Home Explore Help
Sign In
golang
/
netmaker
mirror of https://github.com/gravitl/netmaker
2
0
Fork 0
Files Issues 0 Wiki
Tree: ae6a12b16b
Branches Tags
netmaker
/
controllers
/
user.go

user.go 13 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471 
  1. package controller
    2. 

  2. 

  3. import (
    4. 

  4. 	"encoding/json"
    5. 

  5. 	"errors"
    6. 

  6. 	"fmt"
    7. 

  7. 	"net/http"
    8. 

  8. 

  9. 	"github.com/gorilla/mux"
    10. 

  10. 	"github.com/gorilla/websocket"
    11. 

  11. 	"github.com/gravitl/netmaker/auth"
    12. 

  12. 	"github.com/gravitl/netmaker/logger"
    13. 

  13. 	"github.com/gravitl/netmaker/logic"
    14. 

  14. 	"github.com/gravitl/netmaker/models"
    15. 

  15. 	"github.com/gravitl/netmaker/servercfg"
    16. 

  16. )
    17. 

  17. 

  18. var (
    19. 

  19. 	upgrader = websocket.Upgrader{}
    20. 

  20. )
    21. 

  21. 

  22. func userHandlers(r *mux.Router) {
    23. 

  23. 

  24. 	r.HandleFunc("/api/users/adm/hasadmin", hasAdmin).Methods(http.MethodGet)
    25. 

  25. 	r.HandleFunc("/api/users/adm/createadmin", createAdmin).Methods(http.MethodPost)
    26. 

  26. 	r.HandleFunc("/api/users/adm/authenticate", authenticateUser).Methods(http.MethodPost)
    27. 

  27. 	r.HandleFunc("/api/users/{username}", logic.SecurityCheck(false, logic.ContinueIfUserMatch(http.HandlerFunc(updateUser)))).Methods(http.MethodPut)
    28. 

  28. 	r.HandleFunc("/api/users/networks/{username}", logic.SecurityCheck(true, http.HandlerFunc(updateUserNetworks))).Methods(http.MethodPut)
    29. 

  29. 	r.HandleFunc("/api/users/{username}/adm", logic.SecurityCheck(true, http.HandlerFunc(updateUserAdm))).Methods(http.MethodPut)
    30. 

  30. 	r.HandleFunc("/api/users/{username}", logic.SecurityCheck(true, checkFreeTierLimits(users_l, http.HandlerFunc(createUser)))).Methods(http.MethodPost)
    31. 

  31. 	r.HandleFunc("/api/users/{username}", logic.SecurityCheck(true, http.HandlerFunc(deleteUser))).Methods(http.MethodDelete)
    32. 

  32. 	r.HandleFunc("/api/users/{username}", logic.SecurityCheck(false, logic.ContinueIfUserMatch(http.HandlerFunc(getUser)))).Methods(http.MethodGet)
    33. 

  33. 	r.HandleFunc("/api/users", logic.SecurityCheck(true, http.HandlerFunc(getUsers))).Methods(http.MethodGet)
    34. 

  34. 	r.HandleFunc("/api/oauth/login", auth.HandleAuthLogin).Methods(http.MethodGet)
    35. 

  35. 	r.HandleFunc("/api/oauth/callback", auth.HandleAuthCallback).Methods(http.MethodGet)
    36. 

  36. 	r.HandleFunc("/api/oauth/node-handler", socketHandler)
    37. 

  37. 	r.HandleFunc("/api/oauth/headless", auth.HandleHeadlessSSO)
    38. 

  38. 	r.HandleFunc("/api/oauth/register/{regKey}", auth.RegisterNodeSSO).Methods(http.MethodGet)
    39. 

  39. }
    40. 

  40. 

  41. // swagger:route POST /api/users/adm/authenticate user authenticateUser
    42. 

  42. //
    43. 

  43. // Node authenticates using its password and retrieves a JWT for authorization.
    44. 

  44. //
    45. 

  45. //			Schemes: https
    46. 

  46. //
    47. 

  47. //			Security:
    48. 

  48. //	  		oauth
    49. 

  49. //
    50. 

  50. //			Responses:
    51. 

  51. //				200: successResponse
    52. 

  52. func authenticateUser(response http.ResponseWriter, request *http.Request) {
    53. 

  53. 

  54. 	// Auth request consists of Mac Address and Password (from node that is authorizing
    55. 

  55. 	// in case of Master, auth is ignored and mac is set to "mastermac"
    56. 

  56. 	var authRequest models.UserAuthParams
    57. 

  57. 	var errorResponse = models.ErrorResponse{
    58. 

  58. 		Code: http.StatusInternalServerError, Message: "W1R3: It's not you it's me.",
    59. 

  59. 	}
    60. 

  60. 

  61. 	if !servercfg.IsBasicAuthEnabled() {
    62. 

  62. 		logic.ReturnErrorResponse(response, request, logic.FormatError(fmt.Errorf("basic auth is disabled"), "badrequest"))
    63. 

  63. 		return
    64. 

  64. 	}
    65. 

  65. 

  66. 	decoder := json.NewDecoder(request.Body)
    67. 

  67. 	decoderErr := decoder.Decode(&authRequest)
    68. 

  68. 	defer request.Body.Close()
    69. 

  69. 	if decoderErr != nil {
    70. 

  70. 		logger.Log(0, "error decoding request body: ",
    71. 

  71. 			decoderErr.Error())
    72. 

  72. 		logic.ReturnErrorResponse(response, request, errorResponse)
    73. 

  73. 		return
    74. 

  74. 	}
    75. 

  75. 	username := authRequest.UserName
    76. 

  76. 	jwt, err := logic.VerifyAuthRequest(authRequest)
    77. 

  77. 	if err != nil {
    78. 

  78. 		logger.Log(0, username, "user validation failed: ",
    79. 

  79. 			err.Error())
    80. 

  80. 		logic.ReturnErrorResponse(response, request, logic.FormatError(err, "badrequest"))
    81. 

  81. 		return
    82. 

  82. 	}
    83. 

  83. 

  84. 	if jwt == "" {
    85. 

  85. 		// very unlikely that err is !nil and no jwt returned, but handle it anyways.
    86. 

  86. 		logger.Log(0, username, "jwt token is empty")
    87. 

  87. 		logic.ReturnErrorResponse(response, request, logic.FormatError(errors.New("no token returned"), "internal"))
    88. 

  88. 		return
    89. 

  89. 	}
    90. 

  90. 

  91. 	var successResponse = models.SuccessResponse{
    92. 

  92. 		Code:    http.StatusOK,
    93. 

  93. 		Message: "W1R3: Device " + username + " Authorized",
    94. 

  94. 		Response: models.SuccessfulUserLoginResponse{
    95. 

  95. 			AuthToken: jwt,
    96. 

  96. 			UserName:  username,
    97. 

  97. 		},
    98. 

  98. 	}
    99. 

  99. 	// Send back the JWT
    100. 

  100. 	successJSONResponse, jsonError := json.Marshal(successResponse)
    101. 

  101. 

  102. 	if jsonError != nil {
    103. 

  103. 		logger.Log(0, username,
    104. 

  104. 			"error marshalling resp: ", err.Error())
    105. 

  105. 		logic.ReturnErrorResponse(response, request, errorResponse)
    106. 

  106. 		return
    107. 

  107. 	}
    108. 

  108. 	logger.Log(2, username, "was authenticated")
    109. 

  109. 	response.Header().Set("Content-Type", "application/json")
    110. 

  110. 	response.Write(successJSONResponse)
    111. 

  111. }
    112. 

  112. 

  113. // swagger:route GET /api/users/adm/hasadmin user hasAdmin
    114. 

  114. //
    115. 

  115. // Checks whether the server has an admin.
    116. 

  116. //
    117. 

  117. //			Schemes: https
    118. 

  118. //
    119. 

  119. //			Security:
    120. 

  120. //	  		oauth
    121. 

  121. //
    122. 

  122. //			Responses:
    123. 

  123. //				200: successResponse
    124. 

  124. func hasAdmin(w http.ResponseWriter, r *http.Request) {
    125. 

  125. 

  126. 	w.Header().Set("Content-Type", "application/json")
    127. 

  127. 

  128. 	hasadmin, err := logic.HasAdmin()
    129. 

  129. 	if err != nil {
    130. 

  130. 		logger.Log(0, "failed to check for admin: ", err.Error())
    131. 

  131. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    132. 

  132. 		return
    133. 

  133. 	}
    134. 

  134. 

  135. 	json.NewEncoder(w).Encode(hasadmin)
    136. 

  136. 

  137. }
    138. 

  138. 

  139. // swagger:route GET /api/users/{username} user getUser
    140. 

  140. //
    141. 

  141. // Get an individual user.
    142. 

  142. //
    143. 

  143. //			Schemes: https
    144. 

  144. //
    145. 

  145. //			Security:
    146. 

  146. //	  		oauth
    147. 

  147. //
    148. 

  148. //			Responses:
    149. 

  149. //				200: userBodyResponse
    150. 

  150. func getUser(w http.ResponseWriter, r *http.Request) {
    151. 

  151. 	// set header.
    152. 

  152. 	w.Header().Set("Content-Type", "application/json")
    153. 

  153. 

  154. 	var params = mux.Vars(r)
    155. 

  155. 	usernameFetched := params["username"]
    156. 

  156. 	user, err := logic.GetUser(usernameFetched)
    157. 

  157. 

  158. 	if err != nil {
    159. 

  159. 		logger.Log(0, usernameFetched, "failed to fetch user: ", err.Error())
    160. 

  160. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    161. 

  161. 		return
    162. 

  162. 	}
    163. 

  163. 	logger.Log(2, r.Header.Get("user"), "fetched user", usernameFetched)
    164. 

  164. 	json.NewEncoder(w).Encode(user)
    165. 

  165. }
    166. 

  166. 

  167. // swagger:route GET /api/users user getUsers
    168. 

  168. //
    169. 

  169. // Get all users.
    170. 

  170. //
    171. 

  171. //			Schemes: https
    172. 

  172. //
    173. 

  173. //			Security:
    174. 

  174. //	  		oauth
    175. 

  175. //
    176. 

  176. //			Responses:
    177. 

  177. //				200: userBodyResponse
    178. 

  178. func getUsers(w http.ResponseWriter, r *http.Request) {
    179. 

  179. 	// set header.
    180. 

  180. 	w.Header().Set("Content-Type", "application/json")
    181. 

  181. 

  182. 	users, err := logic.GetUsers()
    183. 

  183. 

  184. 	if err != nil {
    185. 

  185. 		logger.Log(0, "failed to fetch users: ", err.Error())
    186. 

  186. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    187. 

  187. 		return
    188. 

  188. 	}
    189. 

  189. 

  190. 	logger.Log(2, r.Header.Get("user"), "fetched users")
    191. 

  191. 	json.NewEncoder(w).Encode(users)
    192. 

  192. }
    193. 

  193. 

  194. // swagger:route POST /api/users/adm/createadmin user createAdmin
    195. 

  195. //
    196. 

  196. // Make a user an admin.
    197. 

  197. //
    198. 

  198. //			Schemes: https
    199. 

  199. //
    200. 

  200. //			Security:
    201. 

  201. //	  		oauth
    202. 

  202. //
    203. 

  203. //			Responses:
    204. 

  204. //				200: userBodyResponse
    205. 

  205. func createAdmin(w http.ResponseWriter, r *http.Request) {
    206. 

  206. 	w.Header().Set("Content-Type", "application/json")
    207. 

  207. 

  208. 	var admin models.User
    209. 

  209. 

  210. 	err := json.NewDecoder(r.Body).Decode(&admin)
    211. 

  211. 	if err != nil {
    212. 

  212. 

  213. 		logger.Log(0, admin.UserName, "error decoding request body: ",
    214. 

  214. 			err.Error())
    215. 

  215. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    216. 

  216. 		return
    217. 

  217. 	}
    218. 

  218. 

  219. 	if !servercfg.IsBasicAuthEnabled() {
    220. 

  220. 		logic.ReturnErrorResponse(w, r, logic.FormatError(fmt.Errorf("basic auth is disabled"), "badrequest"))
    221. 

  221. 		return
    222. 

  222. 	}
    223. 

  223. 

  224. 	err = logic.CreateAdmin(&admin)
    225. 

  225. 	if err != nil {
    226. 

  226. 		logger.Log(0, admin.UserName, "failed to create admin: ",
    227. 

  227. 			err.Error())
    228. 

  228. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    229. 

  229. 		return
    230. 

  230. 	}
    231. 

  231. 

  232. 	logger.Log(1, admin.UserName, "was made a new admin")
    233. 

  233. 	json.NewEncoder(w).Encode(admin)
    234. 

  234. }
    235. 

  235. 

  236. // swagger:route POST /api/users/{username} user createUser
    237. 

  237. //
    238. 

  238. // Create a user.
    239. 

  239. //
    240. 

  240. //			Schemes: https
    241. 

  241. //
    242. 

  242. //			Security:
    243. 

  243. //	  		oauth
    244. 

  244. //
    245. 

  245. //			Responses:
    246. 

  246. //				200: userBodyResponse
    247. 

  247. func createUser(w http.ResponseWriter, r *http.Request) {
    248. 

  248. 	w.Header().Set("Content-Type", "application/json")
    249. 

  249. 

  250. 	var user models.User
    251. 

  251. 	err := json.NewDecoder(r.Body).Decode(&user)
    252. 

  252. 	if err != nil {
    253. 

  253. 		logger.Log(0, user.UserName, "error decoding request body: ",
    254. 

  254. 			err.Error())
    255. 

  255. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    256. 

  256. 		return
    257. 

  257. 	}
    258. 

  258. 

  259. 	err = logic.CreateUser(&user)
    260. 

  260. 	if err != nil {
    261. 

  261. 		logger.Log(0, user.UserName, "error creating new user: ",
    262. 

  262. 			err.Error())
    263. 

  263. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    264. 

  264. 		return
    265. 

  265. 	}
    266. 

  266. 	logger.Log(1, user.UserName, "was created")
    267. 

  267. 	json.NewEncoder(w).Encode(user)
    268. 

  268. }
    269. 

  269. 

  270. // swagger:route PUT /api/users/networks/{username} user updateUserNetworks
    271. 

  271. //
    272. 

  272. // Updates the networks of the given user.
    273. 

  273. //
    274. 

  274. //			Schemes: https
    275. 

  275. //
    276. 

  276. //			Security:
    277. 

  277. //	  		oauth
    278. 

  278. //
    279. 

  279. //			Responses:
    280. 

  280. //				200: userBodyResponse
    281. 

  281. func updateUserNetworks(w http.ResponseWriter, r *http.Request) {
    282. 

  282. 	w.Header().Set("Content-Type", "application/json")
    283. 

  283. 	var params = mux.Vars(r)
    284. 

  284. 	// start here
    285. 

  285. 	username := params["username"]
    286. 

  286. 	user, err := logic.GetUser(username)
    287. 

  287. 	if err != nil {
    288. 

  288. 		logger.Log(0, username,
    289. 

  289. 			"failed to update user networks: ", err.Error())
    290. 

  290. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    291. 

  291. 		return
    292. 

  292. 	}
    293. 

  293. 	var userchange models.User
    294. 

  294. 	// we decode our body request params
    295. 

  295. 	err = json.NewDecoder(r.Body).Decode(&userchange)
    296. 

  296. 	if err != nil {
    297. 

  297. 		logger.Log(0, username, "error decoding request body: ",
    298. 

  298. 			err.Error())
    299. 

  299. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    300. 

  300. 		return
    301. 

  301. 	}
    302. 

  302. 	err = logic.UpdateUserNetworks(userchange.Networks, userchange.Groups, userchange.IsAdmin, &models.ReturnUser{
    303. 

  303. 		Groups:   user.Groups,
    304. 

  304. 		IsAdmin:  user.IsAdmin,
    305. 

  305. 		Networks: user.Networks,
    306. 

  306. 		UserName: user.UserName,
    307. 

  307. 	})
    308. 

  308. 

  309. 	if err != nil {
    310. 

  310. 		logger.Log(0, username,
    311. 

  311. 			"failed to update user networks: ", err.Error())
    312. 

  312. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    313. 

  313. 		return
    314. 

  314. 	}
    315. 

  315. 	logger.Log(1, username, "status was updated")
    316. 

  316. 	json.NewEncoder(w).Encode(user)
    317. 

  317. }
    318. 

  318. 

  319. // swagger:route PUT /api/users/{username} user updateUser
    320. 

  320. //
    321. 

  321. // Update a user.
    322. 

  322. //
    323. 

  323. //			Schemes: https
    324. 

  324. //
    325. 

  325. //			Security:
    326. 

  326. //	  		oauth
    327. 

  327. //
    328. 

  328. //			Responses:
    329. 

  329. //				200: userBodyResponse
    330. 

  330. func updateUser(w http.ResponseWriter, r *http.Request) {
    331. 

  331. 	w.Header().Set("Content-Type", "application/json")
    332. 

  332. 	var params = mux.Vars(r)
    333. 

  333. 	// start here
    334. 

  334. 	username := params["username"]
    335. 

  335. 	user, err := logic.GetUser(username)
    336. 

  336. 	if err != nil {
    337. 

  337. 		logger.Log(0, username,
    338. 

  338. 			"failed to update user info: ", err.Error())
    339. 

  339. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    340. 

  340. 		return
    341. 

  341. 	}
    342. 

  342. 	if auth.IsOauthUser(user) == nil {
    343. 

  343. 		err := fmt.Errorf("cannot update user info for oauth user %s", username)
    344. 

  344. 		logger.Log(0, err.Error())
    345. 

  345. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "forbidden"))
    346. 

  346. 		return
    347. 

  347. 	}
    348. 

  348. 	var userchange models.User
    349. 

  349. 	// we decode our body request params
    350. 

  350. 	err = json.NewDecoder(r.Body).Decode(&userchange)
    351. 

  351. 	if err != nil {
    352. 

  352. 		logger.Log(0, username, "error decoding request body: ",
    353. 

  353. 			err.Error())
    354. 

  354. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    355. 

  355. 		return
    356. 

  356. 	}
    357. 

  357. 	userchange.Networks = nil
    358. 

  358. 	user, err = logic.UpdateUser(&userchange, user)
    359. 

  359. 	if err != nil {
    360. 

  360. 		logger.Log(0, username,
    361. 

  361. 			"failed to update user info: ", err.Error())
    362. 

  362. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    363. 

  363. 		return
    364. 

  364. 	}
    365. 

  365. 	logger.Log(1, username, "was updated")
    366. 

  366. 	json.NewEncoder(w).Encode(user)
    367. 

  367. }
    368. 

  368. 

  369. // swagger:route PUT /api/users/{username}/adm user updateUserAdm
    370. 

  370. //
    371. 

  371. // Updates the given admin user's info (as long as the user is an admin).
    372. 

  372. //
    373. 

  373. //			Schemes: https
    374. 

  374. //
    375. 

  375. //			Security:
    376. 

  376. //	  		oauth
    377. 

  377. //
    378. 

  378. //			Responses:
    379. 

  379. //				200: userBodyResponse
    380. 

  380. func updateUserAdm(w http.ResponseWriter, r *http.Request) {
    381. 

  381. 	w.Header().Set("Content-Type", "application/json")
    382. 

  382. 	var params = mux.Vars(r)
    383. 

  383. 	// start here
    384. 

  384. 	username := params["username"]
    385. 

  385. 	user, err := logic.GetUser(username)
    386. 

  386. 	if err != nil {
    387. 

  387. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    388. 

  388. 		return
    389. 

  389. 	}
    390. 

  390. 	if auth.IsOauthUser(user) != nil {
    391. 

  391. 		err := fmt.Errorf("cannot update user info for oauth user %s", username)
    392. 

  392. 		logger.Log(0, err.Error())
    393. 

  393. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "forbidden"))
    394. 

  394. 		return
    395. 

  395. 	}
    396. 

  396. 	var userchange models.User
    397. 

  397. 	// we decode our body request params
    398. 

  398. 	err = json.NewDecoder(r.Body).Decode(&userchange)
    399. 

  399. 	if err != nil {
    400. 

  400. 		logger.Log(0, username, "error decoding request body: ",
    401. 

  401. 			err.Error())
    402. 

  402. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    403. 

  403. 		return
    404. 

  404. 	}
    405. 

  405. 	if !user.IsAdmin {
    406. 

  406. 		logger.Log(0, username, "not an admin user")
    407. 

  407. 		logic.ReturnErrorResponse(w, r, logic.FormatError(errors.New("not a admin user"), "badrequest"))
    408. 

  408. 	}
    409. 

  409. 	user, err = logic.UpdateUser(&userchange, user)
    410. 

  410. 	if err != nil {
    411. 

  411. 		logger.Log(0, username,
    412. 

  412. 			"failed to update user (admin) info: ", err.Error())
    413. 

  413. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    414. 

  414. 		return
    415. 

  415. 	}
    416. 

  416. 	logger.Log(1, username, "was updated (admin)")
    417. 

  417. 	json.NewEncoder(w).Encode(user)
    418. 

  418. }
    419. 

  419. 

  420. // swagger:route DELETE /api/users/{username} user deleteUser
    421. 

  421. //
    422. 

  422. // Delete a user.
    423. 

  423. //
    424. 

  424. //			Schemes: https
    425. 

  425. //
    426. 

  426. //			Security:
    427. 

  427. //	  		oauth
    428. 

  428. //
    429. 

  429. //			Responses:
    430. 

  430. //				200: userBodyResponse
    431. 

  431. func deleteUser(w http.ResponseWriter, r *http.Request) {
    432. 

  432. 	// Set header
    433. 

  433. 	w.Header().Set("Content-Type", "application/json")
    434. 

  434. 

  435. 	// get params
    436. 

  436. 	var params = mux.Vars(r)
    437. 

  437. 

  438. 	username := params["username"]
    439. 

  439. 

  440. 	success, err := logic.DeleteUser(username)
    441. 

  441. 	if err != nil {
    442. 

  442. 		logger.Log(0, username,
    443. 

  443. 			"failed to delete user: ", err.Error())
    444. 

  444. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "internal"))
    445. 

  445. 		return
    446. 

  446. 	} else if !success {
    447. 

  447. 		err := errors.New("delete unsuccessful")
    448. 

  448. 		logger.Log(0, username, err.Error())
    449. 

  449. 		logic.ReturnErrorResponse(w, r, logic.FormatError(err, "badrequest"))
    450. 

  450. 		return
    451. 

  451. 	}
    452. 

  452. 

  453. 	logger.Log(1, username, "was deleted")
    454. 

  454. 	json.NewEncoder(w).Encode(params["username"] + " deleted.")
    455. 

  455. }
    456. 

  456. 

  457. // Called when vpn client dials in to start the auth flow and first stage is to get register URL itself
    458. 

  458. func socketHandler(w http.ResponseWriter, r *http.Request) {
    459. 

  459. 	// Upgrade our raw HTTP connection to a websocket based one
    460. 

  460. 	conn, err := upgrader.Upgrade(w, r, nil)
    461. 

  461. 	if err != nil {
    462. 

  462. 		logger.Log(0, "error during connection upgrade for node sign-in:", err.Error())
    463. 

  463. 		return
    464. 

  464. 	}
    465. 

  465. 	if conn == nil {
    466. 

  466. 		logger.Log(0, "failed to establish web-socket connection during node sign-in")
    467. 

  467. 		return
    468. 

  468. 	}
    469. 

  469. 	// Start handling the session
    470. 

  470. 	go auth.SessionHandler(conn)
    471. 

  471. }
    472.