#include "User.h" #include "Poco/DateTimeFormatter.h" #include "Poco/Data/Binding.h" #include "sodium.h" #include "../../SingletonManager/MemoryManager.h" using namespace Poco::Data::Keywords; namespace model { namespace table { User::User() : mPasswordHashed(0), mEmailChecked(false), mLanguageKey("de"), mDisabled(false), mRole(ROLE_NOT_LOADED) { } User::User(const std::string& email, const std::string& first_name, const std::string& last_name, Poco::UInt64 passwordHashed/* = 0*/, std::string languageKey/* = "de"*/) : mEmail(email), mFirstName(first_name), mLastName(last_name), mPasswordHashed(passwordHashed), mEmailChecked(false), mLanguageKey(languageKey), mDisabled(false), mRole(ROLE_NOT_LOADED) { } //id, first_name, last_name, email, pubkey, created, email_checked User::User(UserTuple tuple) : ModelBase(tuple.get<0>()), mFirstName(tuple.get<1>()), mLastName(tuple.get<2>()), mEmail(tuple.get<3>()), mPublicKey(tuple.get<4>()), mCreated(tuple.get<5>()), mEmailChecked(tuple.get<6>()), mDisabled(tuple.get<7>()), mPasswordHashed(0), mLanguageKey("de"), mRole(ROLE_NOT_LOADED) { } User::~User() { } void User::setPrivateKey(const MemoryBin* privateKey) { if (!privateKey) { mPrivateKey = Poco::Nullable(); } else { mPrivateKey = Poco::Nullable(Poco::Data::BLOB(*privateKey, privateKey->size())); } } void User::setPublicKey(const unsigned char* publicKey) { if (!publicKey) { mPublicKey = Poco::Nullable(); } else { mPublicKey = Poco::Nullable(Poco::Data::BLOB(publicKey, 32)); } } Poco::Data::Statement User::_insertIntoDB(Poco::Data::Session session) { Poco::Data::Statement insert(session); if (mPasswordHashed) { insert << "INSERT INTO users (email, first_name, last_name, password, language) VALUES(?,?,?,?,?);", use(mEmail), use(mFirstName), use(mLastName), bind(mPasswordHashed), use(mLanguageKey); } else { insert << "INSERT INTO users (email, first_name, last_name, language) VALUES(?,?,?,?);", use(mEmail), use(mFirstName), use(mLastName), use(mLanguageKey); } return insert; } Poco::Data::Statement User::_loadFromDB(Poco::Data::Session session, const std::string& fieldName) { std::string _fieldName = fieldName; if (_fieldName == "id") { _fieldName = getTableName() + std::string(".id"); } Poco::Data::Statement select(session); select << "SELECT " << getTableName() << ".id, email, first_name, last_name, password, pubkey, privkey, created, email_checked, language, disabled, user_roles.role_id " << " FROM " << getTableName() << " LEFT JOIN user_roles ON " << getTableName() << ".id = user_roles.user_id " << " WHERE " << _fieldName << " = ?" , into(mID), into(mEmail), into(mFirstName), into(mLastName), into(mPasswordHashed), into(mPublicKey), into(mPrivateKey), into(mCreated), into(mEmailChecked), into(mLanguageKey), into(mDisabled), into(mRole); return select; } Poco::Data::Statement User::_loadMultipleFromDB(Poco::Data::Session session, const std::string& fieldName) { Poco::Data::Statement select(session); // typedef Poco::Tuple, int> UserTuple; select << "SELECT id, first_name, last_name, email, pubkey, created, email_checked, disabled FROM " << getTableName() << " where " << fieldName << " LIKE ?"; return select; } Poco::Data::Statement User::_loadMultipleFromDB(Poco::Data::Session session, const std::vector fieldNames, MysqlConditionType conditionType/* = MYSQL_CONDITION_AND*/) { Poco::Data::Statement select(session); if (fieldNames.size() <= 1) { throw Poco::NullValueException("User::_loadMultipleFromDB fieldNames empty or contain only one field"); } // typedef Poco::Tuple, int> UserTuple; select << "SELECT id, first_name, last_name, email, pubkey, created, email_checked, disabled FROM " << getTableName() << " where " << fieldNames[0] << " LIKE ?"; if (conditionType == MYSQL_CONDITION_AND) { for (int i = 1; i < fieldNames.size(); i++) { select << " AND " << fieldNames[i] << " LIKE ? "; } } else if (conditionType == MYSQL_CONDITION_OR) { for (int i = 1; i < fieldNames.size(); i++) { select << " OR " << fieldNames[i] << " LIKE ? "; } } else { addError(new ParamError("User::_loadMultipleFromDB", "condition type not implemented", conditionType)); } return select; } Poco::Data::Statement User::_loadIdFromDB(Poco::Data::Session session) { Poco::Data::Statement select(session); select << "SELECT id FROM " << getTableName() << " where email = ?" , into(mID), use(mEmail); return select; } size_t User::updatePrivkey() { Poco::ScopedLock _lock(mWorkMutex); if (mPrivateKey.isNull() || !mPrivateKey.value().size()) { return 0; } auto result = updateIntoDB("privkey", mPrivateKey.value()); return result; } size_t User::updatePublickey() { Poco::ScopedLock _lock(mWorkMutex); if (mPublicKey.isNull() || !mPublicKey.value().size()) { return 0; } auto result = updateIntoDB("pubkey", mPublicKey.value()); return result; } size_t User::updatePrivkeyAndPasswordHash() { Poco::ScopedLock _lock(mWorkMutex); if (mPrivateKey.isNull() || !mPasswordHashed || !mID) { return 0; } auto cm = ConnectionManager::getInstance(); auto session = cm->getConnection(CONNECTION_MYSQL_LOGIN_SERVER); Poco::Data::Statement update(session); update << "UPDATE users SET password = ?, privkey = ? where id = ?;", bind(mPasswordHashed), use(mPrivateKey), use(mID); size_t resultCount = 0; try { return update.execute(); } catch (Poco::Exception& ex) { addError(new ParamError(getTableName(), "[updatePrivkeyAndPasswordHash] mysql error by update", ex.displayText().data())); addError(new ParamError(getTableName(), "data set: \n", toString().data())); } //printf("data valid: %s\n", toString().data()); return 0; } size_t User::updatePubkeyAndPrivkey() { Poco::ScopedLock _lock(mWorkMutex); if (mPrivateKey.isNull() || mPublicKey.isNull() || !mID) { return 0; } auto cm = ConnectionManager::getInstance(); auto session = cm->getConnection(CONNECTION_MYSQL_LOGIN_SERVER); Poco::Data::Statement update(session); update << "UPDATE users SET pubkey = ?, privkey = ? where id = ?;", use(mPublicKey), use(mPrivateKey), use(mID); size_t resultCount = 0; try { return update.execute(); } catch (Poco::Exception& ex) { addError(new ParamError(getTableName(), "[updatePubkeyAndPrivkey] mysql error by update", ex.displayText().data())); addError(new ParamError(getTableName(), "data set: \n", toString().data())); } //printf("data valid: %s\n", toString().data()); return 0; } /* std::string mEmail; std::string mFirstName; std::string mLastName; Poco::UInt64 mPasswordHashed; Poco::Nullable mPublicKey; Poco::Nullable mPrivateKey; // created: Mysql DateTime bool mEmailChecked; std::string mLanguageKey; char *sodium_bin2hex(char * const hex, const size_t hex_maxlen, const unsigned char * const bin, const size_t bin_len); */ std::string User::toString() { auto mm = MemoryManager::getInstance(); auto pubkeyHex = mm->getFreeMemory(65); auto privkeyHex = mm->getFreeMemory(161); //char pubkeyHex[65], privkeyHex[161]; //memset(pubkeyHex, 0, 65); //memset(privkeyHex, 0, 161); memset(*pubkeyHex, 0, 65); memset(*privkeyHex, 0, 161); std::stringstream ss; if (!mPublicKey.isNull()) { sodium_bin2hex(*pubkeyHex, 65, mPublicKey.value().content().data(), mPublicKey.value().content().size()); } if (!mPrivateKey.isNull()) { sodium_bin2hex(*privkeyHex, 161, mPrivateKey.value().content().data(), mPrivateKey.value().content().size()); } ss << mFirstName << " " << mLastName << " <" << mEmail << ">" << std::endl; ss << "password hash: " << mPasswordHashed << std::endl; ss << "public key: " << (char*)*pubkeyHex << std::endl; ss << "private key: " << (char*)*privkeyHex << std::endl; ss << "created: " << Poco::DateTimeFormatter::format(mCreated, "%f.%m.%Y %H:%M:%S") << std::endl; ss << "email checked: " << mEmailChecked << std::endl; ss << "language key: " << mLanguageKey << std::endl; ss << "disabled: " << mDisabled << std::endl; mm->releaseMemory(pubkeyHex); mm->releaseMemory(privkeyHex); return ss.str(); } std::string User::toHTMLString() { auto mm = MemoryManager::getInstance(); auto pubkeyHex = mm->getFreeMemory(65); memset(*pubkeyHex, 0, 65); std::stringstream ss; if (!mPublicKey.isNull()) { sodium_bin2hex(*pubkeyHex, 65, mPublicKey.value().content().data(), mPublicKey.value().content().size()); } ss << "" << mFirstName << " " << mLastName << " <" << mEmail << ">" << "
"; ss << "public key: " << (char*)*pubkeyHex << "
"; ss << "created: " << Poco::DateTimeFormatter::format(mCreated, "%f.%m.%Y %H:%M:%S") << "
"; ss << "email checked: " << mEmailChecked << "
"; ss << "language key: " << mLanguageKey << "
"; ss << "role: " << UserRoles::typeToString(getRole()) << "
"; ss << "disabled: " << mDisabled << "
"; mm->releaseMemory(pubkeyHex); return ss.str(); } std::string User::getPublicKeyHex() const { auto mm = MemoryManager::getInstance(); auto pubkeyHex = mm->getFreeMemory(65); memset(*pubkeyHex, 0, 65); if (!mPublicKey.isNull()) { sodium_bin2hex(*pubkeyHex, 65, mPublicKey.value().content().data(), mPublicKey.value().content().size()); } std::string pubkeyHexString((const char*)pubkeyHex->data(), pubkeyHex->size()-1); mm->releaseMemory(pubkeyHex); return pubkeyHexString; } Poco::JSON::Object User::getJson() { lock("User::getJson"); Poco::JSON::Object userObj; userObj.set("first_name", mFirstName); userObj.set("last_name", mLastName); userObj.set("email", mEmail); //userObj.set("state", userStateToString(mState)); auto createTimeStamp = mCreated.timestamp(); userObj.set("created", createTimeStamp.raw() / createTimeStamp.resolution()); userObj.set("email_checked", mEmailChecked); userObj.set("ident_hash", DRMakeStringHash(mEmail.data(), mEmail.size())); userObj.set("disabled", mDisabled); try { userObj.set("role", UserRoles::typeToString(getRole())); } catch (Poco::Exception ex) { addError(new ParamError("User::getJson", "exception by getting role", ex.displayText().data())); sendErrorsAsEmail(); } unlock(); return userObj; } } }