191 lines
4.6 KiB
Go
191 lines
4.6 KiB
Go
package handler
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
|
|
"mstore/app/descr"
|
|
"mstore/app/operator"
|
|
"mstore/app/router"
|
|
)
|
|
|
|
func (hand *Handler) CheckRight(ctx context.Context, accountID, right, subject string) (bool, error) {
|
|
var err error
|
|
var res bool
|
|
hand.logg.Debugf("Cop check your right %s: %s %s", accountID, right, subject)
|
|
// =[]=
|
|
// /------\
|
|
// .---[-] [#] \--,
|
|
// >| [ ] [ ] |
|
|
// '--0-------0----'
|
|
// Bad news for you, baby.... #
|
|
|
|
res = true
|
|
return res, err
|
|
}
|
|
|
|
// POST /v3/account/create 200 200
|
|
func (hand *Handler) CreateAccount(rctx *router.Context) {
|
|
var err error
|
|
|
|
params := &operator.CreateAccountParams{}
|
|
err = rctx.BindJSON(params)
|
|
if err != nil {
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
// Rigth checking
|
|
operatorID, _ := rctx.GetString(userTag)
|
|
opEnable, err := hand.CheckRight(rctx.Ctx, operatorID, descr.RightWriteAccounts, "")
|
|
if err != nil {
|
|
err := fmt.Errorf("Operation error: %v", err)
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
if !opEnable {
|
|
err := fmt.Errorf("Operation not enabled for this account")
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
// Execution of the operation
|
|
res, err := hand.oper.CreateAccount(rctx.Ctx, operatorID, params)
|
|
if err != nil {
|
|
hand.logg.Errorf("Operation error: %v", err)
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
hand.SendResult(rctx, res)
|
|
}
|
|
|
|
// POST /v3/account/get 200 200
|
|
func (hand *Handler) GetAccount(rctx *router.Context) {
|
|
var err error
|
|
|
|
params := &operator.GetAccountParams{}
|
|
err = rctx.BindJSON(params)
|
|
if err != nil {
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
// Rigth checking
|
|
operatorID, _ := rctx.GetString(userTag)
|
|
opEnable, err := hand.CheckRight(rctx.Ctx, operatorID, descr.RightWriteAccounts, "")
|
|
if err != nil {
|
|
err := fmt.Errorf("Operation error: %v", err)
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
if !opEnable {
|
|
err := fmt.Errorf("Operation not enabled for this account")
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
// Execution of the operation
|
|
res, err := hand.oper.GetAccount(rctx.Ctx, params)
|
|
if err != nil {
|
|
hand.logg.Errorf("Operation error: %v", err)
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
hand.SendResult(rctx, res)
|
|
}
|
|
|
|
// POST /v3/accounts/list 200 200
|
|
func (hand *Handler) ListAccounts(rctx *router.Context) {
|
|
var err error
|
|
|
|
params := &operator.ListAccountsParams{}
|
|
err = rctx.BindJSON(params)
|
|
if err != nil {
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
// Rigth checking
|
|
operatorID, _ := rctx.GetString(userTag)
|
|
opEnable, err := hand.CheckRight(rctx.Ctx, operatorID, descr.RightWriteAccounts, "")
|
|
if err != nil {
|
|
err := fmt.Errorf("Operation error: %v", err)
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
if !opEnable {
|
|
err := fmt.Errorf("Operation not enabled for this account")
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
// Execution of the operation
|
|
res, err := hand.oper.ListAccounts(rctx.Ctx, params)
|
|
if err != nil {
|
|
hand.logg.Errorf("ListAccounts error: %v", err)
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
hand.SendResult(rctx, res)
|
|
}
|
|
|
|
// POST /v3/account/get 200 200
|
|
func (hand *Handler) UpdateAccount(rctx *router.Context) {
|
|
var err error
|
|
|
|
params := &operator.UpdateAccountParams{}
|
|
err = rctx.BindJSON(params)
|
|
if err != nil {
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
// Rigth checking
|
|
operatorID, _ := rctx.GetString(userTag)
|
|
opEnable, err := hand.CheckRight(rctx.Ctx, operatorID, descr.RightWriteAccounts, "")
|
|
if err != nil {
|
|
err := fmt.Errorf("Operation error: %v", err)
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
if !opEnable {
|
|
err := fmt.Errorf("Operation not enabled for this account")
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
// Execution of the operation
|
|
res, err := hand.oper.UpdateAccount(rctx.Ctx, params)
|
|
if err != nil {
|
|
hand.logg.Errorf("UpdateAccount error: %v", err)
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
hand.SendResult(rctx, res)
|
|
}
|
|
|
|
// POST /v3/account/delete 200 200
|
|
func (hand *Handler) DeleteAccount(rctx *router.Context) {
|
|
var err error
|
|
|
|
params := &operator.DeleteAccountParams{}
|
|
err = rctx.BindJSON(params)
|
|
if err != nil {
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
// Rigth checking
|
|
operatorID, _ := rctx.GetString(userTag)
|
|
opEnable, err := hand.CheckRight(rctx.Ctx, operatorID, descr.RightWriteAccounts, params.Username)
|
|
if err != nil {
|
|
err := fmt.Errorf("Operation error: %v", err)
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
if !opEnable {
|
|
err := fmt.Errorf("Operation not enabled for this account")
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
// Execution of the operation
|
|
res, err := hand.oper.DeleteAccount(rctx.Ctx, params)
|
|
if err != nil {
|
|
hand.logg.Errorf("DeleteAccount error: %v", err)
|
|
hand.SendError(rctx, err)
|
|
return
|
|
}
|
|
hand.SendResult(rctx, res)
|
|
}
|