panel/app.moon

lapis = require "lapis"
db = require "lapis.db"
csrf = require "lapis.csrf"
encoding = require "lapis.util.encoding"

import capture_errors from require "lapis.application"
import assert_valid from require "lapis.validate"
import respond_to from require "lapis.application"

require "models.user"

class App extends lapis.Application
  [index: "/"]: =>
    @user = @session.user
    render: true

  [list: "/list"]: =>
    user = Users\find id: @session.user
    @list = Users\select!
    render: true

  [register: "/register"]: capture_errors respond_to {
    GET: =>
      @csrf_token = csrf.generate_token @
      render: true

    POST: =>
      csrf.assert_token @
      assert_valid @params, {
        { "email", exists: true, min_length: 3 }
        { "password", exists: true, min_length: 3 }
        { "password_again", equals: @params.password }
        { "name", exists: true, min_length: 3}
      }

      @params.password = encoding.encode_base64 encoding.hmac_sha1("ninjas", @params.password)
      @params.password_again = nil
      @params.csrf_token = nil
      @params.extension = "#{1000}"
      @params.registrar_password = encoding.encode_base64 encoding.hmac_sha1(@params.email, os.time!)

      if Users\find email: @params.email
        @title = "Failure"
        return status: 500, "User with that email already exists"

      user = Users\create @params
      user\write_session @
      user.extension = "#{1000 + user.id}"
      Users\update user

      @title = "Success"

      @html ->
        h1 "Success"
        p ->
          text "Your email is " .. user.email
        p ->
          text "Your extension is " .. user.extension
        p ->
          text "Your sip password is "
          code user.registrar_password

        p "This will not be shown again so please be sure to write this down."

  }

  [login: "/login"]: capture_errors respond_to {
    GET: =>
      @csrf_token = csrf.generate_token @
      render: true

    POST: =>
      csrf.assert_token @
      assert_valid @params, {
        { "email", exists: true, min_length: 3 }
        { "password", exists: true, min_length: 3 }
      }

      user = Users\find email: @params.email

      cmppass = encoding.encode_base64 encoding.hmac_sha1("ninjas", @params.password)

      if user.password == cmppass
        user\write_session @

        @title = "Login successful"

        return "Hi " .. user.name
      else
        @title = "Login failure"
        return status: 500, "bad password"
  }

  [freeswitch: "/freeswitch"]: respond_to {
    POST: =>
      uid = @params["user"] or @params["sip_auth_username"]
      @user = Users\find extension: uid
      if not @user
        return status: 404, "no such user"

      render: true, layout: false
  }
initial commit 2015-01-05 21:41:19 +00:00			`lapis = require "lapis"`
			`db = require "lapis.db"`
			`csrf = require "lapis.csrf"`
let users register 2015-01-05 22:22:26 +00:00			`encoding = require "lapis.util.encoding"`
initial commit 2015-01-05 21:41:19 +00:00
let users register 2015-01-05 22:22:26 +00:00			`import capture_errors from require "lapis.application"`
			`import assert_valid from require "lapis.validate"`
initial commit 2015-01-05 21:41:19 +00:00			`import respond_to from require "lapis.application"`

move to discrete model 2015-01-05 22:51:12 +00:00			`require "models.user"`
initial commit 2015-01-05 21:41:19 +00:00
			`class App extends lapis.Application`
test session data 2015-01-06 03:09:03 +00:00			`[index: "/"]: =>`
			`@user = @session.user`
			`render: true`
initial commit 2015-01-05 21:41:19 +00:00
add view to list all users 2015-01-05 23:08:29 +00:00			`[list: "/list"]: =>`
			`user = Users\find id: @session.user`
			`@list = Users\select!`
			`render: true`

let users register 2015-01-05 22:22:26 +00:00			`[register: "/register"]: capture_errors respond_to {`
initial commit 2015-01-05 21:41:19 +00:00			`GET: =>`
let users register 2015-01-05 22:22:26 +00:00			`@csrf_token = csrf.generate_token @`
			`render: true`
initial commit 2015-01-05 21:41:19 +00:00
			`POST: =>`
			`csrf.assert_token @`
let users register 2015-01-05 22:22:26 +00:00			`assert_valid @params, {`
			`{ "email", exists: true, min_length: 3 }`
			`{ "password", exists: true, min_length: 3 }`
			`{ "password_again", equals: @params.password }`
			`{ "name", exists: true, min_length: 3}`
			`}`

			`@params.password = encoding.encode_base64 encoding.hmac_sha1("ninjas", @params.password)`
			`@params.password_again = nil`
			`@params.csrf_token = nil`
app: make the extension the user's ID + 1000 2015-01-07 17:57:48 +00:00			`@params.extension = "#{1000}"`
Add freeswitch integration 2015-01-07 16:42:49 +00:00			`@params.registrar_password = encoding.encode_base64 encoding.hmac_sha1(@params.email, os.time!)`
let users register 2015-01-05 22:22:26 +00:00
			`if Users\find email: @params.email`
app: add page titles 2015-01-07 17:10:16 +00:00			`@title = "Failure"`
test session data 2015-01-06 03:09:03 +00:00			`return status: 500, "User with that email already exists"`
let users register 2015-01-05 22:22:26 +00:00
			`user = Users\create @params`
move to discrete model 2015-01-05 22:51:12 +00:00			`user\write_session @`
app: make the extension the user's ID + 1000 2015-01-07 17:57:48 +00:00			`user.extension = "#{1000 + user.id}"`
			`Users\update user`
let users register 2015-01-05 22:22:26 +00:00
app: add page titles 2015-01-07 17:10:16 +00:00			`@title = "Success"`

			`@html ->`
			`h1 "Success"`
			`p ->`
			`text "Your email is " .. user.email`
			`p ->`
app: make the extension the user's ID + 1000 2015-01-07 17:57:48 +00:00			`text "Your extension is " .. user.extension`
app: add page titles 2015-01-07 17:10:16 +00:00			`p ->`
			`text "Your sip password is "`
			`code user.registrar_password`

			`p "This will not be shown again so please be sure to write this down."`

let users register 2015-01-05 22:22:26 +00:00			`}`

			`[login: "/login"]: capture_errors respond_to {`
			`GET: =>`
			`@csrf_token = csrf.generate_token @`
			`render: true`

			`POST: =>`
			`csrf.assert_token @`
			`assert_valid @params, {`
			`{ "email", exists: true, min_length: 3 }`
			`{ "password", exists: true, min_length: 3 }`
			`}`

			`user = Users\find email: @params.email`
move to discrete model 2015-01-05 22:51:12 +00:00
			`cmppass = encoding.encode_base64 encoding.hmac_sha1("ninjas", @params.password)`

			`if user.password == cmppass`
			`user\write_session @`

app: add page titles 2015-01-07 17:10:16 +00:00			`@title = "Login successful"`

move to discrete model 2015-01-05 22:51:12 +00:00			`return "Hi " .. user.name`
			`else`
app: add page titles 2015-01-07 17:10:16 +00:00			`@title = "Login failure"`
move to discrete model 2015-01-05 22:51:12 +00:00			`return status: 500, "bad password"`
initial commit 2015-01-05 21:41:19 +00:00			`}`
Add freeswitch integration 2015-01-07 16:42:49 +00:00
			`[freeswitch: "/freeswitch"]: respond_to {`
			`POST: =>`
			`uid = @params["user"] or @params["sip_auth_username"]`
app: freeswitch queries extension 2015-01-07 18:36:20 +00:00			`@user = Users\find extension: uid`
app: make the extension the user's ID + 1000 2015-01-07 17:57:48 +00:00			`if not @user`
			`return status: 404, "no such user"`
Add freeswitch integration 2015-01-07 16:42:49 +00:00
			`render: true, layout: false`
			`}`