JakeHillion/storj
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
3a714cefcf
storj/satellite/console/users.go

247 lines
8.6 KiB
Go
Raw Normal View History

Add console to satellite peer (#1120)
2019-01-24 16:26:36 +00:00
// Copyright (C) 2019 Storj Labs, Inc.
V3-664 Extend User repository. Reimplemented with dbx (#591) * V3-664 Extend User repository. Reimplemented with dbx * structure updated * redundant packages removed, structure simplified * fixing goimports * removed constuctor from user struct * separated types declarations from database file * test file renamed * fixes according to review * fixing goimports * fixing goimports
2018-11-08 14:19:42 +00:00
// See LICENSE for copying information.
Renaming and moving pkg/satellite to satellite/console (#1054) * [WIP] V3-853 Merge the satellite DB into the master database * Removing consoleDB from satelliteDB * Fixing tests for satellite/console * fixing linter * sorting imports in satellite/console * fixing console config * fixing linter
2019-01-15 13:03:24 +00:00
package console
V3-664 Extend User repository. Reimplemented with dbx (#591) * V3-664 Extend User repository. Reimplemented with dbx * structure updated * redundant packages removed, structure simplified * fixing goimports * removed constuctor from user struct * separated types declarations from database file * test file renamed * fixes according to review * fixing goimports * fixing goimports
2018-11-08 14:19:42 +00:00
import (
"context"
satellite user validation (#729)
2018-11-29 16:23:44 +00:00
"net/mail"
V3-664 Extend User repository. Reimplemented with dbx (#591) * V3-664 Extend User repository. Reimplemented with dbx * structure updated * redundant packages removed, structure simplified * fixing goimports * removed constuctor from user struct * separated types declarations from database file * test file renamed * fixes according to review * fixing goimports * fixing goimports
2018-11-08 14:19:42 +00:00
"time"
satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(*Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(*Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(*RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(*Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(*Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(*conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387
2022-02-23 16:02:45 +00:00
"github.com/zeebo/errs"
satellite/{console,satellitedb}: move project limits from config file to DB to keep limits on a per user basis To allow for changing limits for new users, while leaving existing users limits as they are, we must store the project limits for each user. We currently store the limit for the number of projects a user can create in the user DB table. This change would also store the project bandwidth and storage limits in the same table. Change-Id: If8d79b39de020b969f3445ef2fcc370e51d706c6
2021-11-01 15:27:32 +00:00
"storj.io/common/memory"
all: switch to storj.io/common/uuid Change-Id: I178a0a8dac691e57bce317b91411292fb3c40c9f
2020-03-30 10:08:50 +01:00
"storj.io/common/uuid"
satellite/console,web/satellite: invalidate sessions after inactivity Sessions now expire after a much shorter amount of time, requiring clients to issue API requests for session extension. This is handled behind the scenes as the user interacts with the page, but once session expiration is imminent, a modal appears which informs the user of his inactivity and presents him with the choice of loging out or preserving his session. Change-Id: I68008d45859c814a835d65d882ad5ad2199d618e
2022-07-19 10:26:18 +01:00
"storj.io/storj/satellite/console/consoleauth"
V3-664 Extend User repository. Reimplemented with dbx (#591) * V3-664 Extend User repository. Reimplemented with dbx * structure updated * redundant packages removed, structure simplified * fixing goimports * removed constuctor from user struct * separated types declarations from database file * test file renamed * fixes according to review * fixing goimports * fixing goimports
2018-11-08 14:19:42 +00:00
)
// Users exposes methods to manage User table in database.
all: add archview annotations (#2964)
2019-09-10 14:24:16 +01:00
//
// architecture: Database
V3-664 Extend User repository. Reimplemented with dbx (#591) * V3-664 Extend User repository. Reimplemented with dbx * structure updated * redundant packages removed, structure simplified * fixing goimports * removed constuctor from user struct * separated types declarations from database file * test file renamed * fixes according to review * fixing goimports * fixing goimports
2018-11-08 14:19:42 +00:00
type Users interface {
V3-1091 Extend Users table with IsActive functionality (#1170) * V3-1091 Extend Users table with IsActive functionality * fixed review comments
2019-01-30 15:04:40 +00:00
// Get is a method for querying user from the database by id.
Get(ctx context.Context, id uuid.UUID) (*User, error)
web/satellite: create chore that will resend verification emails to unverified users We want to remind unverified users to verify their emails: once after 24 hours has passed and again after 5 days has passed. Add mailservice.Service to satellite core because it is needed by the chore for sending emails. To add the mailservice.Service to the core, we create a helper function in satellite/peer.go to avoid duplicating the code in both api.go and core.go. In addition to the chore, this change adds methods to users.DB to get unverified users in need of reminder. Change-Id: I4e515bdf43f922788b4f965b2efb34fa32288bd1
2022-01-06 19:46:53 +00:00
// GetUnverifiedNeedingReminder gets unverified users needing a reminder to verify their email.
satellite/console: add cutoff to email reminders There are multiple entries in the users table with the same email address. This is because in the past users were able to register multiple times if the email was not verified. This is no longer the case. If a user tries to register with an unverified email already in the DB, we send a verification email instead of creating another entry. However, since these old entries in the table with duplicate emails were never cleaned up, the email reminder chore will send out email verification reminders to them. A single person will get one separate email per entry in the DB with their email and where status = 0. Since the multiple entries with the same email problem was solved a while ago, just add a constraint to GetUnverifiedNeedingReminder to only select users created after a cutoff. Once the DB is migrated to remove the duplicate emails, we can remove the cutoff. github issue: https://github.com/storj/storj/issues/4853 Change-Id: I07d77d43109bcacc8909df61d4fb49165a99527c
2022-06-08 19:30:29 +01:00
GetUnverifiedNeedingReminder(ctx context.Context, firstReminder, secondReminder, cutoff time.Time) ([]*User, error)
web/satellite: create chore that will resend verification emails to unverified users We want to remind unverified users to verify their emails: once after 24 hours has passed and again after 5 days has passed. Add mailservice.Service to satellite core because it is needed by the chore for sending emails. To add the mailservice.Service to the core, we create a helper function in satellite/peer.go to avoid duplicating the code in both api.go and core.go. In addition to the chore, this change adds methods to users.DB to get unverified users in need of reminder. Change-Id: I4e515bdf43f922788b4f965b2efb34fa32288bd1
2022-01-06 19:46:53 +00:00
// UpdateVerificationReminders increments verification_reminders.
UpdateVerificationReminders(ctx context.Context, id uuid.UUID) error
web/satellite: increment login failed_login_count in sql This change increments users' failed_login_count in the database layer to avoid potential data race. It also updates the login_lockout_expiration as well in one operation. see: https://github.com/storj/storj/issues/4986 Change-Id: I74624f1bee31667b269cb205d74d16e79daabcb6
2022-09-23 23:23:32 +01:00
// UpdateFailedLoginCountAndExpiration increments failed_login_count and sets login_lockout_expiration appropriately.
UpdateFailedLoginCountAndExpiration(ctx context.Context, failedLoginPenalty *float64, id uuid.UUID) error
satellite/satellitedb: Add GetByEmailWithUnverified to users table Allows us to handle duplicate emails better. Change-Id: I266057900725e50d1c47977da307714fd32d9081
2021-11-18 18:54:39 +00:00
// GetByEmailWithUnverified is a method for querying users by email from the database.
GetByEmailWithUnverified(ctx context.Context, email string) (*User, []User, error)
// GetByEmail is a method for querying user by verified email from the database.
Updating users repository (#808)
2018-12-10 13:47:48 +00:00
GetByEmail(ctx context.Context, email string) (*User, error)
V3-1091 Extend Users table with IsActive functionality (#1170) * V3-1091 Extend Users table with IsActive functionality * fixed review comments
2019-01-30 15:04:40 +00:00
// Insert is a method for inserting user into the database.
V3-665 Creating Companies repository (#606)
2018-11-09 12:05:24 +00:00
Insert(ctx context.Context, user *User) (*User, error)
V3-664 Extend User repository. Reimplemented with dbx (#591) * V3-664 Extend User repository. Reimplemented with dbx * structure updated * redundant packages removed, structure simplified * fixing goimports * removed constuctor from user struct * separated types declarations from database file * test file renamed * fixes according to review * fixing goimports * fixing goimports
2018-11-08 14:19:42 +00:00
// Delete is a method for deleting user by Id from the database.
Delete(ctx context.Context, id uuid.UUID) error
V3-1091 Extend Users table with IsActive functionality (#1170) * V3-1091 Extend Users table with IsActive functionality * fixed review comments
2019-01-30 15:04:40 +00:00
// Update is a method for updating user entity.
satellite/console: use new type UpdateUserRequest as arg to db users.Update The users.Update method in the satellitedb package takes a console.User as an argument. It reads some of the fields on this struct and assigns the value to dbx.User_Update_Fields. However, you cannot optionally update only some of the fields. They all will always be updated. This means that if you only want to update FullName, you still need to read the user info from the DB to avoid updating the rest of the fields to zero. This is not good because concurrent updates can overwrite each other. This change introduces a new struct type, UpdateUserRequest, which contains pointers for all the fields that are updated by satellite db users.Update. Now the update method will check if a field is nil before assigning the value to be updated in the db, so you only need to set the field you want updated. For nullable columns, the respective field is a double pointer. This allows us to update a column to NULL if the outer pointer is not nil, but the inner pointer is. Change-Id: I27f842d283c2711e24d51dcab622e57eeb9157f1
2022-06-01 22:15:37 +01:00
Update(ctx context.Context, userID uuid.UUID, request UpdateUserRequest) error
satellite/console: Implement paid tier When a user adds a credit card, switch them to the paid tier and update their projects with new bandwidth/storage limits. New projects for the paid tier user will also have the updated limits. The new limits are: * storage per project - 50 GB free/25 TB paid * bandwidth per project - 50 GB free/100 TB paid Change-Id: I7d6467d077e8bb2bbe4bcf88ab8d75490f83165e
2021-07-01 00:13:45 +01:00
// UpdatePaidTier sets whether the user is in the paid tier.
satellite/{console,satellitedb}: increase project limit on paid tier upgrade Update the user to the default paid tier project limit, which is currently 3 projects, when the user upgrades to a paid account. Change-Id: I95b19d62cebc7d878b716355f2ebcaf0b51ca3f7
2022-02-28 21:37:46 +00:00
UpdatePaidTier(ctx context.Context, id uuid.UUID, paidTier bool, projectBandwidthLimit, projectStorageLimit memory.Size, projectSegmentLimit int64, projectLimit int) error
satellite/{console,satellitedb}: add account freeze service This change adds an account freeze service with methods for checking if a user is frozen, freezing a user, and unfreezing a user. Furthermore, methods for altering the usage limits of a user or project have been implemented for use by the account freeze service. Change-Id: I77fecfac5c152f134bec90165acfe4f1dea957e7
2022-12-15 07:11:03 +00:00
// UpdateUserProjectLimits is a method to update the user's usage limits for new projects.
UpdateUserProjectLimits(ctx context.Context, id uuid.UUID, limits UsageLimits) error
satellite/{console,satellitedb}: change project limiting based on new users field This change switches the backend logic to use the new DB column on the users table to restrict project creation. Furthermore it back fills the existing limits from registration tokens to the new column to ensure no users are reset to the new default. UI is updated to reflect ability to create several projects Change-Id: Ie29157430ae6b065411ca4c4557c9f1be69cdc4f
2020-07-15 17:49:37 +01:00
// GetProjectLimit is a method to get the users project limit
GetProjectLimit(ctx context.Context, id uuid.UUID) (limit int, err error)
satellite/{console,satellitedb}: move project limits from config file to DB to keep limits on a per user basis To allow for changing limits for new users, while leaving existing users limits as they are, we must store the project limits for each user. We currently store the limit for the number of projects a user can create in the user DB table. This change would also store the project bandwidth and storage limits in the same table. Change-Id: If8d79b39de020b969f3445ef2fcc370e51d706c6
2021-11-01 15:27:32 +00:00
// GetUserProjectLimits is a method to get the users storage and bandwidth limits for new projects.
GetUserProjectLimits(ctx context.Context, id uuid.UUID) (limit *ProjectLimits, err error)
satellite/{admin,payments,satellitedb}: add checks for deletion of free tier accounts This change adds some more checks to the deletion process for projects and users, since we ran into a race condition during invoicing, where projects have been deleted before the invoicing was finished, leading to missing references. This PR changes the logic to block user deletion if we are in exactly that period, while also allowing the deletion of projects/users on free tier during the month. Change-Id: Ic0735205e6633762fb7e3c2fa13e744cdfa5ec32
2022-02-04 17:31:24 +00:00
// GetUserPaidTier is a method to gather whether the specified user is on the Paid Tier or not.
GetUserPaidTier(ctx context.Context, id uuid.UUID) (isPaid bool, err error)
V3-664 Extend User repository. Reimplemented with dbx (#591) * V3-664 Extend User repository. Reimplemented with dbx * structure updated * redundant packages removed, structure simplified * fixing goimports * removed constuctor from user struct * separated types declarations from database file * test file renamed * fixes according to review * fixing goimports * fixing goimports
2018-11-08 14:19:42 +00:00
}
V3-1091 Extend Users table with IsActive functionality (#1170) * V3-1091 Extend Users table with IsActive functionality * fixed review comments
2019-01-30 15:04:40 +00:00
// UserInfo holds User updatable data.
updated createuser api (#687)
2018-11-21 15:51:43 +00:00
type UserInfo struct {
V3-1307 combine first and last name to full name (#1569) * V3-1307 combine first and last name to full name
2019-03-27 12:33:32 +00:00
FullName string `json:"fullName"`
ShortName string `json:"shortName"`
updated createuser api (#687)
2018-11-21 15:51:43 +00:00
}
V3-1091 Extend Users table with IsActive functionality (#1170) * V3-1091 Extend Users table with IsActive functionality * fixed review comments
2019-01-30 15:04:40 +00:00
// IsValid checks UserInfo validity and returns error describing whats wrong.
satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(*Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(*Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(*RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(*Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(*Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(*conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387
2022-02-23 16:02:45 +00:00
// The returned error has the class ErrValiation.
satellite user validation (#729)
2018-11-29 16:23:44 +00:00
func (user *UserInfo) IsValid() error {
V3-1307 combine first and last name to full name (#1569) * V3-1307 combine first and last name to full name
2019-03-27 12:33:32 +00:00
// validate fullName
satellite/referrals: set up referrals service and http endpoints (#3566)
2019-11-25 21:36:36 +00:00
if err := ValidateFullName(user.FullName); err != nil {
satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(*Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(*Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(*RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(*Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(*Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(*conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387
2022-02-23 16:02:45 +00:00
return ErrValidation.Wrap(err)
satellite user validation (#729)
2018-11-29 16:23:44 +00:00
}
satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(*Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(*Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(*RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(*Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(*Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(*conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387
2022-02-23 16:02:45 +00:00
return nil
updated user update api, separated company and user creation (#767)
2018-12-10 15:57:06 +00:00
}
V3-1091 Extend Users table with IsActive functionality (#1170) * V3-1091 Extend Users table with IsActive functionality * fixed review comments
2019-01-30 15:04:40 +00:00
// CreateUser struct holds info for User creation.
updated user update api, separated company and user creation (#767)
2018-12-10 15:57:06 +00:00
type CreateUser struct {
satellite/console,web/satellite: Implement hCaptcha Adds a new configuration for hcaptcha enabled, secretkey, and sitekey. If both reCAPTCHA and hCaptcha are configured as "enabled", reCAPTCHA will be used. Change-Id: I73cc6e133d8da3555e0ed8b2b377cf9eb263e6dc
2022-05-06 21:56:18 +01:00
FullName string `json:"fullName"`
ShortName string `json:"shortName"`
Email string `json:"email"`
UserAgent []byte `json:"userAgent"`
Password string `json:"password"`
IsProfessional bool `json:"isProfessional"`
Position string `json:"position"`
CompanyName string `json:"companyName"`
WorkingOn string `json:"workingOn"`
EmployeeCount string `json:"employeeCount"`
HaveSalesContact bool `json:"haveSalesContact"`
CaptchaResponse string `json:"captchaResponse"`
IP string `json:"ip"`
SignupPromoCode string `json:"signupPromoCode"`
updated user update api, separated company and user creation (#767)
2018-12-10 15:57:06 +00:00
}
satellite user validation (#729)
2018-11-29 16:23:44 +00:00
V3-1091 Extend Users table with IsActive functionality (#1170) * V3-1091 Extend Users table with IsActive functionality * fixed review comments
2019-01-30 15:04:40 +00:00
// IsValid checks CreateUser validity and returns error describing whats wrong.
satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(*Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(*Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(*RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(*Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(*Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(*conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387
2022-02-23 16:02:45 +00:00
// The returned error has the class ErrValiation.
updated user update api, separated company and user creation (#767)
2018-12-10 15:57:06 +00:00
func (user *CreateUser) IsValid() error {
satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(*Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(*Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(*RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(*Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(*Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(*conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387
2022-02-23 16:02:45 +00:00
errgrp := errs.Group{}
satellite user validation (#729)
2018-11-29 16:23:44 +00:00
satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(*Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(*Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(*RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(*Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(*Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(*conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387
2022-02-23 16:02:45 +00:00
errgrp.Add(
ValidateFullName(user.FullName),
ValidatePassword(user.Password),
)
satellite user validation (#729)
2018-11-29 16:23:44 +00:00
web/satellite: auth graphql api replaced with REST API (#3396)
2019-10-29 14:24:16 +00:00
// validate email
_, err := mail.ParseAddress(user.Email)
satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(*Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(*Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(*RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(*Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(*Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(*conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387
2022-02-23 16:02:45 +00:00
errgrp.Add(err)
web/satellite: auth graphql api replaced with REST API (#3396)
2019-10-29 14:24:16 +00:00
satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(*Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(*Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(*RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(*Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(*Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(*conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387
2022-02-23 16:02:45 +00:00
return ErrValidation.Wrap(errgrp.Err())
satellite user validation (#729)
2018-11-29 16:23:44 +00:00
}
satellite/{console,satellitedb}: move project limits from config file to DB to keep limits on a per user basis To allow for changing limits for new users, while leaving existing users limits as they are, we must store the project limits for each user. We currently store the limit for the number of projects a user can create in the user DB table. This change would also store the project bandwidth and storage limits in the same table. Change-Id: If8d79b39de020b969f3445ef2fcc370e51d706c6
2021-11-01 15:27:32 +00:00
// ProjectLimits holds info for a users bandwidth and storage limits for new projects.
type ProjectLimits struct {
ProjectBandwidthLimit memory.Size `json:"projectBandwidthLimit"`
ProjectStorageLimit memory.Size `json:"projectStorageLimit"`
satellite/{console,satellitedb}: add project segment limit to user All limits we have for projects have also parent limits stored with user data. New created project is first taking limits from owner (user) limits. This change is extending users table with project_segment_limit column and adds functionality to get and set value for this column. Change-Id: Iff5e36c62b517652390b649fc05992475916ecff
2021-12-06 19:06:50 +00:00
ProjectSegmentLimit int64 `json:"projectSegmentLimit"`
satellite/{console,satellitedb}: move project limits from config file to DB to keep limits on a per user basis To allow for changing limits for new users, while leaving existing users limits as they are, we must store the project limits for each user. We currently store the limit for the number of projects a user can create in the user DB table. This change would also store the project bandwidth and storage limits in the same table. Change-Id: If8d79b39de020b969f3445ef2fcc370e51d706c6
2021-11-01 15:27:32 +00:00
}
satellite/console: Implement MFA backend Added MFA passcode and recovery code field for token requests. Added endpoints for MFA-related activity: enabling MFA, disabling MFA, generating a new MFA secret key, and generating new MFA recovery codes. Change-Id: Ia1443f05d3a2fecaa7f170f56d73c7a4e9b69ad5
2021-07-13 18:21:16 +01:00
// AuthUser holds info for user authentication token requests.
type AuthUser struct {
Email string `json:"email"`
Password string `json:"password"`
MFAPasscode string `json:"mfaPasscode"`
MFARecoveryCode string `json:"mfaRecoveryCode"`
satellite/{web, console}: login captcha implemented Implemented Recaptcha and Hcaptcha for login screen. Slightly refactored registration page implementation. Made 2 different login/registration captcha configs on server side to easily swap between captchas independently. Issue: https://github.com/storj/storj/issues/4982 Change-Id: I362bd5db2d59010e90a22301893bc3e1d860293a
2022-07-21 14:31:38 +01:00
CaptchaResponse string `json:"captchaResponse"`
satellite/console: integrate sessions into satellite UI This change integrates the session management database functionality with the web application. Claim-based authentication has been removed in favor of session token-based authentication. Change-Id: I62a4f5354a3ed8ca80272814aad2448f901eab1b
2022-06-05 23:41:38 +01:00
IP string `json:"-"`
UserAgent string `json:"-"`
satellite/console: Implement MFA backend Added MFA passcode and recovery code field for token requests. Added endpoints for MFA-related activity: enabling MFA, disabling MFA, generating a new MFA secret key, and generating new MFA recovery codes. Change-Id: Ia1443f05d3a2fecaa7f170f56d73c7a4e9b69ad5
2021-07-13 18:21:16 +01:00
}
satellite/console,web/satellite: invalidate sessions after inactivity Sessions now expire after a much shorter amount of time, requiring clients to issue API requests for session extension. This is handled behind the scenes as the user interacts with the page, but once session expiration is imminent, a modal appears which informs the user of his inactivity and presents him with the choice of loging out or preserving his session. Change-Id: I68008d45859c814a835d65d882ad5ad2199d618e
2022-07-19 10:26:18 +01:00
// TokenInfo holds info for user authentication token responses.
type TokenInfo struct {
consoleauth.Token `json:"token"`
ExpiresAt time.Time `json:"expiresAt"`
}
all: fix dots Change-Id: I6a419c62700c568254ff67ae5b73efed2fc98aa2
2020-07-16 15:18:02 +01:00
// UserStatus - is used to indicate status of the users account.
Updating account activation flow (#1251) * Updating account activation flow * Updated integration tests, createUserMutation updated * removing redundant index * removed redundant testing code * review comments fixed
2019-02-11 10:33:56 +00:00
type UserStatus int
const (
all: add missing dots Change-Id: I93b86c9fb3398c5d3c9121b8859dad1c615fa23a
2020-08-11 15:50:01 +01:00
// Inactive is a user status that he receives after registration.
Updating account activation flow (#1251) * Updating account activation flow * Updated integration tests, createUserMutation updated * removing redundant index * removed redundant testing code * review comments fixed
2019-02-11 10:33:56 +00:00
Inactive UserStatus = 0
all: add missing dots Change-Id: I93b86c9fb3398c5d3c9121b8859dad1c615fa23a
2020-08-11 15:50:01 +01:00
// Active is a user status that he receives after account activation.
Updating account activation flow (#1251) * Updating account activation flow * Updated integration tests, createUserMutation updated * removing redundant index * removed redundant testing code * review comments fixed
2019-02-11 10:33:56 +00:00
Active UserStatus = 1
all: add missing dots Change-Id: I93b86c9fb3398c5d3c9121b8859dad1c615fa23a
2020-08-11 15:50:01 +01:00
// Deleted is a user status that he receives after deleting account.
Updating account activation flow (#1251) * Updating account activation flow * Updated integration tests, createUserMutation updated * removing redundant index * removed redundant testing code * review comments fixed
2019-02-11 10:33:56 +00:00
Deleted UserStatus = 2
)
V3-1091 Extend Users table with IsActive functionality (#1170) * V3-1091 Extend Users table with IsActive functionality * fixed review comments
2019-01-30 15:04:40 +00:00
// User is a database object that describes User entity.
V3-664 Extend User repository. Reimplemented with dbx (#591) * V3-664 Extend User repository. Reimplemented with dbx * structure updated * redundant packages removed, structure simplified * fixing goimports * removed constuctor from user struct * separated types declarations from database file * test file renamed * fixes according to review * fixing goimports * fixing goimports
2018-11-08 14:19:42 +00:00
type User struct {
account api: infrastructure, login, register, getUser (#611)
2018-11-14 10:50:15 +00:00
ID uuid.UUID `json:"id"`
V3-664 Extend User repository. Reimplemented with dbx (#591) * V3-664 Extend User repository. Reimplemented with dbx * structure updated * redundant packages removed, structure simplified * fixing goimports * removed constuctor from user struct * separated types declarations from database file * test file renamed * fixes according to review * fixing goimports * fixing goimports
2018-11-08 14:19:42 +00:00
V3-1307 combine first and last name to full name (#1569) * V3-1307 combine first and last name to full name
2019-03-27 12:33:32 +00:00
FullName string `json:"fullName"`
ShortName string `json:"shortName"`
V3-1091 Extend Users table with IsActive functionality (#1170) * V3-1091 Extend Users table with IsActive functionality * fixed review comments
2019-01-30 15:04:40 +00:00
account api: infrastructure, login, register, getUser (#611)
2018-11-14 10:50:15 +00:00
Email string `json:"email"`
PasswordHash []byte `json:"passwordHash"`
V3-664 Extend User repository. Reimplemented with dbx (#591) * V3-664 Extend User repository. Reimplemented with dbx * structure updated * redundant packages removed, structure simplified * fixing goimports * removed constuctor from user struct * separated types declarations from database file * test file renamed * fixes according to review * fixing goimports * fixing goimports
2018-11-08 14:19:42 +00:00
Add Attribution Columns to appropriate tables for OSPP referral link (#2516) * adds "partner_id" column to user, project, api_key & bucket_metainfo tables
2019-07-12 18:59:19 +01:00
Status UserStatus `json:"status"`
satellite/{satellitedb,attribution,console}: value attribution changes that add userAgent field to buckets table and all tables that have partner_id Change-Id: I36a13bb651b86bfc14fe5a0a2258f719e6cd2b48
2021-09-23 00:38:18 +01:00
UserAgent []byte `json:"userAgent"`
Updating account activation flow (#1251) * Updating account activation flow * Updated integration tests, createUserMutation updated * removing redundant index * removed redundant testing code * review comments fixed
2019-02-11 10:33:56 +00:00
account api: infrastructure, login, register, getUser (#611)
2018-11-14 10:50:15 +00:00
CreatedAt time.Time `json:"createdAt"`
satellite/{console,satellitedb}: add project_limit column to users table Change-Id: I603f085f17ca5b413dd1c6837c2081f9e7e791a1
2020-07-15 16:14:09 +01:00
satellite/{console,satellitedb}: move project limits from config file to DB to keep limits on a per user basis To allow for changing limits for new users, while leaving existing users limits as they are, we must store the project limits for each user. We currently store the limit for the number of projects a user can create in the user DB table. This change would also store the project bandwidth and storage limits in the same table. Change-Id: If8d79b39de020b969f3445ef2fcc370e51d706c6
2021-11-01 15:27:32 +00:00
ProjectLimit int `json:"projectLimit"`
ProjectStorageLimit int64 `json:"projectStorageLimit"`
ProjectBandwidthLimit int64 `json:"projectBandwidthLimit"`
satellite/{console,satellitedb}: add project segment limit to user All limits we have for projects have also parent limits stored with user data. New created project is first taking limits from owner (user) limits. This change is extending users table with project_segment_limit column and adds functionality to get and set value for this column. Change-Id: Iff5e36c62b517652390b649fc05992475916ecff
2021-12-06 19:06:50 +00:00
ProjectSegmentLimit int64 `json:"projectSegmentLimit"`
satellite/{console,satellitedb}: move project limits from config file to DB to keep limits on a per user basis To allow for changing limits for new users, while leaving existing users limits as they are, we must store the project limits for each user. We currently store the limit for the number of projects a user can create in the user DB table. This change would also store the project bandwidth and storage limits in the same table. Change-Id: If8d79b39de020b969f3445ef2fcc370e51d706c6
2021-11-01 15:27:32 +00:00
PaidTier bool `json:"paidTier"`
satellite/satellitedb: add professional user fields to db interface (#4034)
2021-02-04 15:00:15 +00:00
IsProfessional bool `json:"isProfessional"`
Position string `json:"position"`
CompanyName string `json:"companyName"`
CompanySize int `json:"companySize"`
WorkingOn string `json:"workingOn"`
satellite/satellitedb: add employee size column to users Change-Id: I21f5904331f0ceb92f494729c22a52c256a69163
2021-02-10 15:55:38 +00:00
EmployeeCount string `json:"employeeCount"`
web, satellite: allow registering business accounts to ask for contact from sales team Full prefix: web/satellite, satellite/{console, analytics, satellitedb} - checkbox added to register view - business tab - user being saved with new column - add sales contact choice to Segment calls - ui fix added to employee count dropdown Change-Id: Ib976872463b88874ea9714db635d58c79cdbe3a1
2021-04-27 19:40:03 +01:00
HaveSalesContact bool `json:"haveSalesContact"`
satellite/console: Implement MFA backend Added MFA passcode and recovery code field for token requests. Added endpoints for MFA-related activity: enabling MFA, disabling MFA, generating a new MFA secret key, and generating new MFA recovery codes. Change-Id: Ia1443f05d3a2fecaa7f170f56d73c7a4e9b69ad5
2021-07-13 18:21:16 +01:00
MFAEnabled bool `json:"mfaEnabled"`
MFASecretKey string `json:"mfaSecretKey"`
MFARecoveryCodes []string `json:"mfaRecoveryCodes"`
satellite/console,satellitedb: add signup promo code column to users This update is to set up users being able to register with a promo code added to their account in place of the free tier coupon. Change-Id: I7badf87937b12664f145520b6dcc4b26fe750407
2021-10-12 14:54:05 +01:00
SignupPromoCode string `json:"signupPromoCode"`
web/console: Save timestamp when creating users to mark their first email verification notification. This value will be updated whenever we send a reminder for a user to verify their email. Change-Id: I7f08b16eccc6633b8eb3662eb7efed1f1f780f44
2021-12-22 15:43:37 +00:00
satellite/satellitedb: remove references to last_verification_reminder Removing all references to column last_verification_reminder which is to be removed, due to new column verification_reminders Issue: https://github.com/storj/storj/issues/4560 Change-Id: I7c9a426e946c7aed58e62c1eef80629daf6b1272
2023-01-03 20:55:57 +00:00
VerificationReminders int `json:"verificationReminders"`
satellite/satellitedb: add columns to users table to control failed login attempts Added failed_login_count and login_lockout_expiration columns to users table to control users failed login attempts. We want to prevent brute forcing of user login so this is the first step. Change-Id: I06b0b9f5415a1922e08cd9908893b2fd3c26bca0
2022-02-18 14:53:53 +00:00
FailedLoginCount int `json:"failedLoginCount"`
LoginLockoutExpiration time.Time `json:"loginLockoutExpiration"`
console/satellite: track signup captcha scores This change tracks signup captcha scores in the signup_captcha column in the users table. It slightly modifies the captcha verify method to return both the score and success. see: https://github.com/storj/storj/issues/5067 Change-Id: I7b3993e44958cfcf179806c7df19d6887fe3eda9
2022-08-17 11:30:07 +01:00
SignupCaptcha *float64 `json:"-"`
V3-664 Extend User repository. Reimplemented with dbx (#591) * V3-664 Extend User repository. Reimplemented with dbx * structure updated * redundant packages removed, structure simplified * fixing goimports * removed constuctor from user struct * separated types declarations from database file * test file renamed * fixes according to review * fixing goimports * fixing goimports
2018-11-08 14:19:42 +00:00
}
apigen: endpoint to get user Implemented new GET user by request context endpoint. Updated docs. Change-Id: Iebb493e55f9456b89d7dbd234bb0b939b82b0ced
2022-05-27 15:31:28 +01:00
// ResponseUser is an entity which describes db User and can be sent in response.
type ResponseUser struct {
ID uuid.UUID `json:"id"`
FullName string `json:"fullName"`
ShortName string `json:"shortName"`
Email string `json:"email"`
UserAgent []byte `json:"userAgent"`
ProjectLimit int `json:"projectLimit"`
IsProfessional bool `json:"isProfessional"`
Position string `json:"position"`
CompanyName string `json:"companyName"`
EmployeeCount string `json:"employeeCount"`
HaveSalesContact bool `json:"haveSalesContact"`
PaidTier bool `json:"paidTier"`
MFAEnabled bool `json:"isMFAEnabled"`
MFARecoveryCodeCount int `json:"mfaRecoveryCodeCount"`
}
satellite/console: integrate sessions into satellite UI This change integrates the session management database functionality with the web application. Claim-based authentication has been removed in favor of session token-based authentication. Change-Id: I62a4f5354a3ed8ca80272814aad2448f901eab1b
2022-06-05 23:41:38 +01:00
// key is a context value key type.
type key int
// userKey is context key for User.
const userKey key = 0
// WithUser creates new context with User.
func WithUser(ctx context.Context, user *User) context.Context {
return context.WithValue(ctx, userKey, user)
}
// GetUser gets User from context.
func GetUser(ctx context.Context) (*User, error) {
satellite/console/consoleweb: early rejection in auth middleware This change makes the authentication middleware reject any requests that are not properly authenticated to prevent them from being passed into endpoint-specific handlers. Change-Id: I1f6b74f68fc7354e47fb825a128bad968129f420
2022-07-30 04:15:30 +01:00
if user, ok := ctx.Value(userKey).(*User); ok {
satellite/console: integrate sessions into satellite UI This change integrates the session management database functionality with the web application. Claim-based authentication has been removed in favor of session token-based authentication. Change-Id: I62a4f5354a3ed8ca80272814aad2448f901eab1b
2022-06-05 23:41:38 +01:00
return user, nil
}
return nil, Error.New("user is not in context")
}
satellite/console: use new type UpdateUserRequest as arg to db users.Update The users.Update method in the satellitedb package takes a console.User as an argument. It reads some of the fields on this struct and assigns the value to dbx.User_Update_Fields. However, you cannot optionally update only some of the fields. They all will always be updated. This means that if you only want to update FullName, you still need to read the user info from the DB to avoid updating the rest of the fields to zero. This is not good because concurrent updates can overwrite each other. This change introduces a new struct type, UpdateUserRequest, which contains pointers for all the fields that are updated by satellite db users.Update. Now the update method will check if a field is nil before assigning the value to be updated in the db, so you only need to set the field you want updated. For nullable columns, the respective field is a double pointer. This allows us to update a column to NULL if the outer pointer is not nil, but the inner pointer is. Change-Id: I27f842d283c2711e24d51dcab622e57eeb9157f1
2022-06-01 22:15:37 +01:00
// UpdateUserRequest contains all columns which are optionally updatable by users.Update.
type UpdateUserRequest struct {
FullName *string
ShortName **string
Email *string
PasswordHash []byte
Status *UserStatus
ProjectLimit *int
ProjectStorageLimit *int64
ProjectBandwidthLimit *int64
ProjectSegmentLimit *int64
PaidTier *bool
MFAEnabled *bool
MFASecretKey **string
MFARecoveryCodes *[]string
// failed_login_count is nullable, but we don't really have a reason
// to set it to NULL, so it doesn't need to be a double pointer here.
FailedLoginCount *int
LoginLockoutExpiration **time.Time
}
Reference in New Issue Copy Permalink