|
|
|
package controllers
|
|
|
|
|
|
|
|
import (
|
|
|
|
"encoding/json"
|
|
|
|
model "github.com/HFO4/cloudreve/models"
|
|
|
|
"github.com/HFO4/cloudreve/pkg/authn"
|
|
|
|
"github.com/HFO4/cloudreve/pkg/serializer"
|
|
|
|
"github.com/HFO4/cloudreve/pkg/util"
|
|
|
|
"github.com/HFO4/cloudreve/service/user"
|
|
|
|
"github.com/duo-labs/webauthn/webauthn"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
|
|
)
|
|
|
|
|
|
|
|
// StartLoginAuthn 开始注册WebAuthn登录
|
|
|
|
func StartLoginAuthn(c *gin.Context) {
|
|
|
|
userName := c.Param("username")
|
|
|
|
expectedUser, err := model.GetUserByEmail(userName)
|
|
|
|
if err != nil {
|
|
|
|
c.JSON(200, serializer.Err(401, "用户邮箱或密码错误", err))
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
options, sessionData, err := authn.AuthnInstance.BeginLogin(expectedUser)
|
|
|
|
if err != nil {
|
|
|
|
c.JSON(200, ErrorResponse(err))
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
val, err := json.Marshal(sessionData)
|
|
|
|
if err != nil {
|
|
|
|
c.JSON(200, ErrorResponse(err))
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
util.SetSession(c, map[string]interface{}{
|
|
|
|
"registration-session": val,
|
|
|
|
})
|
|
|
|
c.JSON(200, serializer.Response{Code: 0, Data: options})
|
|
|
|
}
|
|
|
|
|
|
|
|
// FinishLoginAuthn 完成注册WebAuthn登录
|
|
|
|
func FinishLoginAuthn(c *gin.Context) {
|
|
|
|
userName := c.Param("username")
|
|
|
|
expectedUser, err := model.GetUserByEmail(userName)
|
|
|
|
if err != nil {
|
|
|
|
c.JSON(200, serializer.Err(401, "用户邮箱或密码错误", err))
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
sessionDataJSON := util.GetSession(c, "registration-session").([]byte)
|
|
|
|
|
|
|
|
var sessionData webauthn.SessionData
|
|
|
|
err = json.Unmarshal(sessionDataJSON, &sessionData)
|
|
|
|
|
|
|
|
_, err = authn.AuthnInstance.FinishLogin(expectedUser, sessionData, c.Request)
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
c.JSON(200, serializer.Err(401, "用户邮箱或密码错误", err))
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
util.SetSession(c, map[string]interface{}{
|
|
|
|
"user_id": expectedUser.ID,
|
|
|
|
})
|
|
|
|
c.JSON(200, serializer.BuildUserResponse(expectedUser))
|
|
|
|
}
|
|
|
|
|
|
|
|
// StartRegAuthn 开始注册WebAuthn信息
|
|
|
|
func StartRegAuthn(c *gin.Context) {
|
|
|
|
currUser := CurrentUser(c)
|
|
|
|
options, sessionData, err := authn.AuthnInstance.BeginRegistration(currUser)
|
|
|
|
if err != nil {
|
|
|
|
c.JSON(200, ErrorResponse(err))
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
val, err := json.Marshal(sessionData)
|
|
|
|
if err != nil {
|
|
|
|
c.JSON(200, ErrorResponse(err))
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
util.SetSession(c, map[string]interface{}{
|
|
|
|
"registration-session": val,
|
|
|
|
})
|
|
|
|
c.JSON(200, serializer.Response{Code: 0, Data: options})
|
|
|
|
}
|
|
|
|
|
|
|
|
// FinishRegAuthn 完成注册WebAuthn信息
|
|
|
|
func FinishRegAuthn(c *gin.Context) {
|
|
|
|
currUser := CurrentUser(c)
|
|
|
|
sessionDataJSON := util.GetSession(c, "registration-session").([]byte)
|
|
|
|
|
|
|
|
var sessionData webauthn.SessionData
|
|
|
|
err := json.Unmarshal(sessionDataJSON, &sessionData)
|
|
|
|
|
|
|
|
credential, err := authn.AuthnInstance.FinishRegistration(currUser, sessionData, c.Request)
|
|
|
|
|
|
|
|
currUser.RegisterAuthn(credential)
|
|
|
|
if err != nil {
|
|
|
|
c.JSON(200, ErrorResponse(err))
|
|
|
|
return
|
|
|
|
}
|
|
|
|
c.JSON(200, serializer.Response{Code: 0})
|
|
|
|
}
|
|
|
|
|
|
|
|
// UserLogin 用户登录
|
|
|
|
func UserLogin(c *gin.Context) {
|
|
|
|
var service user.UserLoginService
|
|
|
|
if err := c.ShouldBindJSON(&service); err == nil {
|
|
|
|
res := service.Login(c)
|
|
|
|
c.JSON(200, res)
|
|
|
|
} else {
|
|
|
|
c.JSON(200, ErrorResponse(err))
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
// UserMe 获取当前登录的用户
|
|
|
|
func UserMe(c *gin.Context) {
|
|
|
|
currUser := CurrentUser(c)
|
|
|
|
res := serializer.BuildUserResponse(*currUser)
|
|
|
|
c.JSON(200, res)
|
|
|
|
}
|
|
|
|
|
|
|
|
// UserStorage 获取用户的存储信息
|
|
|
|
func UserStorage(c *gin.Context) {
|
|
|
|
currUser := CurrentUser(c)
|
|
|
|
res := serializer.BuildUserStorageResponse(*currUser)
|
|
|
|
c.JSON(200, res)
|
|
|
|
}
|