refactor(web): auth

ItsNotGoodName · ItsNotGoodName · commit 9e5a98bc5a53 · 2023-07-24T02:41:49.000-07:00
diff --git a/README.md b/README.md
@@ -234,7 +234,6 @@ make dev-web
 
 - Reload on config change
 - Add [Apprise](https://github.com/caronc/apprise) endpoint
-- HTTP and SMTP auth
 - CRUD endpoints and rules
 - SQLite full text search
 - Read mailbox files
diff --git a/internal/core/actor.go b/internal/core/actor.go
@@ -3,6 +3,6 @@ package core
 type Actor int
 
 const (
-	ActorAnonymous Actor = iota
+	ActorUnknown Actor = iota
 	ActorSystem
 )
diff --git a/internal/core/app.go b/internal/core/app.go
@@ -35,7 +35,7 @@ func (a App) newContext(ctx context.Context, actor Actor) Context {
 }
 
 func (a App) Context(ctx context.Context) Context {
-	return a.newContext(ctx, ActorAnonymous)
+	return a.newContext(ctx, ActorUnknown)
 }
 
 func (a App) SystemContext(ctx context.Context) Context {
diff --git a/internal/procs/auth.go b/internal/procs/auth.go
@@ -9,8 +9,12 @@ import (
 
 var ErrorLogin = fmt.Errorf("login error")
 
-func HTTPLogin(cc core.Context, username, password string) error {
-	if cc.Config.AuthHTTP.Username == "" && cc.Config.AuthHTTP.Password == "" {
+func AuthHTTPAnonymous(cc core.Context) bool {
+	return cc.Config.AuthHTTP.Username == "" && cc.Config.AuthHTTP.Password == ""
+}
+
+func AuthHTTPLogin(cc core.Context, username, password string) error {
+	if AuthHTTPAnonymous(cc) {
 		return nil
 	}
 
diff --git a/web/controllers/auth.go b/web/controllers/auth.go
@@ -8,12 +8,12 @@ import (
 	"github.com/gofiber/fiber/v2/middleware/session"
 )
 
-type Flash struct {
+type LoginData struct {
 	Flash string
 }
 
 func Login(c *fiber.Ctx, cc core.Context) error {
-	return c.Render("login", Flash{})
+	return c.Render("login", LoginData{})
 }
 
 func AuthLogin(c *fiber.Ctx, cc core.Context, store *session.Store) error {
@@ -22,65 +22,73 @@ func AuthLogin(c *fiber.Ctx, cc core.Context, store *session.Store) error {
 	password := c.FormValue("password")
 
 	// Execute
-	err := procs.HTTPLogin(cc, username, password)
+	err := procs.AuthHTTPLogin(cc, username, password)
 	if err != nil {
 		if helpers.IsHTMXRequest(c) {
-			return c.Render("login", Flash{Flash: err.Error()}, "form")
+			return c.Render("login", LoginData{Flash: err.Error()}, "form")
 		}
-		return c.Render("login", Flash{Flash: err.Error()})
+		return c.Render("login", LoginData{Flash: err.Error()})
 	}
 
 	// Response
 	sess, err := store.Get(c)
 	if err != nil {
-		panic(err)
+		return helpers.Error(c, err)
 	}
 
 	sess.Set("auth", true)
 	if err := sess.Save(); err != nil {
-		panic(err)
+		return helpers.Error(c, err)
 	}
 
-	return redirect(c, "/")
+	return helpers.Redirect(c, "/")
 }
 
 func AuthLogout(c *fiber.Ctx, cc core.Context, store *session.Store) error {
 	sess, err := store.Get(c)
 	if err != nil {
-		panic(err)
+		return helpers.Error(c, err)
 	}
 
 	sess.Delete("auth")
 	if err := sess.Save(); err != nil {
-		panic(err)
+		return helpers.Error(c, err)
 	}
 
-	return redirect(c, "/login")
+	return helpers.Redirect(c, "/login")
 }
 
 func AuthRequire(c *fiber.Ctx, cc core.Context, store *session.Store) error {
+	if procs.AuthHTTPAnonymous(cc) {
+		return c.Next()
+	}
+
 	sess, err := store.Get(c)
 	if err != nil {
 		panic(err)
 	}
 
 	auth := sess.Get("auth")
 	if auth == nil {
-		return redirect(c, "/login")
+		return helpers.Redirect(c, "/login")
 	}
 
 	return c.Next()
 }
 
 func AuthSkip(c *fiber.Ctx, cc core.Context, store *session.Store) error {
+	if procs.AuthHTTPAnonymous(cc) {
+		return helpers.Redirect(c, "/")
+	}
+
 	sess, err := store.Get(c)
 	if err != nil {
-		panic(err)
+		return helpers.Error(c, err)
 	}
 
 	auth := sess.Get("auth")
 	if auth != nil {
-		return redirect(c, "/")
+		return helpers.Redirect(c, "/")
 	}
 
 	return c.Next()
diff --git a/web/controllers/utils.go b/web/controllers/utils.go
@@ -1,7 +1,6 @@
 package controllers
 
 import (
-	"github.com/ItsNotGoodName/smtpbridge/web/helpers"
 	"github.com/gofiber/fiber/v2"
 )
 
@@ -13,11 +12,3 @@ func checkbox(c *fiber.Ctx, key string) bool {
 
 	return true
 }
-func redirect(c *fiber.Ctx, path string) error {
-	if helpers.IsHTMXRequest(c) {
-		c.Set("HX-Location", path)
-		return nil
-	} else {
-		return c.Redirect(path)
-	}
-}
diff --git a/web/helpers/helpers.go b/web/helpers/helpers.go
@@ -8,7 +8,6 @@ import (
 	"github.com/ItsNotGoodName/smtpbridge/internal/build"
 	"github.com/ItsNotGoodName/smtpbridge/web"
 	"github.com/dustin/go-humanize"
-	"github.com/gofiber/fiber/v2"
 )
 
 var Map template.FuncMap = template.FuncMap{
@@ -42,8 +41,3 @@ var Map template.FuncMap = template.FuncMap{
 		return template.URL(Query(queries, vals...))
 	},
 }
-
-func IsHTMXRequest(c *fiber.Ctx) bool {
-	_, isHTMXRequest := c.GetReqHeaders()["Hx-Request"]
-	return isHTMXRequest
-}
diff --git a/web/helpers/http.go b/web/helpers/http.go
@@ -4,6 +4,20 @@ import (
 	"github.com/gofiber/fiber/v2"
 )
 
+func IsHTMXRequest(c *fiber.Ctx) bool {
+	_, isHTMXRequest := c.GetReqHeaders()["Hx-Request"]
+	return isHTMXRequest
+}
+
+func Redirect(c *fiber.Ctx, path string) error {
+	if IsHTMXRequest(c) {
+		c.Set("HX-Location", path)
+		return nil
+	} else {
+		return c.Redirect(path)
+	}
+}
+
 func Error(c *fiber.Ctx, err error, codes ...int) error {
 	if IsHTMXRequest(c) {
 		c.Set("HX-Redirect", "/something-went-wrong")
diff --git a/web/views/login.html b/web/views/login.html
@@ -19,7 +19,7 @@ <h2>Login</h2>
         <input type="password" id="password" name="password" placeholder="Password" />
       </label>
 
-      <button data-loading-path="/login" data-loading-disable data-loading-aria-busy>
+      <button data-loading-path="/auth" data-loading-disable data-loading-aria-busy>
         Log in
       </button>
       {{with .Flash}}

Original file line number	Diff line number	Diff line change
`@@ -3,6 +3,6 @@ package core`
`3`	`3`	`type Actor int`
`4`	`4`
`5`	`5`	`const (`
`6`		`- ActorAnonymous Actor = iota`
	`6`	`+ ActorUnknown Actor = iota`
`7`	`7`	`ActorSystem`
`8`	`8`	`)`
Original file line number	Diff line number	Diff line change
`@@ -35,7 +35,7 @@ func (a App) newContext(ctx context.Context, actor Actor) Context {`
`35`	`35`	`}`
`36`	`36`
`37`	`37`	`func (a App) Context(ctx context.Context) Context {`
`38`		`- return a.newContext(ctx, ActorAnonymous)`
	`38`	`+ return a.newContext(ctx, ActorUnknown)`
`39`	`39`	`}`
`40`	`40`
`41`	`41`	`func (a App) SystemContext(ctx context.Context) Context {`
Original file line number	Diff line number	Diff line change
`@@ -8,12 +8,12 @@ import (`
`8`	`8`	`"github.com/gofiber/fiber/v2/middleware/session"`
`9`	`9`	`)`
`10`	`10`
`11`		`-type Flash struct {`
	`11`	`+type LoginData struct {`
`12`	`12`	`Flash string`
`13`	`13`	`}`
`14`	`14`
`15`	`15`	`func Login(c *fiber.Ctx, cc core.Context) error {`
`16`		`- return c.Render("login", Flash{})`
	`16`	`+ return c.Render("login", LoginData{})`
`17`	`17`	`}`
`18`	`18`
`19`	`19`	`func AuthLogin(c fiber.Ctx, cc core.Context, store session.Store) error {`
`@@ -22,65 +22,73 @@ func AuthLogin(c fiber.Ctx, cc core.Context, store session.Store) error {`
`22`	`22`	`password := c.FormValue("password")`
`23`	`23`
`24`	`24`	`// Execute`
`25`		`- err := procs.HTTPLogin(cc, username, password)`
	`25`	`+ err := procs.AuthHTTPLogin(cc, username, password)`
`26`	`26`	`if err != nil {`
`27`	`27`	`if helpers.IsHTMXRequest(c) {`
`28`		`- return c.Render("login", Flash{Flash: err.Error()}, "form")`
	`28`	`+ return c.Render("login", LoginData{Flash: err.Error()}, "form")`
`29`	`29`	`}`
`30`		`- return c.Render("login", Flash{Flash: err.Error()})`
	`30`	`+ return c.Render("login", LoginData{Flash: err.Error()})`
`31`	`31`	`}`
`32`	`32`
`33`	`33`	`// Response`
`34`	`34`	`sess, err := store.Get(c)`
`35`	`35`	`if err != nil {`
`36`		`- panic(err)`
	`36`	`+ return helpers.Error(c, err)`
`37`	`37`	`}`
`38`	`38`
`39`	`39`	`sess.Set("auth", true)`
`40`	`40`	`if err := sess.Save(); err != nil {`
`41`		`- panic(err)`
	`41`	`+ return helpers.Error(c, err)`
`42`	`42`	`}`
`43`	`43`
`44`		`- return redirect(c, "/")`
	`44`	`+ return helpers.Redirect(c, "/")`
`45`	`45`	`}`
`46`	`46`
`47`	`47`	`func AuthLogout(c fiber.Ctx, cc core.Context, store session.Store) error {`
`48`	`48`	`sess, err := store.Get(c)`
`49`	`49`	`if err != nil {`
`50`		`- panic(err)`
	`50`	`+ return helpers.Error(c, err)`
`51`	`51`	`}`
`52`	`52`
`53`	`53`	`sess.Delete("auth")`
`54`	`54`	`if err := sess.Save(); err != nil {`
`55`		`- panic(err)`
	`55`	`+ return helpers.Error(c, err)`
`56`	`56`	`}`
`57`	`57`
`58`		`- return redirect(c, "/login")`
	`58`	`+ return helpers.Redirect(c, "/login")`
`59`	`59`	`}`
`60`	`60`
`61`	`61`	`func AuthRequire(c fiber.Ctx, cc core.Context, store session.Store) error {`
	`62`	`+ if procs.AuthHTTPAnonymous(cc) {`
	`63`	`+ return c.Next()`
	`64`	`+ }`
	`65`	`+`
`62`	`66`	`sess, err := store.Get(c)`
`63`	`67`	`if err != nil {`
`64`	`68`	`panic(err)`
`65`	`69`	`}`
`66`	`70`
`67`	`71`	`auth := sess.Get("auth")`
`68`	`72`	`if auth == nil {`
`69`		`- return redirect(c, "/login")`
	`73`	`+ return helpers.Redirect(c, "/login")`
`70`	`74`	`}`
`71`	`75`
`72`	`76`	`return c.Next()`
`73`	`77`	`}`
`74`	`78`
`75`	`79`	`func AuthSkip(c fiber.Ctx, cc core.Context, store session.Store) error {`
	`80`	`+ if procs.AuthHTTPAnonymous(cc) {`
	`81`	`+ return helpers.Redirect(c, "/")`
	`82`	`+ }`
	`83`	`+`
`76`	`84`	`sess, err := store.Get(c)`
`77`	`85`	`if err != nil {`
`78`		`- panic(err)`
	`86`	`+ return helpers.Error(c, err)`
`79`	`87`	`}`
`80`	`88`
`81`	`89`	`auth := sess.Get("auth")`
`82`	`90`	`if auth != nil {`
`83`		`- return redirect(c, "/")`
	`91`	`+ return helpers.Redirect(c, "/")`
`84`	`92`	`}`
`85`	`93`
`86`	`94`	`return c.Next()`