add
This commit is contained in:
vipg
@@ -3,16 +3,26 @@ package main
|
||||
import (
|
||||
"context"
|
||||
"fmt"
|
||||
"io"
|
||||
"encoding/json"
|
||||
"errors"
|
||||
"strings"
|
||||
"net/http"
|
||||
"os"
|
||||
"os/signal"
|
||||
"syscall"
|
||||
"time"
|
||||
|
||||
"database/sql"
|
||||
"common/db"
|
||||
"common/logger"
|
||||
"common/utils"
|
||||
"golang.org/x/crypto/bcrypt"
|
||||
"github.com/jackc/pgconn"
|
||||
)
|
||||
|
||||
var pg *sql.DB
|
||||
|
||||
func main() {
|
||||
port := utils.GetEnv("PORT", "8080")
|
||||
srv := &http.Server{
|
||||
@@ -20,6 +30,17 @@ func main() {
|
||||
Handler: routes(),
|
||||
}
|
||||
|
||||
var err error
|
||||
pg, err = db.InitPostgres()
|
||||
if err != nil {
|
||||
logger.L().Fatalf("postgres init: %v", err)
|
||||
}
|
||||
if utils.GetEnv("MIGRATE_ON_START", "0") == "1" {
|
||||
if err := applySchema("db/schema.sql"); err != nil {
|
||||
logger.L().Fatalf("apply schema: %v", err)
|
||||
}
|
||||
}
|
||||
|
||||
logger.L().Printf("user service starting on :%s", port)
|
||||
|
||||
go func() {
|
||||
@@ -38,6 +59,7 @@ func main() {
|
||||
if err := srv.Shutdown(ctx); err != nil {
|
||||
logger.L().Printf("server shutdown: %v", err)
|
||||
}
|
||||
_ = db.ClosePostgres()
|
||||
logger.L().Printf("user service exited")
|
||||
}
|
||||
|
||||
@@ -54,5 +76,138 @@ func routes() http.Handler {
|
||||
mux.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) {
|
||||
fmt.Fprintf(w, "hello from user-service")
|
||||
})
|
||||
mux.HandleFunc("/register", registerHandler)
|
||||
mux.HandleFunc("/login", loginHandler)
|
||||
return mux
|
||||
}
|
||||
|
||||
type registerReq struct {
|
||||
Account string `json:"account"`
|
||||
Password string `json:"password"`
|
||||
}
|
||||
type loginReq struct {
|
||||
Account string `json:"account"`
|
||||
Password string `json:"password"`
|
||||
}
|
||||
type loginResp struct {
|
||||
UserID string `json:"user_id"`
|
||||
}
|
||||
|
||||
func registerHandler(w http.ResponseWriter, r *http.Request) {
|
||||
if r.Method != http.MethodPost {
|
||||
w.WriteHeader(http.StatusMethodNotAllowed)
|
||||
return
|
||||
}
|
||||
var req registerReq
|
||||
if err := json.NewDecoder(r.Body).Decode(&req); err != nil {
|
||||
w.WriteHeader(http.StatusBadRequest)
|
||||
w.Write([]byte("invalid json"))
|
||||
return
|
||||
}
|
||||
if !validAccount(req.Account) || !validPassword(req.Password) {
|
||||
w.WriteHeader(http.StatusBadRequest)
|
||||
w.Write([]byte("invalid account or password"))
|
||||
return
|
||||
}
|
||||
hashed, err := bcrypt.GenerateFromPassword([]byte(req.Password), 12)
|
||||
if err != nil {
|
||||
w.WriteHeader(http.StatusInternalServerError)
|
||||
return
|
||||
}
|
||||
tx, err := pg.Begin()
|
||||
if err != nil {
|
||||
w.WriteHeader(http.StatusInternalServerError)
|
||||
return
|
||||
}
|
||||
defer func() {
|
||||
_ = tx.Rollback()
|
||||
}()
|
||||
var userID string
|
||||
if err := tx.QueryRow(`INSERT INTO users DEFAULT VALUES RETURNING user_id`).Scan(&userID); err != nil {
|
||||
w.WriteHeader(http.StatusInternalServerError)
|
||||
return
|
||||
}
|
||||
if _, err := tx.Exec(`INSERT INTO user_login_accounts (user_id, value, deleted) VALUES ($1, $2, false)`, userID, req.Account); err != nil {
|
||||
if isUniqueViolation(err) {
|
||||
w.WriteHeader(http.StatusConflict)
|
||||
w.Write([]byte("account exists"))
|
||||
return
|
||||
}
|
||||
w.WriteHeader(http.StatusInternalServerError)
|
||||
return
|
||||
}
|
||||
if _, err := tx.Exec(`INSERT INTO user_login_passwords (user_id, value, deleted) VALUES ($1, $2, false)`, userID, string(hashed)); err != nil {
|
||||
w.WriteHeader(http.StatusInternalServerError)
|
||||
return
|
||||
}
|
||||
if err := tx.Commit(); err != nil {
|
||||
w.WriteHeader(http.StatusInternalServerError)
|
||||
return
|
||||
}
|
||||
w.WriteHeader(http.StatusCreated)
|
||||
io.WriteString(w, userID)
|
||||
}
|
||||
|
||||
func loginHandler(w http.ResponseWriter, r *http.Request) {
|
||||
if r.Method != http.MethodPost {
|
||||
w.WriteHeader(http.StatusMethodNotAllowed)
|
||||
return
|
||||
}
|
||||
var req loginReq
|
||||
if err := json.NewDecoder(r.Body).Decode(&req); err != nil {
|
||||
w.WriteHeader(http.StatusBadRequest)
|
||||
w.Write([]byte("invalid json"))
|
||||
return
|
||||
}
|
||||
if !validAccount(req.Account) || !validPassword(req.Password) {
|
||||
w.WriteHeader(http.StatusBadRequest)
|
||||
w.Write([]byte("invalid account or password"))
|
||||
return
|
||||
}
|
||||
var userID string
|
||||
if err := pg.QueryRow(`SELECT user_id FROM user_login_accounts WHERE value = $1 AND deleted = false`, req.Account).Scan(&userID); err != nil {
|
||||
w.WriteHeader(http.StatusUnauthorized)
|
||||
return
|
||||
}
|
||||
var hashed string
|
||||
if err := pg.QueryRow(`SELECT value FROM user_login_passwords WHERE user_id = $1 AND deleted = false`, userID).Scan(&hashed); err != nil {
|
||||
w.WriteHeader(http.StatusUnauthorized)
|
||||
return
|
||||
}
|
||||
if bcrypt.CompareHashAndPassword([]byte(hashed), []byte(req.Password)) != nil {
|
||||
w.WriteHeader(http.StatusUnauthorized)
|
||||
return
|
||||
}
|
||||
w.Header().Set("Content-Type", "application/json")
|
||||
w.WriteHeader(http.StatusOK)
|
||||
json.NewEncoder(w).Encode(loginResp{UserID: userID})
|
||||
}
|
||||
|
||||
func validAccount(a string) bool {
|
||||
n := len(a)
|
||||
return n >= 3 && n <= 100
|
||||
}
|
||||
func validPassword(p string) bool {
|
||||
n := len(p)
|
||||
return n >= 8 && n <= 128
|
||||
}
|
||||
|
||||
func isUniqueViolation(err error) bool {
|
||||
var pe *pgconn.PgError
|
||||
if errors.As(err, &pe) {
|
||||
return pe.Code == "23505"
|
||||
}
|
||||
if err != nil && (strings.Contains(err.Error(), "duplicate key") || strings.Contains(err.Error(), "unique constraint")) {
|
||||
return true
|
||||
}
|
||||
return false
|
||||
}
|
||||
|
||||
func applySchema(path string) error {
|
||||
b, err := os.ReadFile(path)
|
||||
if err != nil {
|
||||
return err
|
||||
}
|
||||
_, err = pg.Exec(string(b))
|
||||
return err
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user