mirror of https://github.com/Xhofe/alist
66 lines
1.6 KiB
Go
66 lines
1.6 KiB
Go
package controllers
|
|
|
|
import (
|
|
"github.com/Xhofe/go-cache"
|
|
"github.com/alist-org/alist/v3/internal/db"
|
|
"github.com/alist-org/alist/v3/internal/model"
|
|
common2 "github.com/alist-org/alist/v3/server/common"
|
|
"github.com/gin-gonic/gin"
|
|
"time"
|
|
)
|
|
|
|
var loginCache = cache.NewMemCache[int]()
|
|
var (
|
|
defaultDuration = time.Minute * 5
|
|
defaultTimes = 5
|
|
)
|
|
|
|
type LoginReq struct {
|
|
Username string `json:"username"`
|
|
Password string `json:"password"`
|
|
}
|
|
|
|
func Login(c *gin.Context) {
|
|
// check count of login
|
|
ip := c.ClientIP()
|
|
count, ok := loginCache.Get(ip)
|
|
if ok && count >= defaultTimes {
|
|
common2.ErrorStrResp(c, "Too many unsuccessful sign-in attempts have been made using an incorrect password. Try again later.", 403)
|
|
loginCache.Expire(ip, defaultDuration)
|
|
return
|
|
}
|
|
// check username
|
|
var req LoginReq
|
|
if err := c.ShouldBind(&req); err != nil {
|
|
common2.ErrorResp(c, err, 400)
|
|
return
|
|
}
|
|
user, err := db.GetUserByName(req.Username)
|
|
if err != nil {
|
|
common2.ErrorResp(c, err, 400)
|
|
return
|
|
}
|
|
// validate password
|
|
if err := user.ValidatePassword(req.Password); err != nil {
|
|
common2.ErrorResp(c, err, 400)
|
|
loginCache.Set(ip, count+1)
|
|
return
|
|
}
|
|
// generate token
|
|
token, err := common2.GenerateToken(user.Username)
|
|
if err != nil {
|
|
common2.ErrorResp(c, err, 400)
|
|
return
|
|
}
|
|
common2.SuccessResp(c, gin.H{"token": token})
|
|
loginCache.Del(ip)
|
|
}
|
|
|
|
// CurrentUser get current user by token
|
|
// if token is empty, return guest user
|
|
func CurrentUser(c *gin.Context) {
|
|
user := c.MustGet("user").(*model.User)
|
|
user.Password = ""
|
|
common2.SuccessResp(c, gin.H{"user": user})
|
|
}
|