ntr/mnml
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

send emails and confirm

Browse Source
This commit is contained in:
ntr 2019-08-26 00:40:33 +10:00
parent df1ccdb8cd
commit b75edcda66
7 changed files with 92 additions and 62 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
bin/install.sh
View File

@ -46,7 +46,7 @@ sudo cp $MNML_PATH/etc/systemd/system/mnml.service /usr/local/systemd/system/
sudo -u postgres createdb mnml sudo -u postgres createdb mnml
sudo -u postgres createuser --encrypted mnml sudo -u postgres createuser --encrypted mnml
echo "DATABASE_URL=postgres://mnml:$MNML_PG_PASSWORD@$MNML_PG_HOST/mnml" | sudo tee -a /etc/mnml/server.conf echo "DATABASE_URL=postgres://mnml:$MNML_PG_PASSWORD@$MNML_PG_HOST/mnml" | sudo tee -a /etc/mnml/gs.conf
sudo -u postgres psql -c "alter user mnml with encrypted password '$MNML_PG_PASSWORD';" sudo -u postgres psql -c "alter user mnml with encrypted password '$MNML_PG_PASSWORD';"
cd $MNML_PATH/ops && npm run migrate cd $MNML_PATH/ops && npm run migrate

4
client/src/components/account.management.jsx
View File

@ -21,7 +21,7 @@ const addState = connect(
postData('/account/password', { current, password }) postData('/account/password', { current, password })
.then(res => res.json()) .then(res => res.json())
.then(data => { .then(data => {
if (!data.success) return errorToast(data.error_message); if (data.error) return errorToast(data.error);
infoToast('Password changed. Reloading...') infoToast('Password changed. Reloading...')
setTimeout(() => window.location.reload(), 5000); setTimeout(() => window.location.reload(), 5000);
}) })
@ -32,7 +32,7 @@ const addState = connect(
postData('/account/email', { email }) postData('/account/email', { email })
.then(res => res.json()) .then(res => res.json())
.then(data => { .then(data => {
if (!data.success) return errorToast(data.error_message); if (data.error) return errorToast(data.error);
infoToast('Email set. Please confirm your address.'); infoToast('Email set. Please confirm your address.');
return true; return true;
}) })

4
ops/migrations/20190825172701_email.js
View File

@ -1,9 +1,9 @@
exports.up = async knex => { exports.up = async knex => {
await knex.schema.createTable('email', table => { await knex.schema.createTable('emails', table => {
table.timestamps(true, true); table.timestamps(true, true);
table.uuid('id') table.uuid('id')
.primary(); .primary()
.index(); .index();
table.uuid('account') table.uuid('account')

2
server/src/construct.rs
View File

@ -889,7 +889,7 @@ pub fn construct_spawn(tx: &mut Transaction, account: Uuid, name: String, team:
img::molecular_write(construct.img)?; img::molecular_write(construct.img)?;
info!("spawned construct account={:} construct={:?}", account, construct); info!("spawned construct account={:} name={:?}", account, construct.name);
return Ok(construct); return Ok(construct);
} }

69
server/src/http.rs
View File

@ -10,10 +10,11 @@ use iron::modifiers::Redirect;
use iron::Url; use iron::Url;
use iron::{typemap, BeforeMiddleware,AfterMiddleware}; use iron::{typemap, BeforeMiddleware,AfterMiddleware};
use urlencoded::UrlEncodedQuery; use urlencoded::UrlEncodedQuery;
use persistent::Read; use persistent::{Read, Write};
use router::Router; use router::Router;
use mount::{Mount}; use mount::{Mount};
use serde::{Serialize, Deserialize}; use serde::{Serialize, Deserialize};
use lettre::{SendableEmail, SmtpClient, SmtpTransport, Transport};
use acp; use acp;
use account; use account;
@ -295,23 +296,23 @@ fn set_password(req: &mut Request) -> IronResult<Response> {
} }
#[derive(Debug,Clone,Deserialize)] #[derive(Debug,Clone,Deserialize)]
struct SetEmail { struct EmailSet {
email: String, email: String,
} }
fn set_email(req: &mut Request) -> IronResult<Response> { fn email_set(req: &mut Request) -> IronResult<Response> {
let state = req.get::<Read<State>>().unwrap(); let state = req.get::<Read<State>>().unwrap();
let params = match req.get::<bodyparser::Struct<SetEmail>>() { let params = match req.get::<bodyparser::Struct<EmailSet>>() {
Ok(Some(b)) => b, Ok(Some(b)) => b,
_ => return Err(IronError::from(MnmlHttpError::BadRequest)), _ => return Err(IronError::from(MnmlHttpError::BadRequest)),
}; };
match req.extensions.get::<account::Account>() { let db = state.pool.get().or(Err(MnmlHttpError::DbError))?;
Some(a) => { let mut tx = db.transaction().or(Err(MnmlHttpError::DbError))?;
let db = state.pool.get().or(Err(MnmlHttpError::DbError))?;
let mut tx = db.transaction().or(Err(MnmlHttpError::DbError))?;
let id = match mail::insert(&mut tx, a.id, &params.email) { let (email, account, token) = match req.extensions.get::<account::Account>() {
Some(a) => {
let (_id, token) = match mail::insert(&mut tx, a.id, &params.email) {
Ok(res) => res, Ok(res) => res,
Err(e) => { Err(e) => {
warn!("{:?}", e); warn!("{:?}", e);
@ -319,19 +320,34 @@ fn set_email(req: &mut Request) -> IronResult<Response> {
}, },
}; };
info!("email added id={:?} account={:?} email={:?}", id, a, params.email); (params.email.clone(), a.clone(), token)
tx.commit().or(Err(MnmlHttpError::ServerError))?;
Ok(json_response(status::Ok, Json::Message("email set. confirmation required".to_string())))
}, },
None => Err(IronError::from(MnmlHttpError::Unauthorized)), None => return Err(IronError::from(MnmlHttpError::Unauthorized)),
} };
let app_mailer = req.get::<Write<Mailer>>().unwrap();
let send = match app_mailer.lock().unwrap().mailer.send(mail::confirm(&email, &account.name, &token)) {
Ok(send) => send,
Err(e) => {
warn!("{:?}", e);
return Err(IronError::from(MnmlHttpError::ServerError));
}
};
tx.commit().or(Err(MnmlHttpError::ServerError))?;
info!("confirmation email sent send={:?} account={:?} email={:?}", send, account, email);
Ok(json_response(status::Ok, Json::Message("email set. confirmation required".to_string())))
} }
fn confirm(req: &mut Request) -> IronResult<Response> { fn email_confirm(req: &mut Request) -> IronResult<Response> {
let state = req.get::<Read<State>>().unwrap(); let state = req.get::<Read<State>>().unwrap();
let account = match req.extensions.get::<account::Account>() {
Some(a) => a.clone(),
None => return Err(IronError::from(MnmlHttpError::Unauthorized)),
};
match req.get_ref::<UrlEncodedQuery>() { match req.get_ref::<UrlEncodedQuery>() {
Ok(ref hashmap) => { Ok(ref hashmap) => {
let db = state.pool.get().or(Err(MnmlHttpError::DbError))?; let db = state.pool.get().or(Err(MnmlHttpError::DbError))?;
@ -342,12 +358,12 @@ fn confirm(req: &mut Request) -> IronResult<Response> {
None => return Err(IronError::from(MnmlHttpError::BadRequest)), None => return Err(IronError::from(MnmlHttpError::BadRequest)),
}; };
let confirmation = match mail::confirm_email(&mut tx, token.to_string()) { let confirmation = match mail::confirm_email(&mut tx, &account, token.to_string()) {
Ok(c) => c, Ok(c) => c,
Err(_) => return Err(IronError::from(MnmlHttpError::NotFound)) Err(_) => return Err(IronError::from(MnmlHttpError::NotFound))
}; };
info!("email confirmed email={:?} account={:?}", confirmation.0, confirmation.1); info!("email confirmed email={:?} account={:?}", confirmation.0, account);
tx.commit().or(Err(MnmlHttpError::ServerError))?; tx.commit().or(Err(MnmlHttpError::ServerError))?;
Ok(Response::with((status::Found, Redirect(Url::parse("https://mnml.gg").unwrap())))) Ok(Response::with((status::Found, Redirect(Url::parse("https://mnml.gg").unwrap()))))
@ -360,10 +376,14 @@ const MAX_BODY_LENGTH: usize = 1024 * 1024 * 10;
pub struct State { pub struct State {
pub pool: PgPool, pub pool: PgPool,
// pub events: Events, }
pub struct Mailer {
pub mailer: SmtpTransport,
} }
impl Key for State { type Value = State; } impl Key for State { type Value = State; }
impl Key for Mailer { type Value = Mailer; }
fn account_mount() -> Router { fn account_mount() -> Router {
let mut router = Router::new(); let mut router = Router::new();
@ -372,8 +392,10 @@ fn account_mount() -> Router {
router.post("logout", logout, "logout"); router.post("logout", logout, "logout");
router.post("register", register, "register"); router.post("register", register, "register");
router.post("password", set_password, "set_password"); router.post("password", set_password, "set_password");
router.post("email", set_email, "set_email"); router.post("email", email_set, "email_set");
router.post("email/confirm/", confirm, "confirm");
// it is sent in an email...
router.get("email/confirm", email_confirm, "email_confirm");
router router
} }
@ -385,7 +407,7 @@ fn payment_mount() -> Router {
router router
} }
pub fn start(pool: PgPool) { pub fn start(pool: PgPool, mailer: SmtpTransport) {
let mut mounts = Mount::new(); let mut mounts = Mount::new();
mounts.mount("/api/account/", account_mount()); mounts.mount("/api/account/", account_mount());
@ -394,6 +416,7 @@ pub fn start(pool: PgPool) {
let mut chain = Chain::new(mounts); let mut chain = Chain::new(mounts);
chain.link(Read::<State>::both(State { pool })); chain.link(Read::<State>::both(State { pool }));
chain.link(Write::<Mailer>::both(Mailer { mailer }));
chain.link_before(Read::<bodyparser::MaxBodyLength>::one(MAX_BODY_LENGTH)); chain.link_before(Read::<bodyparser::MaxBodyLength>::one(MAX_BODY_LENGTH));
chain.link_before(AuthMiddleware); chain.link_before(AuthMiddleware);
chain.link_after(ErrorHandler); chain.link_after(ErrorHandler);

68
server/src/mail.rs
View File

@ -18,6 +18,8 @@ use lettre::smtp::response::Response;
use lettre::{SendableEmail, SmtpClient, SmtpTransport, Transport}; use lettre::{SendableEmail, SmtpClient, SmtpTransport, Transport};
use lettre_email::Email; use lettre_email::Email;
use account::Account;
pub enum Mail { pub enum Mail {
Recover { email: String, name: String, token: String }, Recover { email: String, name: String, token: String },
Confirm { email: String, name: String, token: String }, Confirm { email: String, name: String, token: String },
@ -38,16 +40,17 @@ fn recover(email: String, name: String, token: String) -> SendableEmail {
.into() .into()
} }
fn confirm(email: String, name: String, token: String) -> SendableEmail { pub fn confirm(email: &String, name: &String, token: &String) -> SendableEmail {
let confirm_body = format!("{:}, let confirm_body = format!("{:},
please click the link below to confirm your email please click the link below to confirm your email
http://mnml.gg/api/account/email/confirm/{:} http://mnml.gg/api/account/email/confirm?confirm_token={:}
", name, token);
glhf", name, token);
Email::builder() Email::builder()
.from("machines@mnml.gg") .from("machines@mnml.gg")
.to(email) .to(email.clone())
.subject("recovery phase") .subject("email confirmation")
.text(confirm_body) .text(confirm_body)
.build() .build()
.unwrap() .unwrap()
@ -57,25 +60,26 @@ fn confirm(email: String, name: String, token: String) -> SendableEmail {
fn send_mail(mailer: &mut SmtpTransport, mail: Mail) -> Result<Response, MailError> { fn send_mail(mailer: &mut SmtpTransport, mail: Mail) -> Result<Response, MailError> {
let msg = match mail { let msg = match mail {
Mail::Recover { email, name, token } => recover(email, name, token), Mail::Recover { email, name, token } => recover(email, name, token),
Mail::Confirm { email, name, token } => confirm(email, name, token), Mail::Confirm { email, name, token } => confirm(&email, &name, &token),
}; };
mailer.send(msg) mailer.send(msg)
} }
pub fn confirm_email(tx: &mut Transaction, token: String) -> Result<(String, Uuid), Error> { pub fn confirm_email(tx: &mut Transaction, account: &Account, confirm_token: String) -> Result<(String, Uuid), Error> {
let query = " let query = "
UPDATE emails UPDATE emails
SET confirmed = true, updated_at = now() SET confirmed = true, updated_at = now()
WHERE token = $1 WHERE confirm_token = $1
AND account = $2
RETURNING id, email, account RETURNING id, email, account
"; ";
let result = tx let result = tx
.query(query, &[&token])?; .query(query, &[&confirm_token, &account.id])?;
let row = result.iter().next() let row = result.iter().next()
.ok_or(format_err!("token not found {:?}", token))?; .ok_or(format_err!("confirm_token not found {:?}", confirm_token))?;
let _id: Uuid = row.get(0); let _id: Uuid = row.get(0);
let email: String = row.get(1); let email: String = row.get(1);
@ -84,32 +88,33 @@ pub fn confirm_email(tx: &mut Transaction, token: String) -> Result<(String, Uui
return Ok((email, account)); return Ok((email, account));
} }
pub fn insert(tx: &mut Transaction, account: Uuid, email: &String) -> Result<Uuid, Error> { pub fn insert(tx: &mut Transaction, account: Uuid, email: &String) -> Result<(Uuid, String), Error> {
let id = Uuid::new_v4(); let id = Uuid::new_v4();
let mut rng = thread_rng(); let mut rng = thread_rng();
let token: String = iter::repeat(()) let confirm_token: String = iter::repeat(())
.map(|()| rng.sample(Alphanumeric)) .map(|()| rng.sample(Alphanumeric))
.take(64) .take(64)
.collect(); .collect();
let query = " let query = "
INSERT INTO emails (id, account, email, token) INSERT INTO emails (id, account, email, confirm_token)
VALUES ($1, $2, $3, $4); VALUES ($1, $2, $3, $4)
RETURNING id;
"; ";
let result = tx let result = tx
.query(query, &[&id, &account, &email, &token])?; .query(query, &[&id, &account, &email, &confirm_token])?;
let row = match result.iter().next() { match result.iter().next() {
Some(row) => row, Some(row) => row,
None => return Err(err_msg("no email inserted")), None => return Err(err_msg("no email inserted")),
}; };
return Ok(id); return Ok((id, confirm_token));
} }
pub fn listen(rx: Receiver<Mail>) { pub fn listen(rx: Receiver<Mail>) -> SmtpTransport {
let sender = env::var("MAIL_ADDRESS") let sender = env::var("MAIL_ADDRESS")
.expect("MAIL_ADDRESS must be set"); .expect("MAIL_ADDRESS must be set");
@ -129,20 +134,21 @@ pub fn listen(rx: Receiver<Mail>) {
info!("mail connected"); info!("mail connected");
loop { // loop {
match rx.recv() { // match rx.recv() {
Ok(m) => match send_mail(&mut mailer, m) { // Ok(m) => match send_mail(&mut mailer, m) {
Ok(r) => info!("{:?}", r), // Ok(r) => info!("{:?}", r),
Err(e) => warn!("{:?}", e), // Err(e) => warn!("{:?}", e),
}, // },
Err(e) => { // Err(e) => {
error!("{:?}", e); // error!("{:?}", e);
panic!("mail thread cannot continue"); // panic!("mail thread cannot continue");
}, // },
}; // };
} // }
// Explicitly close the SMTP transaction as we enabled connection reuse // Explicitly close the SMTP transaction as we enabled connection reuse
// mailer.close(); // mailer.close();
return mailer;
} }

5
server/src/main.rs
View File

@ -136,6 +136,7 @@ fn main() {
let warden_tick_tx = warden_tx.clone(); let warden_tick_tx = warden_tx.clone();
let (mail_tx, mail_rx) = unbounded(); let (mail_tx, mail_rx) = unbounded();
let http_mail_tx = mail_tx.clone();
// create a clone of the tx so ws handler can tell events // create a clone of the tx so ws handler can tell events
// about connection status // about connection status
@ -143,13 +144,13 @@ fn main() {
let warden = warden::Warden::new(warden_tx, warden_rx, events.tx.clone(), pool.clone()); let warden = warden::Warden::new(warden_tx, warden_rx, events.tx.clone(), pool.clone());
let pg_pool = pool.clone(); let pg_pool = pool.clone();
let mailer = mail::listen(mail_rx);
spawn(move || http::start(http_pool)); spawn(move || http::start(http_pool, mailer));
spawn(move || warden.listen()); spawn(move || warden.listen());
spawn(move || warden::upkeep_tick(warden_tick_tx)); spawn(move || warden::upkeep_tick(warden_tick_tx));
spawn(move || pg::listen(pg_pool, pg_events_tx)); spawn(move || pg::listen(pg_pool, pg_events_tx));
spawn(move || events.listen()); spawn(move || events.listen());
spawn(move || mail::listen(mail_rx));
// the main thread becomes this ws listener // the main thread becomes this ws listener
let rpc_pool = pool.clone(); let rpc_pool = pool.clone();