    409. 

  409. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "forbidden"))
    410. 

  410. 		return
    411. 

  411. 	}
    412. 

  412. 	var userchange models.User
    413. 

  413. 	// we decode our body request params
    414. 

  414. 	err = json.NewDecoder(r.Body).Decode(&userchange)
    415. 

  415. 	if err != nil {
    416. 

  416. 		logger.Log(0, username, "error decoding request body: ",
    417. 

  417. 			err.Error())
    418. 

  418. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    419. 

  419. 		return
    420. 

  420. 	}
    421. 

  421. 	if !user.IsAdmin {
    422. 

  422. 		logger.Log(0, username, "not an admin user")
    423. 

  423. 		logic.ReturnErrorResponse(w, r, logic.FormatError(errors.New("not a admin user"), "badrequest"))
    424. 

  424. 	}
    425. 

  425. 	user, err = logic.UpdateUser(&userchange, user)
    426. 

  426. 	if err != nil {
    427. 

  427. 		logger.Log(0, username,
    428. 

  428. 			"failed to update user (admin) info: ", err.Error())
    429. 

  429. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    430. 

  430. 		return
    431. 

  431. 	}
    432. 

  432. 	logger.Log(1, username, "was updated (admin)")
    433. 

  433. 	json.NewEncoder(w).Encode(user)
    434. 

  434. }
    435. 

  435. 

  436. // swagger:route DELETE /api/users/{username} user deleteUser
    437. 

  437. //
    438. 

  438. // Delete a user.
    439. 

  439. //
    440. 

  440. //			Schemes: https
    441. 

  441. //
    442. 

  442. //			Security:
    443. 

  443. //	  		oauth
    444. 

  444. //
    445. 

  445. //			Responses:
    446. 

  446. //				200: userBodyResponse
    447. 

  447. func deleteUser(w http.ResponseWriter, r *http.Request) {
    448. 

  448. 	// Set header
    449. 

  449. 	w.Header().Set("Content-Type", "application/json")
    450. 

  450. 

  451. 	// get params
    452. 

  452. 	var params = mux.Vars(r)
    453. 

  453. 

  454. 	username := params["username"]
    455. 

  455. 

  456. 	success, err := logic.DeleteUser(username)
    457. 

  457. 	if err != nil {
    458. 

  458. 		logger.Log(0, username,
    459. 

  459. 			"failed to delete user: ", err.Error())
    460. 

  460. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    461. 

  461. 		return
    462. 

  462. 	} else if !success {
    463. 

  463. 		err := errors.New("delete unsuccessful")
    464. 

  464. 		logger.Log(0, username, err.Error())
    465. 

  465. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    466. 

  466. 		return
    467. 

  467. 	}
    468. 

  468. 

  469. 	logger.Log(1, username, "was deleted")
    470. 

  470. 	json.NewEncoder(w).Encode(params["username"] + " deleted.")
    471. 

  471. }
    472. 

  472. 

  473. // Called when vpn client dials in to start the auth flow and first stage is to get register URL itself
    474. 

  474. func socketHandler(w http.ResponseWriter, r *http.Request) {
    475. 

  475. 	// Upgrade our raw HTTP connection to a websocket based one
    476. 

  476. 	conn, err := upgrader.Upgrade(w, r, nil)
    477. 

  477. 	if err != nil {
    478. 

  478. 		logger.Log(0, "error during connection upgrade for node sign-in:", err.Error())
    479. 

  479. 		return
    480. 

  480. 	}
    481. 

  481. 	if conn == nil {
    482. 

  482. 		logger.Log(0, "failed to establish web-socket connection during node sign-in")
    483. 

  483. 		return
    484. 

  484. 	}
    485. 

  485. 	// Start handling the session
    486. 

  486. 	go auth.SessionHandler(conn)
    487. 

  487. }
    488.