Glimpse/server
1
0
Fork 0
mirror of https://github.com/glimpse-app/server.git synced 2025-04-02 10:52:45 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

error codes, fixes #2

Browse source
This commit is contained in:
array-in-a-matrix 2024-06-29 22:29:57 -04:00
parent 6c488c314c
commit 136c5a0908
1 changed files with 47 additions and 25 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

72
src/server.nim
View file

@ -24,27 +24,36 @@ routes:
case @"operation": case @"operation":
#? endpoint POST `/api/register` #? endpoint POST `/api/register`
#[ request parameters: #[
username - string - required request parameters:
email - string - required username - string - required
password - string - required email - string - required
password - string - required
returns:
success - token - new login token
fail - 1 - not all required parameters are provided
]# ]#
of "register": of "register":
# creates new user with provided info # creates new user with provided info
# TODO: sanitization + check if username and email are unique # TODO: sanitization + check if username and email are unique
if @"username".isEmptyOrWhitespace() or @"email".isEmptyOrWhitespace() or @"password".isEmptyOrWhitespace(): if @"username".isEmptyOrWhitespace() or @"email".isEmptyOrWhitespace() or @"password".isEmptyOrWhitespace():
resp "Registeration failed! A none empty username, email and password are requied!" resp "1"
var user = newUser(@"username", @"email", @"password") var user = newUser(@"username", @"email", @"password")
db.insert(user) db.insert(user)
resp user.token resp user.token
#? endpoint POST `/api/login` #? endpoint POST `/api/login`
#[ request parameters: #[
token - string - required request parameters:
OR token - string - required
username - string - required OR
password - string - required username - string - required
password - string - required
returns:
success - token - new login token, old token will not work
fail - 1 - invalid token
fail - 2 - bad username and/or password
]# ]#
of "login": of "login":
# generates a new login token after signin # generates a new login token after signin
@ -53,7 +62,7 @@ routes:
if not @"token".isEmptyOrWhitespace(): if not @"token".isEmptyOrWhitespace():
if not db.validToken(user, @"token"): if not db.validToken(user, @"token"):
resp "Login failed, Invalid token!" resp "1"
db.genNewToken(user) db.genNewToken(user)
@ -61,19 +70,22 @@ routes:
try: try:
db.select(user, "username = ?", @"username") db.select(user, "username = ?", @"username")
except NotFoundError: except NotFoundError:
resp "Login failed, Incorrect username and/or password!" # fails if username is wrong but mentions password to obfuscates if a user exists or not resp "2" # fails if username is wrong but mentions password to obfuscates if a user exists or not
echo user.password echo user.password
echo @"password" echo @"password"
echo $Sha3_512.secureHash(@"password") echo $Sha3_512.secureHash(@"password")
if user.password == $Sha3_512.secureHash(@"password"): if user.password == $Sha3_512.secureHash(@"password"):
db.genNewToken(user) db.genNewToken(user)
else: else:
resp "Login failed, Incorrect username and/or password!" # fails if password is wrong but mentions username to obfuscates if a user exists or not resp "2" # fails if password is wrong but mentions username to obfuscates if a user exists or not
resp user.token resp user.token
#? endpoint POST `/api/getItem` #? endpoint POST `/api/getItem`
#[ request parameters: #[
??? request parameters:
???
returns:
???
]# ]#
of "getItem": of "getItem":
# let index = parseInt(@"index") # let index = parseInt(@"index")
@ -81,33 +93,43 @@ routes:
resp "JSON HERE indexedImages[index]" resp "JSON HERE indexedImages[index]"
#? endpoint POST `/api/getPath` #? endpoint POST `/api/getPath`
#[ request parameters: #[
??? request parameters:
???
returns:
???
]# ]#
of "getPath": of "getPath":
# let index = parseInt(@"index") # let index = parseInt(@"index")
resp """JSON HERE indexedImages[index]["path"]""" resp """JSON HERE indexedImages[index]["path"]"""
#? endpoint POST `/api/getTags` #? endpoint POST `/api/getTags`
#[ request parameters: #[
??? request parameters:
???
returns:
???
]# ]#
of "getTags": of "getTags":
# let index = parseInt(@"index") # let index = parseInt(@"index")
resp """indexedImages[index]["tags"]""" resp """indexedImages[index]["tags"]"""
#? endpoint POST `/api/upload` #? endpoint POST `/api/upload`
#[ request parameters: #[
file - string/binary - required request parameters:
token - string - required file - string/binary - required
tags - seq - optional token - string - required
tags - seq - optional
returns:
success - 0 - successful upload
fail - 1 - upload failed, invalid token
]# ]#
of "upload": of "upload":
# fills the new `user` var with saved user data from database # fills the new `user` var with saved user data from database
var user = newUser() var user = newUser()
if not db.validToken(user, request.formData["token"].body): if not db.validToken(user, request.formData["token"].body):
resp "Upload failed, Invalid token!" resp "1"
# pull request form data arguments # pull request form data arguments
let fileData = request.formData["file"].body let fileData = request.formData["file"].body
@ -133,7 +155,7 @@ routes:
# write the file from memory # write the file from memory
writeFile(directory & fileName, fileData) writeFile(directory & fileName, fileData)
resp "Uploaded successfully!" resp "0"
else: else:
resp "Invalid operation!" resp "Invalid operation!"