Skip to content

Commit

Permalink
replaced and updated submodules
Browse files Browse the repository at this point in the history
  • Loading branch information
@TangentFoxy
TangentFoxy committed Jan 4, 2018
1 parent fa35312 commit 4c831c9
Show file tree
Hide file tree
Showing 8 changed files with 378 additions and 9 deletions.
6 changes: 0 additions & 6 deletions .gitmodules
View file

This file was deleted.

2 changes: 1 addition & 1 deletion app.moon
View file
Expand Up @@ -13,7 +13,7 @@ class extends lapis.Application

@include "applications.posts"

@include "githook/githook"
@include "githook"
@include "users/users"
@include "contact"
@include "ksp"
Expand Down
1 change: 0 additions & 1 deletion githook
Submodule githook deleted from 22e4a4
16 changes: 16 additions & 0 deletions githook.moon
View file
@@ -0,0 +1,16 @@
lapis = require "lapis"
config = require("lapis.config").get!

class GithookApp extends lapis.Application
[githook: "/githook"]: =>
os.execute "echo \"Updating server...\" >> logs/updates.log"
result = 0 == os.execute "git pull origin >> logs/updates.log"
result = (0 == os.execute "git submodule init >> logs/updates.log") and result
result = (0 == os.execute "git submodule update >> logs/updates.log") and result
result = (0 == os.execute "moonc . 2>> logs/updates.log") and result
result = (0 == os.execute "lapis migrate #{config._name} >> logs/updates.log") and result
result = (0 == os.execute "lapis build #{config._name} >> logs/updates.log") and result
if result
return { json: { status: "successful", message: "server updated to latest version" } }
else
return { json: { status: "failure", message: "check logs/updates.log"} }, status: 500 --Internal Server Error
1 change: 0 additions & 1 deletion users
Submodule users deleted from bb9caa
21 changes: 21 additions & 0 deletions users/models/Users.moon
View file
@@ -0,0 +1,21 @@
import Model from require "lapis.db.model"
import trim from require "lapis.util"

class Users extends Model
@constraints: {
name: (value) =>
if not value
return "You must enter a username."

value = trim value

if value\find "%W"
return "Usernames can only contain alphanumeric characters."

if Users\find name: value
return "That username is already taken."

lower = value\lower!
if (lower == "admin") or (lower == "administrator") or (lower == "new") or (lower == "edit") or (lower == "create") or (lower == "login") or (lower == "logout") or (lower == "me")
return "That username is already taken."
}
265 changes: 265 additions & 0 deletions users/users.moon
View file
@@ -0,0 +1,265 @@
lapis = require "lapis"
csrf = require "lapis.csrf"
config = require("lapis.config").get!

bcrypt = require "bcrypt"

import respond_to from require "lapis.application"

Users = require "users.models.Users"

class extends lapis.Application
@path: "/users"
@name: "user_"

[new: "/new"]: respond_to {
GET: =>
if @session.id
@session.info = "You are logged into an account already."
return redirect_to: @url_for "user_me"

csrf_token = csrf.generate_token @

@html ->
form {
action: @url_for "user_new"
method: "POST"
enctype: "multipart/form-data"
}, ->
p "Username: "
input type: "text", name: "name"
p "Password: "
input type: "password", name: "password"
br!
input type: "hidden", name: "csrf_token", value: csrf_token
input type: "submit"

POST: =>
csrf.assert_token @
if #@params.password < 8
@session.info = "Your password must be at least 8 characters long."
return redirect_to: @url_for "user_new"

digest = bcrypt.digest @params.password, config.digest_rounds

user, errMsg = Users\create {
name: @params.name
digest: digest
}

if user
@session.id = user.id
if tonumber(Users\count!) < 2
user\update { admin: true }
return redirect_to: @url_for "index"
else
@session.info = "Error while creating user: #{errMsg}"
return redirect_to: @url_for "user_new"
}

[me: "/me"]: =>
unless @session.id
@session.info = "You are not logged in."
return redirect_to: @url_for "user_login"

user = Users\find id: @session.id

@html ->
p "Username: #{user.name}"
p "User ID: #{user.id}"
p "Is admin? #{user.admin}"
p -> a href: @url_for("user_edit"), "Edit"

[edit: "/edit"]: respond_to {
GET: =>
unless @session.id
@session.info = "You are not logged in."
return redirect_to: @url_for "user_login"

csrf_token = csrf.generate_token @
user = Users\find id: @session.id

@html ->
form {
action: @url_for "user_edit"
method: "POST"
enctype: "multipart/form-data"
}, ->
text "Change username? "
input type: "text", name: "name", placeholder: user.name
br!
input type: "hidden", name: "csrf_token", value: csrf_token
input type: "submit"
hr!

form {
action: @url_for "user_edit"
method: "POST"
enctype: "multipart/form-data"
}, ->
p "Change password?"
element "table", ->
tr ->
td "Old password:"
td -> input type: "password", name: "oldpassword"
tr ->
td "New password:"
td -> input type: "password", name: "password"
input type: "hidden", name: "csrf_token", value: csrf_token
input type: "submit"
hr!

form {
action: @url_for "user_edit"
method: "POST"
enctype: "multipart/form-data"
onsubmit: "return confirm('Are you sure you want to do this?');"
}, ->
text "Delete user? "
input type: "checkbox", name: "delete"
br!
input type: "hidden", name: "csrf_token", value: csrf_token
input type: "submit"

POST: =>
csrf.assert_token @
user = Users\find id: @session.id

if @params.name != ""
user\update { name: @params.name }
return redirect_to: @url_for "user_me"

elseif @params.password != ""
if bcrypt.verify @params.oldpassword, user.digest
digest = bcrypt.digest @params.password, config.digest_rounds

user\update {
digest: digest
}
else
@session.info = "Incorrect password."
return redirect_to: @url_for "user_edit"

elseif @params.delete
if user\delete!
@session.id = nil
@session.info = "Account deleted."
return redirect_to: @url_for "index"
else
@session.info = "There was an error while deleting your account."
return redirect_to: @url_for "index"

return redirect_to: @url_for "user_edit"
}

[admin: "/admin"]: respond_to {
GET: =>
unless @session.id
return redirect_to: @url_for "index"

csrf_token = csrf.generate_token @
user = Users\find id: @session.id

unless user.admin
return redirect_to: @url_for "index"

@user_editing = Users\find id: @session.id

render: require "users.views.admin"

POST: =>
unless @session.id
return redirect_to: @url_for "index"

csrf.assert_token @
user = Users\find id: @session.id

unless user.admin
return redirect_to: @url_for "index"

if @params.change_name and @params.change_name\len! > 0
@user_editing = Users\find name: @params.change_name
elseif @params.change_id
@user_editing = Users\find id: @params.change_id
else
@user_editing = Users\find id: @params.id

if @params.name and @params.name\len! > 0
@user_editing\update {
name: @params.name
}
elseif @params.password and @params.password\len! > 0
digest = bcrypt.digest @params.password, config.digest_rounds
@user_editing\update {
digest: digest
}
elseif @params.admin ~= nil
@user_editing\update {
admin: @params.admin
}
elseif @params.delete
if @user_editing\delete!
@user_editing = user
else
@session.info = "Error deleting that account."
return redirect_to: @url_for "user_admin"

--if not @user_editing
-- @user_editing = user

return render: require "users.views.admin"
}

[list: "/list"]: =>
unless @session.id and (Users\find id: @session.id).admin
return redirect_to: @url_for "index"

users = Users\select "WHERE true ORDER BY name ASC"

@html ->
p "#{Users\count!} users."
ul ->
for user in *users
li "#{user.name} (#{user.id})"

[login: "/login"]: respond_to {
GET: =>
if @session.id
@session.info = "You are already logged in."
return redirect_to: @url_for "user_me"

csrf_token = csrf.generate_token @

@html ->
form {
action: @url_for "user_login"
method: "POST"
enctype: "multipart/form-data"
}, ->
text "Username: "
input type: "text", name: "name"
br!
text "Password: "
input type: "password", name: "password"
br!
input type: "hidden", name: "csrf_token", value: csrf_token
input type: "submit"

POST: =>
csrf.assert_token @
if user = Users\find name: @params.name
if bcrypt.verify @params.password, user.digest
@session.id = user.id
@session.info = "Logged in."
if @session.redirect
return redirect_to: @session.redirect
else
return redirect_to: @url_for "user_me"

@session.info = "Invalid username or password."
return redirect_to: @url_for "user_login"
}

[logout: "/logout"]: =>
@session.id = nil
return redirect_to: @url_for "index"

0 comments on commit 4c831c9

Please sign in to comment.