WIP user reg

2022-04-28 13:40:48 -05:00 · 2022-04-28 13:40:48 -05:00 · 9703d88c66
parent 44343a429e
commit 9703d88c66
1 changed files with 54 additions and 21 deletions
--- a/server/cmd/main.go
+++ b/server/cmd/main.go
@ -193,6 +193,13 @@ func setupAPI(opts Opts) {
 		})
 	}))
 	serverErr := func(w http.ResponseWriter) {
 		writeErrorResponse(w, 500, BBJResponse{
 			Error: true,
 			Data:  "server error",
 		})
 	}
 	badMethod := func(w http.ResponseWriter) {
 		writeErrorResponse(w, 400, BBJResponse{
 			Error: true,
@ -207,25 +214,56 @@ func setupAPI(opts Opts) {
 		})
 	}
 	type AuthArgs struct {
 		Username string `json:"target_user"`
 		AuthHash string `json:"target_hash"`
 	}
 	http.HandleFunc("/user_register", handler(opts, func(w http.ResponseWriter, req *http.Request) {
 		if req.Method != "POST" {
 			badMethod(w)
 			return
 		}
 		type AuthArgs struct {
 			Username string `json:"user_name"`
 			AuthHash string `json:"auth_hash"`
 		}
 		var args AuthArgs
 		if err := json.NewDecoder(req.Body).Decode(&args); err != nil {
 			invalidArgs(w)
 			return
 		}
-		// TODO check if user exists
+		db := opts.DB
-		// TODO compare hash
+		stmt, err := db.Prepare("select auth_hash from users where user_name = ?")
 		if err != nil {
 			opts.Logf("user_register error: %s", err.Error())
 			serverErr(w)
 			return
 		}
 		defer stmt.Close()
 		opts.Logf("querying for %s", args.Username)
 		var authHash string
 		err = stmt.QueryRow(args.Username).Scan(&authHash)
 		if err == nil {
 			opts.Logf("found %s", args.Username)
 			// code 4 apparently
 			writeErrorResponse(w, 403, BBJResponse{
 				Error: true,
 				Data:  "user already exists",
 			})
 			return
 		} else if err != nil && !strings.Contains(err.Error(), "no rows in result") {
 			opts.Logf("user_register error: %s", err.Error())
 			serverErr(w)
 			return
 		}
 		// TODO register
 		writeResponse(w, BBJResponse{
 			Data: true, // TODO probably something else
 			// TODO prob usermap
 		})
 	}))
 	http.HandleFunc("/check_auth", handler(opts, func(w http.ResponseWriter, req *http.Request) {
@ -234,6 +272,11 @@ func setupAPI(opts Opts) {
 			return
 		}
 		type AuthArgs struct {
 			Username string `json:"target_user"`
 			AuthHash string `json:"target_hash"`
 		}
 		var args AuthArgs
 		if err := json.NewDecoder(req.Body).Decode(&args); err != nil {
 			invalidArgs(w)
@ -244,18 +287,10 @@ func setupAPI(opts Opts) {
 		db := opts.DB
 		serverErr := func(err error) {
 			opts.Logf("check_auth error: %s", err.Error())
 			writeErrorResponse(w, 500, BBJResponse{
 				Error: true,
 				Data:  "server error",
 			})
 			return
 		}
 		stmt, err := db.Prepare("select auth_hash from users where user_name = ?")
 		if err != nil {
-			serverErr(err)
+			opts.Logf("check_auth error: %s", err.Error())
 			serverErr(w)
 			return
 		}
 		defer stmt.Close()
@ -271,10 +306,7 @@ func setupAPI(opts Opts) {
 				})
 			} else {
 				opts.Logf("check_auth error: %s", err.Error())
-				writeErrorResponse(w, 500, BBJResponse{
+				serverErr(w)
 					Error: true,
 					Data:  "server error",
 				})
 			}
 			return
 		}
@ -290,6 +322,7 @@ func setupAPI(opts Opts) {
 			return
 		}
 		// TODO include usermap?
 		writeResponse(w, BBJResponse{
 			Data: true,
 		})