Cloak/internal/server/usermanager/localmanager.go

package usermanager

import (
	"encoding/binary"
	log "github.com/sirupsen/logrus"
	"net/http"
	"time"

	"github.com/boltdb/bolt"
	gmux "github.com/gorilla/mux"
)

var Uint32 = binary.BigEndian.Uint32
var Uint64 = binary.BigEndian.Uint64
var PutUint32 = binary.BigEndian.PutUint32
var PutUint64 = binary.BigEndian.PutUint64

func i64ToB(value int64) []byte {
	oct := make([]byte, 8)
	PutUint64(oct, uint64(value))
	return oct
}
func i32ToB(value int32) []byte {
	nib := make([]byte, 4)
	PutUint32(nib, uint32(value))
	return nib
}

type localManager struct {
	db     *bolt.DB
	Router *gmux.Router
}

func MakeLocalManager(dbPath string) (*localManager, error) {
	db, err := bolt.Open(dbPath, 0600, nil)
	if err != nil {
		return nil, err
	}
	ret := &localManager{
		db: db,
	}
	ret.Router = ret.registerMux()
	return ret, nil
}

func corsMiddleware(next http.Handler) http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		w.Header().Set("Access-Control-Allow-Origin", "*")
		next.ServeHTTP(w, r)
	})
}

func (manager *localManager) registerMux() *gmux.Router {
	r := gmux.NewRouter()
	r.HandleFunc("/admin/users", manager.listAllUsersHlr).Methods("GET")
	r.HandleFunc("/admin/users/{UID}", manager.getUserInfoHlr).Methods("GET")
	r.HandleFunc("/admin/users/{UID}", manager.writeUserInfoHlr).Methods("POST")
	r.HandleFunc("/admin/users/{UID}", manager.deleteUserHlr).Methods("DELETE")
	r.Methods("OPTIONS").HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		w.Header().Set("Access-Control-Allow-Methods", "GET,POST,DELETE,OPTIONS")
	})
	r.Use(corsMiddleware)
	return r
}

func (manager *localManager) AuthenticateUser(UID []byte) (int64, int64, error) {
	var upRate, downRate, upCredit, downCredit, expiryTime int64
	err := manager.db.View(func(tx *bolt.Tx) error {
		bucket := tx.Bucket(UID)
		if bucket == nil {
			return ErrUserNotFound
		}
		upRate = int64(Uint64(bucket.Get([]byte("UpRate"))))
		downRate = int64(Uint64(bucket.Get([]byte("DownRate"))))
		upCredit = int64(Uint64(bucket.Get([]byte("UpCredit"))))
		downCredit = int64(Uint64(bucket.Get([]byte("DownCredit"))))
		expiryTime = int64(Uint64(bucket.Get([]byte("ExpiryTime"))))
		return nil
	})
	if err != nil {
		return 0, 0, err
	}
	if upCredit <= 0 {
		return 0, 0, ErrNoUpCredit
	}
	if downCredit <= 0 {
		return 0, 0, ErrNoDownCredit
	}
	if expiryTime < time.Now().Unix() {
		return 0, 0, ErrUserExpired
	}

	return upRate, downRate, nil
}

func (manager *localManager) AuthoriseNewSession(UID []byte, numExistingSessions int) error {
	var arrUID [16]byte
	copy(arrUID[:], UID)
	var sessionsCap int
	var upCredit, downCredit, expiryTime int64
	err := manager.db.View(func(tx *bolt.Tx) error {
		bucket := tx.Bucket(arrUID[:])
		if bucket == nil {
			return ErrUserNotFound
		}
		sessionsCap = int(Uint32(bucket.Get([]byte("SessionsCap"))))
		upCredit = int64(Uint64(bucket.Get([]byte("UpCredit"))))
		downCredit = int64(Uint64(bucket.Get([]byte("DownCredit"))))
		expiryTime = int64(Uint64(bucket.Get([]byte("ExpiryTime"))))
		return nil
	})
	if err != nil {
		return err
	}
	if upCredit <= 0 {
		return ErrNoUpCredit
	}
	if downCredit <= 0 {
		return ErrNoDownCredit
	}
	if expiryTime < time.Now().Unix() {
		return ErrUserExpired
	}
	//user.sessionsM.RLock()
	if numExistingSessions >= sessionsCap {
		//user.sessionsM.RUnlock()
		return ErrSessionsCapReached
	}
	//user.sessionsM.RUnlock()
	return nil
}

func (manager *localManager) UploadStatus(uploads []StatusUpdate) ([]StatusResponse, error) {
	var responses []StatusResponse
	err := manager.db.Update(func(tx *bolt.Tx) error {
		for _, status := range uploads {
			var resp StatusResponse
			bucket := tx.Bucket(status.UID)
			if bucket == nil {
				resp = StatusResponse{
					status.UID,
					TERMINATE,
					"User no longer exists",
				}
				responses = append(responses, resp)
				continue
			}

			oldUp := int64(Uint64(bucket.Get([]byte("UpCredit"))))
			newUp := oldUp - status.UpUsage
			if newUp <= 0 {
				resp = StatusResponse{
					status.UID,
					TERMINATE,
					"No upload credit left",
				}
				responses = append(responses, resp)
				continue
			}
			err := bucket.Put([]byte("UpCredit"), i64ToB(newUp))
			if err != nil {
				log.Error(err)
				continue
			}

			oldDown := int64(Uint64(bucket.Get([]byte("DownCredit"))))
			newDown := oldDown - status.DownUsage
			if newDown <= 0 {
				resp = StatusResponse{
					status.UID,
					TERMINATE,
					"No download credit left",
				}
				responses = append(responses, resp)
				continue
			}
			err = bucket.Put([]byte("DownCredit"), i64ToB(newDown))
			if err != nil {
				log.Error(err)
				continue
			}

			expiry := int64(Uint64(bucket.Get([]byte("ExpiryTime"))))
			if time.Now().Unix() > expiry {
				resp = StatusResponse{
					status.UID,
					TERMINATE,
					"User has expired",
				}
				responses = append(responses, resp)
				continue
			}
		}
		return nil
	})
	return responses, err
}

func (manager *localManager) Close() error {
	return manager.db.Close()
}
Refactor usermanager 2019-08-03 10:17:09 +00:00			`package usermanager`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00
			`import (`
			`"encoding/binary"`
Improve logging 2019-08-02 14:45:33 +00:00			`log "github.com/sirupsen/logrus"`
Add CORS header through middleware 2019-07-25 12:03:32 +00:00			`"net/http"`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`"time"`

			`"github.com/boltdb/bolt"`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`gmux "github.com/gorilla/mux"`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`)`

			`var Uint32 = binary.BigEndian.Uint32`
			`var Uint64 = binary.BigEndian.Uint64`
			`var PutUint32 = binary.BigEndian.PutUint32`
			`var PutUint64 = binary.BigEndian.PutUint64`

Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`func i64ToB(value int64) []byte {`
			`oct := make([]byte, 8)`
			`PutUint64(oct, uint64(value))`
			`return oct`
			`}`
			`func i32ToB(value int32) []byte {`
			`nib := make([]byte, 4)`
			`PutUint32(nib, uint32(value))`
			`return nib`
			`}`

Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`type localManager struct {`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`db *bolt.DB`
			`Router *gmux.Router`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`}`

			`func MakeLocalManager(dbPath string) (*localManager, error) {`
			`db, err := bolt.Open(dbPath, 0600, nil)`
			`if err != nil {`
			`return nil, err`
			`}`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`ret := &localManager{`
			`db: db,`
			`}`
			`ret.Router = ret.registerMux()`
			`return ret, nil`
			`}`

Add CORS header through middleware 2019-07-25 12:03:32 +00:00			`func corsMiddleware(next http.Handler) http.Handler {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`w.Header().Set("Access-Control-Allow-Origin", "*")`
			`next.ServeHTTP(w, r)`
			`})`
			`}`

Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`func (manager localManager) registerMux() gmux.Router {`
			`r := gmux.NewRouter()`
			`r.HandleFunc("/admin/users", manager.listAllUsersHlr).Methods("GET")`
Rename handlers 2019-07-25 12:09:36 +00:00			`r.HandleFunc("/admin/users/{UID}", manager.getUserInfoHlr).Methods("GET")`
			`r.HandleFunc("/admin/users/{UID}", manager.writeUserInfoHlr).Methods("POST")`
			`r.HandleFunc("/admin/users/{UID}", manager.deleteUserHlr).Methods("DELETE")`
Fix CORS and POST handler 2019-07-30 22:49:22 +00:00			`r.Methods("OPTIONS").HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`w.Header().Set("Access-Control-Allow-Methods", "GET,POST,DELETE,OPTIONS")`
			`})`
Add CORS header through middleware 2019-07-25 12:03:32 +00:00			`r.Use(corsMiddleware)`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`return r`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`}`

Refactor usermanager 2019-08-03 10:17:09 +00:00			`func (manager *localManager) AuthenticateUser(UID []byte) (int64, int64, error) {`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`var upRate, downRate, upCredit, downCredit, expiryTime int64`
			`err := manager.db.View(func(tx *bolt.Tx) error {`
			`bucket := tx.Bucket(UID)`
			`if bucket == nil {`
			`return ErrUserNotFound`
			`}`
			`upRate = int64(Uint64(bucket.Get([]byte("UpRate"))))`
			`downRate = int64(Uint64(bucket.Get([]byte("DownRate"))))`
			`upCredit = int64(Uint64(bucket.Get([]byte("UpCredit"))))`
			`downCredit = int64(Uint64(bucket.Get([]byte("DownCredit"))))`
			`expiryTime = int64(Uint64(bucket.Get([]byte("ExpiryTime"))))`
			`return nil`
			`})`
			`if err != nil {`
			`return 0, 0, err`
			`}`
			`if upCredit <= 0 {`
			`return 0, 0, ErrNoUpCredit`
			`}`
			`if downCredit <= 0 {`
			`return 0, 0, ErrNoDownCredit`
			`}`
			`if expiryTime < time.Now().Unix() {`
			`return 0, 0, ErrUserExpired`
			`}`

			`return upRate, downRate, nil`
			`}`

Refactor usermanager 2019-08-03 10:17:09 +00:00			`func (manager *localManager) AuthoriseNewSession(UID []byte, numExistingSessions int) error {`
			`var arrUID [16]byte`
			`copy(arrUID[:], UID)`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`var sessionsCap int`
			`var upCredit, downCredit, expiryTime int64`
			`err := manager.db.View(func(tx *bolt.Tx) error {`
Refactor usermanager 2019-08-03 10:17:09 +00:00			`bucket := tx.Bucket(arrUID[:])`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`if bucket == nil {`
			`return ErrUserNotFound`
			`}`
			`sessionsCap = int(Uint32(bucket.Get([]byte("SessionsCap"))))`
			`upCredit = int64(Uint64(bucket.Get([]byte("UpCredit"))))`
			`downCredit = int64(Uint64(bucket.Get([]byte("DownCredit"))))`
			`expiryTime = int64(Uint64(bucket.Get([]byte("ExpiryTime"))))`
			`return nil`
			`})`
			`if err != nil {`
			`return err`
			`}`
			`if upCredit <= 0 {`
			`return ErrNoUpCredit`
			`}`
			`if downCredit <= 0 {`
			`return ErrNoDownCredit`
			`}`
			`if expiryTime < time.Now().Unix() {`
			`return ErrUserExpired`
			`}`
			`//user.sessionsM.RLock()`
Refactor usermanager 2019-08-03 10:17:09 +00:00			`if numExistingSessions >= sessionsCap {`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`//user.sessionsM.RUnlock()`
			`return ErrSessionsCapReached`
			`}`
			`//user.sessionsM.RUnlock()`
			`return nil`
			`}`

Refactor usermanager 2019-08-03 10:17:09 +00:00			`func (manager *localManager) UploadStatus(uploads []StatusUpdate) ([]StatusResponse, error) {`
			`var responses []StatusResponse`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`err := manager.db.Update(func(tx *bolt.Tx) error {`
			`for _, status := range uploads {`
Refactor usermanager 2019-08-03 10:17:09 +00:00			`var resp StatusResponse`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`bucket := tx.Bucket(status.UID)`
			`if bucket == nil {`
Refactor usermanager 2019-08-03 10:17:09 +00:00			`resp = StatusResponse{`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`status.UID,`
			`TERMINATE,`
			`"User no longer exists",`
			`}`
			`responses = append(responses, resp)`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`continue`
			`}`
Add server response to status update 2019-07-24 14:25:09 +00:00
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`oldUp := int64(Uint64(bucket.Get([]byte("UpCredit"))))`
Refactor usermanager 2019-08-03 10:17:09 +00:00			`newUp := oldUp - status.UpUsage`
Add server response to status update 2019-07-24 14:25:09 +00:00			`if newUp <= 0 {`
Refactor usermanager 2019-08-03 10:17:09 +00:00			`resp = StatusResponse{`
Add server response to status update 2019-07-24 14:25:09 +00:00			`status.UID,`
			`TERMINATE,`
			`"No upload credit left",`
			`}`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`responses = append(responses, resp)`
			`continue`
			`}`
			`err := bucket.Put([]byte("UpCredit"), i64ToB(newUp))`
			`if err != nil {`
Improve logging 2019-08-02 14:45:33 +00:00			`log.Error(err)`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`continue`
Add server response to status update 2019-07-24 14:25:09 +00:00			`}`

Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`oldDown := int64(Uint64(bucket.Get([]byte("DownCredit"))))`
Refactor usermanager 2019-08-03 10:17:09 +00:00			`newDown := oldDown - status.DownUsage`
Add server response to status update 2019-07-24 14:25:09 +00:00			`if newDown <= 0 {`
Refactor usermanager 2019-08-03 10:17:09 +00:00			`resp = StatusResponse{`
Add server response to status update 2019-07-24 14:25:09 +00:00			`status.UID,`
			`TERMINATE,`
			`"No download credit left",`
			`}`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`responses = append(responses, resp)`
			`continue`
			`}`
			`err = bucket.Put([]byte("DownCredit"), i64ToB(newDown))`
			`if err != nil {`
Improve logging 2019-08-02 14:45:33 +00:00			`log.Error(err)`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`continue`
Add server response to status update 2019-07-24 14:25:09 +00:00			`}`

			`expiry := int64(Uint64(bucket.Get([]byte("ExpiryTime"))))`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`if time.Now().Unix() > expiry {`
Refactor usermanager 2019-08-03 10:17:09 +00:00			`resp = StatusResponse{`
Add server response to status update 2019-07-24 14:25:09 +00:00			`status.UID,`
			`TERMINATE,`
			`"User has expired",`
			`}`
			`responses = append(responses, resp)`
Implement admin control through a tunneled RESTful API 2019-07-25 11:17:29 +00:00			`continue`
Add server response to status update 2019-07-24 14:25:09 +00:00			`}`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`}`
			`return nil`
			`})`
Add server response to status update 2019-07-24 14:25:09 +00:00			`return responses, err`
Rewrite user authentication, credit bookkeeping and db interaction 2019-07-22 12:42:39 +00:00			`}`
Add user bypass feature 2019-08-04 20:10:59 +00:00
			`func (manager *localManager) Close() error {`
			`return manager.db.Close()`
			`}`