Refactoring and fixed admin making admin request

Author: nishchayp

app/adminHandlers.go

@@ -19,7 +19,7 @@ func IsAdmin(w http.ResponseWriter, r *http.Request) (isAdminFlag bool) {
 
 	var admin Admin
 
-	if DB.db.Debug().Where("email = ?", googTok.Email).First(&admin).RecordNotFound() {
+	if DB.db.Where("email = ?", googTok.Email).First(&admin).RecordNotFound() {
 		return false
 	} else {
 		return true
@@ -50,13 +50,13 @@ func AcceptAdminRequest(w http.ResponseWriter, r *http.Request, ps httprouter.Pa
 
 		// gives admin privilege to user by adding entry to admins table
 		// while deleting entry from admin_requests table
-		if DB.db.Debug().Where("admin_request_id = ?", ps.ByName("id")).First(&admin_request).RecordNotFound() {
+		if DB.db.Where("admin_request_id = ?", ps.ByName("id")).First(&admin_request).RecordNotFound() {
 			response = Response{
 				false,
 				"Unable to accept, request does not exists",
 			}
 		} else {
-			DB.db.Debug().Where("admin_request_id = ?", ps.ByName("id")).First(&admin_request)
+			DB.db.Where("admin_request_id = ?", ps.ByName("id")).First(&admin_request)
 			admin = Admin{
 				Name:  admin_request.Name,
 				Email: admin_request.Email,
@@ -68,6 +68,7 @@ func AcceptAdminRequest(w http.ResponseWriter, r *http.Request, ps httprouter.Pa
 				true,
 				"Request accepted, new admin created",
 			}
+			log.Printf("New admin created. Name: %v | Email: %v", admin.Name, admin.Email)
 		}
 
 	} else {
@@ -98,13 +99,13 @@ func RejectAdminRequest(w http.ResponseWriter, r *http.Request, ps httprouter.Pa
 	if IsAdmin(w, r) == true {
 
 		// deletes entry from admin_requests table
-		if DB.db.Debug().Where("admin_request_id = ?", ps.ByName("id")).First(&admin_request).RecordNotFound() {
+		if DB.db.Where("admin_request_id = ?", ps.ByName("id")).First(&admin_request).RecordNotFound() {
 			response = Response{
 				false,
 				"Unable to delete, request does not exists",
 			}
 		} else {
-			DB.db.Debug().Where("admin_request_id = ?", ps.ByName("id")).Delete(&admin_request)
+			DB.db.Where("admin_request_id = ?", ps.ByName("id")).Delete(&admin_request)
 			response = Response{
 				true,
 				"Admin request successfully rejected",
@@ -139,13 +140,14 @@ func RevokeAdminPrivilege(w http.ResponseWriter, r *http.Request, ps httprouter.
 	if IsAdmin(w, r) == true {
 
 		// deletes entry from admins table
-		if DB.db.Debug().Where("admin_id = ?", ps.ByName("id")).First(&admin).RecordNotFound() {
+		if DB.db.Where("admin_id = ?", ps.ByName("id")).First(&admin).RecordNotFound() {
 			response = Response{
 				false,
 				"Unable to delete, admin does not exists",
 			}
 		} else {
-			DB.db.Debug().Where("admin_id = ?", ps.ByName("id")).Delete(&admin)
+			log.Printf("An admin's privileges revoked. Name: %v | Email: %v", admin.Name, admin.Email)
+			DB.db.Where("admin_id = ?", ps.ByName("id")).Delete(&admin)
 			response = Response{
 				true,
 				"Admin privileges successfully revoked",
@@ -197,7 +199,7 @@ func AcceptAccessRequest(w http.ResponseWriter, r *http.Request, ps httprouter.P
 		// gives access privilege to user by adding entry to accesses table
 		// executes shell script which copies user's ssh key to desired dest server over ssh
 		// while deleting entry from access_requests table
-		if DB.db.Debug().Where("access_request_id = ?", ps.ByName("id")).First(&access_request).RecordNotFound() {
+		if DB.db.Where("access_request_id = ?", ps.ByName("id")).First(&access_request).RecordNotFound() {
 			response = Response{
 				false,
 				"Unable to accept, request does not exists",
@@ -215,7 +217,7 @@ func AcceptAccessRequest(w http.ResponseWriter, r *http.Request, ps httprouter.P
 
 			} else {
 
-				DB.db.Debug().Where("access_request_id = ?", ps.ByName("id")).First(&access_request)
+				DB.db.Where("access_request_id = ?", ps.ByName("id")).First(&access_request)
 
 				// execute shell script to copy ssh key to specified server over ssh
 				sh.Command("./scripts/copy_key_to_server.sh", receive.IP, access_request.SshKey).Run()
@@ -234,6 +236,8 @@ func AcceptAccessRequest(w http.ResponseWriter, r *http.Request, ps httprouter.P
 					"Request accepted, new access created",
 				}
 
+				log.Printf("New access granted. Name: %v | Email: %v | To: %v", access.Name, access.Email, access.IP)
+
 			}
 
 		}
@@ -266,13 +270,13 @@ func RejectAccessRequest(w http.ResponseWriter, r *http.Request, ps httprouter.P
 	if IsAdmin(w, r) == true {
 
 		// deletes entry from access_requests table
-		if DB.db.Debug().Where("access_request_id = ?", ps.ByName("id")).First(&access_request).RecordNotFound() {
+		if DB.db.Where("access_request_id = ?", ps.ByName("id")).First(&access_request).RecordNotFound() {
 			response = Response{
 				false,
 				"Unable to delete, request does not exists",
 			}
 		} else {
-			DB.db.Debug().Where("access_request_id = ?", ps.ByName("id")).Delete(&access_request)
+			DB.db.Where("access_request_id = ?", ps.ByName("id")).Delete(&access_request)
 			response = Response{
 				true,
 				"Access request successfully rejected",
@@ -308,7 +312,7 @@ func RevokeAccessPrivilege(w http.ResponseWriter, r *http.Request, ps httprouter
 
 		// revokes access privilege to user by deleting entry from accesses table
 		// executes shell script which removes user's ssh key from intended dest server over ssh
-		if DB.db.Debug().Where("access_id = ?", ps.ByName("id")).First(&access).RecordNotFound() {
+		if DB.db.Where("access_id = ?", ps.ByName("id")).First(&access).RecordNotFound() {
 			response = Response{
 				false,
 				"Unable to delete, access does not exists",
@@ -326,7 +330,9 @@ func RevokeAccessPrivilege(w http.ResponseWriter, r *http.Request, ps httprouter
 
 			} else {
 
-				DB.db.Debug().Where("access_id = ?", ps.ByName("id")).Delete(&access)
+				log.Printf("Access privilege revoked. Name: %v | Email: %v | From: %v", access.Name, access.Email, access.IP)
+
+				DB.db.Where("access_id = ?", ps.ByName("id")).Delete(&access)
 
 				// execute shell script to remove ssh key from the specified server
 				sh.Command("./scripts/remove_key_from_server.sh", access.IP, access.SshKey).Run()

app/config.go

@@ -0,0 +1,67 @@
+package app
+
+import (
+	"encoding/json"
+	"fmt"
+	"github.com/jinzhu/gorm"
+	_ "github.com/jinzhu/gorm/dialects/sqlite"
+	"golang.org/x/oauth2"
+	"golang.org/x/oauth2/google"
+	"io/ioutil"
+	"log"
+)
+
+/*
+** contains init function to cofigure OAuth2 and Mysql
+ */
+
+var confOAuth2 *oauth2.Config
+
+func init() {
+
+	// doesen't needs to be called explicitly
+	// configures OAuth2 and Mysql
+
+	var credOAuth2 CredentialOAuth2
+	var credMysql CredentialMysql
+
+	fileOAuth2, err := ioutil.ReadFile("./credOAuth2.json")
+	if err != nil {
+		log.Fatalf("Error while reading oauth2 config file.\nError: %v\n", err.Error())
+	}
+	json.Unmarshal(fileOAuth2, &credOAuth2)
+
+	confOAuth2 = &oauth2.Config{
+
+		// presently set through account [email protected]
+		ClientID:     credOAuth2.Cid,
+		ClientSecret: credOAuth2.Csecret,
+
+		// change redirect on production server
+		RedirectURL: "http://127.0.0.1:8080/options",
+
+		Scopes: []string{
+			"https://www.googleapis.com/auth/userinfo.email",
+		},
+		Endpoint: google.Endpoint,
+	}
+
+	fileMysql, err := ioutil.ReadFile("./credMysql.json")
+	if err != nil {
+		log.Fatalf("Error while reading oauth2 config file.\nError: %v\n", err.Error())
+	}
+	json.Unmarshal(fileMysql, &credMysql)
+
+	connectionString := fmt.Sprintf("%s:%s@/%s?charset=utf8&parseTime=True&loc=Local",
+		credMysql.DBUsername,
+		credMysql.DBPassword,
+		credMysql.DBName)
+
+	DB.db, err = gorm.Open("mysql", connectionString)
+	if err != nil {
+		log.Fatal("Could not open database : ", err.Error())
+	}
+
+	state = randState()
+
+}

app/handlers.go

@@ -4,12 +4,9 @@ import (
 	"crypto/rand"
 	"encoding/base64"
 	"encoding/json"
-	"fmt"
-	"github.com/jinzhu/gorm"
 	_ "github.com/jinzhu/gorm/dialects/sqlite"
 	"github.com/julienschmidt/httprouter"
 	"golang.org/x/oauth2"
-	"golang.org/x/oauth2/google"
 	"html/template"
 	"io/ioutil"
 	"log"
@@ -21,59 +18,8 @@ import (
 ** contains fuctions to interact with OAuth2
  */
 
-var confOAuth2 *oauth2.Config
-
 var state string
 
-func init() {
-
-	// doesen't needs to be called explicitly
-	// configures OAuth2 and Mysql
-
-	var credOAuth2 CredentialOAuth2
-	var credMysql CredentialMysql
-
-	fileOAuth2, err := ioutil.ReadFile("./credOAuth2.json")
-	if err != nil {
-		log.Fatalf("Error while reading oauth2 config file.\nError: %v\n", err.Error())
-	}
-	json.Unmarshal(fileOAuth2, &credOAuth2)
-
-	confOAuth2 = &oauth2.Config{
-
-		// presently set through account [email protected]
-		ClientID:     credOAuth2.Cid,
-		ClientSecret: credOAuth2.Csecret,
-
-		// change redirect on production server
-		RedirectURL: "http://127.0.0.1:8080/options",
-
-		Scopes: []string{
-			"https://www.googleapis.com/auth/userinfo.email",
-		},
-		Endpoint: google.Endpoint,
-	}
-
-	fileMysql, err := ioutil.ReadFile("./credMysql.json")
-	if err != nil {
-		log.Fatalf("Error while reading oauth2 config file.\nError: %v\n", err.Error())
-	}
-	json.Unmarshal(fileMysql, &credMysql)
-
-	connectionString := fmt.Sprintf("%s:%s@/%s?charset=utf8&parseTime=True&loc=Local",
-		credMysql.DBUsername,
-		credMysql.DBPassword,
-		credMysql.DBName)
-
-	DB.db, err = gorm.Open("mysql", connectionString)
-	if err != nil {
-		log.Fatal("Could not open database : ", err.Error())
-	}
-
-	state = randState()
-
-}
-
 func randState() string {
 
 	// generates random string
@@ -202,7 +148,7 @@ func MakeAccessRequest(w http.ResponseWriter, r *http.Request, _ httprouter.Para
 		var accessRequest AccessRequest
 
 		// register new request if it does not already exists
-		notFoundErr := DB.db.Debug().Where("email = ?", googTok.Email).First(&accessRequest).Error
+		notFoundErr := DB.db.Where("email = ?", googTok.Email).First(&accessRequest).Error
 		if notFoundErr != nil {
 			accessRequest = AccessRequest{
 				Name:    googTok.Name,
@@ -253,10 +199,20 @@ func MakeAdminRequest(w http.ResponseWriter, r *http.Request, _ httprouter.Param
 	} else {
 
 		var adminRequest AdminRequest
+		var admin Admin
 
 		// register new request if it does not already exists
-		notFoundErr := DB.db.Debug().Where("email = ?", googTok.Email).First(&adminRequest).Error
-		if notFoundErr != nil {
+		if DB.db.Where("email = ?", googTok.Email).First(&adminRequest).RecordNotFound() == false {
+			response = Response{
+				false,
+				"Request already exists",
+			}
+		} else if DB.db.Where("email = ?", googTok.Email).First(&admin).RecordNotFound() == false {
+			response = Response{
+				false,
+				"User is already an admin",
+			}
+		} else {
 			adminRequest = AdminRequest{
 				Name:  googTok.Name,
 				Email: googTok.Email,
@@ -268,11 +224,6 @@ func MakeAdminRequest(w http.ResponseWriter, r *http.Request, _ httprouter.Param
 				true,
 				"New request sent",
 			}
-		} else {
-			response = Response{
-				false,
-				"Request already exists",
-			}
 		}
 
 	}