architex/lib/matrix_server_web/controllers/auth_controller.ex

defmodule MatrixServerWeb.AuthController do
  use MatrixServerWeb, :controller

  import MatrixServer
  import MatrixServerWeb.Plug.Error
  import Ecto.Changeset, only: [apply_changes: 1]
  import Ecto.Query

  alias MatrixServer.{Repo, Account, Device}
  alias MatrixServerWeb.API.{Register, Login}
  alias Ecto.Changeset

  @register_type "m.login.dummy"
  @login_type "m.login.password"

  def register(conn, %{"auth" => %{"type" => @register_type}} = params) do
    case Register.changeset(params) do
      %Changeset{valid?: true} = cs ->
        input =
          apply_changes(cs)
          |> Map.from_struct()
          |> update_map_entry(:initial_device_display_name, :display_name)
          |> update_map_entry(:username, :localpart)
          |> update_map_entry(:password, :password_hash, &Bcrypt.hash_pwd_salt/1)

        case Account.register(input) |> Repo.transaction() do
          {:ok, %{device_with_access_token: device}} ->
            data = %{user_id: get_mxid(device.localpart)}

            data =
              if not input.inhibit_login do
                data
                |> Map.put(:device_id, device.device_id)
                |> Map.put(:access_token, device.access_token)
              else
                data
              end

            conn
            |> put_status(200)
            |> json(data)

          {:error, _, cs, _} ->
            Register.handle_error(conn, cs)
        end

      _ ->
        put_error(conn, :bad_json)
    end
  end

  def register(conn, %{"auth" => _}) do
    # Other login types are unsupported for now.
    put_error(conn, :forbidden)
  end

  def register(conn, _params) do
    # User has not started an auth flow.
    data = %{
      flows: [%{stages: [@register_type]}],
      params: %{}
    }

    conn
    |> put_status(401)
    |> json(data)
  end

  def login_types(conn, _params) do
    data = %{flows: [%{type: @login_type}]}

    conn
    |> put_status(200)
    |> json(data)
  end

  def login(
        conn,
        %{"type" => @login_type, "identifier" => %{"type" => "m.id.user"}} = params
      ) do
    case Login.changeset(params) do
      %Changeset{valid?: true} = cs ->
        input =
          apply_changes(cs)
          |> Map.from_struct()
          |> update_map_entry(:initial_device_display_name, :display_name)
          |> update_map_entry(:identifier, :localpart, fn
            %{user: "@" <> rest} ->
              case String.split(rest) do
                [localpart, _] -> localpart
                # Empty string will never match in the database.
                _ -> ""
              end

            %{user: user} ->
              user
          end)

        case Repo.transaction(login_transaction(input)) do
          {:ok, device} ->
            data = %{
              user_id: get_mxid(device.localpart),
              access_token: device.access_token,
              device_id: device.device_id
            }

            conn
            |> put_status(200)
            |> json(data)

          {:error, error} ->
            put_error(conn, error)
        end

      _ ->
        put_error(conn, :bad_json)
    end
  end

  def login(conn, _params) do
    # Other login types and identifiers are unsupported for now.
    put_error(conn, :unknown)
  end

  defp login_transaction(%{localpart: localpart, password: password} = params) do
    fn repo ->
      case repo.one(from a in Account, where: a.localpart == ^localpart) do
        %Account{password_hash: hash} = account ->
          if Bcrypt.verify_pass(password, hash) do
            device_id = Map.get(params, :device_id, Device.generate_device_id(localpart))
            access_token = Device.generate_access_token(localpart, device_id)

            case Device.login(account, device_id, access_token, params) do
              {:ok, device} -> device
              {:error, _cs} -> repo.rollback(:forbidden)
            end
          else
            repo.rollback(:forbidden)
          end

        nil ->
          repo.rollback(:forbidden)
      end
    end
  end
end
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 17:43:12 +02:00			`defmodule MatrixServerWeb.AuthController do`
			`use MatrixServerWeb, :controller`

			`import MatrixServer`
Add plug to generate Matrix error 2021-06-26 01:14:09 +02:00			`import MatrixServerWeb.Plug.Error`
Create schemas for JSON API endpoints 2021-06-26 22:02:18 +02:00			`import Ecto.Changeset, only: [apply_changes: 1]`
Implement login endpoint 2021-06-27 17:28:28 +02:00			`import Ecto.Query`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 17:43:12 +02:00
Implement login endpoint 2021-06-27 17:28:28 +02:00			`alias MatrixServer.{Repo, Account, Device}`
			`alias MatrixServerWeb.API.{Register, Login}`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 17:43:12 +02:00			`alias Ecto.Changeset`

Create schemas for JSON API endpoints 2021-06-26 22:02:18 +02:00			`@register_type "m.login.dummy"`
			`@login_type "m.login.password"`

			`def register(conn, %{"auth" => %{"type" => @register_type}} = params) do`
			`case Register.changeset(params) do`
			`%Changeset{valid?: true} = cs ->`
			`input =`
			`apply_changes(cs)`
			`\|> Map.from_struct()`
Implement login endpoint 2021-06-27 17:28:28 +02:00			`\|> update_map_entry(:initial_device_display_name, :display_name)`
Create schemas for JSON API endpoints 2021-06-26 22:02:18 +02:00			`\|> update_map_entry(:username, :localpart)`
			`\|> update_map_entry(:password, :password_hash, &Bcrypt.hash_pwd_salt/1)`

Implement login endpoint 2021-06-27 17:28:28 +02:00			`case Account.register(input) \|> Repo.transaction() do`
Create schemas for JSON API endpoints 2021-06-26 22:02:18 +02:00			`{:ok, %{device_with_access_token: device}} ->`
			`data = %{user_id: get_mxid(device.localpart)}`

			`data =`
			`if not input.inhibit_login do`
			`data`
			`\|> Map.put(:device_id, device.device_id)`
			`\|> Map.put(:access_token, device.access_token)`
			`else`
			`data`
			`end`

			`conn`
			`\|> put_status(200)`
			`\|> json(data)`

			`{:error, _, cs, _} ->`
			`Register.handle_error(conn, cs)`
			`end`

			`_ ->`
			`put_error(conn, :bad_json)`
			`end`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 17:43:12 +02:00			`end`

			`def register(conn, %{"auth" => _}) do`
			`# Other login types are unsupported for now.`
Add plug to generate Matrix error 2021-06-26 01:14:09 +02:00			`put_error(conn, :forbidden)`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 17:43:12 +02:00			`end`

			`def register(conn, _params) do`
			`# User has not started an auth flow.`
			`data = %{`
Create schemas for JSON API endpoints 2021-06-26 22:02:18 +02:00			`flows: [%{stages: [@register_type]}],`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 17:43:12 +02:00			`params: %{}`
			`}`

			`conn`
			`\|> put_status(401)`
			`\|> json(data)`
			`end`

Create schemas for JSON API endpoints 2021-06-26 22:02:18 +02:00			`def login_types(conn, _params) do`
			`data = %{flows: [%{type: @login_type}]}`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 17:43:12 +02:00
Create schemas for JSON API endpoints 2021-06-26 22:02:18 +02:00			`conn`
			`\|> put_status(200)`
			`\|> json(data)`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 17:43:12 +02:00			`end`

Implement login endpoint 2021-06-27 17:28:28 +02:00			`def login(`
			`conn,`
			`%{"type" => @login_type, "identifier" => %{"type" => "m.id.user"}} = params`
			`) do`
			`case Login.changeset(params) do`
			`%Changeset{valid?: true} = cs ->`
			`input =`
			`apply_changes(cs)`
			`\|> Map.from_struct()`
			`\|> update_map_entry(:initial_device_display_name, :display_name)`
			`\|> update_map_entry(:identifier, :localpart, fn`
			`%{user: "@" <> rest} ->`
			`case String.split(rest) do`
			`[localpart, _] -> localpart`
			`# Empty string will never match in the database.`
			`_ -> ""`
			`end`

			`%{user: user} ->`
			`user`
			`end)`

			`case Repo.transaction(login_transaction(input)) do`
			`{:ok, device} ->`
			`data = %{`
			`user_id: get_mxid(device.localpart),`
			`access_token: device.access_token,`
			`device_id: device.device_id`
			`}`

			`conn`
			`\|> put_status(200)`
			`\|> json(data)`

			`{:error, error} ->`
			`put_error(conn, error)`
			`end`

			`_ ->`
			`put_error(conn, :bad_json)`
			`end`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 17:43:12 +02:00			`end`

			`def login(conn, _params) do`
Implement login endpoint 2021-06-27 17:28:28 +02:00			`# Other login types and identifiers are unsupported for now.`
			`put_error(conn, :unknown)`
			`end`

			`defp login_transaction(%{localpart: localpart, password: password} = params) do`
			`fn repo ->`
			`case repo.one(from a in Account, where: a.localpart == ^localpart) do`
			`%Account{password_hash: hash} = account ->`
			`if Bcrypt.verify_pass(password, hash) do`
			`device_id = Map.get(params, :device_id, Device.generate_device_id(localpart))`
			`access_token = Device.generate_access_token(localpart, device_id)`

Implement logout and logout/all endpoints 2021-06-27 22:24:54 +02:00			`case Device.login(account, device_id, access_token, params) do`
			`{:ok, device} -> device`
			`{:error, _cs} -> repo.rollback(:forbidden)`
Implement login endpoint 2021-06-27 17:28:28 +02:00			`end`
			`else`
			`repo.rollback(:forbidden)`
			`end`

			`nil ->`
			`repo.rollback(:forbidden)`
			`end`
			`end`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 17:43:12 +02:00			`end`
			`end`