storj/satellite/console/validation.go

// Copyright (C) 2019 Storj Labs, Inc.
// See LICENSE for copying information.

package console

import (
	"github.com/zeebo/errs"
)

const (
	// PasswordMinimumLength is the minimum allowed length for user account passwords.
	PasswordMinimumLength = 6
	// PasswordMaximumLength is the maximum allowed length for user account passwords.
	PasswordMaximumLength = 72
)

// ErrValidation validation related error class.
var ErrValidation = errs.Class("validation")

// ValidateNewPassword validates password for creation.
// It returns an plain error (not wrapped in a errs.Class) if pass is invalid.
//
// Previously the limit was 128, however, bcrypt ignores any characters beyond 72,
// hence this checks new passwords -- old passwords might be longer.
func ValidateNewPassword(pass string) error {
	if len(pass) < PasswordMinimumLength {
		return errs.New(passwordTooShortErrMsg, PasswordMinimumLength)
	}

	if len(pass) > PasswordMaximumLength {
		return errs.New(passwordTooLongErrMsg, PasswordMaximumLength)
	}

	return nil
}

// ValidateFullName validates full name.
// It returns an plain error (not wrapped in a errs.Class) if name is invalid.
func ValidateFullName(name string) error {
	if name == "" {
		return errs.New("full name can not be empty")
	}

	return nil
}
Add console to satellite peer (#1120) 2019-01-24 16:26:36 +00:00			`// Copyright (C) 2019 Storj Labs, Inc.`
satellite user validation (#729) 2018-11-29 16:23:44 +00:00			`// See LICENSE for copying information.`

Renaming and moving pkg/satellite to satellite/console (#1054) * [WIP] V3-853 Merge the satellite DB into the master database * Removing consoleDB from satelliteDB * Fixing tests for satellite/console * fixing linter * sorting imports in satellite/console * fixing console config * fixing linter 2019-01-15 13:03:24 +00:00			`package console`
satellite user validation (#729) 2018-11-29 16:23:44 +00:00
			`import (`
			`"github.com/zeebo/errs"`
			`)`

			`const (`
satellite/console,web/satellite: limit new password length to 128 This change implements a requirement that all new passwords must be no longer than 128 characters. Change-Id: I7a8f23c87190d465eed59b3e0627ccd32d465bb9 2022-09-06 21:55:15 +01:00			`// PasswordMinimumLength is the minimum allowed length for user account passwords.`
			`PasswordMinimumLength = 6`
			`// PasswordMaximumLength is the maximum allowed length for user account passwords.`
mod: bump storj.io/common This bumps common, such that things build with Go 1.20. Also, adds `go vet` checks for testsuite/storjscan and testsuite/ui. The latest golang.org/x/bcrypt has a check that the new password is less than 72 bytes, because bcrypt silently discarded them. This means our own password validation has the same limitation. Old passwords should still work fine. Change-Id: Ibb8735b15eeb91460145906b81ae4e365e9ac418 2023-02-03 13:48:11 +00:00			`PasswordMaximumLength = 72`
satellite user validation (#729) 2018-11-29 16:23:44 +00:00			`)`

all: fix dots Change-Id: I6a419c62700c568254ff67ae5b73efed2fc98aa2 2020-07-16 15:18:02 +01:00			`// ErrValidation validation related error class.`
all: fix error naming errs.Class should not contain "error" in the name, since that causes a lot of stutter in the error logs. As an example a log line could end up looking like: ERROR node stats service error: satellitedbs error: node stats database error: no rows Whereas something like: ERROR nodestats service: satellitedbs: nodestatsdb: no rows Would contain all the necessary information without the stutter. Change-Id: I7b7cb7e592ebab4bcfadc1eef11122584d2b20e0 2021-04-28 09:06:17 +01:00			`var ErrValidation = errs.Class("validation")`
satellite user validation (#729) 2018-11-29 16:23:44 +00:00
mod: bump storj.io/common This bumps common, such that things build with Go 1.20. Also, adds `go vet` checks for testsuite/storjscan and testsuite/ui. The latest golang.org/x/bcrypt has a check that the new password is less than 72 bytes, because bcrypt silently discarded them. This means our own password validation has the same limitation. Old passwords should still work fine. Change-Id: Ibb8735b15eeb91460145906b81ae4e365e9ac418 2023-02-03 13:48:11 +00:00			`// ValidateNewPassword validates password for creation.`
satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387 2022-02-23 16:02:45 +00:00			`// It returns an plain error (not wrapped in a errs.Class) if pass is invalid.`
mod: bump storj.io/common This bumps common, such that things build with Go 1.20. Also, adds `go vet` checks for testsuite/storjscan and testsuite/ui. The latest golang.org/x/bcrypt has a check that the new password is less than 72 bytes, because bcrypt silently discarded them. This means our own password validation has the same limitation. Old passwords should still work fine. Change-Id: Ibb8735b15eeb91460145906b81ae4e365e9ac418 2023-02-03 13:48:11 +00:00			`//`
			`// Previously the limit was 128, however, bcrypt ignores any characters beyond 72,`
			`// hence this checks new passwords -- old passwords might be longer.`
			`func ValidateNewPassword(pass string) error {`
satellite/console,web/satellite: limit new password length to 128 This change implements a requirement that all new passwords must be no longer than 128 characters. Change-Id: I7a8f23c87190d465eed59b3e0627ccd32d465bb9 2022-09-06 21:55:15 +01:00			`if len(pass) < PasswordMinimumLength {`
			`return errs.New(passwordTooShortErrMsg, PasswordMinimumLength)`
			`}`

			`if len(pass) > PasswordMaximumLength {`
			`return errs.New(passwordTooLongErrMsg, PasswordMaximumLength)`
updated user update api, separated company and user creation (#767) 2018-12-10 15:57:06 +00:00			`}`

satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387 2022-02-23 16:02:45 +00:00			`return nil`
updated user update api, separated company and user creation (#767) 2018-12-10 15:57:06 +00:00			`}`
web/satellite: auth graphql api replaced with REST API (#3396) 2019-10-29 14:24:16 +00:00
satellite/referrals: set up referrals service and http endpoints (#3566) 2019-11-25 21:36:36 +00:00			`// ValidateFullName validates full name.`
satellite/console: Don't lose ErrValiation error class There was a defined type (`validationErrors`) for gathering several validation errors and classify them with the `ErrValdiation errs.Class`. `errs.Combine` doesn't maintain the classes of the errors to combine, for example ``` var myClass errs.Class = "My error class" err1 := myClass.Wrap(erros.New("error 1")) err2 := myClass.Wrap(erros.New("error 2")) err3 := errors.New("error 3") combinedErr := errs.Combine(err1, err2, err3) myClass.Has(combinedErr) // It returns false // Even only passing errors with a class and with the same one for all // of them combinedErr := errs.Combine(err1, err2) myClass.Has(combinedErr) // It returns false ``` Hence `validationErrors` didn't return what we expected to return when calling its `Combine` method. This commit delete the type and it replaces by `errs.Group` when there are more than one error, and wrapping the `errs.Group.Err` returned error with `ErrValiation` error class. The bug caused the HTTP API server to return a 500 status code as you can seee in the following log message extracted from the satellite production logs: ``` code: 500 error: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address" errorVerbose: "console service: validation: full name can not be empty; validation: Your password needs at least 6 characters long; validation: mail: no address storj.io/storj/satellite/console.(Service).CreateUser:593 storj.io/storj/satellite/console/consoleweb/consoleapi.(Auth).Register:250 net/http.HandlerFunc.ServeHTTP:2047 storj.io/storj/private/web.(RateLimiter).Limit.func1:90 net/http.HandlerFunc.ServeHTTP:2047 github.com/gorilla/mux.(Router).ServeHTTP:210 storj.io/storj/satellite/console/consoleweb.(Server).withRequest.func1:464 net/http.HandlerFunc.ServeHTTP:2047 net/http.serverHandler.ServeHTTP:2879 net/http.(conn).serve:1930" message: "There was an error processing your request" ``` The issues was that not being classified with `ErrValidation` class it was not picked by the correct switch branch of the `consoleapi.Auth.getStatusCode` method which is in the call chain to `consoleapi.Auth.Register` method when it calls `console.Service.CreateUser` and returns an error. These changes should return the appropriated HTTP status code (Bad Request) when `console.Service.CreateUser` returns a validation error. Returning the appropriated HTTP statsus code also makes not to show this as an error in the server logs because the Bad Request sttatus code gets logged with debug level. Change-Id: I869ea85788992ae0865c373860fbf93a40d2d387 2022-02-23 16:02:45 +00:00			`// It returns an plain error (not wrapped in a errs.Class) if name is invalid.`
satellite/referrals: set up referrals service and http endpoints (#3566) 2019-11-25 21:36:36 +00:00			`func ValidateFullName(name string) error {`
web/satellite: auth graphql api replaced with REST API (#3396) 2019-10-29 14:24:16 +00:00			`if name == "" {`
			`return errs.New("full name can not be empty")`
			`}`

			`return nil`
			`}`