Mercurial Hosting > freedit

diff src/login.html.luan @ 3:fc3ee39d7764
login
author: Franklin Schmidt <fschmidt@gmail.com>
date: Sun, 19 Jun 2022 20:47:31 -0600
children: a17e400ddaa1
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/src/login.html.luan	Sun Jun 19 20:47:31 2022 -0600
@@ -0,0 +1,135 @@
+local Luan = require "luan:Luan.luan"
+local error = Luan.error
+local String = require "luan:String.luan"
+local trim = String.trim or error()
+local Html = require "luan:Html.luan"
+local url_encode = Html.url_encode or error()
+local Io = require "luan:Io.luan"
+local Http = require "luan:http/Http.luan"
+local Shared = require "site:/lib/Shared.luan"
+local head = Shared.head or error()
+local header = Shared.header or error()
+local footer = Shared.footer or error()
+local base_url = Shared.base_url or error()
+local Forum = require "site:/lib/Forum.luan"
+local forum_title = Forum.title or error()
+local User = require "site:/lib/User.luan"
+local Db = require "site:/lib/Db.luan"
+local run_in_transaction = Db.run_in_transaction or error()
+
+
+local function get_user(email,password)
+	local user = User.get_by_email(email)
+	user or error "email not found"
+	user.password == password or error "wrong password"
+	return user
+end
+
+local function login(user)
+	Http.response.set_persistent_cookie("user",user.name)
+	Http.response.set_persistent_cookie("password",user.password)
+	Http.request.cookies.user = user.name
+	Http.request.cookies.password = user.password
+end
+
+local function register_form(user,name,error_message)
+	if error_message ~= nil then %>
+			<p error>Error: <%= error_message %></p>
+<%	end %>
+			<form>
+				<input type="hidden" name="email" value="<%= user.email %>" >
+				<input type="hidden" name="password" value="<%= user.password %>" >
+				<label>User name for <%= user.email %></label>
+				<input type="text" name="name" value="<%= name or "" %>" autofocus required>
+				<input type="submit" value="Register">
+			</form>
+<%
+end
+
+local function page(contents)
+	Io.stdout = Http.response.text_writer()
+%>
+<!doctype html>
+<html>
+	<head>
+<%		head() %>
+		<title><%=forum_title%> - Login or Register</title>
+	</head>
+	<body>
+<%		header() %>
+		<div content>
+			<h1>Login or Register</h1>
+<%
+			contents()
+%>
+		</div>
+<%		footer() %>
+	</body>
+</html>
+<%
+end
+
+return function()
+	local email = Http.request.parameters.email
+	local password = Http.request.parameters.password
+	local name = Http.request.parameters.name
+	if email == nil then
+		page(function()
+%>
+			<form>
+				<label>Email address</label>
+				<input type="email" name="email" autofocus required>
+				<input type="submit" value="Login or Register">
+			</form>
+<%
+		end)
+	elseif password == nil then
+		local user = User.get_or_create_by_email(email)
+		page(function()
+%>
+			<p>We have sent you an email.  Please check your email to login or register.</p>
+			<p>hack - <a href="<%=base_url()%>/login.html?email=<%=url_encode(email)%>&password=<%=user.password%>">link</a></p>
+<%
+		end)
+	elseif name == nil then
+		local user = get_user(email,password)
+		if user.name == nil then
+			page(function()
+				register_form(user)
+			end)
+		else
+			login(user)
+			page(function()
+%>
+			<p>You are now logged in.</p>
+<%
+			end)
+		end
+	else
+		name = trim(name)
+		#name > 0 or error "empty name"
+		local error_message = nil
+		local user
+		run_in_transaction( function()
+			user = get_user(email,password)
+			if user.name ~= name and User.get_by_name(name) ~= nil then
+				error_message = "Name already in use"
+			else
+				user.name = name
+				user.save()
+			end
+		end )
+		if error_message ~= nil then
+			page(function()
+				register_form(user,name,error_message)
+			end)
+		else
+			login(user)
+			page(function()
+%>
+			<p>You are now registered.</p>
+<%
+			end)
+		end
+	end
+end
author	Franklin Schmidt <fschmidt@gmail.com>
date	Sun, 19 Jun 2022 20:47:31 -0600
parents
children	a17e400ddaa1