package main
import (
"context"
"database/sql"
"embed"
"errors"
"log"
"net/http"
"github.com/Masterminds/squirrel"
"github.com/jmoiron/sqlx"
_ "modernc.org/sqlite" // Imported for side effects: registers DB driver
"git.c3pb.de/gbe/invinoveritas/auth"
)
//go:embed templates/*.tpl
var templateFS embed.FS
//go:embed static/*
var staticFS embed.FS
type Handler struct {
db *sqlx.DB
}
func httpError(w http.ResponseWriter, msg string, err error, status int) {
if err != nil {
msg += ": " + err.Error()
}
log.Println(msg)
http.Error(w, msg, status)
}
type authProvider struct {
db *sqlx.DB
}
func (a authProvider) Valid(ctx context.Context, user, pass string) (bool, error) {
query, args, err := squirrel.Select("password").
From("users").
Where(squirrel.Eq{"name": user}).
ToSql()
if err != nil {
return false, err
}
var dbPass string
err = a.db.GetContext(ctx, &dbPass, query, args...)
if errors.Is(err, sql.ErrNoRows) {
// User not found isn't an error, it's just an invalid auth.
return false, nil
}
if err != nil {
return false, err
}
if dbPass == pass {
return true, nil
}
return false, nil
}
func logRequest(r *http.Request) {
log.Println("handling", r.Method, r.URL, "from", r.RemoteAddr, "by", auth.User(r))
}
func main() {
db, err := sqlx.Open("sqlite", "vino.sqlite")
if err != nil {
log.Fatalln("can't open DB:", err)
}
defer db.Close()
err = initDB(db)
if err != nil {
log.Fatalln("can't initialize DB:", err)
}
http.HandleFunc("/favicon.ico", http.NotFound)
http.Handle("/static/", http.FileServer(http.FS(staticFS)))
handler := Handler{
db: db,
}
ap := authProvider{
db: db,
}
http.HandleFunc("/details/img", auth.Require(http.HandlerFunc(handler.img), ap))
http.HandleFunc("/details/", auth.Require(http.HandlerFunc(handler.details), ap))
http.HandleFunc("/", auth.Require(http.HandlerFunc(handler.index), ap))
const listenAddr = ":7878"
log.Printf("here we go, listening on http://%s", listenAddr)
err = http.ListenAndServe(listenAddr, nil)
if err != nil {
log.Fatalln("http handler failed:", err)
}
}