mirror of
https://github.com/zitadel/zitadel.git
synced 2025-04-23 12:01:31 +00:00
fa9f581d56
* chore: move to new org * logging * fix: org rename caos -> zitadel Co-authored-by: adlerhurst <silvan.reusser@gmail.com>
112 lines
3.3 KiB
Go
112 lines
3.3 KiB
Go
package login
|
|
|
|
import (
|
|
"fmt"
|
|
"net/http"
|
|
|
|
"github.com/zitadel/zitadel/internal/domain"
|
|
)
|
|
|
|
const (
|
|
queryCode = "code"
|
|
queryUserID = "userID"
|
|
|
|
tmplMailVerification = "mail_verification"
|
|
tmplMailVerified = "mail_verified"
|
|
)
|
|
|
|
type mailVerificationFormData struct {
|
|
Code string `schema:"code"`
|
|
UserID string `schema:"userID"`
|
|
Resend bool `schema:"resend"`
|
|
}
|
|
|
|
type mailVerificationData struct {
|
|
baseData
|
|
profileData
|
|
UserID string
|
|
}
|
|
|
|
func MailVerificationLink(origin, userID, code string) string {
|
|
return fmt.Sprintf("%s%s?userID=%s&code=%s", externalLink(origin), EndpointMailVerification, userID, code)
|
|
}
|
|
|
|
func (l *Login) handleMailVerification(w http.ResponseWriter, r *http.Request) {
|
|
userID := r.FormValue(queryUserID)
|
|
code := r.FormValue(queryCode)
|
|
if code != "" {
|
|
l.checkMailCode(w, r, nil, userID, code)
|
|
return
|
|
}
|
|
l.renderMailVerification(w, r, nil, userID, nil)
|
|
}
|
|
|
|
func (l *Login) handleMailVerificationCheck(w http.ResponseWriter, r *http.Request) {
|
|
data := new(mailVerificationFormData)
|
|
authReq, err := l.getAuthRequestAndParseData(r, data)
|
|
if err != nil {
|
|
l.renderError(w, r, authReq, err)
|
|
return
|
|
}
|
|
if !data.Resend {
|
|
l.checkMailCode(w, r, authReq, data.UserID, data.Code)
|
|
return
|
|
}
|
|
userOrg := ""
|
|
if authReq != nil {
|
|
userOrg = authReq.UserOrgID
|
|
}
|
|
emailCodeGenerator, err := l.query.InitEncryptionGenerator(r.Context(), domain.SecretGeneratorTypeVerifyEmailCode, l.userCodeAlg)
|
|
if err != nil {
|
|
l.checkMailCode(w, r, authReq, data.UserID, data.Code)
|
|
return
|
|
}
|
|
_, err = l.command.CreateHumanEmailVerificationCode(setContext(r.Context(), userOrg), data.UserID, userOrg, emailCodeGenerator)
|
|
l.renderMailVerification(w, r, authReq, data.UserID, err)
|
|
}
|
|
|
|
func (l *Login) checkMailCode(w http.ResponseWriter, r *http.Request, authReq *domain.AuthRequest, userID, code string) {
|
|
userOrg := ""
|
|
if authReq != nil {
|
|
userID = authReq.UserID
|
|
userOrg = authReq.UserOrgID
|
|
}
|
|
emailCodeGenerator, err := l.query.InitEncryptionGenerator(r.Context(), domain.SecretGeneratorTypeVerifyEmailCode, l.userCodeAlg)
|
|
if err != nil {
|
|
l.renderMailVerification(w, r, authReq, userID, err)
|
|
return
|
|
}
|
|
_, err = l.command.VerifyHumanEmail(setContext(r.Context(), userOrg), userID, code, userOrg, emailCodeGenerator)
|
|
if err != nil {
|
|
l.renderMailVerification(w, r, authReq, userID, err)
|
|
return
|
|
}
|
|
l.renderMailVerified(w, r, authReq)
|
|
}
|
|
|
|
func (l *Login) renderMailVerification(w http.ResponseWriter, r *http.Request, authReq *domain.AuthRequest, userID string, err error) {
|
|
var errID, errMessage string
|
|
if err != nil {
|
|
errID, errMessage = l.getErrorMessage(r, err)
|
|
}
|
|
if userID == "" {
|
|
userID = authReq.UserID
|
|
}
|
|
data := mailVerificationData{
|
|
baseData: l.getBaseData(r, authReq, "Mail Verification", errID, errMessage),
|
|
UserID: userID,
|
|
profileData: l.getProfileData(authReq),
|
|
}
|
|
translator := l.getTranslator(r.Context(), authReq)
|
|
l.renderer.RenderTemplate(w, r, translator, l.renderer.Templates[tmplMailVerification], data, nil)
|
|
}
|
|
|
|
func (l *Login) renderMailVerified(w http.ResponseWriter, r *http.Request, authReq *domain.AuthRequest) {
|
|
data := mailVerificationData{
|
|
baseData: l.getBaseData(r, authReq, "Mail Verified", "", ""),
|
|
profileData: l.getProfileData(authReq),
|
|
}
|
|
translator := l.getTranslator(r.Context(), authReq)
|
|
l.renderer.RenderTemplate(w, r, translator, l.renderer.Templates[tmplMailVerified], data, nil)
|
|
}
|