mirrors
/
gitea
огледало од https://github.com/go-gitea/gitea.git
Прати 1
Волим 0
Креирај огранак 0
Код Дискусије 0 Издања 210 Вики Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
11590 Комити
17 Гране
Дрво: 1bfb0a24d8
Гране Ознаке
${ item.name }
Create branch ${ searchTerm }
from '1bfb0a24d8'
${ noResults }
gitea/routers/web/user/setting/account.go

account.go 10KB
Датотека Blame Историја

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Copyright 2018 The Gitea Authors. All rights reserved.

  3. // Use of this source code is governed by a MIT-style

  4. // license that can be found in the LICENSE file.

  5. 

  6. package setting

  7. 

  8. import (

  9. 	"errors"

  10. 	"net/http"

  11. 	"time"

  12. 

  13. 	"code.gitea.io/gitea/models"

  14. 	"code.gitea.io/gitea/modules/base"

  15. 	"code.gitea.io/gitea/modules/context"

  16. 	"code.gitea.io/gitea/modules/log"

  17. 	"code.gitea.io/gitea/modules/password"

  18. 	"code.gitea.io/gitea/modules/setting"

  19. 	"code.gitea.io/gitea/modules/timeutil"

  20. 	"code.gitea.io/gitea/modules/web"

  21. 	"code.gitea.io/gitea/services/forms"

  22. 	"code.gitea.io/gitea/services/mailer"

  23. )

  24. 

  25. const (

  26. 	tplSettingsAccount base.TplName = "user/settings/account"

  27. )

  28. 

  29. // Account renders change user's password, user's email and user suicide page

  30. func Account(ctx *context.Context) {

  31. 	ctx.Data["Title"] = ctx.Tr("settings")

  32. 	ctx.Data["PageIsSettingsAccount"] = true

  33. 	ctx.Data["Email"] = ctx.User.Email

  34. 

  35. 	loadAccountData(ctx)

  36. 

  37. 	ctx.HTML(http.StatusOK, tplSettingsAccount)

  38. }

  39. 

  40. // AccountPost response for change user's password

  41. func AccountPost(ctx *context.Context) {

  42. 	form := web.GetForm(ctx).(*forms.ChangePasswordForm)

  43. 	ctx.Data["Title"] = ctx.Tr("settings")

  44. 	ctx.Data["PageIsSettingsAccount"] = true

  45. 

  46. 	if ctx.HasError() {

  47. 		loadAccountData(ctx)

  48. 

  49. 		ctx.HTML(http.StatusOK, tplSettingsAccount)

  50. 		return

  51. 	}

  52. 

  53. 	if len(form.Password) < setting.MinPasswordLength {

  54. 		ctx.Flash.Error(ctx.Tr("auth.password_too_short", setting.MinPasswordLength))

  55. 	} else if ctx.User.IsPasswordSet() && !ctx.User.ValidatePassword(form.OldPassword) {

  56. 		ctx.Flash.Error(ctx.Tr("settings.password_incorrect"))

  57. 	} else if form.Password != form.Retype {

  58. 		ctx.Flash.Error(ctx.Tr("form.password_not_match"))

  59. 	} else if !password.IsComplexEnough(form.Password) {

  60. 		ctx.Flash.Error(password.BuildComplexityError(ctx))

  61. 	} else if pwned, err := password.IsPwned(ctx, form.Password); pwned || err != nil {

  62. 		errMsg := ctx.Tr("auth.password_pwned")

  63. 		if err != nil {

  64. 			log.Error(err.Error())

  65. 			errMsg = ctx.Tr("auth.password_pwned_err")

  66. 		}

  67. 		ctx.Flash.Error(errMsg)

  68. 	} else {

  69. 		var err error

  70. 		if err = ctx.User.SetPassword(form.Password); err != nil {

  71. 			ctx.ServerError("UpdateUser", err)

  72. 			return

  73. 		}

  74. 		if err := models.UpdateUserCols(ctx.User, "salt", "passwd_hash_algo", "passwd"); err != nil {

  75. 			ctx.ServerError("UpdateUser", err)

  76. 			return

  77. 		}

  78. 		log.Trace("User password updated: %s", ctx.User.Name)

  79. 		ctx.Flash.Success(ctx.Tr("settings.change_password_success"))

  80. 	}

  81. 

  82. 	ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  83. }

  84. 

  85. // EmailPost response for change user's email

  86. func EmailPost(ctx *context.Context) {

  87. 	form := web.GetForm(ctx).(*forms.AddEmailForm)

  88. 	ctx.Data["Title"] = ctx.Tr("settings")

  89. 	ctx.Data["PageIsSettingsAccount"] = true

  90. 

  91. 	// Make emailaddress primary.

  92. 	if ctx.Query("_method") == "PRIMARY" {

  93. 		if err := models.MakeEmailPrimary(&models.EmailAddress{ID: ctx.QueryInt64("id")}); err != nil {

  94. 			ctx.ServerError("MakeEmailPrimary", err)

  95. 			return

  96. 		}

  97. 

  98. 		log.Trace("Email made primary: %s", ctx.User.Name)

  99. 		ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  100. 		return

  101. 	}

  102. 	// Send activation Email

  103. 	if ctx.Query("_method") == "SENDACTIVATION" {

  104. 		var address string

  105. 		if ctx.Cache.IsExist("MailResendLimit_" + ctx.User.LowerName) {

  106. 			log.Error("Send activation: activation still pending")

  107. 			ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  108. 			return

  109. 		}

  110. 		if ctx.Query("id") == "PRIMARY" {

  111. 			if ctx.User.IsActive {

  112. 				log.Error("Send activation: email not set for activation")

  113. 				ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  114. 				return

  115. 			}

  116. 			mailer.SendActivateAccountMail(ctx.Locale, ctx.User)

  117. 			address = ctx.User.Email

  118. 		} else {

  119. 			id := ctx.QueryInt64("id")

  120. 			email, err := models.GetEmailAddressByID(ctx.User.ID, id)

  121. 			if err != nil {

  122. 				log.Error("GetEmailAddressByID(%d,%d) error: %v", ctx.User.ID, id, err)

  123. 				ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  124. 				return

  125. 			}

  126. 			if email == nil {

  127. 				log.Error("Send activation: EmailAddress not found; user:%d, id: %d", ctx.User.ID, id)

  128. 				ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  129. 				return

  130. 			}

  131. 			if email.IsActivated {

  132. 				log.Error("Send activation: email not set for activation")

  133. 				ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  134. 				return

  135. 			}

  136. 			mailer.SendActivateEmailMail(ctx.User, email)

  137. 			address = email.Email

  138. 		}

  139. 

  140. 		if err := ctx.Cache.Put("MailResendLimit_"+ctx.User.LowerName, ctx.User.LowerName, 180); err != nil {

  141. 			log.Error("Set cache(MailResendLimit) fail: %v", err)

  142. 		}

  143. 		ctx.Flash.Info(ctx.Tr("settings.add_email_confirmation_sent", address, timeutil.MinutesToFriendly(setting.Service.ActiveCodeLives, ctx.Locale.Language())))

  144. 		ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  145. 		return

  146. 	}

  147. 	// Set Email Notification Preference

  148. 	if ctx.Query("_method") == "NOTIFICATION" {

  149. 		preference := ctx.Query("preference")

  150. 		if !(preference == models.EmailNotificationsEnabled ||

  151. 			preference == models.EmailNotificationsOnMention ||

  152. 			preference == models.EmailNotificationsDisabled) {

  153. 			log.Error("Email notifications preference change returned unrecognized option %s: %s", preference, ctx.User.Name)

  154. 			ctx.ServerError("SetEmailPreference", errors.New("option unrecognized"))

  155. 			return

  156. 		}

  157. 		if err := ctx.User.SetEmailNotifications(preference); err != nil {

  158. 			log.Error("Set Email Notifications failed: %v", err)

  159. 			ctx.ServerError("SetEmailNotifications", err)

  160. 			return

  161. 		}

  162. 		log.Trace("Email notifications preference made %s: %s", preference, ctx.User.Name)

  163. 		ctx.Flash.Success(ctx.Tr("settings.email_preference_set_success"))

  164. 		ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  165. 		return

  166. 	}

  167. 

  168. 	if ctx.HasError() {

  169. 		loadAccountData(ctx)

  170. 

  171. 		ctx.HTML(http.StatusOK, tplSettingsAccount)

  172. 		return

  173. 	}

  174. 

  175. 	email := &models.EmailAddress{

  176. 		UID:         ctx.User.ID,

  177. 		Email:       form.Email,

  178. 		IsActivated: !setting.Service.RegisterEmailConfirm,

  179. 	}

  180. 	if err := models.AddEmailAddress(email); err != nil {

  181. 		if models.IsErrEmailAlreadyUsed(err) {

  182. 			loadAccountData(ctx)

  183. 

  184. 			ctx.RenderWithErr(ctx.Tr("form.email_been_used"), tplSettingsAccount, &form)

  185. 			return

  186. 		} else if models.IsErrEmailInvalid(err) {

  187. 			loadAccountData(ctx)

  188. 

  189. 			ctx.RenderWithErr(ctx.Tr("form.email_invalid"), tplSettingsAccount, &form)

  190. 			return

  191. 		}

  192. 		ctx.ServerError("AddEmailAddress", err)

  193. 		return

  194. 	}

  195. 

  196. 	// Send confirmation email

  197. 	if setting.Service.RegisterEmailConfirm {

  198. 		mailer.SendActivateEmailMail(ctx.User, email)

  199. 		if err := ctx.Cache.Put("MailResendLimit_"+ctx.User.LowerName, ctx.User.LowerName, 180); err != nil {

  200. 			log.Error("Set cache(MailResendLimit) fail: %v", err)

  201. 		}

  202. 		ctx.Flash.Info(ctx.Tr("settings.add_email_confirmation_sent", email.Email, timeutil.MinutesToFriendly(setting.Service.ActiveCodeLives, ctx.Locale.Language())))

  203. 	} else {

  204. 		ctx.Flash.Success(ctx.Tr("settings.add_email_success"))

  205. 	}

  206. 

  207. 	log.Trace("Email address added: %s", email.Email)

  208. 	ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  209. }

  210. 

  211. // DeleteEmail response for delete user's email

  212. func DeleteEmail(ctx *context.Context) {

  213. 	if err := models.DeleteEmailAddress(&models.EmailAddress{ID: ctx.QueryInt64("id"), UID: ctx.User.ID}); err != nil {

  214. 		ctx.ServerError("DeleteEmail", err)

  215. 		return

  216. 	}

  217. 	log.Trace("Email address deleted: %s", ctx.User.Name)

  218. 

  219. 	ctx.Flash.Success(ctx.Tr("settings.email_deletion_success"))

  220. 	ctx.JSON(http.StatusOK, map[string]interface{}{

  221. 		"redirect": setting.AppSubURL + "/user/settings/account",

  222. 	})

  223. }

  224. 

  225. // DeleteAccount render user suicide page and response for delete user himself

  226. func DeleteAccount(ctx *context.Context) {

  227. 	ctx.Data["Title"] = ctx.Tr("settings")

  228. 	ctx.Data["PageIsSettingsAccount"] = true

  229. 

  230. 	if _, err := models.UserSignIn(ctx.User.Name, ctx.Query("password")); err != nil {

  231. 		if models.IsErrUserNotExist(err) {

  232. 			loadAccountData(ctx)

  233. 

  234. 			ctx.RenderWithErr(ctx.Tr("form.enterred_invalid_password"), tplSettingsAccount, nil)

  235. 		} else {

  236. 			ctx.ServerError("UserSignIn", err)

  237. 		}

  238. 		return

  239. 	}

  240. 

  241. 	if err := models.DeleteUser(ctx.User); err != nil {

  242. 		switch {

  243. 		case models.IsErrUserOwnRepos(err):

  244. 			ctx.Flash.Error(ctx.Tr("form.still_own_repo"))

  245. 			ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  246. 		case models.IsErrUserHasOrgs(err):

  247. 			ctx.Flash.Error(ctx.Tr("form.still_has_org"))

  248. 			ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  249. 		default:

  250. 			ctx.ServerError("DeleteUser", err)

  251. 		}

  252. 	} else {

  253. 		log.Trace("Account deleted: %s", ctx.User.Name)

  254. 		ctx.Redirect(setting.AppSubURL + "/")

  255. 	}

  256. }

  257. 

  258. // UpdateUIThemePost is used to update users' specific theme

  259. func UpdateUIThemePost(ctx *context.Context) {

  260. 	form := web.GetForm(ctx).(*forms.UpdateThemeForm)

  261. 	ctx.Data["Title"] = ctx.Tr("settings")

  262. 	ctx.Data["PageIsSettingsAccount"] = true

  263. 

  264. 	if ctx.HasError() {

  265. 		ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  266. 		return

  267. 	}

  268. 

  269. 	if !form.IsThemeExists() {

  270. 		ctx.Flash.Error(ctx.Tr("settings.theme_update_error"))

  271. 		ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  272. 		return

  273. 	}

  274. 

  275. 	if err := ctx.User.UpdateTheme(form.Theme); err != nil {

  276. 		ctx.Flash.Error(ctx.Tr("settings.theme_update_error"))

  277. 		ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  278. 		return

  279. 	}

  280. 

  281. 	log.Trace("Update user theme: %s", ctx.User.Name)

  282. 	ctx.Flash.Success(ctx.Tr("settings.theme_update_success"))

  283. 	ctx.Redirect(setting.AppSubURL + "/user/settings/account")

  284. }

  285. 

  286. func loadAccountData(ctx *context.Context) {

  287. 	emlist, err := models.GetEmailAddresses(ctx.User.ID)

  288. 	if err != nil {

  289. 		ctx.ServerError("GetEmailAddresses", err)

  290. 		return

  291. 	}

  292. 	type UserEmail struct {

  293. 		models.EmailAddress

  294. 		CanBePrimary bool

  295. 	}

  296. 	pendingActivation := ctx.Cache.IsExist("MailResendLimit_" + ctx.User.LowerName)

  297. 	emails := make([]*UserEmail, len(emlist))

  298. 	for i, em := range emlist {

  299. 		var email UserEmail

  300. 		email.EmailAddress = *em

  301. 		email.CanBePrimary = em.IsActivated

  302. 		emails[i] = &email

  303. 	}

  304. 	ctx.Data["Emails"] = emails

  305. 	ctx.Data["EmailNotificationsPreference"] = ctx.User.EmailNotifications()

  306. 	ctx.Data["ActivationsPending"] = pendingActivation

  307. 	ctx.Data["CanAddEmails"] = !pendingActivation || !setting.Service.RegisterEmailConfirm

  308. 

  309. 	if setting.Service.UserDeleteWithCommentsMaxTime != 0 {

  310. 		ctx.Data["UserDeleteWithCommentsMaxTime"] = setting.Service.UserDeleteWithCommentsMaxTime.String()

  311. 		ctx.Data["UserDeleteWithComments"] = ctx.User.CreatedUnix.AsTime().Add(setting.Service.UserDeleteWithCommentsMaxTime).After(time.Now())

  312. 	}

  313. }