Home Explore Help
Sign In
TC
/
WebStick
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: e95a7b7b53
Branches Tags
WebStick
/
firmware
/
v3
/
web-server
/
users.ino

users.ino 1.8 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. /*
    2. 

  2.   User.ino
    3. 

  3. 

  4.   This is a new module handling user systems on ESP8266
    5. 

  5. 

  6. */
    7. 

  7. 

  8. //Create new user, creator must be admin
    9. 

  9. void HandleNewUser(AsyncWebServerRequest *r) {
    10. 

  10.   if (!IsAdmin(r)) {
    11. 

  11.     SendErrorResp(r, "this function require admin permission");
    12. 

  12.     return;
    13. 

  13.   }
    14. 

  14.   String username = GetPara(r, "username");
    15. 

  15.   String password = GetPara(r, "password");
    16. 

  16.   username.trim();
    17. 

  17.   password.trim();
    18. 

  18. 

  19.   //Check if the inputs are valid
    20. 

  20.   if (username == "" || password == "") {
    21. 

  21.     SendErrorResp(r, "username or password is an empty string");
    22. 

  22.     return;
    23. 

  23.   } else if (password.length() < 8) {
    24. 

  24.     SendErrorResp(r, "password must contain at least 8 characters");
    25. 

  25.     return;
    26. 

  26.   }
    27. 

  27. 

  28.   //Check if the user already exists
    29. 

  29.   if (DBKeyExists("user", username)) {
    30. 

  30.     SendErrorResp(r, "user with name: " + username + " already exists");
    31. 

  31.     return;
    32. 

  32.   }
    33. 

  33. 

  34.   //OK create the user
    35. 

  35.   bool succ = DBWrite("user", username, sha1(password));
    36. 

  36.   if (!succ) {
    37. 

  37.     SendErrorResp(r, "write new user to database failed");
    38. 

  38.     return;
    39. 

  39.   }
    40. 

  40.   r->send(200, "application/json", "\"OK\"");
    41. 

  41. }
    42. 

  42. 

  43. //Remove the given username from the system
    44. 

  44. void HandleRemoveUser(AsyncWebServerRequest *r) {
    45. 

  45.   if (!IsAdmin(r)) {
    46. 

  46.     SendErrorResp(r, "this function require admin permission");
    47. 

  47.     return;
    48. 

  48.   }
    49. 

  49. 

  50.   String username = GetPara(r, "username");
    51. 

  51.   username.trim();
    52. 

  52. 

  53.   //Check if the user exists
    54. 

  54.   if (!DBKeyExists("user", username)) {
    55. 

  55.     SendErrorResp(r, "user with name: " + username + " not exists");
    56. 

  56.     return;
    57. 

  57.   }
    58. 

  58. 

  59.   //Okey, remove the user
    60. 

  60.   bool succ = DBRemove("user", username);
    61. 

  61.   if (!succ) {
    62. 

  62.     SendErrorResp(r, "remove user from system failed");
    63. 

  63.     return;
    64. 

  64.   }
    65. 

  65.   r->send(200, "application/json", "\"OK\"");
    66. 

  66. }
    67. 

  67. 

  68. //Admin or the user themselve change password for the account
    69. 

  69. void HandleUserChangePassword(AsyncWebServerRequest *r) {
    70. 

  70.   
    71. 

  71. }
    72.