cpolis/cmd/data/db.go

package data

import (
	"database/sql"
	"fmt"

	"github.com/go-sql-driver/mysql"
	"golang.org/x/crypto/bcrypt"
)

type DB struct {
	*sql.DB
}

func OpenDB(dbName string) (*DB, error) {
	var err error
	db := DB{DB: &sql.DB{}}

	cfg := mysql.NewConfig()
	cfg.DBName = dbName
	cfg.User, cfg.Passwd, err = getCredentials()
	if err != nil {
		return nil, fmt.Errorf("error reading user credentials for DB: %v", err)
	}

	db.DB, err = sql.Open("mysql", cfg.FormatDSN())
	if err != nil {
		return nil, fmt.Errorf("error opening DB: %v", err)
	}
	if err = db.Ping(); err != nil {
		return nil, fmt.Errorf("error pinging DB: %v", err)
	}

	return &db, nil
}

func (db *DB) AddUser(user *User, pass string) error {
	hashedPass, err := bcrypt.GenerateFromPassword([]byte(pass), bcrypt.DefaultCost)
	if err != nil {
		return fmt.Errorf("error creating password hash: %v", err)
	}

	query := `
    INSERT INTO users
        (username, password, first_name, last_name, role)
    VALUES (?, ?, ?, ?, ?)
    `
	if _, err = db.Exec(query, user.UserName, string(hashedPass), user.FirstName, user.LastName, user.Role); err != nil {
		return fmt.Errorf("error inserting user into DB: %v", err)
	}

	return nil
}

func (db *DB) GetID(userName string) (int64, error) {
	var id int64

	query := `
    SELECT id
    FROM users
    WHERE username = ?
    `
	row := db.QueryRow(query, userName)
	if err := row.Scan(&id); err != nil {
		return 0, fmt.Errorf("user not in DB: %v", err)
	}

	return id, nil
}

func (db *DB) CheckPassword(id int64, pass string) error {
	var queriedPass string

	query := `
    SELECT password
    FROM users
    WHERE id = ?
    `
	row := db.QueryRow(query, id)
	if err := row.Scan(&queriedPass); err != nil {
		return fmt.Errorf("error reading password from DB: %v", err)
	}

	if err := bcrypt.CompareHashAndPassword([]byte(queriedPass), []byte(pass)); err != nil {
		return fmt.Errorf("incorrect password: %v", err)
	}

	return nil
}

func (db *DB) ChangePassword(id int64, oldPass, newPass string) error {
	tx, err := db.Begin()
	if err != nil {
		return fmt.Errorf("error starting transaction: %v", err)
	}

	var queriedPass string
	getQuery := `
    SELECT password
    FROM users
    WHERE id = ?
    `
	row := tx.QueryRow(getQuery, id)
	if err := row.Scan(&queriedPass); err != nil {
		tx.Rollback()
		return fmt.Errorf("error reading password from DB: %v", err)
	}

	if err := bcrypt.CompareHashAndPassword([]byte(queriedPass), []byte(oldPass)); err != nil {
		tx.Rollback()
		return fmt.Errorf("incorrect password: %v", err)
	}

	newHashedPass, err := bcrypt.GenerateFromPassword([]byte(newPass), bcrypt.DefaultCost)
	if err != nil {
		tx.Rollback()
		return fmt.Errorf("error creating password hash: %v", err)
	}

	setQuery := `
    UPDATE users
    SET password = ?
    WHERE id = ?
    `
	if _, err = tx.Exec(setQuery, string(newHashedPass), id); err != nil {
		tx.Rollback()
		return fmt.Errorf("error updating password in DB: %v", err)
	}

	if err = tx.Commit(); err != nil {
		return fmt.Errorf("error committing transaction: %v", err)
	}

	return nil
}

func (db *DB) CountEntries() (int64, error) {
	var count int64

	query := `SELECT COUNT(*) FROM users`
	row := db.QueryRow(query)
	if err := row.Scan(&count); err != nil {
		return 0, fmt.Errorf("error counting rows in user DB: %v", err)
	}

	return count, nil
}

// TODO: No need for ID field in general
func (db *DB) GetUser(id int64) (*User, error) {
	user := new(User)
	query := `
    SELECT id, username, first_name, last_name, role
    FROM users
    WHERE id = ?
    `

	row := db.QueryRow(query, id)
	if err := row.Scan(&user.ID, &user.UserName, &user.FirstName, &user.LastName, &user.Role); err != nil {
		return nil, fmt.Errorf("error reading user information: %v", err)
	}

	return user, nil
}
Added initial support for MySQL databases 2024-02-18 16:37:13 +01:00			`package data`

			`import (`
			`"database/sql"`
			`"fmt"`

			`"github.com/go-sql-driver/mysql"`
Added ability to add user 2024-02-22 18:49:51 +01:00			`"golang.org/x/crypto/bcrypt"`
Added initial support for MySQL databases 2024-02-18 16:37:13 +01:00			`)`

			`type DB struct {`
			`*sql.DB`
			`}`

			`func OpenDB(dbName string) (*DB, error) {`
			`var err error`
			`db := DB{DB: &sql.DB{}}`

			`cfg := mysql.NewConfig()`
			`cfg.DBName = dbName`
			`cfg.User, cfg.Passwd, err = getCredentials()`
			`if err != nil {`
Changed error messages 2024-02-22 15:23:29 +01:00			`return nil, fmt.Errorf("error reading user credentials for DB: %v", err)`
Added initial support for MySQL databases 2024-02-18 16:37:13 +01:00			`}`

			`db.DB, err = sql.Open("mysql", cfg.FormatDSN())`
			`if err != nil {`
Changed error messages 2024-02-22 15:23:29 +01:00			`return nil, fmt.Errorf("error opening DB: %v", err)`
Added initial support for MySQL databases 2024-02-18 16:37:13 +01:00			`}`
			`if err = db.Ping(); err != nil {`
Changed error messages 2024-02-22 15:23:29 +01:00			`return nil, fmt.Errorf("error pinging DB: %v", err)`
Added initial support for MySQL databases 2024-02-18 16:37:13 +01:00			`}`

			`return &db, nil`
			`}`
Added ability to add user 2024-02-22 18:49:51 +01:00
Added partial support for tags 2024-03-03 13:56:49 +01:00			`func (db DB) AddUser(user User, pass string) error {`
Check user credentials before adding user 2024-02-22 20:12:09 +01:00			`hashedPass, err := bcrypt.GenerateFromPassword([]byte(pass), bcrypt.DefaultCost)`
			`if err != nil {`
			`return fmt.Errorf("error creating password hash: %v", err)`
			`}`

Added ability to add user 2024-02-22 18:49:51 +01:00			query := `
			`INSERT INTO users`
Implemented proper User struct 2024-03-01 12:25:53 +01:00			`(username, password, first_name, last_name, role)`
Initial sessions implementation 2024-03-03 09:16:49 +01:00			`VALUES (?, ?, ?, ?, ?)`
Added ability to add user 2024-02-22 18:49:51 +01:00			`
A bit of cleaning up 2024-03-05 16:38:18 +01:00			`if _, err = db.Exec(query, user.UserName, string(hashedPass), user.FirstName, user.LastName, user.Role); err != nil {`
Added ability to add user 2024-02-22 18:49:51 +01:00			`return fmt.Errorf("error inserting user into DB: %v", err)`
			`}`

			`return nil`
			`}`
Added ability to update Passwords 2024-02-22 19:27:41 +01:00
Implemented proper User struct 2024-03-01 12:25:53 +01:00			`func (db *DB) GetID(userName string) (int64, error) {`
Added ability to login 2024-02-24 09:54:25 +01:00			`var id int64`

			query := `
Initial sessions implementation 2024-03-03 09:16:49 +01:00			`SELECT id`
			`FROM users`
			`WHERE username = ?`
Added ability to login 2024-02-24 09:54:25 +01:00			`
Implemented proper User struct 2024-03-01 12:25:53 +01:00			`row := db.QueryRow(query, userName)`
Added ability to login 2024-02-24 09:54:25 +01:00			`if err := row.Scan(&id); err != nil {`
			`return 0, fmt.Errorf("user not in DB: %v", err)`
			`}`

			`return id, nil`
			`}`

			`func (db *DB) CheckPassword(id int64, pass string) error {`
			`var queriedPass string`
Added ability to update Passwords 2024-02-22 19:27:41 +01:00
Added ability to login 2024-02-24 09:54:25 +01:00			query := `
Initial sessions implementation 2024-03-03 09:16:49 +01:00			`SELECT password`
			`FROM users`
			`WHERE id = ?`
Added ability to update Passwords 2024-02-22 19:27:41 +01:00			`
Added ability to login 2024-02-24 09:54:25 +01:00			`row := db.QueryRow(query, id)`
			`if err := row.Scan(&queriedPass); err != nil {`
Added ability to update Passwords 2024-02-22 19:27:41 +01:00			`return fmt.Errorf("error reading password from DB: %v", err)`
			`}`

Added ability to login 2024-02-24 09:54:25 +01:00			`if err := bcrypt.CompareHashAndPassword([]byte(queriedPass), []byte(pass)); err != nil {`
			`return fmt.Errorf("incorrect password: %v", err)`
			`}`

			`return nil`
			`}`

			`func (db *DB) ChangePassword(id int64, oldPass, newPass string) error {`
Use transaction when necessary 2024-03-06 15:37:59 +01:00			`tx, err := db.Begin()`
			`if err != nil {`
			`return fmt.Errorf("error starting transaction: %v", err)`
			`}`

Corrected transaction for ChangePassword() 2024-03-06 16:51:08 +01:00			`var queriedPass string`
			getQuery := `
			`SELECT password`
			`FROM users`
			`WHERE id = ?`
			`
			`row := tx.QueryRow(getQuery, id)`
			`if err := row.Scan(&queriedPass); err != nil {`
Use transaction when necessary 2024-03-06 15:37:59 +01:00			`tx.Rollback()`
Corrected transaction for ChangePassword() 2024-03-06 16:51:08 +01:00			`return fmt.Errorf("error reading password from DB: %v", err)`
			`}`

			`if err := bcrypt.CompareHashAndPassword([]byte(queriedPass), []byte(oldPass)); err != nil {`
			`tx.Rollback()`
			`return fmt.Errorf("incorrect password: %v", err)`
Added ability to update Passwords 2024-02-22 19:27:41 +01:00			`}`

			`newHashedPass, err := bcrypt.GenerateFromPassword([]byte(newPass), bcrypt.DefaultCost)`
			`if err != nil {`
Use transaction when necessary 2024-03-06 15:37:59 +01:00			`tx.Rollback()`
Added ability to update Passwords 2024-02-22 19:27:41 +01:00			`return fmt.Errorf("error creating password hash: %v", err)`
			`}`

Corrected transaction for ChangePassword() 2024-03-06 16:51:08 +01:00			setQuery := `
Initial sessions implementation 2024-03-03 09:16:49 +01:00			`UPDATE users`
			`SET password = ?`
			`WHERE id = ?`
Added ability to update Passwords 2024-02-22 19:27:41 +01:00			`
Corrected transaction for ChangePassword() 2024-03-06 16:51:08 +01:00			`if _, err = tx.Exec(setQuery, string(newHashedPass), id); err != nil {`
Use transaction when necessary 2024-03-06 15:37:59 +01:00			`tx.Rollback()`
Added ability to update Passwords 2024-02-22 19:27:41 +01:00			`return fmt.Errorf("error updating password in DB: %v", err)`
			`}`

Use transaction when necessary 2024-03-06 15:37:59 +01:00			`if err = tx.Commit(); err != nil {`
			`return fmt.Errorf("error committing transaction: %v", err)`
			`}`

Added ability to update Passwords 2024-02-22 19:27:41 +01:00			`return nil`
			`}`
Add ability to display feed 2024-02-24 14:49:29 +01:00
			`func (db *DB) CountEntries() (int64, error) {`
			`var count int64`

			query := `SELECT COUNT(*) FROM users`
			`row := db.QueryRow(query)`
			`if err := row.Scan(&count); err != nil {`
			`return 0, fmt.Errorf("error counting rows in user DB: %v", err)`
			`}`

			`return count, nil`
			`}`
Initial sessions implementation 2024-03-03 09:16:49 +01:00
			`// TODO: No need for ID field in general`
			`func (db DB) GetUser(id int64) (User, error) {`
			`user := new(User)`
			query := `
			`SELECT id, username, first_name, last_name, role`
			`FROM users`
			`WHERE id = ?`
			`

			`row := db.QueryRow(query, id)`
A bit of cleaning up 2024-03-05 16:38:18 +01:00			`if err := row.Scan(&user.ID, &user.UserName, &user.FirstName, &user.LastName, &user.Role); err != nil {`
Initial sessions implementation 2024-03-03 09:16:49 +01:00			`return nil, fmt.Errorf("error reading user information: %v", err)`
			`}`

			`return user, nil`
			`}`