2021-07-20 22:04:03 +00:00
|
|
|
package handlers
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"net/http"
|
2021-10-13 16:41:41 +00:00
|
|
|
"strings"
|
2021-07-20 22:04:03 +00:00
|
|
|
"time"
|
|
|
|
|
|
2022-01-22 19:54:41 +00:00
|
|
|
"github.com/authorizerdev/authorizer/server/cookie"
|
2021-07-23 16:27:44 +00:00
|
|
|
"github.com/authorizerdev/authorizer/server/db"
|
2022-01-22 19:54:41 +00:00
|
|
|
"github.com/authorizerdev/authorizer/server/sessionstore"
|
|
|
|
|
"github.com/authorizerdev/authorizer/server/token"
|
2021-07-23 16:27:44 +00:00
|
|
|
"github.com/authorizerdev/authorizer/server/utils"
|
2021-07-20 22:04:03 +00:00
|
|
|
"github.com/gin-gonic/gin"
|
|
|
|
|
)
|
|
|
|
|
|
2022-01-17 06:02:13 +00:00
|
|
|
// VerifyEmailHandler handles the verify email route.
|
|
|
|
|
// It verifies email based on JWT token in query string
|
2021-07-23 08:55:32 +00:00
|
|
|
func VerifyEmailHandler() gin.HandlerFunc {
|
2021-07-20 22:04:03 +00:00
|
|
|
return func(c *gin.Context) {
|
|
|
|
|
errorRes := gin.H{
|
|
|
|
|
"message": "invalid token",
|
|
|
|
|
}
|
2022-01-22 19:54:41 +00:00
|
|
|
tokenInQuery := c.Query("token")
|
|
|
|
|
if tokenInQuery == "" {
|
2021-07-20 22:04:03 +00:00
|
|
|
c.JSON(400, errorRes)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2022-01-22 19:54:41 +00:00
|
|
|
verificationRequest, err := db.Provider.GetVerificationRequestByToken(tokenInQuery)
|
2021-07-20 22:04:03 +00:00
|
|
|
if err != nil {
|
|
|
|
|
c.JSON(400, errorRes)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// verify if token exists in db
|
2022-02-12 10:24:23 +00:00
|
|
|
claim, err := token.ParseJWTToken(tokenInQuery)
|
2021-07-20 22:04:03 +00:00
|
|
|
if err != nil {
|
|
|
|
|
c.JSON(400, errorRes)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2022-02-12 10:24:23 +00:00
|
|
|
user, err := db.Provider.GetUserByEmail(claim["email"].(string))
|
2021-07-20 22:04:03 +00:00
|
|
|
if err != nil {
|
|
|
|
|
c.JSON(400, gin.H{
|
|
|
|
|
"message": err.Error(),
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// update email_verified_at in users table
|
2021-12-22 10:08:51 +00:00
|
|
|
if user.EmailVerifiedAt == nil {
|
|
|
|
|
now := time.Now().Unix()
|
|
|
|
|
user.EmailVerifiedAt = &now
|
2022-01-21 08:04:04 +00:00
|
|
|
db.Provider.UpdateUser(user)
|
2021-11-11 23:52:03 +00:00
|
|
|
}
|
2021-07-20 22:04:03 +00:00
|
|
|
// delete from verification table
|
2022-01-21 08:04:04 +00:00
|
|
|
db.Provider.DeleteVerificationRequest(verificationRequest)
|
2021-07-20 22:04:03 +00:00
|
|
|
|
2021-10-13 16:41:41 +00:00
|
|
|
roles := strings.Split(user.Roles, ",")
|
2022-01-22 19:54:41 +00:00
|
|
|
authToken, err := token.CreateAuthToken(user, roles)
|
|
|
|
|
if err != nil {
|
|
|
|
|
c.JSON(400, gin.H{
|
|
|
|
|
"message": err.Error(),
|
|
|
|
|
})
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
sessionstore.SetUserSession(user.ID, authToken.FingerPrint, authToken.RefreshToken.Token)
|
|
|
|
|
cookie.SetCookie(c, authToken.AccessToken.Token, authToken.RefreshToken.Token, authToken.FingerPrintHash)
|
2022-01-17 06:02:13 +00:00
|
|
|
utils.SaveSessionInDB(user.ID, c)
|
2022-01-22 19:54:41 +00:00
|
|
|
|
2022-02-12 10:24:23 +00:00
|
|
|
c.Redirect(http.StatusTemporaryRedirect, claim["redirect_url"].(string))
|
2021-07-20 22:04:03 +00:00
|
|
|
}
|
|
|
|
|
}
|
