Benutzerverwaltung

2025-10-29 17:25:32 +00:00 · 2025-05-26 17:27:52 +02:00
parent d1ab30e387
commit 24b56ff97f
8 changed files with 424 additions and 98 deletions
--- a/pages/user_management.go
+++ b/pages/user_management.go
@@ -15,6 +15,9 @@ import (
 const (
 	URL_USER_MANAGEMENT      = "/user/management"
 	TEMPLATE_USER_MANAGEMENT = "/user/management/"
+	URL_DEACTIVATE_USER      = "/deactivate/"
+	URL_ACTIVATE_USER        = "/activate/"
+	URL_LOGOUT_USER          = "/logout/"
 )

 type SessionCount struct {
@@ -42,7 +45,9 @@ func (p *UserManagementPage) Setup(router *router.Router[*core.RequestEvent], ap
 	rg := router.Group(URL_USER_MANAGEMENT)
 	rg.BindFunc(middleware.IsAdmin())
 	rg.GET("", p.GET(engine, app))
-	rg.POST("", p.POST(engine, app))
+	rg.POST(URL_DEACTIVATE_USER, p.POSTDeactivate(engine, app))
+	rg.POST(URL_ACTIVATE_USER, p.POSTActivate(engine, app))
+	rg.POST(URL_LOGOUT_USER, p.POSTLogout(engine, app))
 	return nil
 }

@@ -63,47 +68,125 @@ func GetSessionsCounts(app core.App) ([]*SessionCount, error) {

 func (p *UserManagementPage) GET(engine *templating.Engine, app core.App) HandleFunc {
 	return func(e *core.RequestEvent) error {
-		records := []*core.Record{}
-		err := app.RecordQuery(dbmodels.USERS_TABLE).OrderBy(dbmodels.USERS_NAME_FIELD).All(&records)
-		if err != nil {
-			return engine.Response500(e, err, nil)
-		}
-
-		users := make([]*dbmodels.User, 0, len(records))
-		for _, record := range records {
-			users = append(users, dbmodels.NewUser(record))
-		}
-
-		sessionCounts, err := GetSessionsCounts(app)
-		if err != nil {
-			return engine.Response500(e, err, nil)
-		}
-
-		scmap := make(map[string]int)
-		for _, sc := range sessionCounts {
-			scmap[sc.UserId] = sc.Count
-		}
-
 		data := make(map[string]any)
-		data["users"] = users
-		data["len"] = len(users)
-		data["session_counts"] = scmap
-
-		nonce, token, err := CSRF_CACHE.GenerateTokenBundle()
-		if err != nil {
-			return engine.Response500(e, err, data)
-		}
-		data["csrf_nonce"] = nonce
-		data["csrf_token"] = token
-
+		p.getData(app, data)
 		SetRedirect(data, e)

 		return engine.Response200(e, p.Template, data, p.Layout)
 	}
 }

-func (p *UserManagementPage) POST(engine *templating.Engine, app core.App) HandleFunc {
+func (p *UserManagementPage) getData(app core.App, data map[string]any) error {
+	records := []*core.Record{}
+	err := app.RecordQuery(dbmodels.USERS_TABLE).OrderBy(dbmodels.USERS_NAME_FIELD).All(&records)
+	if err != nil {
+		return fmt.Errorf("Konnte keine Nutzer laden: %w", err)
+	}
+
+	users := make([]*dbmodels.User, 0, len(records))
+	for _, record := range records {
+		users = append(users, dbmodels.NewUser(record))
+	}
+
+	sessionCounts, err := GetSessionsCounts(app)
+	if err != nil {
+		return fmt.Errorf("Konnte keine Sitzungsanzahlen laden: %w", err)
+	}
+
+	scmap := make(map[string]int)
+	for _, sc := range sessionCounts {
+		scmap[sc.UserId] = sc.Count
+	}
+
+	data["users"] = users
+	data["len"] = len(users)
+	data["session_counts"] = scmap
+
+	csrfNonce, csrfToken, err := CSRF_CACHE.GenerateTokenBundle()
+	if err != nil {
+		return fmt.Errorf("Konnte kein CSRF-Token generieren", err)
+	}
+	data["csrf_nonce"] = csrfNonce
+	data["csrf_token"] = csrfToken
+
+	return nil
+}
+
+func (p *UserManagementPage) ErrorResponse(engine *templating.Engine, e *core.RequestEvent, err error) error {
+	data := make(map[string]any)
+	data["error"] = err.Error()
+
+	nonce, token, err := CSRF_CACHE.GenerateTokenBundle()
+	if err != nil {
+		return engine.Response500(e, err, data)
+	}
+	data["csrf_nonce"] = nonce
+	data["csrf_token"] = token
+
+	SetRedirect(data, e)
+
+	str, err := engine.RenderToString(e, data, p.Template, p.Layout)
+
+	return e.HTML(400, str)
+}
+
+func (p *UserManagementPage) POSTDeactivate(engine *templating.Engine, app core.App) HandleFunc {
+	return p.UserAction(engine, app, func(user *dbmodels.User) {
+		user.SetDeactivated(true)
+	})
+}
+
+func (p *UserManagementPage) POSTActivate(engine *templating.Engine, app core.App) HandleFunc {
+	return p.UserAction(engine, app, func(user *dbmodels.User) {
+		user.SetDeactivated(false)
+	})
+}
+
+func (p *UserManagementPage) POSTLogout(engine *templating.Engine, app core.App) HandleFunc {
+	return p.UserAction(engine, app, func(user *dbmodels.User) {})
+}
+
+func (p *UserManagementPage) UserAction(engine *templating.Engine, app core.App, fn func(user *dbmodels.User)) HandleFunc {
 	return func(e *core.RequestEvent) error {
-		return fmt.Errorf("not implemented")
+		formdata := struct {
+			User  string `form:"uid"`
+			CSRF  string `form:"csrf_token"`
+			Nonce string `form:"csrf_nonce"`
+		}{}
+
+		if err := e.BindBody(&formdata); err != nil {
+			return p.ErrorResponse(engine, e, fmt.Errorf("Konnte Formular nicht binden: %w", err))
+		}
+
+		if _, err := CSRF_CACHE.ValidateTokenBundle(formdata.Nonce, formdata.CSRF); err != nil {
+			return p.ErrorResponse(engine, e, err)
+		}
+
+		user, err := app.FindRecordById(dbmodels.USERS_TABLE, formdata.User)
+		if err != nil {
+			return p.ErrorResponse(engine, e, fmt.Errorf("Konnte Nutzer nicht finden."))
+		}
+
+		u := dbmodels.NewUser(user)
+
+		fn(u)
+
+		if err := app.Save(u); err != nil {
+			return p.ErrorResponse(engine, e, fmt.Errorf("Konnte Nutzer nicht deaktivieren: %w", err))
+		}
+
+		go DeleteSessionsForUser(app, u.Id)
+
+		data := make(map[string]any)
+		data["success"] = "Nutzer " + u.Name() + "(" + u.Email() + ") wurde deaktiviert."
+
+		p.getData(app, data)
+
+		req := templating.NewRequest(e)
+		if req.User() != nil && req.User().Id == u.Id {
+			return e.Redirect(303, "/login/")
+		}
+
+		return engine.Response200(e, p.Template, data, p.Layout)
 	}
 }