2020-05-18 21:37:18 +01:00
|
|
|
// Copyright (C) 2020 Storj Labs, Inc.
|
|
|
|
// See LICENSE for copying information.
|
|
|
|
|
|
|
|
package admin
|
|
|
|
|
|
|
|
import (
|
|
|
|
"database/sql"
|
|
|
|
"encoding/json"
|
|
|
|
"errors"
|
|
|
|
"fmt"
|
|
|
|
"io/ioutil"
|
|
|
|
"net/http"
|
|
|
|
|
|
|
|
"github.com/gorilla/mux"
|
|
|
|
"golang.org/x/crypto/bcrypt"
|
|
|
|
|
|
|
|
"storj.io/common/uuid"
|
|
|
|
"storj.io/storj/satellite/console"
|
2020-05-19 11:36:13 +01:00
|
|
|
"storj.io/storj/satellite/payments"
|
2020-05-18 21:37:18 +01:00
|
|
|
)
|
|
|
|
|
|
|
|
func (server *Server) addUser(w http.ResponseWriter, r *http.Request) {
|
|
|
|
ctx := r.Context()
|
|
|
|
|
|
|
|
body, err := ioutil.ReadAll(r.Body)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to read body: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
var input console.CreateUser
|
|
|
|
|
|
|
|
err = json.Unmarshal(body, &input)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to unmarshal request: %v", err), http.StatusBadRequest)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2020-05-19 11:36:13 +01:00
|
|
|
switch {
|
|
|
|
case input.Email == "":
|
2020-05-18 21:37:18 +01:00
|
|
|
http.Error(w, "Email is not set", http.StatusBadRequest)
|
|
|
|
return
|
2020-05-19 11:36:13 +01:00
|
|
|
case input.Password == "":
|
2020-05-18 21:37:18 +01:00
|
|
|
http.Error(w, "Password is not set", http.StatusBadRequest)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2020-07-16 13:17:30 +01:00
|
|
|
existingUser, err := server.db.Console().Users().GetByEmail(ctx, input.Email)
|
|
|
|
if err != nil && !errors.Is(sql.ErrNoRows, err) {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to check for user email %q: %v", input.Email, err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if existingUser != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("user with email already exists %s", input.Email), http.StatusConflict)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2020-05-18 21:37:18 +01:00
|
|
|
hash, err := bcrypt.GenerateFromPassword([]byte(input.Password), 0)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, "Unable to save password hash", http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
userID, err := uuid.New()
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, "Unable to create UUID", http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
user := console.CreateUser{
|
|
|
|
Email: input.Email,
|
|
|
|
FullName: input.FullName,
|
|
|
|
Password: input.Password,
|
|
|
|
}
|
|
|
|
|
|
|
|
err = user.IsValid()
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, "User data is not valid", http.StatusBadRequest)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
newuser, err := server.db.Console().Users().Insert(ctx, &console.User{
|
|
|
|
ID: userID,
|
|
|
|
FullName: user.FullName,
|
|
|
|
ShortName: user.ShortName,
|
|
|
|
Email: user.Email,
|
|
|
|
PasswordHash: hash,
|
|
|
|
})
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to insert user: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
2020-07-16 12:58:40 +01:00
|
|
|
|
|
|
|
err = server.payments.Setup(ctx, newuser.ID, newuser.Email)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to create payment account for user: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2020-05-18 21:37:18 +01:00
|
|
|
//Set User Status to be activated, as we manually created it
|
|
|
|
newuser.Status = console.Active
|
|
|
|
newuser.PasswordHash = nil
|
|
|
|
err = server.db.Console().Users().Update(ctx, newuser)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to activate user: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
data, err := json.Marshal(newuser)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("json encoding failed: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
w.Header().Set("Content-Type", "application/json")
|
|
|
|
_, _ = w.Write(data) // nothing to do with the error response, probably the client requesting disappeared
|
|
|
|
}
|
|
|
|
|
|
|
|
func (server *Server) userInfo(w http.ResponseWriter, r *http.Request) {
|
|
|
|
ctx := r.Context()
|
|
|
|
|
|
|
|
vars := mux.Vars(r)
|
|
|
|
userEmail, ok := vars["useremail"]
|
|
|
|
if !ok {
|
|
|
|
http.Error(w, "user-email missing", http.StatusBadRequest)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
user, err := server.db.Console().Users().GetByEmail(ctx, userEmail)
|
|
|
|
if errors.Is(err, sql.ErrNoRows) {
|
|
|
|
http.Error(w, fmt.Sprintf("user with email %q not found", userEmail), http.StatusNotFound)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to get user %q: %v", userEmail, err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
user.PasswordHash = nil
|
|
|
|
|
|
|
|
projects, err := server.db.Console().Projects().GetByUserID(ctx, user.ID)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to get user projects %q: %v", userEmail, err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2020-05-19 11:36:13 +01:00
|
|
|
coupons, err := server.db.StripeCoinPayments().Coupons().ListByUserID(ctx, user.ID)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to get user coupons %q: %v", userEmail, err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2020-05-18 21:37:18 +01:00
|
|
|
type User struct {
|
|
|
|
ID uuid.UUID `json:"id"`
|
|
|
|
FullName string `json:"fullName"`
|
|
|
|
Email string `json:"email"`
|
|
|
|
}
|
|
|
|
type Project struct {
|
|
|
|
ID uuid.UUID `json:"id"`
|
|
|
|
Name string `json:"name"`
|
|
|
|
Description string `json:"description"`
|
|
|
|
OwnerID uuid.UUID `json:"ownerId"`
|
|
|
|
}
|
|
|
|
|
|
|
|
var output struct {
|
2020-05-19 11:36:13 +01:00
|
|
|
User User `json:"user"`
|
|
|
|
Projects []Project `json:"projects"`
|
|
|
|
Coupons []payments.Coupon `json:"coupons"`
|
2020-05-18 21:37:18 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
output.User = User{
|
|
|
|
ID: user.ID,
|
|
|
|
FullName: user.FullName,
|
|
|
|
Email: user.Email,
|
|
|
|
}
|
|
|
|
for _, p := range projects {
|
|
|
|
output.Projects = append(output.Projects, Project{
|
|
|
|
ID: p.ID,
|
|
|
|
Name: p.Name,
|
|
|
|
Description: p.Description,
|
|
|
|
OwnerID: p.OwnerID,
|
|
|
|
})
|
|
|
|
}
|
2020-05-19 11:36:13 +01:00
|
|
|
output.Coupons = coupons
|
2020-05-18 21:37:18 +01:00
|
|
|
|
|
|
|
data, err := json.Marshal(output)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("json encoding failed: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
w.Header().Set("Content-Type", "application/json")
|
|
|
|
_, _ = w.Write(data) // nothing to do with the error response, probably the client requesting disappeared
|
|
|
|
}
|
2020-05-20 10:20:04 +01:00
|
|
|
|
|
|
|
func (server *Server) updateUser(w http.ResponseWriter, r *http.Request) {
|
|
|
|
ctx := r.Context()
|
|
|
|
|
|
|
|
vars := mux.Vars(r)
|
|
|
|
userEmail, ok := vars["useremail"]
|
|
|
|
if !ok {
|
|
|
|
http.Error(w, "user-email missing", http.StatusBadRequest)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
user, err := server.db.Console().Users().GetByEmail(ctx, userEmail)
|
|
|
|
if errors.Is(err, sql.ErrNoRows) {
|
|
|
|
http.Error(w, fmt.Sprintf("user with email %q not found", userEmail), http.StatusNotFound)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to get user %q: %v", userEmail, err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
body, err := ioutil.ReadAll(r.Body)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to read body: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
var input console.User
|
|
|
|
|
|
|
|
err = json.Unmarshal(body, &input)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to unmarshal request: %v", err), http.StatusBadRequest)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
if input.FullName != "" {
|
|
|
|
user.FullName = input.FullName
|
|
|
|
}
|
|
|
|
if input.ShortName != "" {
|
|
|
|
user.ShortName = input.ShortName
|
|
|
|
}
|
|
|
|
if input.Email != "" {
|
|
|
|
user.Email = input.Email
|
|
|
|
}
|
|
|
|
if !input.PartnerID.IsZero() {
|
|
|
|
user.PartnerID = input.PartnerID
|
|
|
|
}
|
|
|
|
if len(input.PasswordHash) > 0 {
|
|
|
|
user.PasswordHash = input.PasswordHash
|
|
|
|
}
|
|
|
|
|
|
|
|
err = server.db.Console().Users().Update(ctx, user)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to update user: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
}
|
2020-07-06 22:31:40 +01:00
|
|
|
|
|
|
|
func (server *Server) deleteUser(w http.ResponseWriter, r *http.Request) {
|
|
|
|
ctx := r.Context()
|
|
|
|
|
|
|
|
vars := mux.Vars(r)
|
|
|
|
userEmail, ok := vars["useremail"]
|
|
|
|
if !ok {
|
|
|
|
http.Error(w, "user-email missing", http.StatusBadRequest)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
user, err := server.db.Console().Users().GetByEmail(ctx, userEmail)
|
|
|
|
if errors.Is(err, sql.ErrNoRows) {
|
|
|
|
http.Error(w, fmt.Sprintf("user with email %q not found", userEmail), http.StatusNotFound)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("failed to get user %q: %v", userEmail, err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// Ensure user has no own projects any longer
|
|
|
|
projects, err := server.db.Console().Projects().GetByUserID(ctx, user.ID)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("unable to list buckets: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if len(projects) > 0 {
|
|
|
|
http.Error(w, fmt.Sprintf("some projects still exist: %v", projects), http.StatusConflict)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// Delete memberships in foreign projects
|
|
|
|
members, err := server.db.Console().ProjectMembers().GetByMemberID(ctx, user.ID)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("unable to search for user project memberships: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if len(members) > 0 {
|
|
|
|
for _, project := range members {
|
|
|
|
err := server.db.Console().ProjectMembers().Delete(ctx, user.ID, project.ProjectID)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("unable to delete user project membership: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// ensure no unpaid invoices exist.
|
2020-07-16 12:58:40 +01:00
|
|
|
invoices, err := server.payments.Invoices().List(ctx, user.ID)
|
2020-07-06 22:31:40 +01:00
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("unable to list user invoices: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if len(invoices) > 0 {
|
|
|
|
for _, invoice := range invoices {
|
|
|
|
if invoice.Status != "paid" {
|
|
|
|
http.Error(w, "user has unpaid/pending invoices", http.StatusConflict)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-07-16 12:58:40 +01:00
|
|
|
hasItems, err := server.payments.Invoices().CheckPendingItems(ctx, user.ID)
|
2020-07-06 22:31:40 +01:00
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("unable to list pending invoice items: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
if hasItems {
|
|
|
|
http.Error(w, "user has pending invoice items", http.StatusConflict)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
userInfo := &console.User{
|
|
|
|
ID: user.ID,
|
|
|
|
FullName: "",
|
|
|
|
ShortName: "",
|
|
|
|
Email: fmt.Sprintf("deactivated+%s@storj.io", user.ID.String()),
|
|
|
|
Status: console.Deleted,
|
|
|
|
}
|
|
|
|
|
|
|
|
err = server.db.Console().Users().Update(ctx, userInfo)
|
|
|
|
if err != nil {
|
|
|
|
http.Error(w, fmt.Sprintf("unable to delete user: %v", err), http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
}
|