Checkpoint
This commit is contained in:
parent
6e27b73960
commit
d38c1d7fd6
18
index.html
18
index.html
@ -17,14 +17,24 @@
|
|||||||
<body>
|
<body>
|
||||||
<div style="display: flex; align-items: center; flex-direction: column">
|
<div style="display: flex; align-items: center; flex-direction: column">
|
||||||
<p>{{.Message}}</p>
|
<p>{{.Message}}</p>
|
||||||
{{if .ShowForm}}
|
{{if .ShowInput}}
|
||||||
<form action="" method="post">
|
<form action="/post" method="post">
|
||||||
<label>
|
<label>
|
||||||
API Key:
|
How many hours should the timeout be?
|
||||||
<input type="text" name="key" required>
|
<input type="number" name="next" min="1" max="24" value="24" step="1" required>
|
||||||
</label>
|
</label>
|
||||||
<button type="submit">Submit</button>
|
<button type="submit">Submit</button>
|
||||||
</form>
|
</form>
|
||||||
{{end}}
|
{{end}}
|
||||||
|
{{if .ShowLogin}}
|
||||||
|
<form action="/login" method="post">
|
||||||
|
<label>
|
||||||
|
<input type="text" name="username" required>
|
||||||
|
<input type="password" name="password" required>
|
||||||
|
</label>
|
||||||
|
<button type="submit">Login</button>
|
||||||
|
</form>
|
||||||
|
{{end}}
|
||||||
|
|
||||||
</div>
|
</div>
|
||||||
</body>
|
</body>
|
282
main.go
282
main.go
@ -1,11 +1,15 @@
|
|||||||
package main
|
package main
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
"crypto/rand"
|
||||||
"encoding/json"
|
"encoding/json"
|
||||||
"fmt"
|
"fmt"
|
||||||
"html/template"
|
"html/template"
|
||||||
|
"math"
|
||||||
|
"math/big"
|
||||||
"net/http"
|
"net/http"
|
||||||
"os"
|
"os"
|
||||||
|
"strconv"
|
||||||
"time"
|
"time"
|
||||||
)
|
)
|
||||||
|
|
||||||
@ -16,63 +20,72 @@ type Timestamp struct {
|
|||||||
|
|
||||||
type Store struct {
|
type Store struct {
|
||||||
Username string `json:"username"`
|
Username string `json:"username"`
|
||||||
Timestamps []int64 `json:"timestamps"`
|
Timestamps []Timestamp `json:"timestamps"`
|
||||||
}
|
}
|
||||||
|
|
||||||
type PageData struct {
|
type PageData struct {
|
||||||
Title string
|
Title string
|
||||||
ShowForm bool
|
|
||||||
Message string
|
Message string
|
||||||
|
ShowLogin bool
|
||||||
|
ShowInput bool
|
||||||
}
|
}
|
||||||
|
|
||||||
|
var Username string
|
||||||
|
var Password string
|
||||||
|
var DataDir string
|
||||||
|
var DataStore string
|
||||||
|
var Authorised []int64 // List of authorised "uuids"
|
||||||
|
|
||||||
func main() {
|
func main() {
|
||||||
|
// Get environment variables
|
||||||
|
Username = os.Getenv("USERNAME")
|
||||||
|
fmt.Println("Username: ", Username)
|
||||||
|
|
||||||
|
Password = os.Getenv("API_KEY")
|
||||||
|
fmt.Println("API_KEY: ", Password)
|
||||||
|
|
||||||
|
DataDir = os.Getenv("DATA_DIR")
|
||||||
|
if DataDir == "" {
|
||||||
|
DataDir = "./data"
|
||||||
|
}
|
||||||
|
fmt.Println("DATA_DIR: ", DataDir)
|
||||||
|
|
||||||
|
DataStore = DataDir + "/data.json"
|
||||||
|
|
||||||
|
Reset := os.Getenv("RESET")
|
||||||
|
if Reset == "true" {
|
||||||
|
if err := os.Remove(DataStore); err != nil {
|
||||||
|
fmt.Println("Error removing file, check permissions")
|
||||||
|
}
|
||||||
|
if err := os.Remove(DataDir); err != nil {
|
||||||
|
fmt.Println("Error removing directory, check permissions")
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
// Check if directory exists, if not create it
|
// Check if directory exists, if not create it
|
||||||
if _, err := os.Stat("./data"); os.IsNotExist(err) {
|
if _, err := os.Stat(DataDir); os.IsNotExist(err) {
|
||||||
err := os.Mkdir("./data", 0755)
|
err := os.Mkdir(DataDir, 0755)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fmt.Println("Error creating directory, check permissions")
|
fmt.Println("Error creating directory, check permissions")
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
// Check if file exists, if not create it, and write empty json
|
||||||
// Set environment variables
|
if _, err := os.Stat(DataStore); os.IsNotExist(err) {
|
||||||
RESET := os.Getenv("RESET")
|
if _, err := os.Create(DataStore); err != nil {
|
||||||
if RESET == "true" {
|
|
||||||
if err := os.Remove("./data/taken.json"); err != nil {
|
|
||||||
fmt.Println("Error removing file, check permissions")
|
|
||||||
}
|
|
||||||
}
|
|
||||||
API_KEY := os.Getenv("API_KEY")
|
|
||||||
fmt.Println("API_KEY: ", API_KEY)
|
|
||||||
|
|
||||||
// Start server
|
|
||||||
http.HandleFunc("/", index)
|
|
||||||
if err := http.ListenAndServe(":8080", nil); err != nil {
|
|
||||||
fmt.Println("Error starting server")
|
|
||||||
os.Exit(1)
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
func handlePost() PageData {
|
|
||||||
current := time.Now().Unix()
|
|
||||||
var day int64 = 60 * 60 * 24
|
|
||||||
next := current + day
|
|
||||||
|
|
||||||
// If there is no file, create one
|
|
||||||
if _, err := os.Stat("./data/taken.json"); os.IsNotExist(err) {
|
|
||||||
if _, err := os.Create("./data/taken.json"); err != nil {
|
|
||||||
fmt.Println("Error creating file, check permissions")
|
fmt.Println("Error creating file, check permissions")
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
}
|
}
|
||||||
}
|
if file, err := os.OpenFile(DataStore, os.O_RDWR, os.ModePerm); err != nil {
|
||||||
|
|
||||||
// Write to file
|
|
||||||
if file, err := os.OpenFile("./data/taken.json", os.O_RDWR, os.ModePerm); err != nil {
|
|
||||||
fmt.Println("Error opening file, check permissions")
|
fmt.Println("Error opening file, check permissions")
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
} else {
|
} else {
|
||||||
encoder := json.NewEncoder(file)
|
encoder := json.NewEncoder(file)
|
||||||
if err = encoder.Encode(Timestamp{current, next}); err != nil {
|
store := Store{
|
||||||
|
Username: Username,
|
||||||
|
Timestamps: []Timestamp{},
|
||||||
|
}
|
||||||
|
if err = encoder.Encode(store); err != nil {
|
||||||
fmt.Println("Error encoding file")
|
fmt.Println("Error encoding file")
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
}
|
}
|
||||||
@ -81,68 +94,191 @@ func handlePost() PageData {
|
|||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
}
|
||||||
|
|
||||||
return PageData{
|
// Start server
|
||||||
Title: "Form submitted",
|
http.HandleFunc("/", index)
|
||||||
ShowForm: false,
|
http.HandleFunc("/post", post)
|
||||||
Message: "Form submitted",
|
http.HandleFunc("/login", login)
|
||||||
|
http.HandleFunc("/logout", logout)
|
||||||
|
if err := http.ListenAndServe(":8080", nil); err != nil {
|
||||||
|
fmt.Println("Error starting server")
|
||||||
|
os.Exit(1)
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func checkFile() PageData {
|
func commit(next int64) {
|
||||||
// Check if file exists
|
current := time.Now().Unix()
|
||||||
file, err := os.Open("./data/taken.json")
|
// Next is in hours, so convert to seconds
|
||||||
if err != nil {
|
next = next * 60 * 60
|
||||||
fmt.Println("Error opening file, check perms or likely does not exist")
|
// Next is the time when the form can be submitted again
|
||||||
return PageData{
|
next = current + next
|
||||||
Title: "Form page",
|
|
||||||
Message: "Hello first time user, please enter API key to submit form",
|
// Read from file
|
||||||
ShowForm: true,
|
if file, err := os.OpenFile(DataStore, os.O_RDWR, os.ModePerm); err != nil {
|
||||||
}
|
fmt.Println("Error opening file, check permissions")
|
||||||
}
|
os.Exit(1)
|
||||||
// Decode file
|
} else {
|
||||||
info := Timestamp{}
|
|
||||||
decoder := json.NewDecoder(file)
|
decoder := json.NewDecoder(file)
|
||||||
if err := decoder.Decode(&info); err != nil {
|
store := Store{}
|
||||||
|
if err = decoder.Decode(&store); err != nil {
|
||||||
fmt.Println("Error decoding file")
|
fmt.Println("Error decoding file")
|
||||||
|
os.Exit(1)
|
||||||
}
|
}
|
||||||
if err := file.Close(); err != nil {
|
store.Timestamps = append(store.Timestamps, Timestamp{current, next})
|
||||||
|
|
||||||
|
if _, err := file.Seek(0, 0); err != nil {
|
||||||
|
fmt.Println("Error seeking file")
|
||||||
|
os.Exit(1)
|
||||||
|
}
|
||||||
|
|
||||||
|
// Write to file
|
||||||
|
encoder := json.NewEncoder(file)
|
||||||
|
if err = encoder.Encode(store); err != nil {
|
||||||
|
fmt.Println("Error encoding file")
|
||||||
|
os.Exit(1)
|
||||||
|
}
|
||||||
|
if err = file.Close(); err != nil {
|
||||||
fmt.Println("Error closing file")
|
fmt.Println("Error closing file")
|
||||||
}
|
os.Exit(1)
|
||||||
if time.Now().Unix() > info.Next {
|
|
||||||
return PageData{
|
|
||||||
Title: "Form page",
|
|
||||||
Message: "Already submmited form today, please wait until tomorrow",
|
|
||||||
ShowForm: false,
|
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
return PageData{
|
|
||||||
Title: "Form page",
|
|
||||||
Message: "Please enter API key to submit form",
|
|
||||||
ShowForm: true,
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func query() bool {
|
||||||
|
// Check if file exists
|
||||||
|
if file, err := os.Open(DataStore); err != nil {
|
||||||
|
fmt.Println("Error opening file, check permissions")
|
||||||
|
os.Exit(1)
|
||||||
|
} else {
|
||||||
|
// Decode file
|
||||||
|
decoder := json.NewDecoder(file)
|
||||||
|
store := Store{}
|
||||||
|
if err = decoder.Decode(&store); err != nil {
|
||||||
|
fmt.Println("Error decoding file")
|
||||||
|
os.Exit(1)
|
||||||
|
}
|
||||||
|
if err = file.Close(); err != nil {
|
||||||
|
fmt.Println("Error closing file")
|
||||||
|
os.Exit(1)
|
||||||
|
}
|
||||||
|
|
||||||
|
if len(store.Timestamps) == 0 {
|
||||||
|
return true
|
||||||
|
}
|
||||||
|
|
||||||
|
// Check if user has already submitted form today
|
||||||
|
current := time.Now().Unix()
|
||||||
|
// Get last timestamp
|
||||||
|
last := store.Timestamps[len(store.Timestamps)-1]
|
||||||
|
// If current time is greater than the next time the form can be submitted
|
||||||
|
if current > last.Next {
|
||||||
|
return true
|
||||||
|
}
|
||||||
|
}
|
||||||
|
return false
|
||||||
}
|
}
|
||||||
|
|
||||||
func index(w http.ResponseWriter, r *http.Request) {
|
func index(w http.ResponseWriter, r *http.Request) {
|
||||||
tmpl := template.Must(template.ParseFiles("index.html"))
|
tmpl := template.Must(template.ParseFiles("index.html"))
|
||||||
var data PageData
|
var data PageData
|
||||||
if r.Method == "GET" {
|
|
||||||
fmt.Println("GET request received")
|
fmt.Println("GET request received")
|
||||||
data = checkFile()
|
unauthenticated := PageData{
|
||||||
|
Title: "Log in",
|
||||||
|
Message: "Please enter your username and password",
|
||||||
|
ShowLogin: true,
|
||||||
|
ShowInput: false,
|
||||||
}
|
}
|
||||||
if r.Method == "POST" {
|
authenticated := PageData{
|
||||||
|
Title: "View data",
|
||||||
|
Message: "Welcome back " + Username + ". Check in after the timeout",
|
||||||
|
ShowLogin: false,
|
||||||
|
ShowInput: true,
|
||||||
|
}
|
||||||
|
// Check for session cookie
|
||||||
|
cookie, err := r.Cookie("session")
|
||||||
|
if err != nil {
|
||||||
|
data = unauthenticated
|
||||||
|
} else {
|
||||||
|
// Parse cookie to int64
|
||||||
|
if session, err := strconv.ParseInt(cookie.Value, 10, 64); err != nil {
|
||||||
|
fmt.Println("Error parsing cookie")
|
||||||
|
data = unauthenticated
|
||||||
|
} else {
|
||||||
|
found := false
|
||||||
|
for _, uuid := range Authorised {
|
||||||
|
if uuid == session {
|
||||||
|
found = true
|
||||||
|
}
|
||||||
|
}
|
||||||
|
if found {
|
||||||
|
data = authenticated
|
||||||
|
} else {
|
||||||
|
// If cookie is not in Authorised list, remove it
|
||||||
|
data = unauthenticated
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
authenticated.ShowInput = query()
|
||||||
|
if err := tmpl.Execute(w, data); err != nil {
|
||||||
|
http.Error(w, "Error rendering template", http.StatusInternalServerError)
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
func post(w http.ResponseWriter, r *http.Request) {
|
||||||
fmt.Println("POST request received")
|
fmt.Println("POST request received")
|
||||||
if err := r.ParseForm(); err != nil {
|
if err := r.ParseForm(); err != nil {
|
||||||
http.Error(w, "Error parsing form", http.StatusBadRequest)
|
http.Error(w, "Error parsing form", http.StatusBadRequest)
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
if r.Form.Get("key") != os.Getenv("API_KEY") {
|
next := r.Form.Get("next")
|
||||||
http.Error(w, "Invalid API key", http.StatusUnauthorized)
|
if next, err := strconv.ParseInt(next, 10, 64); err != nil {
|
||||||
|
http.Error(w, "Invalid time", http.StatusBadRequest)
|
||||||
|
return
|
||||||
|
} else {
|
||||||
|
commit(next)
|
||||||
|
}
|
||||||
|
http.Redirect(w, r, "/", http.StatusSeeOther)
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
data = handlePost()
|
|
||||||
|
func login(w http.ResponseWriter, r *http.Request) {
|
||||||
|
fmt.Println("LOGIN request received")
|
||||||
|
if err := r.ParseForm(); err != nil {
|
||||||
|
http.Error(w, "Error parsing form", http.StatusBadRequest)
|
||||||
|
return
|
||||||
}
|
}
|
||||||
if err := tmpl.Execute(w, data); err != nil {
|
username := r.Form.Get("username")
|
||||||
http.Error(w, "Error rendering template", http.StatusInternalServerError)
|
password := r.Form.Get("password")
|
||||||
|
if username != os.Getenv("USERNAME") || password != os.Getenv("PASSWORD") {
|
||||||
|
http.Error(w, "Invalid username or password", http.StatusUnauthorized)
|
||||||
|
return
|
||||||
|
}
|
||||||
|
// Create session cookie
|
||||||
|
if session, err := rand.Int(rand.Reader, big.NewInt(math.MaxInt64)); err != nil {
|
||||||
|
http.Error(w, "Error creating session", http.StatusInternalServerError)
|
||||||
|
return
|
||||||
|
} else {
|
||||||
|
Authorised = append(Authorised, session.Int64())
|
||||||
|
cookie := http.Cookie{
|
||||||
|
Name: "session",
|
||||||
|
Value: session.String(),
|
||||||
|
Expires: time.Now().Add(24 * time.Hour),
|
||||||
|
}
|
||||||
|
http.SetCookie(w, &cookie)
|
||||||
|
http.Redirect(w, r, "/", http.StatusSeeOther)
|
||||||
|
return
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func logout(w http.ResponseWriter, r *http.Request) {
|
||||||
|
fmt.Println("LOGOUT request received")
|
||||||
|
cookie := http.Cookie{
|
||||||
|
Name: "session",
|
||||||
|
Value: "",
|
||||||
|
Expires: time.Now().Add(-1 * time.Hour),
|
||||||
|
}
|
||||||
|
http.SetCookie(w, &cookie)
|
||||||
|
http.Redirect(w, r, "/", http.StatusSeeOther)
|
||||||
|
return
|
||||||
|
}
|
||||||
|
Loading…
Reference in New Issue
Block a user