Imbus/TTime
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Lots of fiddling with swagger annotations in user related handlers

Browse source
This commit is contained in:
Imbus 2024-03-29 18:42:12 +01:00
parent 1385011769
commit c2fa9aa0c1
7 changed files with 67 additions and 56 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
backend/internal/handlers/users/ListAllUsers.go
View file

@ -7,16 +7,17 @@ import (
"github.com/gofiber/fiber/v2/log" "github.com/gofiber/fiber/v2/log"
) )
// ListAllUsers is a handler that returns a list of all users in the application database
// @Summary ListsAllUsers // @Summary ListsAllUsers
// @Description lists all users // @Description lists all users
// @Tags User // @Tags User
// @Accept json // @Produce json
// @Produce plain // @Security JWT
// @Success 200 {json} json "Successfully signed token for user" // @Success 200 {array} string "Successfully returned all users"
// @Failure 401 {string} string "Unauthorized" // @Failure 401 {string} string "Unauthorized"
// @Failure 500 {string} string "Internal server error" // @Failure 500 {string} string "Internal server error"
// @Router /users/all [get] // @Router /users/all [get]
//
// ListAllUsers returns a list of all users in the application database
func ListAllUsers(c *fiber.Ctx) error { func ListAllUsers(c *fiber.Ctx) error {
// Get all users from the database // Get all users from the database
users, err := db.GetDb(c).GetAllUsersApplication() users, err := db.GetDb(c).GetAllUsersApplication()

15
backend/internal/handlers/users/Login.go
View file

@ -10,18 +10,19 @@ import (
"github.com/golang-jwt/jwt/v5" "github.com/golang-jwt/jwt/v5"
) )
// Login is a simple login handler that returns a JWT token // @Summary Login
// @Summary login // @Description Logs in a user and returns a JWT token
// @Description logs the user in and returns a jwt token // @Tags Auth
// @Tags User
// @Accept json // @Accept json
// @Param NewUser body types.NewUser true "login info" // @Produce json
// @Produce plain // @Param body body types.NewUser true "User credentials"
// @Success 200 Token types.Token "Successfully signed token for user" // @Success 200 {object} types.Token "JWT token"
// @Failure 400 {string} string "Bad request" // @Failure 400 {string} string "Bad request"
// @Failure 401 {string} string "Unauthorized" // @Failure 401 {string} string "Unauthorized"
// @Failure 500 {string} string "Internal server error" // @Failure 500 {string} string "Internal server error"
// @Router /login [post] // @Router /login [post]
//
// Login logs in a user and returns a JWT token
func Login(c *fiber.Ctx) error { func Login(c *fiber.Ctx) error {
// The body type is identical to a NewUser // The body type is identical to a NewUser

30
backend/internal/handlers/users/LoginRenew.go
View file

@ -9,34 +9,40 @@ import (
"github.com/golang-jwt/jwt/v5" "github.com/golang-jwt/jwt/v5"
) )
// LoginRenew is a simple handler that renews the token
// @Summary LoginRenews // @Summary LoginRenews
// @Description renews the users token // @Description Renews the users token.
// @Security bererToken // @Tags Auth
// @Tags User // @Produce json
// @Accept json // @Security JWT
// @Produce plain // @Success 200 {object} types.Token "Successfully signed token for user"
// @Success 200 Token types.Token "Successfully signed token for user"
// @Failure 401 {string} string "Unauthorized" // @Failure 401 {string} string "Unauthorized"
// @Failure 500 {string} string "Internal server error" // @Failure 500 {string} string "Internal server error"
// @Router /loginerenew [post] // @Router /loginrenew [post]
//
// LoginRenew renews the users token
func LoginRenew(c *fiber.Ctx) error { func LoginRenew(c *fiber.Ctx) error {
user := c.Locals("user").(*jwt.Token) user := c.Locals("user").(*jwt.Token)
log.Info("Renewing token for user:", user.Claims.(jwt.MapClaims)["name"]) log.Info("Renewing token for user:", user.Claims.(jwt.MapClaims)["name"])
// Renewing the token means we trust whatever is already in the token
claims := user.Claims.(jwt.MapClaims) claims := user.Claims.(jwt.MapClaims)
// 72 hour expiration time
claims["exp"] = time.Now().Add(time.Hour * 72).Unix() claims["exp"] = time.Now().Add(time.Hour * 72).Unix()
renewed := jwt.MapClaims{
// Create token with old claims, but new expiration time
token := jwt.NewWithClaims(jwt.SigningMethodHS256, jwt.MapClaims{
"name": claims["name"], "name": claims["name"],
"admin": claims["admin"], "admin": claims["admin"],
"exp": claims["exp"], "exp": claims["exp"],
} })
token := jwt.NewWithClaims(jwt.SigningMethodHS256, renewed)
// Sign it with top secret key
t, err := token.SignedString([]byte("secret")) t, err := token.SignedString([]byte("secret"))
if err != nil { if err != nil {
log.Warn("Error signing token") log.Warn("Error signing token")
return c.SendStatus(fiber.StatusInternalServerError) return c.SendStatus(fiber.StatusInternalServerError) // 500
} }
log.Info("Successfully renewed token for user:", user.Claims.(jwt.MapClaims)["name"]) log.Info("Successfully renewed token for user:", user.Claims.(jwt.MapClaims)["name"])

7
backend/internal/handlers/users/PromoteToAdmin.go
View file

@ -9,16 +9,19 @@ import (
) )
// @Summary PromoteToAdmin // @Summary PromoteToAdmin
// @Description promote chosen user to admin // @Description Promote chosen user to site admin
// @Tags User // @Tags User
// @Accept json // @Accept json
// @Produce plain // @Produce plain
// @Security JWT
// @Param NewUser body types.NewUser true "user info" // @Param NewUser body types.NewUser true "user info"
// @Success 200 {json} json "Successfully promoted user" // @Success 200 {object} types.Token "Successfully promoted user"
// @Failure 400 {string} string "Bad request" // @Failure 400 {string} string "Bad request"
// @Failure 401 {string} string "Unauthorized" // @Failure 401 {string} string "Unauthorized"
// @Failure 500 {string} string "Internal server error" // @Failure 500 {string} string "Internal server error"
// @Router /promoteToAdmin [post] // @Router /promoteToAdmin [post]
//
// PromoteToAdmin promotes a user to a site admin
func PromoteToAdmin(c *fiber.Ctx) error { func PromoteToAdmin(c *fiber.Ctx) error {
// Extract the username from the request body // Extract the username from the request body
var newUser types.NewUser var newUser types.NewUser

6
backend/internal/handlers/users/Register.go
View file

@ -8,11 +8,9 @@ import (
"github.com/gofiber/fiber/v2/log" "github.com/gofiber/fiber/v2/log"
) )
// Register is a simple handler that registers a new user
//
// @Summary Register // @Summary Register
// @Description Register a new user // @Description Register a new user
// @Tags User // @Tags Auth
// @Accept json // @Accept json
// @Produce plain // @Produce plain
// @Param NewUser body types.NewUser true "User to register" // @Param NewUser body types.NewUser true "User to register"
@ -20,6 +18,8 @@ import (
// @Failure 400 {string} string "Bad request" // @Failure 400 {string} string "Bad request"
// @Failure 500 {string} string "Internal server error" // @Failure 500 {string} string "Internal server error"
// @Router /register [post] // @Router /register [post]
//
// Register is a simple handler that registers a new user
func Register(c *fiber.Ctx) error { func Register(c *fiber.Ctx) error {
u := new(types.NewUser) u := new(types.NewUser)
if err := c.BodyParser(u); err != nil { if err := c.BodyParser(u); err != nil {

6
backend/internal/handlers/users/UserDelete.go
View file

@ -8,19 +8,19 @@ import (
"github.com/golang-jwt/jwt/v5" "github.com/golang-jwt/jwt/v5"
) )
// This path should obviously be protected in the future
// UserDelete deletes a user from the database
//
// @Summary UserDelete // @Summary UserDelete
// @Description UserDelete deletes a user from the database // @Description UserDelete deletes a user from the database
// @Tags User // @Tags User
// @Accept json // @Accept json
// @Produce plain // @Produce plain
// @Security JWT
// @Success 200 {string} string "User deleted" // @Success 200 {string} string "User deleted"
// @Failure 403 {string} string "You can only delete yourself" // @Failure 403 {string} string "You can only delete yourself"
// @Failure 500 {string} string "Internal server error" // @Failure 500 {string} string "Internal server error"
// @Failure 401 {string} string "Unauthorized" // @Failure 401 {string} string "Unauthorized"
// @Router /userdelete/{username} [delete] // @Router /userdelete/{username} [delete]
//
// UserDelete deletes a user from the database
func UserDelete(c *fiber.Ctx) error { func UserDelete(c *fiber.Ctx) error {
// Read from path parameters // Read from path parameters
username := c.Params("username") username := c.Params("username")

4
backend/internal/types/users.go
View file

@ -18,8 +18,8 @@ func (u *User) ToPublicUser() (*PublicUser, error) {
// Should be used when registering, for example // Should be used when registering, for example
type NewUser struct { type NewUser struct {
Username string `json:"username"` Username string `json:"username" example:"username123"`
Password string `json:"password"` Password string `json:"password" example:"password123"`
} }
// PublicUser represents a user that is safe to send over the API (no password) // PublicUser represents a user that is safe to send over the API (no password)