mirrors
/
gitea
огледало од https://github.com/go-gitea/gitea.git
Прати 1
Волим 0
Креирај огранак 0
Код Дискусије 0 Издања 211 Вики Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1304 Комити
17 Гране
Дрво: 8dd07c0ddd
Гране Ознаке
${ item.name }
Create branch ${ searchTerm }
from '8dd07c0ddd'
${ noResults }
gitea/modules/captcha/captcha.go

captcha.go 4.2KB
Датотека Blame Историја

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. // Package captcha a middleware that provides captcha service for Macaron.

  6. package captcha

  7. 

  8. import (

  9. 	"fmt"

  10. 	"html/template"

  11. 	"net/http"

  12. 	"path"

  13. 	"strings"

  14. 

  15. 	"github.com/Unknwon/macaron"

  16. 

  17. 	"github.com/gogits/cache"

  18. 

  19. 	"github.com/gogits/gogs/modules/base"

  20. 	"github.com/gogits/gogs/modules/log"

  21. )

  22. 

  23. var (

  24. 	defaultChars = []byte{0, 1, 2, 3, 4, 5, 6, 7, 8, 9}

  25. )

  26. 

  27. const (

  28. 	// default captcha attributes

  29. 	challengeNums    = 6

  30. 	expiration       = 600

  31. 	fieldIdName      = "captcha_id"

  32. 	fieldCaptchaName = "captcha"

  33. 	cachePrefix      = "captcha_"

  34. 	defaultURLPrefix = "/captcha/"

  35. )

  36. 

  37. // Captcha struct

  38. type Captcha struct {

  39. 	store cache.Cache

  40. 

  41. 	// url prefix for captcha image

  42. 	URLPrefix string

  43. 

  44. 	// specify captcha id input field name

  45. 	FieldIdName string

  46. 	// specify captcha result input field name

  47. 	FieldCaptchaName string

  48. 

  49. 	// captcha image width and height

  50. 	StdWidth  int

  51. 	StdHeight int

  52. 

  53. 	// captcha chars nums

  54. 	ChallengeNums int

  55. 

  56. 	// captcha expiration seconds

  57. 	Expiration int64

  58. 

  59. 	// cache key prefix

  60. 	CachePrefix string

  61. }

  62. 

  63. // generate key string

  64. func (c *Captcha) key(id string) string {

  65. 	return c.CachePrefix + id

  66. }

  67. 

  68. // generate rand chars with default chars

  69. func (c *Captcha) genRandChars() []byte {

  70. 	return base.RandomCreateBytes(c.ChallengeNums, defaultChars...)

  71. }

  72. 

  73. // beego filter handler for serve captcha image

  74. func (c *Captcha) Handler(ctx *macaron.Context) {

  75. 	var chars []byte

  76. 

  77. 	id := path.Base(ctx.Req.RequestURI)

  78. 	if i := strings.Index(id, "."); i != -1 {

  79. 		id = id[:i]

  80. 	}

  81. 

  82. 	key := c.key(id)

  83. 

  84. 	if v, ok := c.store.Get(key).([]byte); ok {

  85. 		chars = v

  86. 	} else {

  87. 		ctx.Status(404)

  88. 		ctx.Write([]byte("captcha not found"))

  89. 		return

  90. 	}

  91. 

  92. 	// reload captcha

  93. 	if len(ctx.Query("reload")) > 0 {

  94. 		chars = c.genRandChars()

  95. 		if err := c.store.Put(key, chars, c.Expiration); err != nil {

  96. 			ctx.Status(500)

  97. 			ctx.Write([]byte("captcha reload error"))

  98. 			log.Error(4, "Reload Create Captcha Error: %v", err)

  99. 			return

  100. 		}

  101. 	}

  102. 

  103. 	img := NewImage(chars, c.StdWidth, c.StdHeight)

  104. 	if _, err := img.WriteTo(ctx.RW()); err != nil {

  105. 		log.Error(4, "Write Captcha Image Error: %v", err)

  106. 	}

  107. }

  108. 

  109. // tempalte func for output html

  110. func (c *Captcha) CreateCaptchaHtml() template.HTML {

  111. 	value, err := c.CreateCaptcha()

  112. 	if err != nil {

  113. 		log.Error(4, "Create Captcha Error: %v", err)

  114. 		return ""

  115. 	}

  116. 

  117. 	// create html

  118. 	return template.HTML(fmt.Sprintf(`<input type="hidden" name="%s" value="%s">`+

  119. 		`<a class="captcha" href="javascript:">`+

  120. 		`<img onclick="this.src=('%s%s.png?reload='+(new Date()).getTime())" class="captcha-img" src="%s%s.png">`+

  121. 		`</a>`, c.FieldIdName, value, c.URLPrefix, value, c.URLPrefix, value))

  122. }

  123. 

  124. // create a new captcha id

  125. func (c *Captcha) CreateCaptcha() (string, error) {

  126. 	// generate captcha id

  127. 	id := string(base.RandomCreateBytes(15))

  128. 

  129. 	// get the captcha chars

  130. 	chars := c.genRandChars()

  131. 

  132. 	// save to store

  133. 	if err := c.store.Put(c.key(id), chars, c.Expiration); err != nil {

  134. 		return "", err

  135. 	}

  136. 

  137. 	return id, nil

  138. }

  139. 

  140. // verify from a request

  141. func (c *Captcha) VerifyReq(req *http.Request) bool {

  142. 	req.ParseForm()

  143. 	return c.Verify(req.Form.Get(c.FieldIdName), req.Form.Get(c.FieldCaptchaName))

  144. }

  145. 

  146. // direct verify id and challenge string

  147. func (c *Captcha) Verify(id string, challenge string) (success bool) {

  148. 	if len(challenge) == 0 || len(id) == 0 {

  149. 		return

  150. 	}

  151. 

  152. 	var chars []byte

  153. 

  154. 	key := c.key(id)

  155. 

  156. 	if v, ok := c.store.Get(key).([]byte); ok && len(v) == len(challenge) {

  157. 		chars = v

  158. 	} else {

  159. 		return

  160. 	}

  161. 

  162. 	defer func() {

  163. 		// finally remove it

  164. 		c.store.Delete(key)

  165. 	}()

  166. 

  167. 	// verify challenge

  168. 	for i, c := range chars {

  169. 		if c != challenge[i]-48 {

  170. 			return

  171. 		}

  172. 	}

  173. 

  174. 	return true

  175. }

  176. 

  177. // create a new captcha.Captcha

  178. func NewCaptcha(urlPrefix string, store cache.Cache) *Captcha {

  179. 	cpt := &Captcha{}

  180. 	cpt.store = store

  181. 	cpt.FieldIdName = fieldIdName

  182. 	cpt.FieldCaptchaName = fieldCaptchaName

  183. 	cpt.ChallengeNums = challengeNums

  184. 	cpt.Expiration = expiration

  185. 	cpt.CachePrefix = cachePrefix

  186. 	cpt.StdWidth = stdWidth

  187. 	cpt.StdHeight = stdHeight

  188. 

  189. 	if len(urlPrefix) == 0 {

  190. 		urlPrefix = defaultURLPrefix

  191. 	}

  192. 

  193. 	if urlPrefix[len(urlPrefix)-1] != '/' {

  194. 		urlPrefix += "/"

  195. 	}

  196. 

  197. 	cpt.URLPrefix = urlPrefix

  198. 

  199. 	base.TemplateFuncs["CreateCaptcha"] = cpt.CreateCaptchaHtml

  200. 	return cpt

  201. }