Working on the admin interface

+ Implemented login token + Routing + Admin controller + Login Page * Updated `.env` example
2026-02-23 15:50:46 +02:00 · 2022-06-02 23:53:32 +03:00
parent 662dad90b7
commit d949b3decb
6 changed files with 164 additions and 1 deletions
--- a/lib/controllers/controllers_admin.go
+++ b/lib/controllers/controllers_admin.go
@@ -0,0 +1,19 @@
+package controllers
+
+import (
+	"fmt"
+
+	"github.com/gin-gonic/gin"
+)
+
+func AdminMiddleware(router *gin.RouterGroup) {
+
+	// Handl
+	router.Use(func(ctx *gin.Context) {
+
+		// Check which route we are accessing
+		fmt.Println(`Accesing: `, ctx.Request.RequestURI)
+
+	})
+
+}
--- a/lib/helper/helper_main.go
+++ b/lib/helper/helper_main.go
@@ -72,3 +72,18 @@ func GetCacheMapLimit() int {

 	return rez
 }
+
+// Get the admin token used to authenticate as an admin
+func GetAdminToken() string {
+	// Get the admin login from the environment
+	adminToken, exists := os.LookupEnv("ADMIN_TOKEN")
+
+	// Check if the admin token was defined
+	if !exists {
+		// The admin token was not defined, disable admin logins
+		return ""
+	}
+
+	// Return the admin token
+	return adminToken
+}
--- a/lib/routes/routes_admin.go
+++ b/lib/routes/routes_admin.go
@@ -0,0 +1,80 @@
+package routes
+
+import (
+	"encoding/hex"
+	"fmt"
+	"net/http"
+
+	"github.com/JustKato/FreePad/lib/controllers"
+	"github.com/JustKato/FreePad/lib/helper"
+	"github.com/gin-gonic/gin"
+
+	"crypto/sha512"
+)
+
+var adminLoginToken string = ""
+
+func AdminRoutes(router *gin.RouterGroup) {
+
+	adminLoginToken = helper.GetAdminToken()
+
+	// Apply the admin middleware for identification
+	controllers.AdminMiddleware(router)
+
+	// Admin login route
+	router.GET("/login", func(ctx *gin.Context) {
+		ctx.HTML(200, "admin_login.html", gin.H{
+			"title":       "Login Login",
+			"domain_base": helper.GetDomainBase(),
+		})
+	})
+
+	router.POST("/login", func(ctx *gin.Context) {
+
+		// Get the value of the admin token
+		adminToken := ctx.PostForm("admin-token")
+
+		// Check if the input admin token matches our admin token
+		if adminLoginToken != "" && adminLoginToken == adminToken {
+
+			sha512Hasher := sha512.New()
+			sha512Hasher.Write([]byte(adminToken))
+
+			// Set the cookie to be an admin
+			hashHexToken := sha512Hasher.Sum(nil)
+			hashToken := hex.EncodeToString(hashHexToken)
+
+			fmt.Println(hashToken)
+
+			// Set the cookie
+			ctx.SetCookie("admin_token", hashToken, 60*60, "/", helper.GetDomainBase(), true, true)
+
+			ctx.Request.Method = "GET"
+
+			// Redirect the user to the admin page
+			ctx.Redirect(http.StatusTemporaryRedirect, "/admin")
+			return
+		} else {
+			ctx.Request.Method = "GET"
+
+			// Redirect the user to the admin page
+			ctx.Redirect(http.StatusTemporaryRedirect, "/admin/login?fail")
+			return
+		}
+
+	})
+
+	// Admin view route
+	router.GET("/", func(ctx *gin.Context) {
+
+		adminToken, err := ctx.Cookie("admin_token")
+		if err != nil {
+			adminToken = ""
+		}
+
+		ctx.JSON(200, gin.H{
+			`adminToken`: adminToken,
+		})
+	})
+
+}