forked from Shiloh/githaven
90dd0657b5
* Add support for federated avatars Fixes #3105 Removes avatar fetching duplication code Adds an "Enable Federated Avatar" checkbox in user settings (defaults to unchecked) Moves avatar settings all in the same form, making local and remote avatars mutually exclusive Renames UploadAvatarForm to AvatarForm as it's not anymore only for uploading * Run gofmt on all modified files * Move Avatar form in its own page * Add go-libravatar dependency to vendor/ dir Hopefully helps with accepting the contribution. See also #3214 * Revert "Add go-libravatar dependency to vendor/ dir" This reverts commit a8cb93ae640bbb90f7d25012fc257bda9fae9b82. * Make federated avatar setting a global configuration Removes the per-user setting * Move avatar handling back to base tool, disable federated avatar in offline mode * Format, handle error * Properly set fallback host * Use unsupported github.com mirror for importing go-libravatar * Remove comment showing life exists outside of github.com ... pity, but contribution would not be accepted otherwise * Use Combo for Get and Post methods over /avatar * FEDERATED_AVATAR -> ENABLE_FEDERATED_AVATAR * Fix persistance of federated avatar lookup checkbox at install time * Federated Avatars -> Enable Federated Avatars * Use len(string) == 0 instead of string == "" * Move import line where it belong See https://github.com/Unknwon/go-code-convention/blob/master/en-US/import_packages.md Pity the import url is still the unofficial one, but oh well... * Save a line (and waste much more expensive time) * Remove redundant parens * Remove an empty line * Remove empty lines * Reorder lines to make diff smaller * Remove another newline Unknwon review got me start a fight against newlines * Move DISABLE_GRAVATAR and ENABLE_FEDERATED_AVATAR after OFFLINE_MODE On re-reading the diff I figured what Unknwon meant here: https://github.com/gogits/gogs/pull/3320/files#r73741106 * Remove newlines that weren't there before my intervention
453 lines
13 KiB
Go
453 lines
13 KiB
Go
// Copyright 2014 The Gogs Authors. All rights reserved.
|
|
// Use of this source code is governed by a MIT-style
|
|
// license that can be found in the LICENSE file.
|
|
|
|
package user
|
|
|
|
import (
|
|
"errors"
|
|
"fmt"
|
|
"io/ioutil"
|
|
"strings"
|
|
|
|
"github.com/Unknwon/com"
|
|
|
|
"github.com/gogits/gogs/models"
|
|
"github.com/gogits/gogs/modules/auth"
|
|
"github.com/gogits/gogs/modules/base"
|
|
"github.com/gogits/gogs/modules/context"
|
|
"github.com/gogits/gogs/modules/log"
|
|
"github.com/gogits/gogs/modules/setting"
|
|
)
|
|
|
|
const (
|
|
SETTINGS_PROFILE base.TplName = "user/settings/profile"
|
|
SETTINGS_AVATAR base.TplName = "user/settings/avatar"
|
|
SETTINGS_PASSWORD base.TplName = "user/settings/password"
|
|
SETTINGS_EMAILS base.TplName = "user/settings/email"
|
|
SETTINGS_SSH_KEYS base.TplName = "user/settings/sshkeys"
|
|
SETTINGS_SOCIAL base.TplName = "user/settings/social"
|
|
SETTINGS_APPLICATIONS base.TplName = "user/settings/applications"
|
|
SETTINGS_DELETE base.TplName = "user/settings/delete"
|
|
NOTIFICATION base.TplName = "user/notification"
|
|
SECURITY base.TplName = "user/security"
|
|
)
|
|
|
|
func Settings(ctx *context.Context) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsProfile"] = true
|
|
ctx.HTML(200, SETTINGS_PROFILE)
|
|
}
|
|
|
|
func handleUsernameChange(ctx *context.Context, newName string) {
|
|
// Non-local users are not allowed to change their username.
|
|
if len(newName) == 0 || !ctx.User.IsLocal() {
|
|
return
|
|
}
|
|
|
|
// Check if user name has been changed
|
|
if ctx.User.LowerName != strings.ToLower(newName) {
|
|
if err := models.ChangeUserName(ctx.User, newName); err != nil {
|
|
switch {
|
|
case models.IsErrUserAlreadyExist(err):
|
|
ctx.Flash.Error(ctx.Tr("newName_been_taken"))
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings")
|
|
case models.IsErrEmailAlreadyUsed(err):
|
|
ctx.Flash.Error(ctx.Tr("form.email_been_used"))
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings")
|
|
case models.IsErrNameReserved(err):
|
|
ctx.Flash.Error(ctx.Tr("user.newName_reserved"))
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings")
|
|
case models.IsErrNamePatternNotAllowed(err):
|
|
ctx.Flash.Error(ctx.Tr("user.newName_pattern_not_allowed"))
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings")
|
|
default:
|
|
ctx.Handle(500, "ChangeUserName", err)
|
|
}
|
|
return
|
|
}
|
|
log.Trace("User name changed: %s -> %s", ctx.User.Name, newName)
|
|
}
|
|
|
|
// In case it's just a case change
|
|
ctx.User.Name = newName
|
|
ctx.User.LowerName = strings.ToLower(newName)
|
|
}
|
|
|
|
func SettingsPost(ctx *context.Context, form auth.UpdateProfileForm) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsProfile"] = true
|
|
|
|
if ctx.HasError() {
|
|
ctx.HTML(200, SETTINGS_PROFILE)
|
|
return
|
|
}
|
|
|
|
handleUsernameChange(ctx, form.Name)
|
|
if ctx.Written() {
|
|
return
|
|
}
|
|
|
|
ctx.User.FullName = form.FullName
|
|
ctx.User.Email = form.Email
|
|
ctx.User.Website = form.Website
|
|
ctx.User.Location = form.Location
|
|
if err := models.UpdateUser(ctx.User); err != nil {
|
|
ctx.Handle(500, "UpdateUser", err)
|
|
return
|
|
}
|
|
|
|
log.Trace("User settings updated: %s", ctx.User.Name)
|
|
ctx.Flash.Success(ctx.Tr("settings.update_profile_success"))
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings")
|
|
}
|
|
|
|
// FIXME: limit size.
|
|
func UpdateAvatarSetting(ctx *context.Context, form auth.AvatarForm, ctxUser *models.User) error {
|
|
ctxUser.UseCustomAvatar = form.Source == auth.AVATAR_LOCAL
|
|
if len(form.Gravatar) > 0 {
|
|
ctxUser.Avatar = base.EncodeMD5(form.Gravatar)
|
|
ctxUser.AvatarEmail = form.Gravatar
|
|
}
|
|
|
|
if form.Avatar != nil {
|
|
fr, err := form.Avatar.Open()
|
|
if err != nil {
|
|
return fmt.Errorf("Avatar.Open: %v", err)
|
|
}
|
|
defer fr.Close()
|
|
|
|
data, err := ioutil.ReadAll(fr)
|
|
if err != nil {
|
|
return fmt.Errorf("ioutil.ReadAll: %v", err)
|
|
}
|
|
if _, ok := base.IsImageFile(data); !ok {
|
|
return errors.New(ctx.Tr("settings.uploaded_avatar_not_a_image"))
|
|
}
|
|
if err = ctxUser.UploadAvatar(data); err != nil {
|
|
return fmt.Errorf("UploadAvatar: %v", err)
|
|
}
|
|
} else {
|
|
// No avatar is uploaded but setting has been changed to enable,
|
|
// generate a random one when needed.
|
|
if ctxUser.UseCustomAvatar && !com.IsFile(ctxUser.CustomAvatarPath()) {
|
|
if err := ctxUser.GenerateRandomAvatar(); err != nil {
|
|
log.Error(4, "GenerateRandomAvatar[%d]: %v", ctxUser.ID, err)
|
|
}
|
|
}
|
|
}
|
|
|
|
if err := models.UpdateUser(ctxUser); err != nil {
|
|
return fmt.Errorf("UpdateUser: %v", err)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func SettingsAvatar(ctx *context.Context) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsAvatar"] = true
|
|
ctx.HTML(200, SETTINGS_AVATAR)
|
|
}
|
|
|
|
func SettingsAvatarPost(ctx *context.Context, form auth.AvatarForm) {
|
|
if err := UpdateAvatarSetting(ctx, form, ctx.User); err != nil {
|
|
ctx.Flash.Error(err.Error())
|
|
} else {
|
|
ctx.Flash.Success(ctx.Tr("settings.update_avatar_success"))
|
|
}
|
|
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings/avatar")
|
|
}
|
|
|
|
func SettingsDeleteAvatar(ctx *context.Context) {
|
|
if err := ctx.User.DeleteAvatar(); err != nil {
|
|
ctx.Flash.Error(err.Error())
|
|
}
|
|
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings/avatar")
|
|
}
|
|
|
|
func SettingsPassword(ctx *context.Context) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsPassword"] = true
|
|
ctx.HTML(200, SETTINGS_PASSWORD)
|
|
}
|
|
|
|
func SettingsPasswordPost(ctx *context.Context, form auth.ChangePasswordForm) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsPassword"] = true
|
|
|
|
if ctx.HasError() {
|
|
ctx.HTML(200, SETTINGS_PASSWORD)
|
|
return
|
|
}
|
|
|
|
if !ctx.User.ValidatePassword(form.OldPassword) {
|
|
ctx.Flash.Error(ctx.Tr("settings.password_incorrect"))
|
|
} else if form.Password != form.Retype {
|
|
ctx.Flash.Error(ctx.Tr("form.password_not_match"))
|
|
} else {
|
|
ctx.User.Passwd = form.Password
|
|
ctx.User.Salt = models.GetUserSalt()
|
|
ctx.User.EncodePasswd()
|
|
if err := models.UpdateUser(ctx.User); err != nil {
|
|
ctx.Handle(500, "UpdateUser", err)
|
|
return
|
|
}
|
|
log.Trace("User password updated: %s", ctx.User.Name)
|
|
ctx.Flash.Success(ctx.Tr("settings.change_password_success"))
|
|
}
|
|
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings/password")
|
|
}
|
|
|
|
func SettingsEmails(ctx *context.Context) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsEmails"] = true
|
|
|
|
emails, err := models.GetEmailAddresses(ctx.User.ID)
|
|
if err != nil {
|
|
ctx.Handle(500, "GetEmailAddresses", err)
|
|
return
|
|
}
|
|
ctx.Data["Emails"] = emails
|
|
|
|
ctx.HTML(200, SETTINGS_EMAILS)
|
|
}
|
|
|
|
func SettingsEmailPost(ctx *context.Context, form auth.AddEmailForm) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsEmails"] = true
|
|
|
|
// Make emailaddress primary.
|
|
if ctx.Query("_method") == "PRIMARY" {
|
|
if err := models.MakeEmailPrimary(&models.EmailAddress{ID: ctx.QueryInt64("id")}); err != nil {
|
|
ctx.Handle(500, "MakeEmailPrimary", err)
|
|
return
|
|
}
|
|
|
|
log.Trace("Email made primary: %s", ctx.User.Name)
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings/email")
|
|
return
|
|
}
|
|
|
|
// Add Email address.
|
|
emails, err := models.GetEmailAddresses(ctx.User.ID)
|
|
if err != nil {
|
|
ctx.Handle(500, "GetEmailAddresses", err)
|
|
return
|
|
}
|
|
ctx.Data["Emails"] = emails
|
|
|
|
if ctx.HasError() {
|
|
ctx.HTML(200, SETTINGS_EMAILS)
|
|
return
|
|
}
|
|
|
|
email := &models.EmailAddress{
|
|
UID: ctx.User.ID,
|
|
Email: form.Email,
|
|
IsActivated: !setting.Service.RegisterEmailConfirm,
|
|
}
|
|
if err := models.AddEmailAddress(email); err != nil {
|
|
if models.IsErrEmailAlreadyUsed(err) {
|
|
ctx.RenderWithErr(ctx.Tr("form.email_been_used"), SETTINGS_EMAILS, &form)
|
|
return
|
|
}
|
|
ctx.Handle(500, "AddEmailAddress", err)
|
|
return
|
|
}
|
|
|
|
// Send confirmation email
|
|
if setting.Service.RegisterEmailConfirm {
|
|
models.SendActivateEmailMail(ctx.Context, ctx.User, email)
|
|
|
|
if err := ctx.Cache.Put("MailResendLimit_"+ctx.User.LowerName, ctx.User.LowerName, 180); err != nil {
|
|
log.Error(4, "Set cache(MailResendLimit) fail: %v", err)
|
|
}
|
|
ctx.Flash.Info(ctx.Tr("settings.add_email_confirmation_sent", email.Email, setting.Service.ActiveCodeLives/60))
|
|
} else {
|
|
ctx.Flash.Success(ctx.Tr("settings.add_email_success"))
|
|
}
|
|
|
|
log.Trace("Email address added: %s", email.Email)
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings/email")
|
|
}
|
|
|
|
func DeleteEmail(ctx *context.Context) {
|
|
if err := models.DeleteEmailAddress(&models.EmailAddress{ID: ctx.QueryInt64("id")}); err != nil {
|
|
ctx.Handle(500, "DeleteEmail", err)
|
|
return
|
|
}
|
|
log.Trace("Email address deleted: %s", ctx.User.Name)
|
|
|
|
ctx.Flash.Success(ctx.Tr("settings.email_deletion_success"))
|
|
ctx.JSON(200, map[string]interface{}{
|
|
"redirect": setting.AppSubUrl + "/user/settings/email",
|
|
})
|
|
}
|
|
|
|
func SettingsSSHKeys(ctx *context.Context) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsSSHKeys"] = true
|
|
|
|
keys, err := models.ListPublicKeys(ctx.User.ID)
|
|
if err != nil {
|
|
ctx.Handle(500, "ListPublicKeys", err)
|
|
return
|
|
}
|
|
ctx.Data["Keys"] = keys
|
|
|
|
ctx.HTML(200, SETTINGS_SSH_KEYS)
|
|
}
|
|
|
|
func SettingsSSHKeysPost(ctx *context.Context, form auth.AddSSHKeyForm) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsSSHKeys"] = true
|
|
|
|
keys, err := models.ListPublicKeys(ctx.User.ID)
|
|
if err != nil {
|
|
ctx.Handle(500, "ListPublicKeys", err)
|
|
return
|
|
}
|
|
ctx.Data["Keys"] = keys
|
|
|
|
if ctx.HasError() {
|
|
ctx.HTML(200, SETTINGS_SSH_KEYS)
|
|
return
|
|
}
|
|
|
|
content, err := models.CheckPublicKeyString(form.Content)
|
|
if err != nil {
|
|
if models.IsErrKeyUnableVerify(err) {
|
|
ctx.Flash.Info(ctx.Tr("form.unable_verify_ssh_key"))
|
|
} else {
|
|
ctx.Flash.Error(ctx.Tr("form.invalid_ssh_key", err.Error()))
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings/ssh")
|
|
return
|
|
}
|
|
}
|
|
|
|
if _, err = models.AddPublicKey(ctx.User.ID, form.Title, content); err != nil {
|
|
ctx.Data["HasError"] = true
|
|
switch {
|
|
case models.IsErrKeyAlreadyExist(err):
|
|
ctx.Data["Err_Content"] = true
|
|
ctx.RenderWithErr(ctx.Tr("settings.ssh_key_been_used"), SETTINGS_SSH_KEYS, &form)
|
|
case models.IsErrKeyNameAlreadyUsed(err):
|
|
ctx.Data["Err_Title"] = true
|
|
ctx.RenderWithErr(ctx.Tr("settings.ssh_key_name_used"), SETTINGS_SSH_KEYS, &form)
|
|
default:
|
|
ctx.Handle(500, "AddPublicKey", err)
|
|
}
|
|
return
|
|
}
|
|
|
|
ctx.Flash.Success(ctx.Tr("settings.add_key_success", form.Title))
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings/ssh")
|
|
}
|
|
|
|
func DeleteSSHKey(ctx *context.Context) {
|
|
if err := models.DeletePublicKey(ctx.User, ctx.QueryInt64("id")); err != nil {
|
|
ctx.Flash.Error("DeletePublicKey: " + err.Error())
|
|
} else {
|
|
ctx.Flash.Success(ctx.Tr("settings.ssh_key_deletion_success"))
|
|
}
|
|
|
|
ctx.JSON(200, map[string]interface{}{
|
|
"redirect": setting.AppSubUrl + "/user/settings/ssh",
|
|
})
|
|
}
|
|
|
|
func SettingsApplications(ctx *context.Context) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsApplications"] = true
|
|
|
|
tokens, err := models.ListAccessTokens(ctx.User.ID)
|
|
if err != nil {
|
|
ctx.Handle(500, "ListAccessTokens", err)
|
|
return
|
|
}
|
|
ctx.Data["Tokens"] = tokens
|
|
|
|
ctx.HTML(200, SETTINGS_APPLICATIONS)
|
|
}
|
|
|
|
func SettingsApplicationsPost(ctx *context.Context, form auth.NewAccessTokenForm) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsApplications"] = true
|
|
|
|
if ctx.HasError() {
|
|
tokens, err := models.ListAccessTokens(ctx.User.ID)
|
|
if err != nil {
|
|
ctx.Handle(500, "ListAccessTokens", err)
|
|
return
|
|
}
|
|
ctx.Data["Tokens"] = tokens
|
|
ctx.HTML(200, SETTINGS_APPLICATIONS)
|
|
return
|
|
}
|
|
|
|
t := &models.AccessToken{
|
|
UID: ctx.User.ID,
|
|
Name: form.Name,
|
|
}
|
|
if err := models.NewAccessToken(t); err != nil {
|
|
ctx.Handle(500, "NewAccessToken", err)
|
|
return
|
|
}
|
|
|
|
ctx.Flash.Success(ctx.Tr("settings.generate_token_succees"))
|
|
ctx.Flash.Info(t.Sha1)
|
|
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings/applications")
|
|
}
|
|
|
|
func SettingsDeleteApplication(ctx *context.Context) {
|
|
if err := models.DeleteAccessTokenByID(ctx.QueryInt64("id")); err != nil {
|
|
ctx.Flash.Error("DeleteAccessTokenByID: " + err.Error())
|
|
} else {
|
|
ctx.Flash.Success(ctx.Tr("settings.delete_token_success"))
|
|
}
|
|
|
|
ctx.JSON(200, map[string]interface{}{
|
|
"redirect": setting.AppSubUrl + "/user/settings/applications",
|
|
})
|
|
}
|
|
|
|
func SettingsDelete(ctx *context.Context) {
|
|
ctx.Data["Title"] = ctx.Tr("settings")
|
|
ctx.Data["PageIsSettingsDelete"] = true
|
|
|
|
if ctx.Req.Method == "POST" {
|
|
if _, err := models.UserSignIn(ctx.User.Name, ctx.Query("password")); err != nil {
|
|
if models.IsErrUserNotExist(err) {
|
|
ctx.RenderWithErr(ctx.Tr("form.enterred_invalid_password"), SETTINGS_DELETE, nil)
|
|
} else {
|
|
ctx.Handle(500, "UserSignIn", err)
|
|
}
|
|
return
|
|
}
|
|
|
|
if err := models.DeleteUser(ctx.User); err != nil {
|
|
switch {
|
|
case models.IsErrUserOwnRepos(err):
|
|
ctx.Flash.Error(ctx.Tr("form.still_own_repo"))
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings/delete")
|
|
case models.IsErrUserHasOrgs(err):
|
|
ctx.Flash.Error(ctx.Tr("form.still_has_org"))
|
|
ctx.Redirect(setting.AppSubUrl + "/user/settings/delete")
|
|
default:
|
|
ctx.Handle(500, "DeleteUser", err)
|
|
}
|
|
} else {
|
|
log.Trace("Account deleted: %s", ctx.User.Name)
|
|
ctx.Redirect(setting.AppSubUrl + "/")
|
|
}
|
|
return
|
|
}
|
|
|
|
ctx.HTML(200, SETTINGS_DELETE)
|
|
}
|