user.go 10 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407
  1. // Copyright 2014 The Gogs Authors. All rights reserved.
  2. // Use of this source code is governed by a MIT-style
  3. // license that can be found in the LICENSE file.
  4. package user
  5. import (
  6. "net/url"
  7. "strings"
  8. "github.com/gogits/gogs/models"
  9. "github.com/gogits/gogs/modules/auth"
  10. "github.com/gogits/gogs/modules/base"
  11. "github.com/gogits/gogs/modules/log"
  12. "github.com/gogits/gogs/modules/mailer"
  13. "github.com/gogits/gogs/modules/middleware"
  14. )
  15. func SignIn(ctx *middleware.Context) {
  16. ctx.Data["Title"] = "Log In"
  17. if base.OauthService != nil {
  18. ctx.Data["OauthEnabled"] = true
  19. ctx.Data["OauthGitHubEnabled"] = base.OauthService.GitHub.Enabled
  20. }
  21. // Check auto-login.
  22. userName := ctx.GetCookie(base.CookieUserName)
  23. if len(userName) == 0 {
  24. ctx.HTML(200, "user/signin")
  25. return
  26. }
  27. isSucceed := false
  28. defer func() {
  29. if !isSucceed {
  30. log.Trace("%s auto-login cookie cleared: %s", ctx.Req.RequestURI, userName)
  31. ctx.SetCookie(base.CookieUserName, "", -1)
  32. ctx.SetCookie(base.CookieRememberName, "", -1)
  33. return
  34. }
  35. }()
  36. user, err := models.GetUserByName(userName)
  37. if err != nil {
  38. ctx.HTML(500, "user/signin")
  39. return
  40. }
  41. secret := base.EncodeMd5(user.Rands + user.Passwd)
  42. value, _ := ctx.GetSecureCookie(secret, base.CookieRememberName)
  43. if value != user.Name {
  44. ctx.HTML(500, "user/signin")
  45. return
  46. }
  47. isSucceed = true
  48. ctx.Session.Set("userId", user.Id)
  49. ctx.Session.Set("userName", user.Name)
  50. if redirectTo, _ := url.QueryUnescape(ctx.GetCookie("redirect_to")); len(redirectTo) > 0 {
  51. ctx.SetCookie("redirect_to", "", -1)
  52. ctx.Redirect(redirectTo)
  53. return
  54. }
  55. ctx.Redirect("/")
  56. }
  57. func SignInPost(ctx *middleware.Context, form auth.LogInForm) {
  58. ctx.Data["Title"] = "Log In"
  59. if base.OauthService != nil {
  60. ctx.Data["OauthEnabled"] = true
  61. ctx.Data["OauthGitHubEnabled"] = base.OauthService.GitHub.Enabled
  62. }
  63. if ctx.HasError() {
  64. ctx.HTML(200, "user/signin")
  65. return
  66. }
  67. user, err := models.LoginUserPlain(form.UserName, form.Password)
  68. if err != nil {
  69. if err == models.ErrUserNotExist {
  70. log.Trace("%s Log in failed: %s/%s", ctx.Req.RequestURI, form.UserName, form.Password)
  71. ctx.RenderWithErr("Username or password is not correct", "user/signin", &form)
  72. return
  73. }
  74. ctx.Handle(500, "user.SignIn", err)
  75. return
  76. }
  77. if form.Remember == "on" {
  78. secret := base.EncodeMd5(user.Rands + user.Passwd)
  79. days := 86400 * base.LogInRememberDays
  80. ctx.SetCookie(base.CookieUserName, user.Name, days)
  81. ctx.SetSecureCookie(secret, base.CookieRememberName, user.Name, days)
  82. }
  83. // Bind with social account
  84. if sid, ok := ctx.Session.Get("socialId").(int64); ok {
  85. if err = models.BindUserOauth2(user.Id, sid); err != nil {
  86. log.Error("bind user error: %v", err)
  87. }
  88. ctx.Session.Delete("socialId")
  89. }
  90. ctx.Session.Set("userId", user.Id)
  91. ctx.Session.Set("userName", user.Name)
  92. if redirectTo, _ := url.QueryUnescape(ctx.GetCookie("redirect_to")); len(redirectTo) > 0 {
  93. ctx.SetCookie("redirect_to", "", -1)
  94. ctx.Redirect(redirectTo)
  95. return
  96. }
  97. ctx.Redirect("/")
  98. }
  99. func SignOut(ctx *middleware.Context) {
  100. ctx.Session.Delete("userId")
  101. ctx.Session.Delete("userName")
  102. ctx.Session.Delete("socialId")
  103. ctx.Session.Delete("socialName")
  104. ctx.Session.Delete("socialEmail")
  105. ctx.SetCookie(base.CookieUserName, "", -1)
  106. ctx.SetCookie(base.CookieRememberName, "", -1)
  107. ctx.Redirect("/")
  108. }
  109. func SignUp(ctx *middleware.Context) {
  110. ctx.Data["Title"] = "Sign Up"
  111. ctx.Data["PageIsSignUp"] = true
  112. if sid, ok := ctx.Session.Get("socialId").(int64); ok {
  113. var err error
  114. if _, err = models.GetOauth2ById(sid); err == nil {
  115. ctx.Data["IsSocialLogin"] = true
  116. // FIXME: don't set in error page
  117. ctx.Data["username"] = ctx.Session.Get("socialName")
  118. ctx.Data["email"] = ctx.Session.Get("socialEmail")
  119. } else {
  120. log.Error("unaccepted oauth error: %s", err) // FIXME: should it show in page
  121. }
  122. }
  123. if base.Service.DisenableRegisteration {
  124. ctx.Data["DisenableRegisteration"] = true
  125. ctx.HTML(200, "user/signup")
  126. return
  127. }
  128. log.Info("session: %v", ctx.Session.Get("socialId"))
  129. ctx.HTML(200, "user/signup")
  130. }
  131. func SignUpPost(ctx *middleware.Context, form auth.RegisterForm) {
  132. ctx.Data["Title"] = "Sign Up"
  133. ctx.Data["PageIsSignUp"] = true
  134. if base.Service.DisenableRegisteration {
  135. ctx.Handle(403, "user.SignUpPost", nil)
  136. return
  137. }
  138. if form.Password != form.RetypePasswd {
  139. ctx.Data["HasError"] = true
  140. ctx.Data["Err_Password"] = true
  141. ctx.Data["Err_RetypePasswd"] = true
  142. ctx.Data["ErrorMsg"] = "Password and re-type password are not same"
  143. auth.AssignForm(form, ctx.Data)
  144. }
  145. if ctx.HasError() {
  146. ctx.HTML(200, "user/signup")
  147. return
  148. }
  149. u := &models.User{
  150. Name: form.UserName,
  151. Email: form.Email,
  152. Passwd: form.Password,
  153. IsActive: !base.Service.RegisterEmailConfirm,
  154. }
  155. var err error
  156. if u, err = models.RegisterUser(u); err != nil {
  157. switch err {
  158. case models.ErrUserAlreadyExist:
  159. ctx.RenderWithErr("Username has been already taken", "user/signup", &form)
  160. case models.ErrEmailAlreadyUsed:
  161. ctx.RenderWithErr("E-mail address has been already used", "user/signup", &form)
  162. case models.ErrUserNameIllegal:
  163. ctx.RenderWithErr(models.ErrRepoNameIllegal.Error(), "user/signup", &form)
  164. default:
  165. ctx.Handle(500, "user.SignUp", err)
  166. }
  167. return
  168. }
  169. log.Trace("%s User created: %s", ctx.Req.RequestURI, strings.ToLower(form.UserName))
  170. // Bind Social Account
  171. if sid, ok := ctx.Session.Get("socialId").(int64); ok {
  172. models.BindUserOauth2(u.Id, sid)
  173. ctx.Session.Delete("socialId")
  174. }
  175. // Send confirmation e-mail.
  176. if base.Service.RegisterEmailConfirm && u.Id > 1 {
  177. mailer.SendRegisterMail(ctx.Render, u)
  178. ctx.Data["IsSendRegisterMail"] = true
  179. ctx.Data["Email"] = u.Email
  180. ctx.Data["Hours"] = base.Service.ActiveCodeLives / 60
  181. ctx.HTML(200, "user/active")
  182. if err = ctx.Cache.Put("MailResendLimit_"+u.LowerName, u.LowerName, 180); err != nil {
  183. log.Error("Set cache(MailResendLimit) fail: %v", err)
  184. }
  185. return
  186. }
  187. ctx.Redirect("/user/login")
  188. }
  189. func Delete(ctx *middleware.Context) {
  190. ctx.Data["Title"] = "Delete Account"
  191. ctx.Data["PageIsUserSetting"] = true
  192. ctx.Data["IsUserPageSettingDelete"] = true
  193. ctx.HTML(200, "user/delete")
  194. }
  195. func DeletePost(ctx *middleware.Context) {
  196. ctx.Data["Title"] = "Delete Account"
  197. ctx.Data["PageIsUserSetting"] = true
  198. ctx.Data["IsUserPageSettingDelete"] = true
  199. tmpUser := models.User{
  200. Passwd: ctx.Query("password"),
  201. Salt: ctx.User.Salt,
  202. }
  203. tmpUser.EncodePasswd()
  204. if tmpUser.Passwd != ctx.User.Passwd {
  205. ctx.Flash.Error("Password is not correct. Make sure you are owner of this account.")
  206. } else {
  207. if err := models.DeleteUser(ctx.User); err != nil {
  208. switch err {
  209. case models.ErrUserOwnRepos:
  210. ctx.Flash.Error("Your account still have ownership of repository, you have to delete or transfer them first.")
  211. default:
  212. ctx.Handle(500, "user.Delete", err)
  213. return
  214. }
  215. } else {
  216. ctx.Redirect("/")
  217. return
  218. }
  219. }
  220. ctx.Redirect("/user/delete")
  221. }
  222. func Activate(ctx *middleware.Context) {
  223. code := ctx.Query("code")
  224. if len(code) == 0 {
  225. ctx.Data["IsActivatePage"] = true
  226. if ctx.User.IsActive {
  227. ctx.Handle(404, "user.Activate", nil)
  228. return
  229. }
  230. // Resend confirmation e-mail.
  231. if base.Service.RegisterEmailConfirm {
  232. if ctx.Cache.IsExist("MailResendLimit_" + ctx.User.LowerName) {
  233. ctx.Data["ResendLimited"] = true
  234. } else {
  235. ctx.Data["Hours"] = base.Service.ActiveCodeLives / 60
  236. mailer.SendActiveMail(ctx.Render, ctx.User)
  237. if err := ctx.Cache.Put("MailResendLimit_"+ctx.User.LowerName, ctx.User.LowerName, 180); err != nil {
  238. log.Error("Set cache(MailResendLimit) fail: %v", err)
  239. }
  240. }
  241. } else {
  242. ctx.Data["ServiceNotEnabled"] = true
  243. }
  244. ctx.HTML(200, "user/active")
  245. return
  246. }
  247. // Verify code.
  248. if user := models.VerifyUserActiveCode(code); user != nil {
  249. user.IsActive = true
  250. user.Rands = models.GetUserSalt()
  251. if err := models.UpdateUser(user); err != nil {
  252. ctx.Handle(404, "user.Activate", err)
  253. return
  254. }
  255. log.Trace("%s User activated: %s", ctx.Req.RequestURI, user.Name)
  256. ctx.Session.Set("userId", user.Id)
  257. ctx.Session.Set("userName", user.Name)
  258. ctx.Redirect("/")
  259. return
  260. }
  261. ctx.Data["IsActivateFailed"] = true
  262. ctx.HTML(200, "user/active")
  263. }
  264. func ForgotPasswd(ctx *middleware.Context) {
  265. ctx.Data["Title"] = "Forgot Password"
  266. if base.MailService == nil {
  267. ctx.Data["IsResetDisable"] = true
  268. ctx.HTML(200, "user/forgot_passwd")
  269. return
  270. }
  271. ctx.Data["IsResetRequest"] = true
  272. ctx.HTML(200, "user/forgot_passwd")
  273. }
  274. func ForgotPasswdPost(ctx *middleware.Context) {
  275. ctx.Data["Title"] = "Forgot Password"
  276. if base.MailService == nil {
  277. ctx.Handle(403, "user.ForgotPasswdPost", nil)
  278. return
  279. }
  280. ctx.Data["IsResetRequest"] = true
  281. email := ctx.Query("email")
  282. u, err := models.GetUserByEmail(email)
  283. if err != nil {
  284. if err == models.ErrUserNotExist {
  285. ctx.RenderWithErr("This e-mail address does not associate to any account.", "user/forgot_passwd", nil)
  286. } else {
  287. ctx.Handle(500, "user.ResetPasswd(check existence)", err)
  288. }
  289. return
  290. }
  291. if ctx.Cache.IsExist("MailResendLimit_" + u.LowerName) {
  292. ctx.Data["ResendLimited"] = true
  293. ctx.HTML(200, "user/forgot_passwd")
  294. return
  295. }
  296. mailer.SendResetPasswdMail(ctx.Render, u)
  297. if err = ctx.Cache.Put("MailResendLimit_"+u.LowerName, u.LowerName, 180); err != nil {
  298. log.Error("Set cache(MailResendLimit) fail: %v", err)
  299. }
  300. ctx.Data["Email"] = email
  301. ctx.Data["Hours"] = base.Service.ActiveCodeLives / 60
  302. ctx.Data["IsResetSent"] = true
  303. ctx.HTML(200, "user/forgot_passwd")
  304. }
  305. func ResetPasswd(ctx *middleware.Context) {
  306. ctx.Data["Title"] = "Reset Password"
  307. code := ctx.Query("code")
  308. if len(code) == 0 {
  309. ctx.Error(404)
  310. return
  311. }
  312. ctx.Data["Code"] = code
  313. ctx.Data["IsResetForm"] = true
  314. ctx.HTML(200, "user/reset_passwd")
  315. }
  316. func ResetPasswdPost(ctx *middleware.Context) {
  317. ctx.Data["Title"] = "Reset Password"
  318. code := ctx.Query("code")
  319. if len(code) == 0 {
  320. ctx.Error(404)
  321. return
  322. }
  323. ctx.Data["Code"] = code
  324. if u := models.VerifyUserActiveCode(code); u != nil {
  325. // Validate password length.
  326. passwd := ctx.Query("passwd")
  327. if len(passwd) < 6 || len(passwd) > 30 {
  328. ctx.Data["IsResetForm"] = true
  329. ctx.RenderWithErr("Password length should be in 6 and 30.", "user/reset_passwd", nil)
  330. return
  331. }
  332. u.Passwd = passwd
  333. u.Rands = models.GetUserSalt()
  334. u.Salt = models.GetUserSalt()
  335. u.EncodePasswd()
  336. if err := models.UpdateUser(u); err != nil {
  337. ctx.Handle(500, "user.ResetPasswd(UpdateUser)", err)
  338. return
  339. }
  340. log.Trace("%s User password reset: %s", ctx.Req.RequestURI, u.Name)
  341. ctx.Redirect("/user/login")
  342. return
  343. }
  344. ctx.Data["IsResetFailed"] = true
  345. ctx.HTML(200, "user/reset_passwd")
  346. }