2023-05-24 12:16:03 +09:00
|
|
|
package core
|
|
|
|
|
|
|
|
|
|
import (
|
2023-06-28 16:10:28 +09:00
|
|
|
"context"
|
2023-05-24 12:16:03 +09:00
|
|
|
"encoding/hex"
|
|
|
|
|
"encoding/json"
|
|
|
|
|
"errors"
|
|
|
|
|
"fmt"
|
|
|
|
|
"io"
|
|
|
|
|
"net/http"
|
2023-08-22 10:16:09 +09:00
|
|
|
"strconv"
|
2023-05-24 12:16:03 +09:00
|
|
|
"strings"
|
|
|
|
|
"time"
|
|
|
|
|
|
2023-06-29 21:21:49 +09:00
|
|
|
"repositories.action2quare.com/ayo/gocommon"
|
2023-05-24 15:31:01 +09:00
|
|
|
"repositories.action2quare.com/ayo/gocommon/logger"
|
2023-08-30 17:04:00 +09:00
|
|
|
"repositories.action2quare.com/ayo/gocommon/session"
|
2023-05-24 12:16:03 +09:00
|
|
|
|
|
|
|
|
"go.mongodb.org/mongo-driver/bson"
|
|
|
|
|
"go.mongodb.org/mongo-driver/bson/primitive"
|
|
|
|
|
"go.mongodb.org/mongo-driver/mongo/options"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
type blockinfo struct {
|
2023-06-07 11:56:52 +09:00
|
|
|
Start primitive.DateTime `bson:"start" json:"start"`
|
2023-08-23 17:48:47 +09:00
|
|
|
End primitive.DateTime `bson:"_ts" json:"_ts"`
|
2023-06-07 11:56:52 +09:00
|
|
|
Reason string `bson:"reason" json:"reason"`
|
2023-08-23 17:48:47 +09:00
|
|
|
Accid primitive.ObjectID `bson:"_id,omitempty" json:"_id,omitempty"`
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type blockinfoWithStringId struct {
|
|
|
|
|
Reason string `bson:"reason" json:"reason"`
|
|
|
|
|
StrId string `bson:"id" json:"id"`
|
|
|
|
|
StartUnix int64 `bson:"start_unix" json:"start_unix"`
|
|
|
|
|
EndUnix int64 `bson:"end_unix" json:"end_unix"`
|
2023-05-24 12:16:03 +09:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type whitelistmember struct {
|
2023-08-22 11:10:59 +09:00
|
|
|
Id primitive.ObjectID `bson:"_id" json:"_id"`
|
2023-08-22 10:16:09 +09:00
|
|
|
Email string `bson:"email" json:"email"`
|
|
|
|
|
Platform string `bson:"platform" json:"platform"`
|
|
|
|
|
Desc string `bson:"desc" json:"desc"`
|
|
|
|
|
ExpiredAt primitive.DateTime `bson:"_ts,omitempty" json:"_ts,omitempty"`
|
2023-05-24 12:16:03 +09:00
|
|
|
}
|
|
|
|
|
|
2023-08-22 10:16:09 +09:00
|
|
|
func (wh *whitelistmember) Key() string {
|
|
|
|
|
if strings.HasPrefix(wh.Email, "*@") {
|
|
|
|
|
// 도메인 전체 허용
|
|
|
|
|
return wh.Email[2:]
|
|
|
|
|
}
|
|
|
|
|
return wh.Email
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (wh *whitelistmember) Expired() bool {
|
|
|
|
|
// 얘는 Expired가 있기만 하면 제거된 상태
|
|
|
|
|
return wh.ExpiredAt != 0
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (bi *blockinfo) Key() primitive.ObjectID {
|
|
|
|
|
return bi.Accid
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (bi *blockinfo) Expired() bool {
|
2023-08-23 17:48:47 +09:00
|
|
|
return bi.End.Time().Unix() < time.Now().UTC().Unix()
|
2023-05-24 12:16:03 +09:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type usertokeninfo struct {
|
|
|
|
|
platform string
|
|
|
|
|
userid string
|
|
|
|
|
token string //refreshtoken
|
|
|
|
|
secret string
|
|
|
|
|
brinfo string
|
|
|
|
|
accesstoken string // microsoft only
|
|
|
|
|
accesstoken_expire_time int64 // microsoft only
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-05 17:58:46 +09:00
|
|
|
type DivisionStateName string
|
2023-05-28 22:13:10 +09:00
|
|
|
|
2023-05-24 15:31:01 +09:00
|
|
|
const (
|
2023-06-05 17:58:46 +09:00
|
|
|
DivisionState_Closed = DivisionStateName("closed")
|
|
|
|
|
DivisionState_Maintenance = DivisionStateName("maintenance")
|
|
|
|
|
DivisionState_RestrictedOpen = DivisionStateName("restricted")
|
|
|
|
|
DivisionState_FullOpen = DivisionStateName("open")
|
2023-05-24 15:31:01 +09:00
|
|
|
)
|
|
|
|
|
|
2023-06-05 17:58:46 +09:00
|
|
|
type Maintenance struct {
|
2023-06-05 17:22:48 +09:00
|
|
|
Notice string `bson:"notice" json:"notice"`
|
2023-05-28 22:13:10 +09:00
|
|
|
StartTimeUTC int64 `bson:"start_unixtime_utc" json:"start_unixtime_utc"`
|
|
|
|
|
link string
|
2023-05-24 15:31:01 +09:00
|
|
|
}
|
|
|
|
|
|
2023-06-07 11:56:52 +09:00
|
|
|
type DivisionForUser struct {
|
|
|
|
|
Priority int `bson:"priority" json:"priority"`
|
|
|
|
|
State DivisionStateName `bson:"state" json:"state"`
|
2023-06-08 12:14:21 +09:00
|
|
|
Maintenance *Maintenance `bson:"maintenance,omitempty" json:"maintenance,omitempty"`
|
2023-06-07 11:56:52 +09:00
|
|
|
}
|
|
|
|
|
|
2023-06-05 18:01:09 +09:00
|
|
|
type Division struct {
|
2023-06-07 11:56:52 +09:00
|
|
|
DivisionForUser `bson:",inline" json:",inline"`
|
|
|
|
|
Url string `bson:"url" json:"url"`
|
2023-05-24 15:31:01 +09:00
|
|
|
}
|
|
|
|
|
|
2023-06-05 11:56:34 +09:00
|
|
|
type ServiceDescriptionSummary struct {
|
2023-06-19 14:56:47 +09:00
|
|
|
Id primitive.ObjectID `bson:"_id" json:"_id"`
|
|
|
|
|
ServiceCode string `bson:"code" json:"code"`
|
2023-06-05 11:56:34 +09:00
|
|
|
}
|
|
|
|
|
|
2023-05-24 12:16:03 +09:00
|
|
|
type serviceDescription struct {
|
2023-06-07 11:56:52 +09:00
|
|
|
ServiceDescriptionSummary `bson:",inline" json:",inline"`
|
|
|
|
|
Divisions map[string]*Division `bson:"divisions" json:"divisions"`
|
|
|
|
|
ServerApiTokens []primitive.ObjectID `bson:"api_tokens" json:"api_tokens"`
|
2023-08-16 21:44:19 +09:00
|
|
|
MaximumNumLinkAccount int64
|
|
|
|
|
VersionSplits map[string]string `bson:"version_splits" json:"version_splits"`
|
2023-05-24 12:16:03 +09:00
|
|
|
|
2023-08-30 17:04:00 +09:00
|
|
|
sessionProvider session.Provider
|
|
|
|
|
wl memberContainerPtr[string, *whitelistmember]
|
|
|
|
|
bl memberContainerPtr[primitive.ObjectID, *blockinfo]
|
|
|
|
|
mongoClient gocommon.MongoClient
|
|
|
|
|
sessionTTL time.Duration
|
2023-06-28 16:10:28 +09:00
|
|
|
|
2023-05-24 12:16:03 +09:00
|
|
|
serviceCodeBytes []byte
|
|
|
|
|
getUserBrowserInfo func(r *http.Request) (string, error)
|
|
|
|
|
getUserTokenWithCheck func(platform string, userid string, brinfo string) (usertokeninfo, error)
|
|
|
|
|
updateUserinfo func(info usertokeninfo) (bool, string, string)
|
2023-05-24 15:31:01 +09:00
|
|
|
getProviderInfo func(platform string, uid string) (string, string, error)
|
2023-05-24 12:16:03 +09:00
|
|
|
|
2023-08-16 21:44:19 +09:00
|
|
|
divisionsForUsersSerialized []byte
|
|
|
|
|
divisionsSerialized []byte
|
|
|
|
|
serviceSerialized []byte
|
|
|
|
|
serviceSummarySerialized []byte
|
|
|
|
|
divisionsSplits map[string][]byte
|
2023-05-24 12:16:03 +09:00
|
|
|
}
|
|
|
|
|
|
2023-06-19 21:19:45 +09:00
|
|
|
func (sh *serviceDescription) isValidToken(apiToken primitive.ObjectID) bool {
|
2023-06-23 17:58:41 +09:00
|
|
|
if *devflag {
|
|
|
|
|
return true
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-19 21:19:45 +09:00
|
|
|
if apiToken.IsZero() {
|
|
|
|
|
return false
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
for _, test := range sh.ServerApiTokens {
|
|
|
|
|
if test == apiToken {
|
|
|
|
|
return true
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return false
|
|
|
|
|
}
|
|
|
|
|
|
2023-05-24 12:16:03 +09:00
|
|
|
func (sh *serviceDescription) readProfile(authtype string, id string, binfo string) (email string, err error) {
|
|
|
|
|
defer func() {
|
|
|
|
|
s := recover()
|
|
|
|
|
if s != nil {
|
|
|
|
|
logger.Error("readProfile failed :", authtype, id, s)
|
|
|
|
|
if errt, ok := s.(error); ok {
|
|
|
|
|
err = errt
|
|
|
|
|
} else {
|
|
|
|
|
err = errors.New(fmt.Sprint(s))
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}()
|
|
|
|
|
|
|
|
|
|
userinfo, err := sh.getUserTokenWithCheck(authtype, id, binfo)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return "", err
|
|
|
|
|
}
|
2023-08-18 13:56:34 +09:00
|
|
|
if len(userinfo.token) == 0 {
|
2023-05-24 12:16:03 +09:00
|
|
|
return "", errors.New("refreshtoken token not found")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//-- 토큰으로 모두 확인이 끝났으면 갱신한다.
|
|
|
|
|
ok, _, email := sh.updateUserinfo(userinfo)
|
|
|
|
|
|
|
|
|
|
if !ok {
|
|
|
|
|
return "", errors.New("updateUserinfo failed")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return email, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (sh *serviceDescription) prepare(mg *Maingate) error {
|
2023-05-28 22:13:10 +09:00
|
|
|
divs := sh.Divisions
|
2023-05-24 12:16:03 +09:00
|
|
|
if len(sh.ServiceCode) == 0 {
|
|
|
|
|
sh.ServiceCode = hex.EncodeToString(sh.Id[6:])
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-26 17:34:30 +09:00
|
|
|
if *noauth {
|
|
|
|
|
sh.ServiceCode = "000000000000"
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-07 11:56:52 +09:00
|
|
|
divsForUsers := make(map[string]*DivisionForUser)
|
2023-08-16 21:44:19 +09:00
|
|
|
var namesOnly []string
|
2023-05-28 22:13:10 +09:00
|
|
|
for dn, div := range divs {
|
2023-08-16 21:44:19 +09:00
|
|
|
namesOnly = append(namesOnly, dn)
|
2023-05-28 22:13:10 +09:00
|
|
|
if div.State == DivisionState_Closed {
|
|
|
|
|
continue
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-07 11:56:52 +09:00
|
|
|
divsForUsers[dn] = &div.DivisionForUser
|
2023-05-28 22:13:10 +09:00
|
|
|
if len(div.State) == 0 {
|
|
|
|
|
div.State = DivisionState_FullOpen
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if div.State != DivisionState_FullOpen {
|
|
|
|
|
if div.Maintenance == nil {
|
2023-06-05 17:58:46 +09:00
|
|
|
div.Maintenance = &Maintenance{}
|
2023-05-28 22:13:10 +09:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if len(div.Maintenance.link) == 0 {
|
|
|
|
|
if len(div.Maintenance.Notice) == 0 {
|
|
|
|
|
div.Maintenance.link = "https://www.action2quare.com"
|
|
|
|
|
} else if strings.HasPrefix(div.Maintenance.Notice, "http") {
|
|
|
|
|
div.Maintenance.link = div.Maintenance.Notice
|
|
|
|
|
} else {
|
2023-06-29 21:21:49 +09:00
|
|
|
var fd FileDocumentDesc
|
2023-06-29 21:31:51 +09:00
|
|
|
if err := mg.mongoClient.FindOneAs(CollectionFile, bson.M{
|
2023-06-29 21:21:49 +09:00
|
|
|
"key": div.Maintenance.Notice,
|
|
|
|
|
}, &fd, options.FindOne().SetProjection(bson.M{"link": 1})); err != nil {
|
|
|
|
|
logger.Println(err)
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
div.Maintenance.link = fd.Link
|
|
|
|
|
logger.Println("div.Maintenance.link :", fd.Link)
|
2023-05-28 22:13:10 +09:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
div.Maintenance = nil
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-08-16 21:44:19 +09:00
|
|
|
sh.divisionsSerialized, _ = json.Marshal(divs)
|
|
|
|
|
sh.divisionsForUsersSerialized, _ = json.Marshal(divsForUsers)
|
2023-05-24 12:16:03 +09:00
|
|
|
|
2023-08-16 21:44:19 +09:00
|
|
|
if len(sh.VersionSplits) == 0 {
|
|
|
|
|
sh.VersionSplits = map[string]string{
|
2023-08-18 13:56:34 +09:00
|
|
|
"default": strings.Join(namesOnly, ","),
|
2023-08-16 21:44:19 +09:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sh.divisionsSplits = make(map[string][]byte)
|
|
|
|
|
for ver, divnamesT := range sh.VersionSplits {
|
|
|
|
|
divnames := strings.Split(divnamesT, ",")
|
|
|
|
|
split := make(map[string]*DivisionForUser)
|
|
|
|
|
for _, divname := range divnames {
|
|
|
|
|
split[divname] = divsForUsers[divname]
|
|
|
|
|
}
|
|
|
|
|
splitMarshaled, _ := json.Marshal(split)
|
|
|
|
|
sh.divisionsSplits[ver] = splitMarshaled
|
|
|
|
|
}
|
2023-06-07 11:56:52 +09:00
|
|
|
|
2023-06-28 16:10:28 +09:00
|
|
|
sh.MaximumNumLinkAccount = mg.maingateConfig.MaximumNumLinkAccount
|
2023-05-24 12:16:03 +09:00
|
|
|
sh.mongoClient = mg.mongoClient
|
2023-08-30 17:04:00 +09:00
|
|
|
sh.sessionProvider = mg.sessionProvider
|
2023-05-24 12:16:03 +09:00
|
|
|
sh.sessionTTL = time.Duration(mg.SessionTTL * int64(time.Second))
|
|
|
|
|
sh.serviceCodeBytes, _ = hex.DecodeString(sh.ServiceCode)
|
|
|
|
|
sh.getUserBrowserInfo = mg.GetUserBrowserInfo
|
|
|
|
|
sh.getUserTokenWithCheck = mg.getUserTokenWithCheck
|
|
|
|
|
sh.updateUserinfo = mg.updateUserinfo
|
|
|
|
|
sh.getProviderInfo = mg.getProviderInfo
|
2023-06-20 11:29:17 +09:00
|
|
|
|
2023-08-22 10:16:09 +09:00
|
|
|
sh.wl = mg.wl
|
|
|
|
|
sh.bl = mg.bl
|
2023-08-16 21:44:19 +09:00
|
|
|
sh.serviceSummarySerialized, _ = json.Marshal(sh.ServiceDescriptionSummary)
|
2023-08-22 11:10:59 +09:00
|
|
|
sh.serviceSerialized, _ = json.Marshal(sh)
|
2023-05-24 12:16:03 +09:00
|
|
|
|
2023-08-22 11:10:59 +09:00
|
|
|
logger.Println("service is ready :", sh.ServiceCode, string(sh.serviceSerialized))
|
2023-05-24 12:16:03 +09:00
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (sh *serviceDescription) link(w http.ResponseWriter, r *http.Request) {
|
|
|
|
|
defer func() {
|
|
|
|
|
s := recover()
|
|
|
|
|
if s != nil {
|
|
|
|
|
logger.Error(s)
|
|
|
|
|
}
|
|
|
|
|
}()
|
|
|
|
|
|
|
|
|
|
if r.Method != "GET" {
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
queryvals := r.URL.Query()
|
|
|
|
|
//oldToken := queryvals.Get("otoken")
|
|
|
|
|
oldType := queryvals.Get("otype")
|
|
|
|
|
oldId := queryvals.Get("oid")
|
|
|
|
|
sk := queryvals.Get("sk")
|
|
|
|
|
//newToken := queryvals.Get("ntoken")
|
|
|
|
|
newType := queryvals.Get("ntype")
|
|
|
|
|
newId := queryvals.Get("nid")
|
|
|
|
|
|
2023-08-30 17:04:00 +09:00
|
|
|
oldAuth, err := sh.sessionProvider.Query(sk)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Println("sessionProvider.Query return err :", err)
|
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
2023-05-24 12:16:03 +09:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// fmt.Println("=================")
|
|
|
|
|
// fmt.Println(oldType)
|
|
|
|
|
// fmt.Println(oldId)
|
|
|
|
|
// fmt.Println("=================")
|
|
|
|
|
// fmt.Println(newType)
|
|
|
|
|
// fmt.Println(newId)
|
|
|
|
|
// fmt.Println("=================")
|
|
|
|
|
// fmt.Println(oldAuth.Platform)
|
|
|
|
|
// fmt.Println(oldAuth.Uid)
|
|
|
|
|
// fmt.Println("=================")
|
|
|
|
|
|
|
|
|
|
//if oldAuth.Token != oldToken || oldAuth.Uid != oldId || oldAuth.Platform != oldType {
|
|
|
|
|
if oldAuth.Uid != oldId || oldAuth.Platform != oldType {
|
|
|
|
|
logger.Println("link failed. session key is not correct :", *oldAuth, queryvals)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
bfinfo, err := sh.getUserBrowserInfo(r)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("getUserBrowserInfo failed :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_, err = sh.readProfile(oldType, oldId, bfinfo)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("readProfile(old) failed :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
email, err := sh.readProfile(newType, newId, bfinfo)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("readProfile(new) failed :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// if len(email) == 0 {
|
|
|
|
|
// logger.Println("link failed. email is missing :", r.URL.Query())
|
|
|
|
|
// w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
// return
|
|
|
|
|
// }
|
|
|
|
|
|
2023-05-24 15:31:01 +09:00
|
|
|
newType, newId, err = sh.getProviderInfo(newType, newId)
|
2023-05-24 12:16:03 +09:00
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("getProviderInfo failed :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
createtime := primitive.NewDateTimeFromTime(time.Now().UTC())
|
|
|
|
|
link, err := sh.mongoClient.FindOneAndUpdate(CollectionLink, bson.M{
|
|
|
|
|
"platform": newType,
|
|
|
|
|
"uid": newId,
|
|
|
|
|
}, bson.M{
|
|
|
|
|
"$setOnInsert": bson.M{
|
|
|
|
|
"create": createtime,
|
|
|
|
|
"email": email,
|
|
|
|
|
},
|
|
|
|
|
}, options.FindOneAndUpdate().SetReturnDocument(options.After).SetUpsert(true).SetProjection(bson.M{"_id": 1}))
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("link failed. FindOneAndUpdate link err:", err)
|
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-20 12:02:29 +09:00
|
|
|
_, newid, err := sh.mongoClient.Update(CollectionAccount, bson.M{
|
2023-05-24 12:16:03 +09:00
|
|
|
"_id": link["_id"].(primitive.ObjectID),
|
|
|
|
|
}, bson.M{
|
|
|
|
|
"$setOnInsert": bson.M{
|
2023-08-30 17:04:00 +09:00
|
|
|
"accid": oldAuth.Account,
|
2023-05-24 12:16:03 +09:00
|
|
|
"create": createtime,
|
|
|
|
|
},
|
|
|
|
|
}, options.Update().SetUpsert(true))
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("link failed. Update ServiceName err :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// newid가 있어야 한다. 그래야 기존 서비스 계정이 없는 상태이다.
|
|
|
|
|
if newid == nil {
|
|
|
|
|
// 이미 계정이 있네?
|
|
|
|
|
logger.Println("link failed. already have service account :", r.URL.Query())
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
logger.Println("link success :", r.URL.Query())
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-28 16:10:28 +09:00
|
|
|
// == link된 계정을 해제 한다. but, 최소 1개 계정은 연결되어 있어야 한다.
|
|
|
|
|
func (sh *serviceDescription) unlink(w http.ResponseWriter, r *http.Request) {
|
|
|
|
|
defer func() {
|
|
|
|
|
s := recover()
|
|
|
|
|
if s != nil {
|
|
|
|
|
logger.Error(s)
|
|
|
|
|
}
|
|
|
|
|
}()
|
|
|
|
|
|
|
|
|
|
if r.Method != "GET" {
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
queryvals := r.URL.Query()
|
|
|
|
|
sType := queryvals.Get("stype")
|
|
|
|
|
sId := queryvals.Get("sid")
|
|
|
|
|
sk := queryvals.Get("sk")
|
|
|
|
|
|
2023-08-30 17:04:00 +09:00
|
|
|
authInfo, err := sh.sessionProvider.Query(sk)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Println("sessionProvider.Query return err :", err)
|
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
2023-06-28 16:10:28 +09:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// fmt.Println("=================")
|
|
|
|
|
// fmt.Println(sType)
|
|
|
|
|
// fmt.Println(sId)
|
|
|
|
|
// fmt.Println("=================")
|
|
|
|
|
// fmt.Println(authInfo.Platform)
|
|
|
|
|
// fmt.Println(authInfo.Uid)
|
|
|
|
|
// fmt.Println("=================")
|
|
|
|
|
|
|
|
|
|
if authInfo.Uid != sId || authInfo.Platform != sType {
|
|
|
|
|
logger.Println("unlink failed. session key is not correct :", *authInfo, queryvals)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
numRecord, err := sh.mongoClient.Collection(CollectionAccount).CountDocuments(context.Background(), bson.M{
|
2023-08-30 17:04:00 +09:00
|
|
|
"accid": authInfo.Account,
|
2023-06-28 16:10:28 +09:00
|
|
|
}, options.Count().SetLimit(2))
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("unlink failed, fail to count accounts :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if numRecord <= 1 {
|
|
|
|
|
logger.Println("unlink failed. At least one link must be maintained. :", r.URL.Query())
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
sType, sId, err = sh.getProviderInfo(sType, sId)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("getProviderInfo failed :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
link, err := sh.mongoClient.FindOne(CollectionLink, bson.M{
|
|
|
|
|
"platform": sType,
|
|
|
|
|
"uid": sId,
|
|
|
|
|
}, options.FindOne().SetProjection(bson.M{"_id": 1}))
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("link failed. FindOneAndUpdate link err:", err)
|
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
newid, err := sh.mongoClient.FindOneAndDelete(CollectionAccount, bson.M{
|
|
|
|
|
"_id": link["_id"].(primitive.ObjectID),
|
|
|
|
|
}, options.FindOneAndDelete().SetProjection(bson.M{"_id": 1}))
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("unlink failed. Delete ServiceName err :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// newid가 있어야 한다. 그래야 기존 서비스 계정이 없는 상태이다.
|
|
|
|
|
if newid == nil {
|
|
|
|
|
// 이미 계정이 있네?
|
|
|
|
|
logger.Println("unlink failed. service account not found:", r.URL.Query())
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
logger.Println("unlink success :", r.URL.Query())
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// == 연결된 계정 정보(숫자) 전달하는 API
|
|
|
|
|
func (sh *serviceDescription) linkinfo(w http.ResponseWriter, r *http.Request) {
|
|
|
|
|
defer func() {
|
|
|
|
|
s := recover()
|
|
|
|
|
if s != nil {
|
|
|
|
|
logger.Error(s)
|
|
|
|
|
}
|
|
|
|
|
}()
|
|
|
|
|
|
|
|
|
|
if r.Method != "GET" {
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
queryvals := r.URL.Query()
|
|
|
|
|
sType := queryvals.Get("stype")
|
|
|
|
|
sId := queryvals.Get("sid")
|
|
|
|
|
sk := queryvals.Get("sk")
|
|
|
|
|
|
2023-08-30 17:04:00 +09:00
|
|
|
authInfo, err := sh.sessionProvider.Query(sk)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Println("sessionProvider.Query return err :", err)
|
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
2023-06-28 16:10:28 +09:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// fmt.Println("=================")
|
|
|
|
|
// fmt.Println(sType)
|
|
|
|
|
// fmt.Println(sId)
|
|
|
|
|
// fmt.Println("=================")
|
|
|
|
|
// fmt.Println(authInfo.Platform)
|
|
|
|
|
// fmt.Println(authInfo.Uid)
|
|
|
|
|
// fmt.Println("=================")
|
|
|
|
|
|
|
|
|
|
//if oldAuth.Token != oldToken || oldAuth.Uid != oldId || oldAuth.Platform != oldType {
|
|
|
|
|
if authInfo.Uid != sId || authInfo.Platform != sType {
|
|
|
|
|
logger.Println("linkinfo failed. session key is not correct :", *authInfo, queryvals)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
numRecord, err := sh.mongoClient.Collection(CollectionAccount).CountDocuments(context.Background(), bson.M{
|
2023-08-30 17:04:00 +09:00
|
|
|
"accid": authInfo.Account,
|
2023-06-28 16:10:28 +09:00
|
|
|
}, options.Count().SetLimit(sh.MaximumNumLinkAccount))
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("linkinfo failed. CountDocuments err :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
logger.Println("linkinfo :", numRecord)
|
|
|
|
|
w.Write([]byte(fmt.Sprintf(`{"num_linked_account":"%d"}`, numRecord)))
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
2023-05-24 12:16:03 +09:00
|
|
|
func (sh *serviceDescription) authorize(w http.ResponseWriter, r *http.Request) {
|
|
|
|
|
defer func() {
|
|
|
|
|
s := recover()
|
|
|
|
|
if s != nil {
|
|
|
|
|
logger.Error(s)
|
|
|
|
|
}
|
|
|
|
|
}()
|
|
|
|
|
|
|
|
|
|
if r.Method != "GET" {
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
queryvals := r.URL.Query()
|
|
|
|
|
authtype := queryvals.Get("type")
|
|
|
|
|
uid := queryvals.Get("id")
|
|
|
|
|
//accesstoken := queryvals.Get("token") //-- 이거 이제 받지마라
|
|
|
|
|
session := queryvals.Get("sk")
|
2023-06-20 15:50:18 +09:00
|
|
|
var email string
|
|
|
|
|
|
2023-06-21 14:33:29 +09:00
|
|
|
if !*noauth {
|
2023-08-09 17:39:16 +09:00
|
|
|
if len(authtype) > 0 {
|
|
|
|
|
//email, err := sh.readProfile(authtype, uid, accesstoken)
|
|
|
|
|
bfinfo, err := sh.getUserBrowserInfo(r)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("getUserBrowserInfo failed :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
2023-05-24 12:16:03 +09:00
|
|
|
|
2023-08-09 17:39:16 +09:00
|
|
|
email, err = sh.readProfile(authtype, uid, bfinfo)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("readProfile failed :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
2023-05-24 12:16:03 +09:00
|
|
|
|
2023-08-09 17:39:16 +09:00
|
|
|
newType, newId, err := sh.getProviderInfo(authtype, uid)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("getProviderInfo failed :", err)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
}
|
2023-05-24 12:16:03 +09:00
|
|
|
|
2023-08-09 17:39:16 +09:00
|
|
|
if authtype != newType || uid != newId {
|
|
|
|
|
authtype = newType
|
|
|
|
|
uid = newId
|
|
|
|
|
logger.Println("auth success ( redirect ) :", authtype, uid, email, session)
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
email = fmt.Sprintf("%s@guest.flag", uid)
|
2023-06-20 15:50:18 +09:00
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
email = fmt.Sprintf("%s@noauth.flag", uid)
|
2023-05-24 12:16:03 +09:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//if len(session) == 0 && len(email) > 0 {
|
|
|
|
|
if len(session) == 0 {
|
|
|
|
|
// platform + id -> account id
|
|
|
|
|
createtime := primitive.NewDateTimeFromTime(time.Now().UTC())
|
|
|
|
|
link, err := sh.mongoClient.FindOneAndUpdate(CollectionLink, bson.M{
|
|
|
|
|
"platform": authtype,
|
|
|
|
|
"uid": uid,
|
|
|
|
|
}, bson.M{
|
|
|
|
|
"$setOnInsert": bson.M{
|
|
|
|
|
"create": createtime,
|
|
|
|
|
"email": email,
|
|
|
|
|
},
|
|
|
|
|
}, options.FindOneAndUpdate().SetReturnDocument(options.After).SetUpsert(true).SetProjection(bson.M{"_id": 1}))
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("authorize failed :", err)
|
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
linkid := link["_id"].(primitive.ObjectID)
|
|
|
|
|
newaccid := primitive.NewObjectID()
|
|
|
|
|
for i := 0; i < len(sh.serviceCodeBytes); i++ {
|
|
|
|
|
newaccid[i] ^= sh.serviceCodeBytes[i]
|
|
|
|
|
}
|
2023-06-20 12:02:29 +09:00
|
|
|
account, err := sh.mongoClient.FindOneAndUpdate(CollectionAccount, bson.M{
|
2023-05-24 12:16:03 +09:00
|
|
|
"_id": linkid,
|
|
|
|
|
}, bson.M{
|
|
|
|
|
"$setOnInsert": bson.M{
|
|
|
|
|
"accid": newaccid,
|
|
|
|
|
"create": createtime,
|
|
|
|
|
},
|
|
|
|
|
}, options.FindOneAndUpdate().SetReturnDocument(options.After).SetUpsert(true).SetProjection(bson.M{"accid": 1, "create": 1}))
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("authorize failed. Update sh.ServiceName err:", err)
|
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
accid := account["accid"].(primitive.ObjectID)
|
|
|
|
|
oldcreate := account["create"].(primitive.DateTime)
|
|
|
|
|
newaccount := oldcreate == createtime
|
|
|
|
|
|
2023-08-22 10:16:09 +09:00
|
|
|
var bi *blockinfo
|
|
|
|
|
if sh.bl.contains(accid, &bi) {
|
|
|
|
|
// 블럭된 계정. 블락 정보를 알려준다.
|
|
|
|
|
w.Header().Add("MG-ACCOUNTBLOCK-START", strconv.FormatInt(bi.Start.Time().Unix(), 10))
|
|
|
|
|
w.Header().Add("MG-ACCOUNTBLOCK-END", strconv.FormatInt(bi.End.Time().Unix(), 10))
|
|
|
|
|
w.Header().Add("MG-ACCOUNTBLOCK-REASON", bi.Reason)
|
|
|
|
|
w.WriteHeader(http.StatusUnauthorized)
|
2023-05-24 12:16:03 +09:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
newsession := primitive.NewObjectID()
|
|
|
|
|
expired := primitive.NewDateTimeFromTime(time.Now().UTC().Add(sh.sessionTTL))
|
2023-06-29 21:21:49 +09:00
|
|
|
newauth := gocommon.Authinfo{
|
2023-05-24 12:16:03 +09:00
|
|
|
Accid: accid,
|
|
|
|
|
ServiceCode: sh.ServiceCode,
|
|
|
|
|
Platform: authtype,
|
|
|
|
|
Uid: uid,
|
2023-05-28 22:13:10 +09:00
|
|
|
Email: email,
|
|
|
|
|
Sk: newsession,
|
|
|
|
|
Expired: expired,
|
2023-05-24 12:16:03 +09:00
|
|
|
//RefreshToken: queryvals.Get("rt"),
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
_, _, err = sh.mongoClient.UpsertOne(CollectionAuth, bson.M{"_id": newauth.Accid}, &newauth)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("authorize failed :", err)
|
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
output := map[string]any{
|
|
|
|
|
"sk": newsession.Hex(),
|
|
|
|
|
"expirein": sh.sessionTTL.Seconds(),
|
|
|
|
|
"newAccount": newaccount,
|
|
|
|
|
"accid": newauth.Accid.Hex(),
|
|
|
|
|
}
|
2023-08-22 19:53:30 +09:00
|
|
|
if *noauth {
|
|
|
|
|
output["noauth"] = true
|
|
|
|
|
}
|
2023-05-24 12:16:03 +09:00
|
|
|
bt, _ := json.Marshal(output)
|
|
|
|
|
w.Write(bt)
|
|
|
|
|
} else if len(session) > 0 {
|
|
|
|
|
sessionobj, _ := primitive.ObjectIDFromHex(session)
|
|
|
|
|
if !sessionobj.IsZero() {
|
|
|
|
|
updated, _, err := sh.mongoClient.Update(CollectionAuth,
|
|
|
|
|
bson.M{
|
|
|
|
|
"sk": sessionobj,
|
|
|
|
|
},
|
|
|
|
|
bson.M{
|
|
|
|
|
"$currentDate": bson.M{
|
|
|
|
|
"_ts": bson.M{"$type": "date"},
|
|
|
|
|
},
|
|
|
|
|
}, options.Update().SetUpsert(false))
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Error("update auth collection failed")
|
|
|
|
|
logger.Error(err)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if !updated {
|
|
|
|
|
// 세션이 없네?
|
|
|
|
|
logger.Println("authorize failed. session not exists in database :", session)
|
|
|
|
|
w.WriteHeader(http.StatusUnauthorized)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
output := map[string]any{
|
|
|
|
|
"sk": session,
|
|
|
|
|
"expirein": sh.sessionTTL.Seconds(),
|
|
|
|
|
}
|
|
|
|
|
bt, _ := json.Marshal(output)
|
|
|
|
|
w.Write(bt)
|
|
|
|
|
} else {
|
|
|
|
|
logger.Println("authorize failed. sk is not valid hex :", session)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
logger.Println("authorize failed. id empty :", queryvals)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2023-08-16 21:44:19 +09:00
|
|
|
func (sh *serviceDescription) findVersionSplit(version string) []byte {
|
|
|
|
|
if len(version) > 0 {
|
|
|
|
|
for k, v := range sh.divisionsSplits {
|
|
|
|
|
if strings.HasPrefix(version, k) {
|
|
|
|
|
if version == k || version[len(k)] == '.' {
|
|
|
|
|
return v
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2023-08-18 13:56:34 +09:00
|
|
|
return sh.divisionsSplits["default"]
|
2023-08-16 21:44:19 +09:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (sh *serviceDescription) serveHTTP(w http.ResponseWriter, r *http.Request) {
|
2023-05-24 12:16:03 +09:00
|
|
|
defer func() {
|
|
|
|
|
s := recover()
|
|
|
|
|
if s != nil {
|
|
|
|
|
logger.Error(s)
|
|
|
|
|
}
|
|
|
|
|
}()
|
|
|
|
|
|
|
|
|
|
defer func() {
|
|
|
|
|
io.Copy(io.Discard, r.Body)
|
|
|
|
|
r.Body.Close()
|
|
|
|
|
}()
|
|
|
|
|
|
|
|
|
|
if strings.HasSuffix(r.URL.Path, "/auth") {
|
|
|
|
|
sh.authorize(w, r)
|
|
|
|
|
} else if strings.HasSuffix(r.URL.Path, "/link") {
|
|
|
|
|
sh.link(w, r)
|
2023-06-28 16:10:28 +09:00
|
|
|
} else if strings.HasSuffix(r.URL.Path, "/unlink") {
|
|
|
|
|
sh.unlink(w, r)
|
|
|
|
|
} else if strings.HasSuffix(r.URL.Path, "/linkinfo") {
|
|
|
|
|
sh.linkinfo(w, r)
|
2023-06-23 16:43:20 +09:00
|
|
|
} else if strings.HasSuffix(r.URL.Path, "/divs") {
|
2023-06-28 16:10:28 +09:00
|
|
|
// TODO : 세션키와 authtoken을 헤더로 받아서 accid 조회
|
2023-06-23 16:43:20 +09:00
|
|
|
queryvals := r.URL.Query()
|
|
|
|
|
sk := queryvals.Get("sk")
|
|
|
|
|
|
|
|
|
|
//if len(token) == 0 || len(sk) == 0 {
|
|
|
|
|
if len(sk) == 0 {
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// TODO : 각 서버에 있는 자산? 캐릭터 정보를 보여줘야 하나. 뭘 보여줄지는 프로젝트에 문의
|
|
|
|
|
// 일단 서버 종류만 내려보내자
|
|
|
|
|
// 세션키가 있는지 확인
|
2023-08-30 17:04:00 +09:00
|
|
|
authInfo, err := sh.sessionProvider.Query(sk)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Println("sessionProvider.Query return err :", err)
|
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if authInfo == nil {
|
2023-06-23 16:43:20 +09:00
|
|
|
logger.Println("sessionkey is not valid :", sk)
|
|
|
|
|
w.WriteHeader(http.StatusUnauthorized)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2023-08-16 21:44:19 +09:00
|
|
|
version := queryvals.Get("version")
|
|
|
|
|
w.Write(sh.findVersionSplit(version))
|
2023-06-23 16:43:20 +09:00
|
|
|
} else if strings.HasSuffix(r.URL.Path, "/addr") {
|
2023-05-24 12:16:03 +09:00
|
|
|
queryvals := r.URL.Query()
|
|
|
|
|
sk := queryvals.Get("sk")
|
|
|
|
|
|
|
|
|
|
//if len(token) == 0 || len(sk) == 0 {
|
|
|
|
|
if len(sk) == 0 {
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// TODO : 각 서버에 있는 자산? 캐릭터 정보를 보여줘야 하나. 뭘 보여줄지는 프로젝트에 문의
|
|
|
|
|
// 일단 서버 종류만 내려보내자
|
|
|
|
|
// 세션키가 있는지 확인
|
2023-08-30 17:04:00 +09:00
|
|
|
authInfo, err := sh.sessionProvider.Query(sk)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Println("sessionProvider.Query return err :", err)
|
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if authInfo == nil {
|
2023-05-28 22:13:10 +09:00
|
|
|
logger.Println("sessionkey is not valid :", sk)
|
2023-06-19 14:31:34 +09:00
|
|
|
w.WriteHeader(http.StatusUnauthorized)
|
2023-05-24 12:16:03 +09:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-23 16:43:20 +09:00
|
|
|
divname := queryvals.Get("div")
|
|
|
|
|
divname = strings.Trim(divname, `"`)
|
|
|
|
|
div := sh.Divisions[divname]
|
|
|
|
|
if div != nil {
|
|
|
|
|
switch div.State {
|
|
|
|
|
case DivisionState_FullOpen:
|
|
|
|
|
w.Write([]byte(fmt.Sprintf(`{"service":"%s"}`, div.Url)))
|
|
|
|
|
|
|
|
|
|
case DivisionState_RestrictedOpen:
|
|
|
|
|
// 점검중이면 whitelist만 입장 가능
|
2023-08-30 17:04:00 +09:00
|
|
|
authInfo, err := sh.sessionProvider.Query(sk)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logger.Println("sessionProvider.Query return err :", err)
|
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
2023-06-23 16:43:20 +09:00
|
|
|
return
|
|
|
|
|
}
|
2023-08-30 17:04:00 +09:00
|
|
|
|
|
|
|
|
wm := &whitelistmember{Email: authInfo.Email, Platform: authInfo.Platform}
|
2023-08-22 10:16:09 +09:00
|
|
|
if sh.wl.contains(wm.Key(), nil) {
|
2023-06-23 16:43:20 +09:00
|
|
|
// qa 권한이면 입장 가능
|
2023-05-28 22:13:10 +09:00
|
|
|
w.Write([]byte(fmt.Sprintf(`{"service":"%s"}`, div.Url)))
|
2023-06-23 16:43:20 +09:00
|
|
|
} else if div.Maintenance != nil {
|
|
|
|
|
// 권한이 없으므로 공지
|
|
|
|
|
w.Write([]byte(fmt.Sprintf(`{"notice":"%s"}`, div.Maintenance.link)))
|
|
|
|
|
} else {
|
|
|
|
|
logger.Println("div.Maintenance is nil :", divname)
|
|
|
|
|
}
|
2023-05-28 22:13:10 +09:00
|
|
|
|
2023-06-23 16:43:20 +09:00
|
|
|
case DivisionState_Maintenance:
|
|
|
|
|
// 점검중. 아무도 못들어감
|
|
|
|
|
if div.Maintenance != nil {
|
|
|
|
|
w.Write([]byte(fmt.Sprintf(`{"notice":"%s"}`, div.Maintenance.link)))
|
|
|
|
|
} else {
|
|
|
|
|
logger.Println("div.Maintenance is nil :", divname)
|
2023-05-28 22:13:10 +09:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
2023-06-23 16:43:20 +09:00
|
|
|
logger.Println("div is not found :", divname)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
2023-05-28 22:13:10 +09:00
|
|
|
}
|
2023-06-23 16:43:20 +09:00
|
|
|
} else {
|
|
|
|
|
logger.Println("??? :", r.URL.Path)
|
|
|
|
|
w.WriteHeader(http.StatusBadRequest)
|
2023-05-24 12:16:03 +09:00
|
|
|
}
|
|
|
|
|
}
|
