Remove old user and block file pages
This commit is contained in:
@@ -90,65 +90,3 @@ func (wc *WebController) adminGlobalsForm(td *TemplateData, r *http.Request) (f
|
||||
}
|
||||
return f
|
||||
}
|
||||
|
||||
func (wc *WebController) adminAbuseForm(td *TemplateData, r *http.Request) (f Form) {
|
||||
if !td.Authenticated || !td.User.IsAdmin {
|
||||
return Form{Title: ";-)"}
|
||||
}
|
||||
|
||||
f = Form{
|
||||
Name: "admin_file_removal",
|
||||
Title: "Admin file removal",
|
||||
PreFormHTML: template.HTML("<p>Paste any pixeldrain file links in here to remove them</p>"),
|
||||
Fields: []Field{
|
||||
{
|
||||
Name: "text",
|
||||
Label: "Files to delete",
|
||||
Type: FieldTypeTextarea,
|
||||
}, {
|
||||
Name: "type",
|
||||
Label: "Type",
|
||||
DefaultValue: "unknown",
|
||||
Type: FieldTypeRadio,
|
||||
RadioValues: []string{
|
||||
"unknown",
|
||||
"copyright",
|
||||
"child_abuse",
|
||||
"terrorism",
|
||||
"gore",
|
||||
"malware",
|
||||
},
|
||||
}, {
|
||||
Name: "reporter",
|
||||
Label: "Reporter",
|
||||
DefaultValue: "Anonymous tip",
|
||||
Type: FieldTypeText,
|
||||
},
|
||||
},
|
||||
BackLink: "/admin",
|
||||
SubmitLabel: "Submit",
|
||||
}
|
||||
|
||||
if f.ReadInput(r) {
|
||||
resp, err := td.PixelAPI.AdminBlockFiles(
|
||||
f.FieldVal("text"),
|
||||
f.FieldVal("type"),
|
||||
f.FieldVal("reporter"),
|
||||
)
|
||||
if err != nil {
|
||||
formAPIError(err, &f)
|
||||
return
|
||||
}
|
||||
|
||||
successMsg := template.HTML("The following files were blocked:<br/><ul>")
|
||||
for _, v := range resp.FilesBlocked {
|
||||
successMsg += template.HTML("<li>pixeldrain.com/u/" + v + "</li>")
|
||||
}
|
||||
successMsg += "<ul>"
|
||||
|
||||
// Request was a success
|
||||
f.SubmitSuccess = true
|
||||
f.SubmitMessages = []template.HTML{successMsg}
|
||||
}
|
||||
return f
|
||||
}
|
||||
|
||||
@@ -1,14 +1,60 @@
|
||||
package webcontroller
|
||||
|
||||
import (
|
||||
"fmt"
|
||||
"html/template"
|
||||
"net/http"
|
||||
"time"
|
||||
|
||||
"fornaxian.tech/pixeldrain_api_client/pixelapi"
|
||||
"github.com/Fornaxian/log"
|
||||
"github.com/julienschmidt/httprouter"
|
||||
)
|
||||
|
||||
// formAPIError makes it easier to display errors returned by the pixeldrain
|
||||
// API. TO make use of this function the form fields should be named exactly the
|
||||
// same as the API parameters
|
||||
func formAPIError(err error, f *Form) {
|
||||
fieldLabel := func(name string) string {
|
||||
for _, v := range f.Fields {
|
||||
if v.Name == name {
|
||||
return v.Label
|
||||
}
|
||||
}
|
||||
return name
|
||||
}
|
||||
|
||||
if err, ok := err.(pixelapi.Error); ok {
|
||||
if err.StatusCode == "multiple_errors" {
|
||||
for _, err := range err.Errors {
|
||||
// Modify the message to make it more user-friendly
|
||||
if err.StatusCode == "string_out_of_range" {
|
||||
err.Message = fmt.Sprintf(
|
||||
"%s is too long or too short. Should be between %v and %v characters. Current length: %v",
|
||||
fieldLabel(err.Extra["field"].(string)),
|
||||
err.Extra["min_len"],
|
||||
err.Extra["max_len"],
|
||||
err.Extra["len"],
|
||||
)
|
||||
} else if err.StatusCode == "field_contains_illegal_character" {
|
||||
err.Message = fmt.Sprintf(
|
||||
"Character '%v' is not allowed in %s",
|
||||
err.Extra["char"],
|
||||
fieldLabel(err.Extra["field"].(string)),
|
||||
)
|
||||
}
|
||||
|
||||
f.SubmitMessages = append(f.SubmitMessages, template.HTML(err.Message))
|
||||
}
|
||||
} else {
|
||||
f.SubmitMessages = append(f.SubmitMessages, template.HTML(err.Message))
|
||||
}
|
||||
} else {
|
||||
log.Error("Error submitting form: %s", err)
|
||||
f.SubmitMessages = []template.HTML{"Internal Server Error"}
|
||||
}
|
||||
}
|
||||
|
||||
func (wc *WebController) serveLogout(
|
||||
w http.ResponseWriter,
|
||||
r *http.Request,
|
||||
@@ -271,3 +317,27 @@ func (wc *WebController) passwordResetConfirmForm(td *TemplateData, r *http.Requ
|
||||
}
|
||||
return f
|
||||
}
|
||||
|
||||
func (wc *WebController) serveEmailConfirm(
|
||||
w http.ResponseWriter,
|
||||
r *http.Request,
|
||||
p httprouter.Params,
|
||||
) {
|
||||
var err error
|
||||
var status string
|
||||
|
||||
err = wc.api.PutUserEmailResetConfirm(r.FormValue("key"))
|
||||
if err != nil && err.Error() == "not_found" {
|
||||
status = "not_found"
|
||||
} else if err != nil {
|
||||
log.Error("E-mail reset fail: %s", err)
|
||||
status = "internal_error"
|
||||
} else {
|
||||
status = "success"
|
||||
}
|
||||
|
||||
td := wc.newTemplateData(w, r)
|
||||
td.Other = status
|
||||
|
||||
wc.templates.Get().ExecuteTemplate(w, "email_confirm", td)
|
||||
}
|
||||
|
||||
@@ -1,220 +0,0 @@
|
||||
package webcontroller
|
||||
|
||||
import (
|
||||
"fmt"
|
||||
"html"
|
||||
"html/template"
|
||||
"net/http"
|
||||
|
||||
"fornaxian.tech/pixeldrain_api_client/pixelapi"
|
||||
"github.com/Fornaxian/log"
|
||||
"github.com/julienschmidt/httprouter"
|
||||
)
|
||||
|
||||
// formAPIError makes it easier to display errors returned by the pixeldrain
|
||||
// API. TO make use of this function the form fields should be named exactly the
|
||||
// same as the API parameters
|
||||
func formAPIError(err error, f *Form) {
|
||||
fieldLabel := func(name string) string {
|
||||
for _, v := range f.Fields {
|
||||
if v.Name == name {
|
||||
return v.Label
|
||||
}
|
||||
}
|
||||
return name
|
||||
}
|
||||
|
||||
if err, ok := err.(pixelapi.Error); ok {
|
||||
if err.StatusCode == "multiple_errors" {
|
||||
for _, err := range err.Errors {
|
||||
// Modify the message to make it more user-friendly
|
||||
if err.StatusCode == "string_out_of_range" {
|
||||
err.Message = fmt.Sprintf(
|
||||
"%s is too long or too short. Should be between %v and %v characters. Current length: %v",
|
||||
fieldLabel(err.Extra["field"].(string)),
|
||||
err.Extra["min_len"],
|
||||
err.Extra["max_len"],
|
||||
err.Extra["len"],
|
||||
)
|
||||
} else if err.StatusCode == "field_contains_illegal_character" {
|
||||
err.Message = fmt.Sprintf(
|
||||
"Character '%v' is not allowed in %s",
|
||||
err.Extra["char"],
|
||||
fieldLabel(err.Extra["field"].(string)),
|
||||
)
|
||||
}
|
||||
|
||||
f.SubmitMessages = append(f.SubmitMessages, template.HTML(err.Message))
|
||||
}
|
||||
} else {
|
||||
f.SubmitMessages = append(f.SubmitMessages, template.HTML(err.Message))
|
||||
}
|
||||
} else {
|
||||
log.Error("Error submitting form: %s", err)
|
||||
f.SubmitMessages = []template.HTML{"Internal Server Error"}
|
||||
}
|
||||
}
|
||||
|
||||
func (wc *WebController) serveUserSettings(
|
||||
w http.ResponseWriter,
|
||||
r *http.Request,
|
||||
p httprouter.Params,
|
||||
) {
|
||||
w.Header().Set("X-Frame-Options", "DENY")
|
||||
td := wc.newTemplateData(w, r)
|
||||
|
||||
if !td.Authenticated {
|
||||
http.Redirect(w, r, "/login", http.StatusSeeOther)
|
||||
return
|
||||
}
|
||||
|
||||
td.Title = "Account settings"
|
||||
td.Other = struct {
|
||||
PasswordForm Form
|
||||
EmailForm Form
|
||||
UsernameForm Form
|
||||
}{
|
||||
PasswordForm: wc.passwordForm(td, r),
|
||||
EmailForm: wc.emailForm(td, r),
|
||||
UsernameForm: wc.usernameForm(td, r),
|
||||
}
|
||||
wc.templates.Get().ExecuteTemplate(w, "user_settings", td)
|
||||
}
|
||||
|
||||
func (wc *WebController) passwordForm(td *TemplateData, r *http.Request) (f Form) {
|
||||
f = Form{
|
||||
Name: "password_change",
|
||||
Title: "Change password",
|
||||
Fields: []Field{
|
||||
{
|
||||
Name: "old_password",
|
||||
Label: "Old Password",
|
||||
Type: FieldTypeCurrentPassword,
|
||||
}, {
|
||||
Name: "new_password",
|
||||
Label: "New Password",
|
||||
Type: FieldTypeNewPassword,
|
||||
}, {
|
||||
Name: "new_password2",
|
||||
Label: "New Password again",
|
||||
Description: "we need you to repeat your password so you " +
|
||||
"won't be locked out of your account if you make a " +
|
||||
"typing error",
|
||||
Type: FieldTypeNewPassword,
|
||||
},
|
||||
},
|
||||
SubmitLabel: "Submit",
|
||||
}
|
||||
|
||||
if f.ReadInput(r) {
|
||||
if f.FieldVal("new_password") != f.FieldVal("new_password2") {
|
||||
f.SubmitMessages = []template.HTML{
|
||||
"Password verification failed. Please enter the same " +
|
||||
"password in both new password fields"}
|
||||
return f
|
||||
}
|
||||
|
||||
// Passwords match, send the request and fill in the response in the
|
||||
// form
|
||||
if err := td.PixelAPI.PutUserPassword(
|
||||
f.FieldVal("old_password"),
|
||||
f.FieldVal("new_password"),
|
||||
); err != nil {
|
||||
formAPIError(err, &f)
|
||||
} else {
|
||||
// Request was a success
|
||||
f.SubmitSuccess = true
|
||||
f.SubmitMessages = []template.HTML{"Success! Your password has been updated"}
|
||||
}
|
||||
}
|
||||
return f
|
||||
}
|
||||
|
||||
func (wc *WebController) emailForm(td *TemplateData, r *http.Request) (f Form) {
|
||||
f = Form{
|
||||
Name: "email_change",
|
||||
Title: "Change e-mail address",
|
||||
Fields: []Field{
|
||||
{
|
||||
Name: "new_email",
|
||||
Label: "New e-mail address",
|
||||
Description: `we will send an e-mail to the new address to
|
||||
verify that it's real. The address will be saved once the
|
||||
link in the message is clicked. If the e-mail doesn't arrive
|
||||
right away please check your spam box too`,
|
||||
Type: FieldTypeEmail,
|
||||
},
|
||||
},
|
||||
SubmitLabel: "Submit",
|
||||
}
|
||||
|
||||
if f.ReadInput(r) {
|
||||
if err := td.PixelAPI.PutUserEmailReset(
|
||||
f.FieldVal("new_email"),
|
||||
false,
|
||||
); err != nil {
|
||||
formAPIError(err, &f)
|
||||
} else {
|
||||
// Request was a success
|
||||
f.SubmitSuccess = true
|
||||
f.SubmitMessages = []template.HTML{"Success! E-mail sent"}
|
||||
}
|
||||
}
|
||||
return f
|
||||
}
|
||||
|
||||
func (wc *WebController) serveEmailConfirm(
|
||||
w http.ResponseWriter,
|
||||
r *http.Request,
|
||||
p httprouter.Params,
|
||||
) {
|
||||
var err error
|
||||
var status string
|
||||
|
||||
err = wc.api.PutUserEmailResetConfirm(r.FormValue("key"))
|
||||
if err != nil && err.Error() == "not_found" {
|
||||
status = "not_found"
|
||||
} else if err != nil {
|
||||
log.Error("E-mail reset fail: %s", err)
|
||||
status = "internal_error"
|
||||
} else {
|
||||
status = "success"
|
||||
}
|
||||
|
||||
td := wc.newTemplateData(w, r)
|
||||
td.Other = status
|
||||
|
||||
wc.templates.Get().ExecuteTemplate(w, "email_confirm", td)
|
||||
}
|
||||
|
||||
func (wc *WebController) usernameForm(td *TemplateData, r *http.Request) (f Form) {
|
||||
f = Form{
|
||||
Name: "username_change",
|
||||
Title: "Change username",
|
||||
Fields: []Field{
|
||||
{
|
||||
Name: "new_username",
|
||||
Label: "New username",
|
||||
Description: "changing your username also changes the name " +
|
||||
"used to log in. If you forget your username you can " +
|
||||
"still log in using your e-mail address if you have one " +
|
||||
"configured",
|
||||
Type: FieldTypeUsername,
|
||||
},
|
||||
},
|
||||
SubmitLabel: "Submit",
|
||||
}
|
||||
|
||||
if f.ReadInput(r) {
|
||||
if err := td.PixelAPI.PutUserUsername(f.FieldVal("new_username")); err != nil {
|
||||
formAPIError(err, &f)
|
||||
} else {
|
||||
// Request was a success
|
||||
f.SubmitSuccess = true
|
||||
f.SubmitMessages = []template.HTML{template.HTML(
|
||||
"Success! You are now " + html.EscapeString(f.FieldVal("new_username")),
|
||||
)}
|
||||
}
|
||||
}
|
||||
return f
|
||||
}
|
||||
@@ -159,7 +159,6 @@ func New(
|
||||
{PST, "password_reset" /* */, wc.serveForm(wc.passwordResetForm, handlerOpts{NoEmbed: true})},
|
||||
{GET, "logout" /* */, wc.serveTemplate("logout", handlerOpts{Auth: true, NoEmbed: true})},
|
||||
{PST, "logout" /* */, wc.serveLogout},
|
||||
{GET, "user_old" /* */, wc.serveTemplate("user_home", handlerOpts{Auth: true})},
|
||||
{GET, "user/files" /* */, wc.serveTemplate("user_files", handlerOpts{Auth: true})},
|
||||
{GET, "user/lists" /* */, wc.serveTemplate("user_lists", handlerOpts{Auth: true})},
|
||||
{GET, "user/buckets" /* */, wc.serveTemplate("user_buckets", handlerOpts{Auth: true})},
|
||||
@@ -168,11 +167,9 @@ func New(
|
||||
{GET, "user/export/lists" /**/, wc.serveUserExportLists},
|
||||
|
||||
// User account settings
|
||||
{GET, "user" /* */, wc.serveTemplate("user_home_svelte", handlerOpts{Auth: true})},
|
||||
{GET, "user/settings" /* */, wc.serveTemplate("user_home_svelte", handlerOpts{Auth: true})},
|
||||
{GET, "user/api_keys" /* */, wc.serveTemplate("user_home_svelte", handlerOpts{Auth: true})},
|
||||
{GET, "user/settings_old" /* */, wc.serveUserSettings},
|
||||
{PST, "user/settings_old" /* */, wc.serveUserSettings},
|
||||
{GET, "user" /* */, wc.serveTemplate("user_home", handlerOpts{Auth: true})},
|
||||
{GET, "user/settings" /* */, wc.serveTemplate("user_home", handlerOpts{Auth: true})},
|
||||
{GET, "user/api_keys" /* */, wc.serveTemplate("user_home", handlerOpts{Auth: true})},
|
||||
{GET, "user/confirm_email" /* */, wc.serveEmailConfirm},
|
||||
{GET, "user/password_reset_confirm" /**/, wc.serveForm(wc.passwordResetConfirmForm, handlerOpts{NoEmbed: true})},
|
||||
{PST, "user/password_reset_confirm" /**/, wc.serveForm(wc.passwordResetConfirmForm, handlerOpts{NoEmbed: true})},
|
||||
@@ -192,8 +189,6 @@ func New(
|
||||
{GET, "admin/ip_bans" /* */, wc.serveTemplate("admin", handlerOpts{Auth: true})},
|
||||
{GET, "admin/globals" /* */, wc.serveForm(wc.adminGlobalsForm, handlerOpts{Auth: true})},
|
||||
{PST, "admin/globals" /* */, wc.serveForm(wc.adminGlobalsForm, handlerOpts{Auth: true})},
|
||||
{GET, "admin/abuse" /* */, wc.serveForm(wc.adminAbuseForm, handlerOpts{Auth: true})},
|
||||
{PST, "admin/abuse" /* */, wc.serveForm(wc.adminAbuseForm, handlerOpts{Auth: true})},
|
||||
|
||||
// Advertising related
|
||||
{GET, "click/:id" /* */, wc.serveAdClick},
|
||||
|
||||
Reference in New Issue
Block a user