mirror of
https://git.freesoftwareextremist.com/bloat
synced 2024-11-09 16:14:11 +00:00
118 lines
2.6 KiB
Go
118 lines
2.6 KiB
Go
package service
|
|
|
|
import (
|
|
"context"
|
|
"encoding/base64"
|
|
"encoding/json"
|
|
"errors"
|
|
"net/http"
|
|
"strings"
|
|
"time"
|
|
|
|
"bloat/mastodon"
|
|
"bloat/model"
|
|
"bloat/renderer"
|
|
)
|
|
|
|
type client struct {
|
|
*mastodon.Client
|
|
w http.ResponseWriter
|
|
r *http.Request
|
|
s *model.Session
|
|
csrf string
|
|
ctx context.Context
|
|
rctx *renderer.Context
|
|
}
|
|
|
|
func (c *client) setSession(sess *model.Session) error {
|
|
var sb strings.Builder
|
|
bw := base64.NewEncoder(base64.URLEncoding, &sb)
|
|
err := json.NewEncoder(bw).Encode(sess)
|
|
bw.Close()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
http.SetCookie(c.w, &http.Cookie{
|
|
Name: "session",
|
|
Path: "/",
|
|
HttpOnly: true,
|
|
Value: sb.String(),
|
|
Expires: time.Now().Add(365 * 24 * time.Hour),
|
|
})
|
|
return nil
|
|
}
|
|
|
|
func (c *client) getSession() (sess *model.Session, err error) {
|
|
cookie, _ := c.r.Cookie("session")
|
|
if cookie == nil {
|
|
return nil, errInvalidSession
|
|
}
|
|
br := base64.NewDecoder(base64.URLEncoding, strings.NewReader(cookie.Value))
|
|
err = json.NewDecoder(br).Decode(&sess)
|
|
return
|
|
}
|
|
|
|
func (c *client) unsetSession() {
|
|
http.SetCookie(c.w, &http.Cookie{
|
|
Name: "session",
|
|
Path: "/",
|
|
Value: "",
|
|
Expires: time.Now(),
|
|
})
|
|
}
|
|
|
|
func (c *client) writeJson(data interface{}) error {
|
|
return json.NewEncoder(c.w).Encode(map[string]interface{}{
|
|
"data": data,
|
|
})
|
|
}
|
|
|
|
func (c *client) redirect(url string) {
|
|
c.w.Header().Add("Location", url)
|
|
c.w.WriteHeader(http.StatusFound)
|
|
}
|
|
|
|
func (c *client) authenticate(t int, instance string) (err error) {
|
|
csrf := c.r.FormValue("csrf_token")
|
|
ref := c.r.URL.RequestURI()
|
|
defer func() {
|
|
if c.s == nil {
|
|
c.s = &model.Session{
|
|
Settings: *model.NewSettings(),
|
|
}
|
|
}
|
|
c.rctx = &renderer.Context{
|
|
HideAttachments: c.s.Settings.HideAttachments,
|
|
MaskNSFW: c.s.Settings.MaskNSFW,
|
|
ThreadInNewTab: c.s.Settings.ThreadInNewTab,
|
|
FluorideMode: c.s.Settings.FluorideMode,
|
|
DarkMode: c.s.Settings.DarkMode,
|
|
CSRFToken: c.s.CSRFToken,
|
|
UserID: c.s.UserID,
|
|
AntiDopamineMode: c.s.Settings.AntiDopamineMode,
|
|
UserCSS: c.s.Settings.CSS,
|
|
Referrer: ref,
|
|
}
|
|
}()
|
|
if t < SESSION {
|
|
return
|
|
}
|
|
sess, err := c.getSession()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
c.s = sess
|
|
if len(instance) > 0 && c.s.Instance != instance {
|
|
return errors.New("invalid instance")
|
|
}
|
|
c.Client = mastodon.NewClient(&mastodon.Config{
|
|
Server: "https://" + c.s.Instance,
|
|
ClientID: c.s.ClientID,
|
|
ClientSecret: c.s.ClientSecret,
|
|
AccessToken: c.s.AccessToken,
|
|
})
|
|
if t >= CSRF && (len(csrf) < 1 || csrf != c.s.CSRFToken) {
|
|
return errInvalidCSRFToken
|
|
}
|
|
return
|
|
}
|