OMG all the things are horrible

2022-12-07 21:26:18 -05:00 · 2022-12-07 21:26:18 -05:00 · c5b6971447
commit c5b6971447
parent 8dcb4be8a8
5 changed files with 119 additions and 52 deletions
--- a/auth/auth.go
+++ b/auth/auth.go
@ -16,6 +16,7 @@ type Auther interface {
 	AuthenticateToken(token string) (*User, error)
 	CreateToken(user *User) (string, error)
 	RemoveToken(user *User) error
+	ChangeSettings(user *User) error

 	// Authorize returns nil if the given user has access to the given topic using the desired
 	// permission. The user param may be nil to signal an anonymous user.
@ -60,12 +61,29 @@ type Manager interface {

 // User is a struct that represents a user
 type User struct {
-	Name     string
-	Hash     string // password hash (bcrypt)
-	Token    string // Only set if token was used to log in
-	Role     Role
-	Grants   []Grant
-	Language string
+	Name   string
+	Hash   string // password hash (bcrypt)
+	Token  string // Only set if token was used to log in
+	Role   Role
+	Grants []Grant
+	Prefs  *UserPrefs
+}
+
+type UserPrefs struct {
+	Language      string                 `json:"language,omitempty"`
+	Notification  *UserNotificationPrefs `json:"notification,omitempty"`
+	Subscriptions []*UserSubscription    `json:"subscriptions,omitempty"`
+}
+
+type UserSubscription struct {
+	BaseURL string `json:"base_url"`
+	Topic   string `json:"topic"`
+}
+
+type UserNotificationPrefs struct {
+	Sound       string `json:"sound"`
+	MinPriority string `json:"min_priority"`
+	DeleteAfter int    `json:"delete_after"`
 }

 // Grant is a struct that represents an access control entry to a topic
--- a/auth/auth_sqlite.go
+++ b/auth/auth_sqlite.go
@ -2,6 +2,7 @@ package auth

 import (
 	"database/sql"
+	"encoding/json"
 	"errors"
 	"fmt"
 	_ "github.com/mattn/go-sqlite3" // SQLite driver
@ -32,10 +33,7 @@ const (
 			user TEXT NOT NULL,
 			pass TEXT NOT NULL,
 			role TEXT NOT NULL,
-			language TEXT,
-			notification_sound TEXT,
-			notification_min_priority INT,
-			notification_delete_after INT,
+			settings JSON,
 		    FOREIGN KEY (plan_id) REFERENCES plan (id)
 		);
 		CREATE UNIQUE INDEX idx_user ON user (user);
@ -46,13 +44,7 @@ const (
 			write INT NOT NULL,
 			PRIMARY KEY (user_id, topic),
 			FOREIGN KEY (user_id) REFERENCES user (id)
-		);
-		CREATE TABLE IF NOT EXISTS user_subscription (
-			user_id INT NOT NULL,		
-			base_url TEXT NOT NULL,	
-			topic TEXT NOT NULL,
-			PRIMARY KEY (user_id, base_url, topic)
-		);
+		);		
 		CREATE TABLE IF NOT EXISTS user_token (
 			user_id INT NOT NULL,
 			token TEXT NOT NULL,
@ -68,12 +60,12 @@ const (
 		COMMIT;
 	`
 	selectUserByNameQuery = `
-		SELECT user, pass, role, language 
+		SELECT user, pass, role, settings 
 		FROM user 
 		WHERE user = ?
 	`
 	selectUserByTokenQuery = `
-		SELECT user, pass, role, language 
+		SELECT user, pass, role, settings 
 		FROM user
 		JOIN user_token on user.id = user_token.user_id
 		WHERE token = ?
@ -101,8 +93,9 @@ const (
 	deleteUserAccessQuery  = `DELETE FROM user_access WHERE user_id = (SELECT id FROM user WHERE user = ?)`
 	deleteTopicAccessQuery = `DELETE FROM user_access WHERE user_id = (SELECT id FROM user WHERE user = ?) AND topic = ?`

-	insertTokenQuery = `INSERT INTO user_token (user_id, token, expires) VALUES ((SELECT id FROM user WHERE user = ?), ?, ?)`
-	deleteTokenQuery = `DELETE FROM user_token WHERE user_id = (SELECT id FROM user WHERE user = ?) AND token = ?`
+	insertTokenQuery        = `INSERT INTO user_token (user_id, token, expires) VALUES ((SELECT id FROM user WHERE user = ?), ?, ?)`
+	deleteTokenQuery        = `DELETE FROM user_token WHERE user_id = (SELECT id FROM user WHERE user = ?) AND token = ?`
+	updateUserSettingsQuery = `UPDATE user SET settings = ? WHERE user = ?`
 )

 // Schema management queries
@ -186,6 +179,17 @@ func (a *SQLiteAuth) RemoveToken(user *User) error {
 	return nil
 }

+func (a *SQLiteAuth) ChangeSettings(user *User) error {
+	settings, err := json.Marshal(user.Prefs)
+	if err != nil {
+		return err
+	}
+	if _, err := a.db.Exec(updateUserSettingsQuery, string(settings), user.Name); err != nil {
+		return err
+	}
+	return nil
+}
+
 // Authorize returns nil if the given user has access to the given topic using the desired
 // permission. The user param may be nil to signal an anonymous user.
 func (a *SQLiteAuth) Authorize(user *User, topic string, perm Permission) error {
@ -314,11 +318,11 @@ func (a *SQLiteAuth) userByToken(token string) (*User, error) {
 func (a *SQLiteAuth) readUser(rows *sql.Rows) (*User, error) {
 	defer rows.Close()
 	var username, hash, role string
-	var language sql.NullString
+	var prefs sql.NullString
 	if !rows.Next() {
 		return nil, ErrNotFound
 	}
-	if err := rows.Scan(&username, &hash, &role, &language); err != nil {
+	if err := rows.Scan(&username, &hash, &role, &prefs); err != nil {
 		return nil, err
 	} else if err := rows.Err(); err != nil {
 		return nil, err
@ -327,13 +331,19 @@ func (a *SQLiteAuth) readUser(rows *sql.Rows) (*User, error) {
 	if err != nil {
 		return nil, err
 	}
-	return &User{
-		Name:     username,
-		Hash:     hash,
-		Role:     Role(role),
-		Grants:   grants,
-		Language: language.String,
-	}, nil
+	user := &User{
+		Name:   username,
+		Hash:   hash,
+		Role:   Role(role),
+		Grants: grants,
+	}
+	if prefs.Valid {
+		user.Prefs = &UserPrefs{}
+		if err := json.Unmarshal([]byte(prefs.String), user.Prefs); err != nil {
+			return nil, err
+		}
+	}
+	return user, nil
 }

 func (a *SQLiteAuth) everyoneUser() (*User, error) {