pcmt/app/routes.go

103 lines
3.1 KiB
Go
Raw Normal View History

2023-05-20 20:15:57 +02:00
// Copyright 2023 wanderer <a_mirre at utb dot cz>
// SPDX-License-Identifier: AGPL-3.0-only
2023-03-22 23:03:21 +01:00
package app
import (
"net/http"
"git.dotya.ml/mirre-mt/pcmt/handlers"
modtmpl "git.dotya.ml/mirre-mt/pcmt/modules/template"
2023-03-22 23:03:21 +01:00
"github.com/labstack/echo/v4"
"github.com/labstack/echo/v4/middleware"
2023-03-22 23:03:21 +01:00
)
2023-05-31 22:42:50 +02:00
func (a *App) SetupRoutes() error {
2023-03-22 23:03:21 +01:00
e := a.E()
setting := a.setting
2023-04-26 23:11:58 +02:00
assets := http.FileServer(a.getAssets())
tmpls := a.getTemplates()
2023-03-22 23:03:21 +01:00
modtmpl.Init(setting, tmpls)
handlers.SetDBClient(a.db)
// run this before declaring any handler funcs.
handlers.InitHandlers(setting)
e.Renderer = modtmpl.Renderer
2023-05-31 22:42:50 +02:00
compress, err := handlers.WrapMiddlewareCompress()
if err != nil {
return err
}
xsrf := a.csrfConfig()
// keep /static/* as a compatibility fallback for /assets.
e.GET(
"/static/*",
func(c echo.Context) error {
return c.Redirect(http.StatusMovedPermanently, c.Request().URL.Path)
},
middleware.Rewrite(
map[string]string{"/static/*": "/assets/$1"},
),
)
// alternative:
// e.GET("/static/*", echo.WrapHandler(http.StripPrefix("/static/", assets)))
2023-05-31 22:42:50 +02:00
e.GET("/assets/*", echo.WrapHandler(http.StripPrefix("/assets/", assets)), handlers.MiddlewareCache, compress)
e.HEAD("/assets/*", echo.WrapHandler(http.StripPrefix("/assets/", assets)), handlers.MiddlewareCache, compress)
2023-05-13 22:33:38 +02:00
e.GET("/healthz", handlers.Healthz())
e.GET("/health", handlers.Healthz())
2023-05-13 22:33:38 +02:00
base := e.Group("", xsrf)
2023-08-13 15:52:31 +02:00
base.GET("/", handlers.Index(), compress)
base.HEAD("/", handlers.Index())
base.GET("/signin", handlers.Signin(), compress)
2023-08-13 15:52:31 +02:00
base.POST("/signin", handlers.SigninPost(a.db))
if a.setting.RegistrationAllowed {
base.GET("/signup", handlers.Signup(), compress)
base.POST("/signup", handlers.SignupPost(a.db))
}
base.GET("/home", handlers.Home(a.db))
2023-05-22 03:22:58 +02:00
// handle weird attempts here.
base.POST("/signin/*", func(c echo.Context) error {
return c.NoContent(http.StatusNotFound)
})
base.POST("/signup/*", func(c echo.Context) error {
return c.NoContent(http.StatusNotFound)
})
user := e.Group("/user", handlers.MiddlewareSession, xsrf)
user.GET("/initial-password-change", handlers.InitialPasswordChange())
user.POST("/initial-password-change", handlers.InitialPasswordChangePost())
user.GET("/hibp-search", handlers.GetSearchHIBP())
user.POST("/hibp-search", handlers.SearchHIBP())
user.GET("/hibp-breach-details/:name", handlers.ViewHIBP())
manage := e.Group("/manage", handlers.MiddlewareSession, xsrf)
2023-08-13 15:52:31 +02:00
manage.GET("/api-keys", handlers.ManageAPIKeys(), compress)
manage.GET("/users", handlers.ManageUsers(), compress)
manage.GET("/users/new", handlers.ManageUsers(), compress)
manage.POST("/users/create", handlers.CreateUser())
manage.GET("/users/:id", handlers.ViewUser(), compress)
manage.GET("/users/:id/edit", handlers.EditUser(), handlers.MiddlewareCache, compress)
manage.GET("/users/:id/delete", handlers.DeleteUserConfirmation(), compress)
manage.POST("/users/:id/update", handlers.UpdateUser())
manage.POST("/users/:id/delete", handlers.DeleteUser())
2023-05-22 03:22:58 +02:00
e.GET("/logout", handlers.Logout())
e.POST("/logout", handlers.Logout(), handlers.MiddlewareSession, xsrf)
// administrative endpoints.
e.GET("/admin/*", handlers.Admin())
2023-05-31 22:42:50 +02:00
return nil
2023-03-22 23:03:21 +01:00
}