Documentation and refactoring

Author: nishchayp

app/adminHandler.go renamed to app/adminHandlers.go

@@ -10,6 +10,11 @@ import (
 	"net/http"
 )
 
+/*
+** contains handler fuctions which require admin account
+** contains fuctions to interact with shell scripts that handle ssh keys
+ */
+
 func IsAdmin(w http.ResponseWriter, r *http.Request) (isAdminFlag bool) {
 
 	googTok := ReadCookieHandler(w, r)
@@ -326,135 +331,3 @@ func RevokeAccessPrivilege(w http.ResponseWriter, r *http.Request, ps httprouter
 	w.Write(json)
 
 }
-
-func AccessesHandler(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
-
-	var response Response
-	var accesses []Access
-
-	if IsAdmin(w, r) == true {
-		DB.db.Find(&accesses)
-		json, err := json.Marshal(accesses)
-		if err != nil {
-			http.Error(w, err.Error(), http.StatusInternalServerError)
-			return
-		}
-		response = Response{
-			true,
-			string(json),
-		}
-	} else {
-		response = Response{
-			false,
-			"User not admin",
-		}
-	}
-	json, err := json.Marshal(response)
-	if err != nil {
-		http.Error(w, err.Error(), http.StatusInternalServerError)
-		return
-	}
-
-	w.Header().Set("Content-Type", "application/json")
-	w.Write(json)
-
-}
-
-func AccessRequestsHandler(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
-
-	var response Response
-	var access_requests []AccessRequest
-
-	if IsAdmin(w, r) == true {
-		DB.db.Find(&access_requests)
-		json, err := json.Marshal(access_requests)
-		if err != nil {
-			http.Error(w, err.Error(), http.StatusInternalServerError)
-			return
-		}
-		response = Response{
-			true,
-			string(json),
-		}
-	} else {
-		response = Response{
-			false,
-			"User not admin",
-		}
-	}
-	json, err := json.Marshal(response)
-	if err != nil {
-		http.Error(w, err.Error(), http.StatusInternalServerError)
-		return
-	}
-
-	w.Header().Set("Content-Type", "application/json")
-	w.Write(json)
-
-}
-
-func AdminsHandler(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
-
-	var response Response
-	var admins []Admin
-
-	if IsAdmin(w, r) == true {
-		DB.db.Find(&admins)
-		json, err := json.Marshal(admins)
-		if err != nil {
-			http.Error(w, err.Error(), http.StatusInternalServerError)
-			return
-		}
-		response = Response{
-			true,
-			string(json),
-		}
-	} else {
-		response = Response{
-			false,
-			"User not admin",
-		}
-	}
-	json, err := json.Marshal(response)
-	if err != nil {
-		http.Error(w, err.Error(), http.StatusInternalServerError)
-		return
-	}
-
-	w.Header().Set("Content-Type", "application/json")
-	w.Write(json)
-
-}
-
-func AdminRequestsHandler(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
-
-	var response Response
-	var admin_requests []AdminRequest
-
-	if IsAdmin(w, r) == true {
-		DB.db.Find(&admin_requests)
-		json, err := json.Marshal(admin_requests)
-		if err != nil {
-			http.Error(w, err.Error(), http.StatusInternalServerError)
-			return
-		}
-		response = Response{
-			true,
-			string(json),
-		}
-	} else {
-		response = Response{
-			false,
-			"User not admin",
-		}
-	}
-	json, err := json.Marshal(response)
-	if err != nil {
-		http.Error(w, err.Error(), http.StatusInternalServerError)
-		return
-	}
-
-	w.Header().Set("Content-Type", "application/json")
-	w.Write(json)
-
-}

app/app.go

@@ -7,6 +7,12 @@ import (
 	"net/http"
 )
 
+/*
+** migrates and creates tables in data base
+** registers functions with routes
+** opens up port and serves the app
+ */
+
 var err error
 var DB Database
 

app/cookie.go

@@ -1,12 +1,15 @@
 package app
 
 import (
-	// "fmt"
 	"github.com/gorilla/securecookie"
 	"net/http"
 	"time"
 )
 
+/*
+** contains all middleware fuctions to interact with cookies
+ */
+
 var cookieHandler = securecookie.New(
 	securecookie.GenerateRandomKey(64),
 	securecookie.GenerateRandomKey(32))

app/handlers.go

@@ -14,29 +14,40 @@ import (
 	"io/ioutil"
 	"log"
 	"net/http"
-	"os"
 )
 
+/*
+** contains handler fuctions which do not require admin account
+** contains fuctions to interact with OAuth2
+ */
+
 var confOAuth2 *oauth2.Config
 
 var state string
 
 func init() {
 
+	// doesen't needs to be called explicitly
+	// configures OAuth2 and Mysql
+
 	var credOAuth2 CredentialOAuth2
 	var credMysql CredentialMysql
 
 	fileOAuth2, err := ioutil.ReadFile("./credOAuth2.json")
 	if err != nil {
-		log.Printf("File error: %v\n", err)
-		os.Exit(1)
+		log.Fatalf("Error while reading oauth2 config file.\nError: %v\n", err.Error())
 	}
 	json.Unmarshal(fileOAuth2, &credOAuth2)
 
 	confOAuth2 = &oauth2.Config{
+
+		// presently set through account [email protected]
 		ClientID:     credOAuth2.Cid,
 		ClientSecret: credOAuth2.Csecret,
-		RedirectURL:  "http://127.0.0.1:8080/options",
+
+		// change redirect on production server
+		RedirectURL: "http://127.0.0.1:8080/options",
+
 		Scopes: []string{
 			"https://www.googleapis.com/auth/userinfo.email",
 		},
@@ -45,8 +56,7 @@ func init() {
 
 	fileMysql, err := ioutil.ReadFile("./credMysql.json")
 	if err != nil {
-		log.Printf("File error: %v\n", err)
-		os.Exit(1)
+		log.Fatalf("Error while reading oauth2 config file.\nError: %v\n", err.Error())
 	}
 	json.Unmarshal(fileMysql, &credMysql)
 
@@ -57,14 +67,17 @@ func init() {
 
 	DB.db, err = gorm.Open("mysql", connectionString)
 	if err != nil {
-		log.Fatal("Could not open database : ", err)
+		log.Fatal("Could not open database : ", err.Error())
 	}
 
 	state = randState()
 
 }
 
 func randState() string {
+
+	// generates random string
+
 	b := make([]byte, 32)
 	rand.Read(b)
 	return base64.StdEncoding.EncodeToString(b)
@@ -79,33 +92,49 @@ func Index(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
 }
 
 func LoginHandler(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
+
+	// calls Google OAuth2 api endpoint on the provided configuration
+
 	http.Redirect(w, r, confOAuth2.AuthCodeURL(state), 302)
 }
 
 func Options(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
 
+	// callback after user is authenticated via OAuth2
+
+	// checks if the state appended to callback url is same as generated by app
+	// thus ensures the callback is not from a man in the middle
 	if r.FormValue("state") != state {
-		http.Error(w, "possibly malacious/fake callback redirect", http.StatusBadRequest)
+		http.Error(w, "Possibly malacious/fake callback redirect", http.StatusBadRequest)
+		log.Printf("Possibly malacious/fake callback redirect. Random state does not match\nError: %v\n", http.StatusBadRequest)
 		return
 	}
 
+	// call Exchange on conf to get token from Google OAuth2 api
+	// pass code recieved as callback url parameter
 	tok, err := confOAuth2.Exchange(oauth2.NoContext, r.FormValue("code"))
 	if err != nil {
-		http.Error(w, err.Error(), http.StatusBadRequest)
+		http.Error(w, "Could not exchange code for google token", http.StatusBadRequest)
+		log.Printf("Could not exchange code for google token.\nError: %v\n", err.Error())
 		return
 	}
 
+	// authenticate the google token obtained by calling endpoint
+	// provided by google for token authentication
 	check, err := http.Get("https://www.googleapis.com/oauth2/v3/tokeninfo?access_token=" + tok.AccessToken)
 	if err != nil {
-		http.Error(w, err.Error(), http.StatusBadRequest)
+		http.Error(w, "Google token not authentic", http.StatusBadRequest)
+		log.Printf("Google token not authentic.\nError: %v\n", err.Error())
 		return
 	}
 	defer check.Body.Close()
 
+	// use token to get user info
 	client := confOAuth2.Client(oauth2.NoContext, tok)
 	info, err := client.Get("https://www.googleapis.com/oauth2/v3/userinfo")
 	if err != nil {
-		http.Error(w, err.Error(), http.StatusBadRequest)
+		http.Error(w, "User info could not be obtained", http.StatusBadRequest)
+		log.Printf("User info could not be obtained.\nError: %v\n", err.Error())
 		return
 	}
 	defer info.Body.Close()
@@ -121,23 +150,30 @@ func Options(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
 		return
 	}
 
+	// set google token as cookie
 	SetCookieHandler(&googTok, w)
 
-	log.Println("Email body: ", string(data))
+	log.Printf("%v logged in using account %v", googTok.Name, googTok.Email)
 
 	http.Redirect(w, r, "/", 302)
 
 }
 
 func LogoutHandler(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
 
+	// clears cookie logs out user
+
 	ClearCookieHandler(w)
 	http.Redirect(w, r, "/", 302)
 
 }
 
 func MakeAccessRequest(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
 
+	// make request to get access to server user wants to work on
+
+	// request contains user's ssh key and message describing the project
+	// they are working on
 	type Receive struct {
 		SshKey  string `json:"ssh_key"`
 		Message string `json:"message"`
@@ -149,7 +185,9 @@ func MakeAccessRequest(w http.ResponseWriter, r *http.Request, _ httprouter.Para
 	var receive Receive
 	err := decoder.Decode(&receive)
 	if err != nil {
-		panic(err)
+		http.Error(w, "Error reading the received request", http.StatusBadRequest)
+		log.Printf("Error reading the received request.\nError: %v\n", err.Error())
+		return
 	}
 
 	googTok := ReadCookieHandler(w, r)
@@ -163,6 +201,7 @@ func MakeAccessRequest(w http.ResponseWriter, r *http.Request, _ httprouter.Para
 
 		var accessRequest AccessRequest
 
+		// register new request if it does not already exists
 		notFoundErr := DB.db.Debug().Where("email = ?", googTok.Email).First(&accessRequest).Error
 		if notFoundErr != nil {
 			accessRequest = AccessRequest{
@@ -200,6 +239,8 @@ func MakeAccessRequest(w http.ResponseWriter, r *http.Request, _ httprouter.Para
 
 func MakeAdminRequest(w http.ResponseWriter, r *http.Request, _ httprouter.Params) {
 
+	// make request to get admin privileges for DAMN portal
+
 	var response Response
 
 	googTok := ReadCookieHandler(w, r)
@@ -213,6 +254,7 @@ func MakeAdminRequest(w http.ResponseWriter, r *http.Request, _ httprouter.Param
 
 		var adminRequest AdminRequest
 
+		// register new request if it does not already exists
 		notFoundErr := DB.db.Debug().Where("email = ?", googTok.Email).First(&adminRequest).Error
 		if notFoundErr != nil {
 			adminRequest = AdminRequest{

app/models.go

@@ -1,5 +1,9 @@
 package app
 
+/*
+** contains all models of the data base
+ */
+
 type AccessRequest struct {
 	AccessRequestID uint   `json:"access_request_id" sql:"AUTO_INCREMENT" gorm:"primary_key"`
 	Name            string `json:"name" sql:"not null"`