moneygo/internal/handlers/users.go

package handlers

import (
	"crypto/sha256"
	"encoding/json"
	"errors"
	"fmt"
	"io"
	"log"
	"net/http"
	"strings"
)

type User struct {
	UserId          int64
	DefaultCurrency int64 // SecurityId of default currency, or ISO4217 code for it if creating new user
	Name            string
	Username        string
	Password        string `db:"-"`
	PasswordHash    string `json:"-"`
	Email           string
}

const BogusPassword = "password"

type UserExistsError struct{}

func (ueu UserExistsError) Error() string {
	return "User exists"
}

func (u *User) Write(w http.ResponseWriter) error {
	enc := json.NewEncoder(w)
	return enc.Encode(u)
}

func (u *User) Read(json_str string) error {
	dec := json.NewDecoder(strings.NewReader(json_str))
	return dec.Decode(u)
}

func (u *User) HashPassword() {
	password_hasher := sha256.New()
	io.WriteString(password_hasher, u.Password)
	u.PasswordHash = fmt.Sprintf("%x", password_hasher.Sum(nil))
	u.Password = ""
}

func GetUser(tx *Tx, userid int64) (*User, error) {
	var u User

	err := tx.SelectOne(&u, "SELECT * from users where UserId=?", userid)
	if err != nil {
		return nil, err
	}
	return &u, nil
}

func GetUserByUsername(tx *Tx, username string) (*User, error) {
	var u User

	err := tx.SelectOne(&u, "SELECT * from users where Username=?", username)
	if err != nil {
		return nil, err
	}
	return &u, nil
}

func InsertUser(tx *Tx, u *User) error {
	security_template := FindCurrencyTemplate(u.DefaultCurrency)
	if security_template == nil {
		return errors.New("Invalid ISO4217 Default Currency")
	}

	existing, err := tx.SelectInt("SELECT count(*) from users where Username=?", u.Username)
	if err != nil {
		return err
	}
	if existing > 0 {
		return UserExistsError{}
	}

	err = tx.Insert(u)
	if err != nil {
		return err
	}

	// Copy the security template and give it our new UserId
	var security Security
	security = *security_template
	security.UserId = u.UserId

	err = InsertSecurity(tx, &security)
	if err != nil {
		return err
	}

	// Update the user's DefaultCurrency to our new SecurityId
	u.DefaultCurrency = security.SecurityId
	count, err := tx.Update(u)
	if err != nil {
		return err
	} else if count != 1 {
		return errors.New("Would have updated more than one user")
	}

	return nil
}

func GetUserFromSession(tx *Tx, r *http.Request) (*User, error) {
	s, err := GetSession(tx, r)
	if err != nil {
		return nil, err
	}
	return GetUser(tx, s.UserId)
}

func UpdateUser(tx *Tx, u *User) error {
	security, err := GetSecurity(tx, u.DefaultCurrency, u.UserId)
	if err != nil {
		return err
	} else if security.UserId != u.UserId || security.SecurityId != u.DefaultCurrency {
		return errors.New("UserId and DefaultCurrency don't match the fetched security")
	} else if security.Type != Currency {
		return errors.New("New DefaultCurrency security is not a currency")
	}

	count, err := tx.Update(u)
	if err != nil {
		return err
	} else if count != 1 {
		return errors.New("Would have updated more than one user")
	}

	return nil
}

func DeleteUser(tx *Tx, u *User) error {
	count, err := tx.Delete(u)
	if err != nil {
		return err
	}
	if count != 1 {
		return fmt.Errorf("No user to delete")
	}
	_, err = tx.Exec("DELETE FROM prices WHERE prices.SecurityId IN (SELECT securities.SecurityId FROM securities WHERE securities.UserId=?)", u.UserId)
	if err != nil {
		return err
	}
	_, err = tx.Exec("DELETE FROM splits WHERE splits.TransactionId IN (SELECT transactions.TransactionId FROM transactions WHERE transactions.UserId=?)", u.UserId)
	if err != nil {
		return err
	}
	_, err = tx.Exec("DELETE FROM transactions WHERE transactions.UserId=?", u.UserId)
	if err != nil {
		return err
	}
	_, err = tx.Exec("DELETE FROM securities WHERE securities.UserId=?", u.UserId)
	if err != nil {
		return err
	}
	_, err = tx.Exec("DELETE FROM accounts WHERE accounts.UserId=?", u.UserId)
	if err != nil {
		return err
	}
	_, err = tx.Exec("DELETE FROM reports WHERE reports.UserId=?", u.UserId)
	if err != nil {
		return err
	}
	_, err = tx.Exec("DELETE FROM sessions WHERE sessions.UserId=?", u.UserId)
	if err != nil {
		return err
	}

	return nil
}

func UserHandler(r *http.Request, context *Context) ResponseWriterWriter {
	if r.Method == "POST" {
		var user User
		if err := ReadJSON(r, &user); err != nil {
			return NewError(3 /*Invalid Request*/)
		}
		user.UserId = -1
		user.HashPassword()

		err := InsertUser(context.Tx, &user)
		if err != nil {
			if _, ok := err.(UserExistsError); ok {
				return NewError(4 /*User Exists*/)
			} else {
				log.Print(err)
				return NewError(999 /*Internal Error*/)
			}
		}

		return ResponseWrapper{201, &user}
	} else {
		user, err := GetUserFromSession(context.Tx, r)
		if err != nil {
			return NewError(1 /*Not Signed In*/)
		}

		userid, err := context.NextID()
		if err != nil {
			return NewError(3 /*Invalid Request*/)
		}

		if userid != user.UserId {
			return NewError(2 /*Unauthorized Access*/)
		}

		if r.Method == "GET" {
			return user
		} else if r.Method == "PUT" {
			// Save old PWHash in case the new password is bogus
			old_pwhash := user.PasswordHash

			if err := ReadJSON(r, &user); err != nil || user.UserId != userid {
				return NewError(3 /*Invalid Request*/)
			}

			// If the user didn't create a new password, keep their old one
			if user.Password != BogusPassword {
				user.HashPassword()
			} else {
				user.Password = ""
				user.PasswordHash = old_pwhash
			}

			err = UpdateUser(context.Tx, user)
			if err != nil {
				log.Print(err)
				return NewError(999 /*Internal Error*/)
			}

			return user
		} else if r.Method == "DELETE" {
			err := DeleteUser(context.Tx, user)
			if err != nil {
				log.Print(err)
				return NewError(999 /*Internal Error*/)
			}
			return SuccessWriter{}
		}
	}
	return NewError(3 /*Invalid Request*/)
}
First pass at reorganizing go code into sub-packages 2017-10-04 19:35:59 -04:00			`package handlers`
Initial commit 2015-06-25 22:36:58 -04:00
			`import (`
			`"crypto/sha256"`
			`"encoding/json"`
Add per-user default currency 2017-06-21 21:25:38 -04:00			`"errors"`
Initial commit 2015-06-25 22:36:58 -04:00			`"fmt"`
			`"io"`
			`"log"`
			`"net/http"`
			`"strings"`
			`)`

			`type User struct {`
Add per-user default currency 2017-06-21 21:25:38 -04:00			`UserId int64`
			`DefaultCurrency int64 // SecurityId of default currency, or ISO4217 code for it if creating new user`
			`Name string`
			`Username string`
			Password string `db:"-"`
			PasswordHash string `json:"-"`
			`Email string`
Initial commit 2015-06-25 22:36:58 -04:00			`}`

			`const BogusPassword = "password"`

			`type UserExistsError struct{}`

			`func (ueu UserExistsError) Error() string {`
			`return "User exists"`
			`}`

			`func (u *User) Write(w http.ResponseWriter) error {`
			`enc := json.NewEncoder(w)`
			`return enc.Encode(u)`
			`}`

			`func (u *User) Read(json_str string) error {`
			`dec := json.NewDecoder(strings.NewReader(json_str))`
			`return dec.Decode(u)`
			`}`

			`func (u *User) HashPassword() {`
			`password_hasher := sha256.New()`
			`io.WriteString(password_hasher, u.Password)`
			`u.PasswordHash = fmt.Sprintf("%x", password_hasher.Sum(nil))`
			`u.Password = ""`
			`}`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`func GetUser(tx Tx, userid int64) (User, error) {`
Initial commit 2015-06-25 22:36:58 -04:00			`var u User`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`err := tx.SelectOne(&u, "SELECT * from users where UserId=?", userid)`
Initial commit 2015-06-25 22:36:58 -04:00			`if err != nil {`
			`return nil, err`
			`}`
			`return &u, nil`
			`}`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`func GetUserByUsername(tx Tx, username string) (User, error) {`
Initial commit 2015-06-25 22:36:58 -04:00			`var u User`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`err := tx.SelectOne(&u, "SELECT * from users where Username=?", username)`
Initial commit 2015-06-25 22:36:58 -04:00			`if err != nil {`
			`return nil, err`
			`}`
			`return &u, nil`
			`}`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`func InsertUser(tx Tx, u User) error {`
Add per-user default currency 2017-06-21 21:25:38 -04:00			`security_template := FindCurrencyTemplate(u.DefaultCurrency)`
			`if security_template == nil {`
			`return errors.New("Invalid ISO4217 Default Currency")`
			`}`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`existing, err := tx.SelectInt("SELECT count(*) from users where Username=?", u.Username)`
Initial commit 2015-06-25 22:36:58 -04:00			`if err != nil {`
			`return err`
			`}`
			`if existing > 0 {`
			`return UserExistsError{}`
			`}`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`err = tx.Insert(u)`
Initial commit 2015-06-25 22:36:58 -04:00			`if err != nil {`
			`return err`
			`}`

Add per-user default currency 2017-06-21 21:25:38 -04:00			`// Copy the security template and give it our new UserId`
			`var security Security`
			`security = *security_template`
			`security.UserId = u.UserId`

Remove duplicate *Tx versions of database access methods Simplify naming to remove "Tx" now that all handlers only have access to transactions anyway, and always use "tx" as the name of the variable representing the SQL transactions (to make it less likely to cause confusion with monetary transactions). 2017-10-14 19:41:13 -04:00			`err = InsertSecurity(tx, &security)`
Add per-user default currency 2017-06-21 21:25:38 -04:00			`if err != nil {`
			`return err`
			`}`

			`// Update the user's DefaultCurrency to our new SecurityId`
			`u.DefaultCurrency = security.SecurityId`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`count, err := tx.Update(u)`
Add per-user default currency 2017-06-21 21:25:38 -04:00			`if err != nil {`
			`return err`
			`} else if count != 1 {`
			`return errors.New("Would have updated more than one user")`
			`}`

Initial commit 2015-06-25 22:36:58 -04:00			`return nil`
			`}`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`func GetUserFromSession(tx Tx, r http.Request) (*User, error) {`
			`s, err := GetSession(tx, r)`
Initial commit 2015-06-25 22:36:58 -04:00			`if err != nil {`
			`return nil, err`
			`}`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return GetUser(tx, s.UserId)`
Initial commit 2015-06-25 22:36:58 -04:00			`}`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`func UpdateUser(tx Tx, u User) error {`
Remove duplicate *Tx versions of database access methods Simplify naming to remove "Tx" now that all handlers only have access to transactions anyway, and always use "tx" as the name of the variable representing the SQL transactions (to make it less likely to cause confusion with monetary transactions). 2017-10-14 19:41:13 -04:00			`security, err := GetSecurity(tx, u.DefaultCurrency, u.UserId)`
Add per-user default currency 2017-06-21 21:25:38 -04:00			`if err != nil {`
			`return err`
			`} else if security.UserId != u.UserId \|\| security.SecurityId != u.DefaultCurrency {`
			`return errors.New("UserId and DefaultCurrency don't match the fetched security")`
			`} else if security.Type != Currency {`
			`return errors.New("New DefaultCurrency security is not a currency")`
			`}`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`count, err := tx.Update(u)`
Add per-user default currency 2017-06-21 21:25:38 -04:00			`if err != nil {`
			`return err`
			`} else if count != 1 {`
			`return errors.New("Would have updated more than one user")`
			`}`

			`return nil`
			`}`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`func DeleteUser(tx Tx, u User) error {`
			`count, err := tx.Delete(u)`
Delete everything when we delete a user 2017-10-07 21:04:59 -04:00			`if err != nil {`
			`return err`
			`}`
			`if count != 1 {`
			`return fmt.Errorf("No user to delete")`
			`}`
users: Simplify deletion of prices and splits owned by a user The previous way was overly complex and didn't work with MySQL anyway 2017-10-24 20:13:42 -04:00			`_, err = tx.Exec("DELETE FROM prices WHERE prices.SecurityId IN (SELECT securities.SecurityId FROM securities WHERE securities.UserId=?)", u.UserId)`
Delete everything when we delete a user 2017-10-07 21:04:59 -04:00			`if err != nil {`
			`return err`
			`}`
users: Simplify deletion of prices and splits owned by a user The previous way was overly complex and didn't work with MySQL anyway 2017-10-24 20:13:42 -04:00			`_, err = tx.Exec("DELETE FROM splits WHERE splits.TransactionId IN (SELECT transactions.TransactionId FROM transactions WHERE transactions.UserId=?)", u.UserId)`
Delete everything when we delete a user 2017-10-07 21:04:59 -04:00			`if err != nil {`
			`return err`
			`}`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`_, err = tx.Exec("DELETE FROM transactions WHERE transactions.UserId=?", u.UserId)`
Delete everything when we delete a user 2017-10-07 21:04:59 -04:00			`if err != nil {`
			`return err`
			`}`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`_, err = tx.Exec("DELETE FROM securities WHERE securities.UserId=?", u.UserId)`
Delete everything when we delete a user 2017-10-07 21:04:59 -04:00			`if err != nil {`
			`return err`
			`}`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`_, err = tx.Exec("DELETE FROM accounts WHERE accounts.UserId=?", u.UserId)`
Delete everything when we delete a user 2017-10-07 21:04:59 -04:00			`if err != nil {`
			`return err`
			`}`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`_, err = tx.Exec("DELETE FROM reports WHERE reports.UserId=?", u.UserId)`
Delete everything when we delete a user 2017-10-07 21:04:59 -04:00			`if err != nil {`
			`return err`
			`}`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`_, err = tx.Exec("DELETE FROM sessions WHERE sessions.UserId=?", u.UserId)`
Delete everything when we delete a user 2017-10-07 21:04:59 -04:00			`if err != nil {`
			`return err`
			`}`

			`return nil`
			`}`

Begin move away from using http.ServeMux 2017-11-12 20:17:27 -05:00			`func UserHandler(r http.Request, context Context) ResponseWriterWriter {`
Initial commit 2015-06-25 22:36:58 -04:00			`if r.Method == "POST" {`
			`var user User`
Stop using form elements for API Just send the JSON as the request body 2017-11-13 20:48:19 -05:00			`if err := ReadJSON(r, &user); err != nil {`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return NewError(3 /Invalid Request/)`
Initial commit 2015-06-25 22:36:58 -04:00			`}`
			`user.UserId = -1`
			`user.HashPassword()`

Stop using form elements for API Just send the JSON as the request body 2017-11-13 20:48:19 -05:00			`err := InsertUser(context.Tx, &user)`
Initial commit 2015-06-25 22:36:58 -04:00			`if err != nil {`
			`if _, ok := err.(UserExistsError); ok {`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return NewError(4 /User Exists/)`
Initial commit 2015-06-25 22:36:58 -04:00			`} else {`
			`log.Print(err)`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return NewError(999 /Internal Error/)`
Initial commit 2015-06-25 22:36:58 -04:00			`}`
			`}`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return ResponseWrapper{201, &user}`
Initial commit 2015-06-25 22:36:58 -04:00			`} else {`
Begin move away from using http.ServeMux 2017-11-12 20:17:27 -05:00			`user, err := GetUserFromSession(context.Tx, r)`
Initial commit 2015-06-25 22:36:58 -04:00			`if err != nil {`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return NewError(1 /Not Signed In/)`
Initial commit 2015-06-25 22:36:58 -04:00			`}`

Move to a consistent way of handling IDs in URLs 2017-11-12 21:12:49 -05:00			`userid, err := context.NextID()`
Initial commit 2015-06-25 22:36:58 -04:00			`if err != nil {`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return NewError(3 /Invalid Request/)`
Initial commit 2015-06-25 22:36:58 -04:00			`}`

			`if userid != user.UserId {`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return NewError(2 /Unauthorized Access/)`
Initial commit 2015-06-25 22:36:58 -04:00			`}`

			`if r.Method == "GET" {`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return user`
Initial commit 2015-06-25 22:36:58 -04:00			`} else if r.Method == "PUT" {`
			`// Save old PWHash in case the new password is bogus`
			`old_pwhash := user.PasswordHash`

Stop using form elements for API Just send the JSON as the request body 2017-11-13 20:48:19 -05:00			`if err := ReadJSON(r, &user); err != nil \|\| user.UserId != userid {`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return NewError(3 /Invalid Request/)`
Initial commit 2015-06-25 22:36:58 -04:00			`}`

			`// If the user didn't create a new password, keep their old one`
			`if user.Password != BogusPassword {`
			`user.HashPassword()`
			`} else {`
			`user.Password = ""`
			`user.PasswordHash = old_pwhash`
			`}`

Begin move away from using http.ServeMux 2017-11-12 20:17:27 -05:00			`err = UpdateUser(context.Tx, user)`
Add per-user default currency 2017-06-21 21:25:38 -04:00			`if err != nil {`
Initial commit 2015-06-25 22:36:58 -04:00			`log.Print(err)`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return NewError(999 /Internal Error/)`
Initial commit 2015-06-25 22:36:58 -04:00			`}`

Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return user`
Initial commit 2015-06-25 22:36:58 -04:00			`} else if r.Method == "DELETE" {`
Begin move away from using http.ServeMux 2017-11-12 20:17:27 -05:00			`err := DeleteUser(context.Tx, user)`
Delete everything when we delete a user 2017-10-07 21:04:59 -04:00			`if err != nil {`
Initial commit 2015-06-25 22:36:58 -04:00			`log.Print(err)`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return NewError(999 /Internal Error/)`
Initial commit 2015-06-25 22:36:58 -04:00			`}`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return SuccessWriter{}`
Initial commit 2015-06-25 22:36:58 -04:00			`}`
			`}`
Use SQL transactions for the entirety of every request 2017-10-14 14:20:50 -04:00			`return NewError(3 /Invalid Request/)`
Initial commit 2015-06-25 22:36:58 -04:00			`}`