pollo/lib/user.go

package lib

import (
	"database/sql"
	"errors"
	"net/http"

	"github.com/labstack/echo/v4"
	"golang.org/x/crypto/bcrypt"
)

type User struct {
	ID       string
	Name     string
	Email    string
	Password string
}

// HashPassword hashes the given password using bcrypt.
func HashPassword(password string) (string, error) {
	bytes, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost)
	return string(bytes), err
}

// CheckPasswordHash checks if the given password matches the hashed password.
func CheckPasswordHash(password, hash string) bool {
	err := bcrypt.CompareHashAndPassword([]byte(hash), []byte(password))
	return err == nil
}

// GetUserByEmail fetches a user by email from the database.
func GetUserByEmail(db *sql.DB, email string) (*User, error) {
	if db == nil {
		return nil, errors.New("database client is not initialized")
	}

	var user User
	row := db.QueryRow(
		"SELECT id, name, email, password FROM users WHERE email = ?",
		email)

	err := row.Scan(&user.ID, &user.Name, &user.Email, &user.Password)
	if err != nil {
		return nil, err
	}
	return &user, nil
}

// GetUserByID fetches a user by ID from the database.
func GetUserByID(db *sql.DB, id string) (*User, error) {
	if db == nil {
		return nil, errors.New("database client is not initialized")
	}

	var user User
	row := db.QueryRow(
		"SELECT id, name, email, password FROM users WHERE id = ?",
		id)

	err := row.Scan(&user.ID, &user.Name, &user.Email, &user.Password)
	if err != nil {
		return nil, err
	}
	return &user, nil
}

// SaveUser saves a new user to the database.
func SaveUser(db *sql.DB, user *User) error {
	if db == nil {
		return errors.New("database client is not initialized")
	}

	result, err := db.Exec(
		"INSERT INTO users (id, name, email, password) VALUES (?, ?, ?, ?)",
		GenerateNewID("user"), user.Name, user.Email, user.Password)
	if err != nil {
		return err
	}

	rowsAffected, _ := result.RowsAffected()
	if rowsAffected != 1 {
		return errors.New("expected one row to be affected")
	}
	return nil
}

func AuthenticatedPageMiddleware(next echo.HandlerFunc) echo.HandlerFunc {
	return func(c echo.Context) error {
		isSignedIn := IsSignedIn(c)

		// Check if user is authenticated
		if !isSignedIn {
			// Redirect to signin page if not authenticated
			return c.Redirect(http.StatusFound, "/signin")
		}

		// Proceed with the request if authenticated
		return next(c)
	}
}

func AuthFlowPageMiddleware(next echo.HandlerFunc) echo.HandlerFunc {
	return func(c echo.Context) error {
		isSignedIn := IsSignedIn(c)

		if isSignedIn {
			return c.Redirect(http.StatusFound, "/dashboard")
		}

		return next(c)
	}
}

func AuthenticatedEndpointMiddleware(next echo.HandlerFunc) echo.HandlerFunc {
	return func(c echo.Context) error {
		isSignedIn := IsSignedIn(c)

		// Check if user is authenticated
		if !isSignedIn {
			// Return 401 if not authenticated
			return c.String(http.StatusUnauthorized, "Unauthorized")
		}

		// Proceed with the request if authenticated
		return next(c)
	}
}
Go is amazing... 2024-06-27 21:23:51 -06:00			`package lib`

			`import (`
Fly time 2024-11-21 00:48:45 -06:00			`"database/sql"`
Go is amazing... 2024-06-27 21:23:51 -06:00			`"errors"`
			`"net/http"`

			`"github.com/labstack/echo/v4"`
			`"golang.org/x/crypto/bcrypt"`
			`)`

			`type User struct {`
Fixed cookie stuff 2024-06-28 00:35:58 -06:00			`ID string`
Auth fixes 2024-06-28 09:11:03 -06:00			`Name string`
Go is amazing... 2024-06-27 21:23:51 -06:00			`Email string`
			`Password string`
			`}`

			`// HashPassword hashes the given password using bcrypt.`
			`func HashPassword(password string) (string, error) {`
			`bytes, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost)`
			`return string(bytes), err`
			`}`

			`// CheckPasswordHash checks if the given password matches the hashed password.`
			`func CheckPasswordHash(password, hash string) bool {`
			`err := bcrypt.CompareHashAndPassword([]byte(hash), []byte(password))`
			`return err == nil`
			`}`

			`// GetUserByEmail fetches a user by email from the database.`
Fly time 2024-11-21 00:48:45 -06:00			`func GetUserByEmail(db sql.DB, email string) (User, error) {`
			`if db == nil {`
			`return nil, errors.New("database client is not initialized")`
Go is amazing... 2024-06-27 21:23:51 -06:00			`}`

			`var user User`
Fly time 2024-11-21 00:48:45 -06:00			`row := db.QueryRow(`
			`"SELECT id, name, email, password FROM users WHERE email = ?",`
			`email)`

			`err := row.Scan(&user.ID, &user.Name, &user.Email, &user.Password)`
Go is amazing... 2024-06-27 21:23:51 -06:00			`if err != nil {`
			`return nil, err`
			`}`
			`return &user, nil`
			`}`

Auth fixes 2024-06-28 09:11:03 -06:00			`// GetUserByID fetches a user by ID from the database.`
Fly time 2024-11-21 00:48:45 -06:00			`func GetUserByID(db sql.DB, id string) (User, error) {`
			`if db == nil {`
			`return nil, errors.New("database client is not initialized")`
Auth fixes 2024-06-28 09:11:03 -06:00			`}`

			`var user User`
Fly time 2024-11-21 00:48:45 -06:00			`row := db.QueryRow(`
			`"SELECT id, name, email, password FROM users WHERE id = ?",`
			`id)`

			`err := row.Scan(&user.ID, &user.Name, &user.Email, &user.Password)`
Auth fixes 2024-06-28 09:11:03 -06:00			`if err != nil {`
			`return nil, err`
			`}`
			`return &user, nil`
			`}`

Go is amazing... 2024-06-27 21:23:51 -06:00			`// SaveUser saves a new user to the database.`
Fly time 2024-11-21 00:48:45 -06:00			`func SaveUser(db sql.DB, user User) error {`
			`if db == nil {`
			`return errors.New("database client is not initialized")`
Go is amazing... 2024-06-27 21:23:51 -06:00			`}`

Fly time 2024-11-21 00:48:45 -06:00			`result, err := db.Exec(`
			`"INSERT INTO users (id, name, email, password) VALUES (?, ?, ?, ?)",`
			`GenerateNewID("user"), user.Name, user.Email, user.Password)`
Go is amazing... 2024-06-27 21:23:51 -06:00			`if err != nil {`
			`return err`
			`}`
Fly time 2024-11-21 00:48:45 -06:00
			`rowsAffected, _ := result.RowsAffected()`
			`if rowsAffected != 1 {`
Go is amazing... 2024-06-27 21:23:51 -06:00			`return errors.New("expected one row to be affected")`
			`}`
			`return nil`
			`}`
Added some rad new helpers, comments, and cleaned up the route group definitions! 2024-07-05 23:14:21 -06:00
Oops 2024-07-05 23:52:27 -06:00			`func AuthenticatedPageMiddleware(next echo.HandlerFunc) echo.HandlerFunc {`
Go is amazing... 2024-06-27 21:23:51 -06:00			`return func(c echo.Context) error {`
			`isSignedIn := IsSignedIn(c)`

			`// Check if user is authenticated`
			`if !isSignedIn {`
			`// Redirect to signin page if not authenticated`
			`return c.Redirect(http.StatusFound, "/signin")`
			`}`

			`// Proceed with the request if authenticated`
			`return next(c)`
			`}`
			`}`
Oops 2024-07-05 23:52:27 -06:00
Fixed auth flow 2024-07-09 11:10:32 -06:00			`func AuthFlowPageMiddleware(next echo.HandlerFunc) echo.HandlerFunc {`
			`return func(c echo.Context) error {`
			`isSignedIn := IsSignedIn(c)`

			`if isSignedIn {`
			`return c.Redirect(http.StatusFound, "/dashboard")`
			`}`

			`return next(c)`
			`}`
			`}`

Oops 2024-07-05 23:52:27 -06:00			`func AuthenticatedEndpointMiddleware(next echo.HandlerFunc) echo.HandlerFunc {`
			`return func(c echo.Context) error {`
			`isSignedIn := IsSignedIn(c)`

			`// Check if user is authenticated`
			`if !isSignedIn {`
			`// Return 401 if not authenticated`
			`return c.String(http.StatusUnauthorized, "Unauthorized")`
			`}`

			`// Proceed with the request if authenticated`
			`return next(c)`
			`}`
			`}`