api/pkg/models/user_add_update.go

//  Vikunja is a todo-list application to facilitate your life.
//  Copyright 2018 Vikunja and contributors. All rights reserved.
//
//  This program is free software: you can redistribute it and/or modify
//  it under the terms of the GNU General Public License as published by
//  the Free Software Foundation, either version 3 of the License, or
//  (at your option) any later version.
//
//  This program is distributed in the hope that it will be useful,
//  but WITHOUT ANY WARRANTY; without even the implied warranty of
//  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
//  GNU General Public License for more details.
//
//  You should have received a copy of the GNU General Public License
//  along with this program.  If not, see <https://www.gnu.org/licenses/>.

package models

import (
	"code.vikunja.io/api/pkg/mail"
	"code.vikunja.io/api/pkg/utils"
	"golang.org/x/crypto/bcrypt"
)

// CreateUser creates a new user and inserts it into the database
func CreateUser(user User) (newUser User, err error) {

	newUser = user

	// Check if we have all needed informations
	if newUser.Password == "" || newUser.Username == "" {
		return User{}, ErrNoUsernamePassword{}
	}

	// Check if the user already existst with that username
	exists := true
	existingUser, err := GetUser(User{Username: newUser.Username})
	if err != nil {
		if IsErrUserDoesNotExist(err) {
			exists = false
		} else {
			return User{}, err
		}
	}
	if exists {
		return User{}, ErrUsernameExists{newUser.ID, newUser.Username}
	}

	// Check if the user already existst with that email
	exists = true
	existingUser, err = GetUser(User{Email: newUser.Email})
	if err != nil {
		if IsErrUserDoesNotExist(err) {
			exists = false
		} else {
			return User{}, err
		}
	}
	if exists {
		return User{}, ErrUserEmailExists{existingUser.ID, existingUser.Email}
	}

	// Hash the password
	newUser.Password, err = hashPassword(user.Password)
	if err != nil {
		return User{}, err
	}

	// Generate a confirm token
	newUser.EmailConfirmToken = utils.MakeRandomString(400)

	// The new user should not be activated until it confirms his mail address
	newUser.IsActive = false

	// Insert it
	_, err = x.Insert(newUser)
	if err != nil {
		return User{}, err
	}

	// Get the  full new User
	newUserOut, err := GetUser(newUser)
	if err != nil {
		return User{}, err
	}

	// Create the user's namespace
	newN := &Namespace{Name: newUserOut.Username, Description: newUserOut.Username + "'s namespace.", Owner: newUserOut}
	err = newN.Create(&newUserOut)
	if err != nil {
		return User{}, err
	}

	// Dont send a mail if we're testing
	if IsTesting {
		return newUserOut, err
	}

	// Send the user a mail with a link to confirm the mail
	data := map[string]interface{}{
		"User": newUserOut,
	}

	mail.SendMailWithTemplate(user.Email, newUserOut.Username+" + Vikunja = <3", "confirm-email", data)

	return newUserOut, err
}

// HashPassword hashes a password
func hashPassword(password string) (string, error) {
	bytes, err := bcrypt.GenerateFromPassword([]byte(password), 14)
	return string(bytes), err
}

// UpdateUser updates a user
func UpdateUser(user User) (updatedUser User, err error) {

	// Check if it exists
	theUser, err := GetUserByID(user.ID)
	if err != nil {
		return User{}, err
	}

	// Check if we have at least a username
	if user.Username == "" {
		//return User{}, ErrNoUsername{user.ID}
		user.Username = theUser.Username // Dont change the username if we dont have one
	}

	user.Password = theUser.Password // set the password to the one in the database to not accedently resetting it

	// Update it
	_, err = x.Id(user.ID).Update(user)
	if err != nil {
		return User{}, err
	}

	// Get the newly updated user
	updatedUser, err = GetUserByID(user.ID)
	if err != nil {
		return User{}, err
	}

	return updatedUser, err
}

// UpdateUserPassword updates the password of a user
func UpdateUserPassword(user *User, newPassword string) (err error) {

	// Get all user details
	theUser, err := GetUserByID(user.ID)
	if err != nil {
		return err
	}

	// Hash the new password and set it
	hashed, err := hashPassword(newPassword)
	if err != nil {
		return err
	}
	theUser.Password = hashed

	// Update it
	_, err = x.Id(user.ID).Update(theUser)
	if err != nil {
		return err
	}

	return err
}
Change License to GPLv3 (#26) 2018-11-26 20:17:33 +00:00			`// Vikunja is a todo-list application to facilitate your life.`
			`// Copyright 2018 Vikunja and contributors. All rights reserved.`
			`//`
			`// This program is free software: you can redistribute it and/or modify`
			`// it under the terms of the GNU General Public License as published by`
			`// the Free Software Foundation, either version 3 of the License, or`
			`// (at your option) any later version.`
			`//`
			`// This program is distributed in the hope that it will be useful,`
			`// but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`// GNU General Public License for more details.`
			`//`
			`// You should have received a copy of the GNU General Public License`
			`// along with this program. If not, see <https://www.gnu.org/licenses/>.`

initial commit 2018-06-10 09:11:41 +00:00			`package models`

			`import (`
New structure (#7) 2018-10-31 12:42:38 +00:00			`"code.vikunja.io/api/pkg/mail"`
			`"code.vikunja.io/api/pkg/utils"`
initial commit 2018-06-10 09:11:41 +00:00			`"golang.org/x/crypto/bcrypt"`
			`)`

			`// CreateUser creates a new user and inserts it into the database`
Made registration work 2018-06-10 09:34:59 +00:00			`func CreateUser(user User) (newUser User, err error) {`
initial commit 2018-06-10 09:11:41 +00:00
			`newUser = user`

			`// Check if we have all needed informations`
			`if newUser.Password == "" \|\| newUser.Username == "" {`
			`return User{}, ErrNoUsernamePassword{}`
			`}`

			`// Check if the user already existst with that username`
Fixed creating of new users 2018-09-04 17:39:31 +00:00			`exists := true`
Refactor GetUser & GetUserByID 2018-08-30 17:14:02 +00:00			`existingUser, err := GetUser(User{Username: newUser.Username})`
			`if err != nil {`
			`if IsErrUserDoesNotExist(err) {`
Fixed creating of new users 2018-09-04 17:39:31 +00:00			`exists = false`
Refactor GetUser & GetUserByID 2018-08-30 17:14:02 +00:00			`} else {`
			`return User{}, err`
			`}`
initial commit 2018-06-10 09:11:41 +00:00			`}`
			`if exists {`
Fixed creating of new users 2018-09-04 17:39:31 +00:00			`return User{}, ErrUsernameExists{newUser.ID, newUser.Username}`
initial commit 2018-06-10 09:11:41 +00:00			`}`

			`// Check if the user already existst with that email`
Fixed creating of new users 2018-09-04 17:39:31 +00:00			`exists = true`
Refactor GetUser & GetUserByID 2018-08-30 17:14:02 +00:00			`existingUser, err = GetUser(User{Email: newUser.Email})`
Fixed creating of new users 2018-09-04 17:39:31 +00:00			`if err != nil {`
Refactor GetUser & GetUserByID 2018-08-30 17:14:02 +00:00			`if IsErrUserDoesNotExist(err) {`
Fixed creating of new users 2018-09-04 17:39:31 +00:00			`exists = false`
Refactor GetUser & GetUserByID 2018-08-30 17:14:02 +00:00			`} else {`
			`return User{}, err`
			`}`
initial commit 2018-06-10 09:11:41 +00:00			`}`
			`if exists {`
			`return User{}, ErrUserEmailExists{existingUser.ID, existingUser.Email}`
			`}`

			`// Hash the password`
			`newUser.Password, err = hashPassword(user.Password)`
			`if err != nil {`
			`return User{}, err`
			`}`

Add user email verification when registering (#5) 2018-10-27 13:14:55 +00:00			`// Generate a confirm token`
			`newUser.EmailConfirmToken = utils.MakeRandomString(400)`

			`// The new user should not be activated until it confirms his mail address`
			`newUser.IsActive = false`

initial commit 2018-06-10 09:11:41 +00:00			`// Insert it`
			`_, err = x.Insert(newUser)`
			`if err != nil {`
			`return User{}, err`
			`}`

			`// Get the full new User`
Refactor GetUser & GetUserByID 2018-08-30 17:14:02 +00:00			`newUserOut, err := GetUser(newUser)`
initial commit 2018-06-10 09:11:41 +00:00			`if err != nil {`
			`return User{}, err`
			`}`

Added basic functions + endpoints to add/update namespaces 2018-07-02 06:40:24 +00:00			`// Create the user's namespace`
implemented namespace update via interface method 2018-07-11 22:30:31 +00:00			`newN := &Namespace{Name: newUserOut.Username, Description: newUserOut.Username + "'s namespace.", Owner: newUserOut}`
implemented creation of thing via parambinder 2018-07-18 06:56:19 +00:00			`err = newN.Create(&newUserOut)`
Added basic functions + endpoints to add/update namespaces 2018-07-02 06:40:24 +00:00			`if err != nil {`
			`return User{}, err`
			`}`

Fixed tests 2018-10-28 16:30:10 +00:00			`// Dont send a mail if we're testing`
			`if IsTesting {`
			`return newUserOut, err`
			`}`

Add user email verification when registering (#5) 2018-10-27 13:14:55 +00:00			`// Send the user a mail with a link to confirm the mail`
			`data := map[string]interface{}{`
			`"User": newUserOut,`
			`}`

			`mail.SendMailWithTemplate(user.Email, newUserOut.Username+" + Vikunja = <3", "confirm-email", data)`

initial commit 2018-06-10 09:11:41 +00:00			`return newUserOut, err`
			`}`

			`// HashPassword hashes a password`
			`func hashPassword(password string) (string, error) {`
			`bytes, err := bcrypt.GenerateFromPassword([]byte(password), 14)`
			`return string(bytes), err`
			`}`

			`// UpdateUser updates a user`
Made registration work 2018-06-10 09:34:59 +00:00			`func UpdateUser(user User) (updatedUser User, err error) {`
initial commit 2018-06-10 09:11:41 +00:00
			`// Check if it exists`
Refactor GetUser & GetUserByID 2018-08-30 17:14:02 +00:00			`theUser, err := GetUserByID(user.ID)`
initial commit 2018-06-10 09:11:41 +00:00			`if err != nil {`
			`return User{}, err`
			`}`

fmt 2018-08-30 17:14:16 +00:00			`// Check if we have at least a username`
			`if user.Username == "" {`
			`//return User{}, ErrNoUsername{user.ID}`
			`user.Username = theUser.Username // Dont change the username if we dont have one`
			`}`
initial commit 2018-06-10 09:11:41 +00:00
fmt 2018-08-30 17:14:16 +00:00			`user.Password = theUser.Password // set the password to the one in the database to not accedently resetting it`
initial commit 2018-06-10 09:11:41 +00:00
fmt 2018-08-30 17:14:16 +00:00			`// Update it`
			`_, err = x.Id(user.ID).Update(user)`
			`if err != nil {`
			`return User{}, err`
			`}`
initial commit 2018-06-10 09:11:41 +00:00
fmt 2018-08-30 17:14:16 +00:00			`// Get the newly updated user`
			`updatedUser, err = GetUserByID(user.ID)`
			`if err != nil {`
			`return User{}, err`
			`}`
initial commit 2018-06-10 09:11:41 +00:00
fmt 2018-08-30 17:14:16 +00:00			`return updatedUser, err`
initial commit 2018-06-10 09:11:41 +00:00			`}`

			`// UpdateUserPassword updates the password of a user`
Added the ability to update a users password 2018-10-03 17:28:17 +00:00			`func UpdateUserPassword(user *User, newPassword string) (err error) {`
initial commit 2018-06-10 09:11:41 +00:00
			`// Get all user details`
Added the ability to update a users password 2018-10-03 17:28:17 +00:00			`theUser, err := GetUserByID(user.ID)`
initial commit 2018-06-10 09:11:41 +00:00			`if err != nil {`
			`return err`
			`}`

			`// Hash the new password and set it`
			`hashed, err := hashPassword(newPassword)`
			`if err != nil {`
			`return err`
			`}`
Added the ability to update a users password 2018-10-03 17:28:17 +00:00			`theUser.Password = hashed`
initial commit 2018-06-10 09:11:41 +00:00
			`// Update it`
Added the ability to update a users password 2018-10-03 17:28:17 +00:00			`_, err = x.Id(user.ID).Update(theUser)`
initial commit 2018-06-10 09:11:41 +00:00			`if err != nil {`
			`return err`
			`}`

			`return err`
			`}`