2016-12-02 07:38:54 +00:00
package main
2017-05-11 13:04:43 +00:00
2017-06-05 11:57:27 +00:00
import (
//"fmt"
"strconv"
"net"
"net/http"
"golang.org/x/crypto/bcrypt"
"database/sql"
_ "github.com/go-sql-driver/mysql"
)
2016-12-02 07:38:54 +00:00
2017-02-15 10:49:30 +00:00
var guest_user User = User { ID : 0 , Group : 6 , Perms : GuestPerms }
2016-12-02 07:38:54 +00:00
type User struct
{
ID int
Name string
2016-12-23 12:35:22 +00:00
Email string
2016-12-02 07:38:54 +00:00
Group int
2016-12-13 02:14:14 +00:00
Active bool
2016-12-07 13:46:14 +00:00
Is_Mod bool
Is_Super_Mod bool
2016-12-02 07:38:54 +00:00
Is_Admin bool
2016-12-02 08:07:56 +00:00
Is_Super_Admin bool
2016-12-04 10:44:28 +00:00
Is_Banned bool
2016-12-21 02:30:32 +00:00
Perms Perms
2016-12-02 07:38:54 +00:00
Session string
Loggedin bool
2016-12-02 15:03:31 +00:00
Avatar string
2016-12-09 13:46:29 +00:00
Message string
URLPrefix string
URLName string
2016-12-13 02:14:14 +00:00
Tag string
2017-01-12 02:55:08 +00:00
Level int
Score int
2017-01-17 07:55:46 +00:00
Last_IP string
2017-05-11 13:04:43 +00:00
//WS_Conn interface{}
2016-12-02 07:38:54 +00:00
}
2017-01-03 07:47:31 +00:00
type Email struct
{
UserID int
Email string
Validated bool
Primary bool
Token string
}
2016-12-02 07:38:54 +00:00
func SetPassword ( uid int , password string ) ( error ) {
salt , err := GenerateSafeString ( saltLength )
if err != nil {
return err
}
2017-06-06 14:41:06 +00:00
2016-12-02 07:38:54 +00:00
password = password + salt
hashed_password , err := bcrypt . GenerateFromPassword ( [ ] byte ( password ) , bcrypt . DefaultCost )
if err != nil {
return err
}
2017-06-06 14:41:06 +00:00
2016-12-02 07:38:54 +00:00
_ , err = set_password_stmt . Exec ( string ( hashed_password ) , salt , uid )
if err != nil {
return err
}
return nil
}
2017-01-03 07:47:31 +00:00
func SendValidationEmail ( username string , email string , token string ) bool {
var schema string
if enable_ssl {
schema = "s"
}
subject := "Validate Your Email @ " + site_name
2017-03-16 05:06:58 +00:00
msg := "Dear " + username + ", following your registration on our forums, we ask you to validate your email, so that we can confirm that this email actually belongs to you.\n\nClick on the following link to do so. http" + schema + "://" + site_url + "/user/edit/token/" + token + "\n\nIf you haven't created an account here, then please feel free to ignore this email.\nWe're sorry for the inconvenience this may have caused."
2017-01-03 07:47:31 +00:00
return SendEmail ( email , subject , msg )
}
2017-02-05 16:36:54 +00:00
func SimpleForumSessionCheck ( w http . ResponseWriter , r * http . Request , fid int ) ( user User , success bool ) {
2017-03-14 10:57:40 +00:00
if ! forum_exists ( fid ) {
2017-02-05 16:36:54 +00:00
PreError ( "The target forum doesn't exist." , w , r )
return user , false
2016-12-16 10:37:42 +00:00
}
2017-02-05 16:36:54 +00:00
user , success = SimpleSessionCheck ( w , r )
fperms := groups [ user . Group ] . Forums [ fid ]
if fperms . Overrides && ! user . Is_Super_Admin {
user . Perms . ViewTopic = fperms . ViewTopic
2017-02-10 13:39:13 +00:00
user . Perms . LikeItem = fperms . LikeItem
2017-02-05 16:36:54 +00:00
user . Perms . CreateTopic = fperms . CreateTopic
user . Perms . EditTopic = fperms . EditTopic
user . Perms . DeleteTopic = fperms . DeleteTopic
user . Perms . CreateReply = fperms . CreateReply
user . Perms . EditReply = fperms . EditReply
user . Perms . DeleteReply = fperms . DeleteReply
user . Perms . PinTopic = fperms . PinTopic
user . Perms . CloseTopic = fperms . CloseTopic
2017-06-14 07:09:44 +00:00
if len ( fperms . ExtData ) != 0 {
for name , perm := range fperms . ExtData {
user . Perms . ExtData [ name ] = perm
}
}
2017-02-05 16:36:54 +00:00
}
return user , success
}
func ForumSessionCheck ( w http . ResponseWriter , r * http . Request , fid int ) ( user User , noticeList [ ] string , success bool ) {
2017-03-14 10:57:40 +00:00
if ! forum_exists ( fid ) {
2017-02-05 16:36:54 +00:00
NotFound ( w , r )
2016-12-16 10:37:42 +00:00
return user , noticeList , false
}
2017-02-05 16:36:54 +00:00
user , success = SimpleSessionCheck ( w , r )
fperms := groups [ user . Group ] . Forums [ fid ]
2017-02-15 10:49:30 +00:00
//fmt.Printf("%+v\n", user.Perms)
//fmt.Printf("%+v\n", fperms)
2017-02-05 16:36:54 +00:00
if fperms . Overrides && ! user . Is_Super_Admin {
user . Perms . ViewTopic = fperms . ViewTopic
2017-02-10 13:39:13 +00:00
user . Perms . LikeItem = fperms . LikeItem
2017-02-05 16:36:54 +00:00
user . Perms . CreateTopic = fperms . CreateTopic
user . Perms . EditTopic = fperms . EditTopic
user . Perms . DeleteTopic = fperms . DeleteTopic
user . Perms . CreateReply = fperms . CreateReply
user . Perms . EditReply = fperms . EditReply
user . Perms . DeleteReply = fperms . DeleteReply
user . Perms . PinTopic = fperms . PinTopic
user . Perms . CloseTopic = fperms . CloseTopic
2017-06-14 07:09:44 +00:00
if len ( fperms . ExtData ) != 0 {
for name , perm := range fperms . ExtData {
user . Perms . ExtData [ name ] = perm
}
}
2016-12-21 02:30:32 +00:00
}
2016-12-16 10:37:42 +00:00
if user . Is_Banned {
2017-02-05 16:36:54 +00:00
noticeList = append ( noticeList , "Your account has been suspended. Some of your permissions may have been revoked." )
2016-12-16 10:37:42 +00:00
}
2017-02-05 16:36:54 +00:00
return user , noticeList , success
}
func SessionCheck ( w http . ResponseWriter , r * http . Request ) ( user User , noticeList [ ] string , success bool ) {
user , success = SimpleSessionCheck ( w , r )
if user . Is_Banned {
noticeList = append ( noticeList , "Your account has been suspended. Some of your permissions may have been revoked." )
2017-01-17 07:55:46 +00:00
}
2017-02-05 16:36:54 +00:00
return user , noticeList , success
2016-12-16 10:37:42 +00:00
}
2017-02-11 14:51:16 +00:00
func SimpleSessionCheck ( w http . ResponseWriter , r * http . Request ) ( User , bool ) {
2016-12-02 07:38:54 +00:00
// Are there any session cookies..?
2016-12-16 10:37:42 +00:00
cookie , err := r . Cookie ( "uid" )
2016-12-02 07:38:54 +00:00
if err != nil {
2017-02-15 10:49:30 +00:00
return guest_user , true
2016-12-02 07:38:54 +00:00
}
2017-02-11 14:51:16 +00:00
uid , err := strconv . Atoi ( cookie . Value )
2016-12-02 07:38:54 +00:00
if err != nil {
2017-02-15 10:49:30 +00:00
return guest_user , true
2016-12-02 07:38:54 +00:00
}
cookie , err = r . Cookie ( "session" )
if err != nil {
2017-02-15 10:49:30 +00:00
return guest_user , true
2016-12-02 07:38:54 +00:00
}
2017-06-06 14:41:06 +00:00
2016-12-02 07:38:54 +00:00
// Is this session valid..?
2017-02-11 14:51:16 +00:00
user , err := users . CascadeGet ( uid )
2016-12-02 07:38:54 +00:00
if err == sql . ErrNoRows {
2017-02-15 10:49:30 +00:00
return guest_user , true
2016-12-02 07:38:54 +00:00
} else if err != nil {
2017-02-05 16:36:54 +00:00
InternalError ( err , w , r )
2017-02-15 10:49:30 +00:00
return guest_user , false
2017-02-11 14:51:16 +00:00
}
2017-06-06 14:41:06 +00:00
2017-02-11 14:51:16 +00:00
if user . Session == "" || cookie . Value != user . Session {
2017-02-15 10:49:30 +00:00
return guest_user , true
2016-12-08 14:11:18 +00:00
}
2017-06-06 14:41:06 +00:00
2016-12-21 02:30:32 +00:00
if user . Is_Super_Admin {
user . Perms = AllPerms
} else {
user . Perms = groups [ user . Group ] . Perms
}
2017-06-06 14:41:06 +00:00
2017-01-17 07:55:46 +00:00
host , _ , err := net . SplitHostPort ( r . RemoteAddr )
if err != nil {
2017-02-11 14:51:16 +00:00
PreError ( "Bad IP" , w , r )
return * user , false
2017-01-17 07:55:46 +00:00
}
if host != user . Last_IP {
_ , err = update_last_ip_stmt . Exec ( host , user . ID )
if err != nil {
2017-02-05 16:36:54 +00:00
InternalError ( err , w , r )
2017-02-11 14:51:16 +00:00
return * user , false
2017-01-17 07:55:46 +00:00
}
2017-06-14 07:09:44 +00:00
user . Last_IP = host
2017-01-17 07:55:46 +00:00
}
2017-02-11 14:51:16 +00:00
return * user , true
2017-01-12 02:55:08 +00:00
}
2017-02-10 13:39:13 +00:00
func words_to_score ( wcount int , topic bool ) ( score int ) {
if topic {
score = 2
} else {
score = 1
}
2017-06-06 14:41:06 +00:00
2017-06-10 07:58:15 +00:00
if wcount >= settings [ "megapost_min_words" ] . ( int ) {
2017-02-10 13:39:13 +00:00
score += 4
2017-06-10 07:58:15 +00:00
} else if wcount >= settings [ "bigpost_min_words" ] . ( int ) {
2017-02-10 13:39:13 +00:00
score += 1
}
return score
}
2017-01-12 02:55:08 +00:00
func increase_post_user_stats ( wcount int , uid int , topic bool , user User ) error {
var mod int
base_score := 1
if topic {
_ , err := increment_user_topics_stmt . Exec ( 1 , uid )
if err != nil {
return err
}
base_score = 2
}
2017-06-06 14:41:06 +00:00
2017-06-10 07:58:15 +00:00
if wcount >= settings [ "megapost_min_words" ] . ( int ) {
2017-01-12 02:55:08 +00:00
_ , err := increment_user_megaposts_stmt . Exec ( 1 , 1 , 1 , uid )
if err != nil {
return err
}
mod = 4
2017-06-10 07:58:15 +00:00
} else if wcount >= settings [ "bigpost_min_words" ] . ( int ) {
2017-01-12 02:55:08 +00:00
_ , err := increment_user_bigposts_stmt . Exec ( 1 , 1 , uid )
if err != nil {
return err
}
mod = 1
} else {
_ , err := increment_user_posts_stmt . Exec ( 1 , uid )
if err != nil {
return err
}
}
_ , err := increment_user_score_stmt . Exec ( base_score + mod , uid )
if err != nil {
return err
}
2017-01-12 14:01:35 +00:00
//fmt.Println(user.Score + base_score + mod)
//fmt.Println(getLevel(user.Score + base_score + mod))
2017-01-12 02:55:08 +00:00
_ , err = update_user_level_stmt . Exec ( getLevel ( user . Score + base_score + mod ) , uid )
return err
}
func decrease_post_user_stats ( wcount int , uid int , topic bool , user User ) error {
var mod int
base_score := - 1
if topic {
_ , err := increment_user_topics_stmt . Exec ( - 1 , uid )
if err != nil {
return err
}
base_score = - 2
}
2017-06-06 14:41:06 +00:00
2017-06-12 09:03:14 +00:00
if wcount >= settings [ "megapost_min_words" ] . ( int ) {
2017-01-12 02:55:08 +00:00
_ , err := increment_user_megaposts_stmt . Exec ( - 1 , - 1 , - 1 , uid )
if err != nil {
return err
}
mod = 4
2017-06-12 09:03:14 +00:00
} else if wcount >= settings [ "bigpost_min_words" ] . ( int ) {
2017-01-12 02:55:08 +00:00
_ , err := increment_user_bigposts_stmt . Exec ( - 1 , - 1 , uid )
if err != nil {
return err
}
mod = 1
} else {
_ , err := increment_user_posts_stmt . Exec ( - 1 , uid )
if err != nil {
return err
}
}
_ , err := increment_user_score_stmt . Exec ( base_score - mod , uid )
if err != nil {
return err
}
_ , err = update_user_level_stmt . Exec ( getLevel ( user . Score - base_score - mod ) , uid )
return err
}
2017-02-15 10:49:30 +00:00
func init_user_perms ( user * User ) {
user . Is_Admin = user . Is_Super_Admin || groups [ user . Group ] . Is_Admin
user . Is_Super_Mod = user . Is_Admin || groups [ user . Group ] . Is_Mod
user . Is_Mod = user . Is_Super_Mod
user . Is_Banned = groups [ user . Group ] . Is_Banned
if user . Is_Banned && user . Is_Super_Mod {
user . Is_Banned = false
}
2017-02-28 09:27:28 +00:00
}
func build_profile_url ( uid int ) string {
return "/user/" + strconv . Itoa ( uid )
}