camzalewski/personal-site
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

Finished login handling.

Browse source
This commit is contained in:
mikestefanello 2021-12-12 19:02:25 -05:00
parent 9986ca627d
commit eb98a600e8
3 changed files with 64 additions and 23 deletions
Download patch file Download diff file Expand all files Collapse all files

70
controllers/login.go
View file

@ -1,49 +1,85 @@
package controllers package controllers
import ( import (
"fmt"
"goweb/auth"
"goweb/ent"
"goweb/ent/user" "goweb/ent/user"
"goweb/msg" "goweb/msg"
"golang.org/x/crypto/bcrypt"
"github.com/labstack/echo/v4" "github.com/labstack/echo/v4"
) )
type Login struct { type (
Login struct {
Controller Controller
form LoginForm
} }
LoginForm struct {
Username string `form:"username" validate:"required"`
Password string `form:"password" validate:"required"`
}
)
func (l *Login) Get(c echo.Context) error { func (l *Login) Get(c echo.Context) error {
p := NewPage(c) p := NewPage(c)
p.Layout = "auth" p.Layout = "auth"
p.Name = "login" p.Name = "login"
p.Title = "Log in" p.Title = "Log in"
p.Data = "This is the login page" p.Data = l.form
return l.RenderPage(c, p) return l.RenderPage(c, p)
} }
func (l *Login) Post(c echo.Context) error { func (l *Login) Post(c echo.Context) error {
name := c.FormValue("username") // Parse the form values
pw := c.FormValue("password") if err := c.Bind(&l.form); err != nil {
c.Logger().Errorf("unable to parse login form: %v", err)
if name == "" || pw == "" { msg.Danger(c, "An error occurred. Please try again.")
msg.Warning(c, "All fields are required.")
return l.Get(c) return l.Get(c)
} }
// Validate the form
if err := c.Validate(l.form); err != nil {
msg.Danger(c, "All fields are required.")
return l.Get(c)
}
// Attempt to load the user
u, err := l.Container.ORM.User. u, err := l.Container.ORM.User.
Query(). Query().
Where(user.Username(name)). Where(user.Username(l.form.Username)).
First(c.Request().Context()) First(c.Request().Context())
if err != nil { if err != nil {
c.Logger().Errorf("error querying user during login: %v", err) switch err.(type) {
} else { case *ent.NotFoundError:
err = bcrypt.CompareHashAndPassword([]byte(u.Password), []byte(pw))
if err != nil {
msg.Danger(c, "Invalid credentials. Please try again.") msg.Danger(c, "Invalid credentials. Please try again.")
} return l.Get(c)
} default:
c.Logger().Errorf("error querying user during login: %v", err)
msg.Danger(c, "An error occurred. Please try again.")
return l.Get(c) return l.Get(c)
} }
}
// Check if the password is correct
err = auth.CheckPassword(l.form.Password, u.Password)
if err != nil {
msg.Danger(c, "Invalid credentials. Please try again.")
return l.Get(c)
}
// Log the user in
err = auth.Login(c, u.ID)
if err != nil {
c.Logger().Errorf("unable to log in user %d: %v", u.ID, err)
msg.Danger(c, "An error occurred. Please try again.")
return l.Get(c)
}
msg.Success(c, fmt.Sprintf("Welcome back, %s. You are now logged in.", u.Username))
return l.Redirect(c, "home")
}

9
middleware/auth.go
View file

@ -14,14 +14,19 @@ import (
func LoadAuthenticatedUser(orm *ent.Client) echo.MiddlewareFunc { func LoadAuthenticatedUser(orm *ent.Client) echo.MiddlewareFunc {
return func(next echo.HandlerFunc) echo.HandlerFunc { return func(next echo.HandlerFunc) echo.HandlerFunc {
return func(c echo.Context) error { return func(c echo.Context) error {
if userID, err := auth.GetUserID(c); err != nil { if userID, err := auth.GetUserID(c); err == nil {
u, err := orm.User.Query(). u, err := orm.User.Query().
Where(user.ID(userID)). Where(user.ID(userID)).
First(c.Request().Context()) First(c.Request().Context())
if err == nil { switch err.(type) {
case *ent.NotFoundError:
c.Logger().Debug("auth user not found: %d", userID)
case nil:
c.Set(context.AuthenticatedUserKey, u) c.Set(context.AuthenticatedUserKey, u)
c.Logger().Info("auth user loaded in to context: %d", userID) c.Logger().Info("auth user loaded in to context: %d", userID)
default:
c.Logger().Errorf("error querying for authenticated user: %v", err)
} }
} }

8
views/pages/login.gohtml
View file

@ -1,15 +1,15 @@
{{define "content"}} {{define "content"}}
<form method="post"> <form method="post">
<div class="field"> <div class="field">
<label for="" class="label">Username</label> <label for="login" class="label">Username</label>
<div class="control"> <div class="control">
<input type="textfield" name="username" class="input" required> <input id="login" type="text" name="username" class="input" value="{{.Data.Username}}" required>
</div> </div>
</div> </div>
<div class="field"> <div class="field">
<label for="" class="label">Password</label> <label for="password" class="label">Password</label>
<div class="control"> <div class="control">
<input type="password" name="password" placeholder="*******" class="input" required> <input id="password" type="password" name="password" placeholder="*******" class="input" required>
</div> </div>
</div> </div>
<div class="field is-grouped"> <div class="field is-grouped">