2012-12-19 08:20:55 +00:00
|
|
|
package beego
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"bytes"
|
2013-08-04 16:03:47 +00:00
|
|
|
"compress/flate"
|
2013-04-18 15:13:53 +00:00
|
|
|
"compress/gzip"
|
2013-07-08 08:17:08 +00:00
|
|
|
"crypto/hmac"
|
|
|
|
|
"crypto/sha1"
|
|
|
|
|
"encoding/base64"
|
2012-12-19 08:20:55 +00:00
|
|
|
"encoding/json"
|
|
|
|
|
"encoding/xml"
|
2013-04-21 03:28:20 +00:00
|
|
|
"errors"
|
2013-07-08 08:17:08 +00:00
|
|
|
"fmt"
|
2013-04-05 15:50:53 +00:00
|
|
|
"github.com/astaxie/beego/session"
|
2012-12-19 08:20:55 +00:00
|
|
|
"html/template"
|
2013-04-16 10:20:55 +00:00
|
|
|
"io"
|
2012-12-19 08:20:55 +00:00
|
|
|
"io/ioutil"
|
2013-04-09 15:33:48 +00:00
|
|
|
"mime/multipart"
|
2012-12-19 08:20:55 +00:00
|
|
|
"net/http"
|
|
|
|
|
"net/url"
|
2013-04-16 10:20:55 +00:00
|
|
|
"os"
|
2012-12-19 08:20:55 +00:00
|
|
|
"path"
|
|
|
|
|
"strconv"
|
2013-04-09 16:24:28 +00:00
|
|
|
"strings"
|
2013-07-08 08:17:08 +00:00
|
|
|
"time"
|
2012-12-19 08:20:55 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
type Controller struct {
|
2013-07-08 08:17:08 +00:00
|
|
|
Ctx *Context
|
|
|
|
|
Data map[interface{}]interface{}
|
|
|
|
|
ChildName string
|
|
|
|
|
TplNames string
|
|
|
|
|
Layout string
|
|
|
|
|
TplExt string
|
|
|
|
|
_xsrf_token string
|
2013-07-08 09:35:09 +00:00
|
|
|
gotofunc string
|
2013-07-08 08:17:08 +00:00
|
|
|
CruSession session.SessionStore
|
2013-08-07 03:22:23 +00:00
|
|
|
XSRFExpire int
|
2012-12-19 08:20:55 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type ControllerInterface interface {
|
|
|
|
|
Init(ct *Context, cn string)
|
|
|
|
|
Prepare()
|
|
|
|
|
Get()
|
|
|
|
|
Post()
|
|
|
|
|
Delete()
|
|
|
|
|
Put()
|
|
|
|
|
Head()
|
|
|
|
|
Patch()
|
|
|
|
|
Options()
|
|
|
|
|
Finish()
|
|
|
|
|
Render() error
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Init(ctx *Context, cn string) {
|
|
|
|
|
c.Data = make(map[interface{}]interface{})
|
|
|
|
|
c.Layout = ""
|
|
|
|
|
c.TplNames = ""
|
|
|
|
|
c.ChildName = cn
|
|
|
|
|
c.Ctx = ctx
|
|
|
|
|
c.TplExt = "tpl"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Prepare() {
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Finish() {
|
2013-05-08 05:56:48 +00:00
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Destructor() {
|
2013-05-07 07:36:43 +00:00
|
|
|
if c.CruSession != nil {
|
|
|
|
|
c.CruSession.SessionRelease()
|
|
|
|
|
}
|
2012-12-19 08:20:55 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Get() {
|
|
|
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Post() {
|
|
|
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Delete() {
|
|
|
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Put() {
|
|
|
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Head() {
|
|
|
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Patch() {
|
|
|
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Options() {
|
|
|
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Render() error {
|
2013-03-14 13:17:37 +00:00
|
|
|
rb, err := c.RenderBytes()
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
} else {
|
2013-04-18 15:13:53 +00:00
|
|
|
c.Ctx.ResponseWriter.Header().Set("Content-Type", "text/html; charset=utf-8")
|
2013-08-04 16:03:47 +00:00
|
|
|
c.writeToWriter(rb)
|
2013-03-14 13:17:37 +00:00
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2013-04-03 15:37:59 +00:00
|
|
|
func (c *Controller) RenderString() (string, error) {
|
|
|
|
|
b, e := c.RenderBytes()
|
|
|
|
|
return string(b), e
|
|
|
|
|
}
|
|
|
|
|
|
2013-03-14 13:17:37 +00:00
|
|
|
func (c *Controller) RenderBytes() ([]byte, error) {
|
2012-12-19 08:20:55 +00:00
|
|
|
//if the controller has set layout, then first get the tplname's content set the content to the layout
|
|
|
|
|
if c.Layout != "" {
|
|
|
|
|
if c.TplNames == "" {
|
2013-07-30 14:17:16 +00:00
|
|
|
c.TplNames = c.ChildName + "/" + strings.ToLower(c.Ctx.Request.Method) + "." + c.TplExt
|
2012-12-19 08:20:55 +00:00
|
|
|
}
|
2013-04-02 15:57:15 +00:00
|
|
|
if RunMode == "dev" {
|
2013-04-03 15:37:59 +00:00
|
|
|
BuildTemplate(ViewsPath)
|
2013-04-02 15:57:15 +00:00
|
|
|
}
|
2013-04-03 15:37:59 +00:00
|
|
|
subdir := path.Dir(c.TplNames)
|
2012-12-19 08:20:55 +00:00
|
|
|
_, file := path.Split(c.TplNames)
|
|
|
|
|
newbytes := bytes.NewBufferString("")
|
2013-04-21 03:28:20 +00:00
|
|
|
if _, ok := BeeTemplates[subdir]; !ok {
|
|
|
|
|
panic("can't find templatefile in the path:" + c.TplNames)
|
|
|
|
|
return []byte{}, errors.New("can't find templatefile in the path:" + c.TplNames)
|
|
|
|
|
}
|
2013-04-03 15:37:59 +00:00
|
|
|
BeeTemplates[subdir].ExecuteTemplate(newbytes, file, c.Data)
|
2012-12-19 08:20:55 +00:00
|
|
|
tplcontent, _ := ioutil.ReadAll(newbytes)
|
|
|
|
|
c.Data["LayoutContent"] = template.HTML(string(tplcontent))
|
2013-05-07 07:42:57 +00:00
|
|
|
subdir = path.Dir(c.Layout)
|
2012-12-19 08:20:55 +00:00
|
|
|
_, file = path.Split(c.Layout)
|
2013-03-14 13:17:37 +00:00
|
|
|
ibytes := bytes.NewBufferString("")
|
2013-04-03 15:37:59 +00:00
|
|
|
err := BeeTemplates[subdir].ExecuteTemplate(ibytes, file, c.Data)
|
2012-12-19 08:20:55 +00:00
|
|
|
if err != nil {
|
|
|
|
|
Trace("template Execute err:", err)
|
|
|
|
|
}
|
2013-03-14 13:17:37 +00:00
|
|
|
icontent, _ := ioutil.ReadAll(ibytes)
|
|
|
|
|
return icontent, nil
|
2012-12-19 08:20:55 +00:00
|
|
|
} else {
|
|
|
|
|
if c.TplNames == "" {
|
2013-07-30 14:45:50 +00:00
|
|
|
c.TplNames = c.ChildName + "/" + strings.ToLower(c.Ctx.Request.Method) + "." + c.TplExt
|
2012-12-19 08:20:55 +00:00
|
|
|
}
|
2013-04-02 15:57:15 +00:00
|
|
|
if RunMode == "dev" {
|
2013-04-03 15:37:59 +00:00
|
|
|
BuildTemplate(ViewsPath)
|
2013-04-02 15:57:15 +00:00
|
|
|
}
|
2013-04-03 15:37:59 +00:00
|
|
|
subdir := path.Dir(c.TplNames)
|
2012-12-19 08:20:55 +00:00
|
|
|
_, file := path.Split(c.TplNames)
|
2013-03-14 13:17:37 +00:00
|
|
|
ibytes := bytes.NewBufferString("")
|
2013-04-21 03:28:20 +00:00
|
|
|
if _, ok := BeeTemplates[subdir]; !ok {
|
|
|
|
|
panic("can't find templatefile in the path:" + c.TplNames)
|
|
|
|
|
return []byte{}, errors.New("can't find templatefile in the path:" + c.TplNames)
|
|
|
|
|
}
|
2013-04-03 15:37:59 +00:00
|
|
|
err := BeeTemplates[subdir].ExecuteTemplate(ibytes, file, c.Data)
|
2012-12-19 08:20:55 +00:00
|
|
|
if err != nil {
|
|
|
|
|
Trace("template Execute err:", err)
|
|
|
|
|
}
|
2013-03-14 13:17:37 +00:00
|
|
|
icontent, _ := ioutil.ReadAll(ibytes)
|
|
|
|
|
return icontent, nil
|
2012-12-19 08:20:55 +00:00
|
|
|
}
|
2013-03-14 13:17:37 +00:00
|
|
|
return []byte{}, nil
|
2012-12-19 08:20:55 +00:00
|
|
|
}
|
|
|
|
|
|
2013-08-04 16:03:47 +00:00
|
|
|
func (c *Controller) writeToWriter(rb []byte) {
|
|
|
|
|
output_writer := c.Ctx.ResponseWriter.(io.Writer)
|
|
|
|
|
if EnableGzip == true && c.Ctx.Request.Header.Get("Accept-Encoding") != "" {
|
|
|
|
|
splitted := strings.SplitN(c.Ctx.Request.Header.Get("Accept-Encoding"), ",", -1)
|
|
|
|
|
encodings := make([]string, len(splitted))
|
|
|
|
|
|
|
|
|
|
for i, val := range splitted {
|
|
|
|
|
encodings[i] = strings.TrimSpace(val)
|
|
|
|
|
}
|
|
|
|
|
for _, val := range encodings {
|
|
|
|
|
if val == "gzip" {
|
|
|
|
|
c.Ctx.ResponseWriter.Header().Set("Content-Encoding", "gzip")
|
|
|
|
|
output_writer, _ = gzip.NewWriterLevel(c.Ctx.ResponseWriter, gzip.BestSpeed)
|
|
|
|
|
|
|
|
|
|
break
|
|
|
|
|
} else if val == "deflate" {
|
|
|
|
|
c.Ctx.ResponseWriter.Header().Set("Content-Encoding", "deflate")
|
|
|
|
|
output_writer, _ = flate.NewWriter(c.Ctx.ResponseWriter, flate.BestSpeed)
|
|
|
|
|
break
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
c.Ctx.SetHeader("Content-Length", strconv.Itoa(len(rb)), true)
|
|
|
|
|
}
|
|
|
|
|
output_writer.Write(rb)
|
|
|
|
|
switch output_writer.(type) {
|
|
|
|
|
case *gzip.Writer:
|
|
|
|
|
output_writer.(*gzip.Writer).Close()
|
|
|
|
|
case *flate.Writer:
|
|
|
|
|
output_writer.(*flate.Writer).Close()
|
|
|
|
|
case io.WriteCloser:
|
|
|
|
|
output_writer.(io.WriteCloser).Close()
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2012-12-19 08:20:55 +00:00
|
|
|
func (c *Controller) Redirect(url string, code int) {
|
|
|
|
|
c.Ctx.Redirect(code, url)
|
|
|
|
|
}
|
|
|
|
|
|
2013-05-06 16:17:25 +00:00
|
|
|
func (c *Controller) Abort(code string) {
|
|
|
|
|
panic(code)
|
|
|
|
|
}
|
|
|
|
|
|
2013-08-06 08:37:41 +00:00
|
|
|
func (c *Controller) ServeJson(encoding ...bool) {
|
2013-08-16 07:49:16 +00:00
|
|
|
var content []byte
|
|
|
|
|
var err error
|
|
|
|
|
if RunMode == "prod" {
|
|
|
|
|
content, err = json.Marshal(c.Data["json"])
|
|
|
|
|
} else {
|
|
|
|
|
content, err = json.MarshalIndent(c.Data["json"], "", " ")
|
|
|
|
|
}
|
2012-12-19 08:20:55 +00:00
|
|
|
if err != nil {
|
|
|
|
|
http.Error(c.Ctx.ResponseWriter, err.Error(), http.StatusInternalServerError)
|
|
|
|
|
return
|
|
|
|
|
}
|
2013-06-11 15:31:40 +00:00
|
|
|
c.Ctx.ResponseWriter.Header().Set("Content-Type", "application/json;charset=UTF-8")
|
2013-08-06 08:37:41 +00:00
|
|
|
if len(encoding) > 0 && encoding[0] == true {
|
|
|
|
|
content = []byte(stringsToJson(string(content)))
|
|
|
|
|
}
|
2013-08-04 16:03:47 +00:00
|
|
|
c.writeToWriter(content)
|
2012-12-19 08:20:55 +00:00
|
|
|
}
|
|
|
|
|
|
2013-06-13 09:10:35 +00:00
|
|
|
func (c *Controller) ServeJsonp() {
|
2013-08-16 07:49:16 +00:00
|
|
|
var content []byte
|
|
|
|
|
var err error
|
|
|
|
|
if RunMode == "prod" {
|
|
|
|
|
content, err = json.Marshal(c.Data["jsonp"])
|
|
|
|
|
} else {
|
|
|
|
|
content, err = json.MarshalIndent(c.Data["jsonp"], "", " ")
|
|
|
|
|
}
|
2013-06-13 09:10:35 +00:00
|
|
|
if err != nil {
|
|
|
|
|
http.Error(c.Ctx.ResponseWriter, err.Error(), http.StatusInternalServerError)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
callback := c.Ctx.Request.Form.Get("callback")
|
|
|
|
|
if callback == "" {
|
|
|
|
|
http.Error(c.Ctx.ResponseWriter, `"callback" parameter required`, http.StatusInternalServerError)
|
|
|
|
|
return
|
|
|
|
|
}
|
2013-06-14 01:39:56 +00:00
|
|
|
callback_content := bytes.NewBufferString(callback)
|
|
|
|
|
callback_content.WriteString("(")
|
|
|
|
|
callback_content.Write(content)
|
|
|
|
|
callback_content.WriteString(");\r\n")
|
2013-08-19 13:34:34 +00:00
|
|
|
c.Ctx.ResponseWriter.Header().Set("Content-Type", "application/javascript;charset=UTF-8")
|
2013-08-04 16:03:47 +00:00
|
|
|
c.writeToWriter(callback_content.Bytes())
|
2013-06-13 09:10:35 +00:00
|
|
|
}
|
|
|
|
|
|
2012-12-19 08:20:55 +00:00
|
|
|
func (c *Controller) ServeXml() {
|
2013-08-16 07:49:16 +00:00
|
|
|
var content []byte
|
|
|
|
|
var err error
|
|
|
|
|
if RunMode == "prod" {
|
|
|
|
|
content, err = xml.Marshal(c.Data["xml"])
|
|
|
|
|
} else {
|
|
|
|
|
content, err = xml.MarshalIndent(c.Data["xml"], "", " ")
|
|
|
|
|
}
|
2012-12-19 08:20:55 +00:00
|
|
|
if err != nil {
|
|
|
|
|
http.Error(c.Ctx.ResponseWriter, err.Error(), http.StatusInternalServerError)
|
|
|
|
|
return
|
|
|
|
|
}
|
2013-06-11 15:31:40 +00:00
|
|
|
c.Ctx.ResponseWriter.Header().Set("Content-Type", "application/xml;charset=UTF-8")
|
2013-08-04 16:03:47 +00:00
|
|
|
c.writeToWriter(content)
|
2012-12-19 08:20:55 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) Input() url.Values {
|
2013-04-09 13:49:17 +00:00
|
|
|
ct := c.Ctx.Request.Header.Get("Content-Type")
|
2013-04-09 16:24:28 +00:00
|
|
|
if strings.Contains(ct, "multipart/form-data") {
|
2013-04-09 13:49:17 +00:00
|
|
|
c.Ctx.Request.ParseMultipartForm(MaxMemory) //64MB
|
|
|
|
|
} else {
|
|
|
|
|
c.Ctx.Request.ParseForm()
|
|
|
|
|
}
|
2012-12-19 08:20:55 +00:00
|
|
|
return c.Ctx.Request.Form
|
|
|
|
|
}
|
2013-01-01 15:11:15 +00:00
|
|
|
|
2013-07-25 14:26:31 +00:00
|
|
|
func (c *Controller) ParseForm(obj interface{}) error {
|
|
|
|
|
return ParseForm(c.Input(), obj)
|
|
|
|
|
}
|
|
|
|
|
|
2013-04-09 13:49:17 +00:00
|
|
|
func (c *Controller) GetString(key string) string {
|
|
|
|
|
return c.Input().Get(key)
|
|
|
|
|
}
|
|
|
|
|
|
2013-06-17 07:12:35 +00:00
|
|
|
func (c *Controller) GetStrings(key string) []string {
|
2013-07-02 01:45:12 +00:00
|
|
|
r := c.Ctx.Request
|
|
|
|
|
if r.Form == nil {
|
2013-06-17 07:12:35 +00:00
|
|
|
return []string{}
|
|
|
|
|
}
|
2013-07-02 01:45:12 +00:00
|
|
|
vs := r.Form[key]
|
|
|
|
|
if len(vs) > 0 {
|
|
|
|
|
return vs
|
|
|
|
|
}
|
|
|
|
|
return []string{}
|
2013-06-17 07:12:35 +00:00
|
|
|
}
|
|
|
|
|
|
2013-04-09 13:49:17 +00:00
|
|
|
func (c *Controller) GetInt(key string) (int64, error) {
|
|
|
|
|
return strconv.ParseInt(c.Input().Get(key), 10, 64)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) GetBool(key string) (bool, error) {
|
|
|
|
|
return strconv.ParseBool(c.Input().Get(key))
|
|
|
|
|
}
|
|
|
|
|
|
2013-04-09 15:33:48 +00:00
|
|
|
func (c *Controller) GetFile(key string) (multipart.File, *multipart.FileHeader, error) {
|
|
|
|
|
return c.Ctx.Request.FormFile(key)
|
|
|
|
|
}
|
|
|
|
|
|
2013-04-16 10:20:55 +00:00
|
|
|
func (c *Controller) SaveToFile(fromfile, tofile string) error {
|
|
|
|
|
file, _, err := c.Ctx.Request.FormFile(fromfile)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
defer file.Close()
|
|
|
|
|
f, err := os.OpenFile(tofile, os.O_WRONLY|os.O_CREATE|os.O_TRUNC, 0666)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
defer f.Close()
|
|
|
|
|
io.Copy(f, file)
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2013-05-07 07:36:43 +00:00
|
|
|
func (c *Controller) StartSession() session.SessionStore {
|
|
|
|
|
if c.CruSession == nil {
|
|
|
|
|
c.CruSession = GlobalSessions.SessionStart(c.Ctx.ResponseWriter, c.Ctx.Request)
|
|
|
|
|
}
|
|
|
|
|
return c.CruSession
|
2013-01-01 15:11:15 +00:00
|
|
|
}
|
2013-04-05 15:50:53 +00:00
|
|
|
|
2013-05-13 15:30:50 +00:00
|
|
|
func (c *Controller) SetSession(name interface{}, value interface{}) {
|
2013-05-07 07:36:43 +00:00
|
|
|
if c.CruSession == nil {
|
|
|
|
|
c.StartSession()
|
|
|
|
|
}
|
|
|
|
|
c.CruSession.Set(name, value)
|
2013-04-05 15:50:53 +00:00
|
|
|
}
|
|
|
|
|
|
2013-05-13 15:30:50 +00:00
|
|
|
func (c *Controller) GetSession(name interface{}) interface{} {
|
2013-05-07 07:36:43 +00:00
|
|
|
if c.CruSession == nil {
|
|
|
|
|
c.StartSession()
|
|
|
|
|
}
|
|
|
|
|
return c.CruSession.Get(name)
|
2013-04-05 15:50:53 +00:00
|
|
|
}
|
|
|
|
|
|
2013-05-13 15:30:50 +00:00
|
|
|
func (c *Controller) DelSession(name interface{}) {
|
2013-05-07 07:36:43 +00:00
|
|
|
if c.CruSession == nil {
|
|
|
|
|
c.StartSession()
|
|
|
|
|
}
|
|
|
|
|
c.CruSession.Delete(name)
|
2013-04-05 15:50:53 +00:00
|
|
|
}
|
2013-07-02 01:45:12 +00:00
|
|
|
|
2013-08-10 15:58:25 +00:00
|
|
|
func (c *Controller) DestroySession() {
|
|
|
|
|
GlobalSessions.SessionDestroy(c.Ctx.ResponseWriter, c.Ctx.Request)
|
|
|
|
|
}
|
|
|
|
|
|
2013-07-02 01:45:12 +00:00
|
|
|
func (c *Controller) IsAjax() bool {
|
|
|
|
|
return (c.Ctx.Request.Header.Get("HTTP_X_REQUESTED_WITH") == "XMLHttpRequest")
|
|
|
|
|
}
|
2013-07-08 08:17:08 +00:00
|
|
|
|
|
|
|
|
func (c *Controller) XsrfToken() string {
|
|
|
|
|
if c._xsrf_token == "" {
|
|
|
|
|
token := c.Ctx.GetCookie("_xsrf")
|
|
|
|
|
if token == "" {
|
|
|
|
|
h := hmac.New(sha1.New, []byte(XSRFKEY))
|
|
|
|
|
fmt.Fprintf(h, "%s:%d", c.Ctx.Request.RemoteAddr, time.Now().UnixNano())
|
|
|
|
|
tok := fmt.Sprintf("%s:%d", h.Sum(nil), time.Now().UnixNano())
|
2013-08-06 15:21:52 +00:00
|
|
|
token = base64.URLEncoding.EncodeToString([]byte(tok))
|
2013-08-07 03:22:23 +00:00
|
|
|
expire := 0
|
|
|
|
|
if c.XSRFExpire > 0 {
|
|
|
|
|
expire = c.XSRFExpire
|
|
|
|
|
} else {
|
|
|
|
|
expire = XSRFExpire
|
|
|
|
|
}
|
|
|
|
|
c.Ctx.SetCookie("_xsrf", token, expire)
|
2013-07-08 08:17:08 +00:00
|
|
|
}
|
|
|
|
|
c._xsrf_token = token
|
|
|
|
|
}
|
|
|
|
|
return c._xsrf_token
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) CheckXsrfCookie() bool {
|
|
|
|
|
token := c.GetString("_xsrf")
|
|
|
|
|
if token == "" {
|
|
|
|
|
token = c.Ctx.Request.Header.Get("X-Xsrftoken")
|
|
|
|
|
}
|
|
|
|
|
if token == "" {
|
|
|
|
|
token = c.Ctx.Request.Header.Get("X-Csrftoken")
|
|
|
|
|
}
|
|
|
|
|
if token == "" {
|
|
|
|
|
c.Ctx.Abort(403, "'_xsrf' argument missing from POST")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if c._xsrf_token != token {
|
|
|
|
|
c.Ctx.Abort(403, "XSRF cookie does not match POST argument")
|
|
|
|
|
}
|
|
|
|
|
return true
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (c *Controller) XsrfFormHtml() string {
|
|
|
|
|
return "<input type=\"hidden\" name=\"_xsrf\" value=\"" +
|
|
|
|
|
c._xsrf_token + "\"/>"
|
|
|
|
|
}
|
2013-07-08 09:35:09 +00:00
|
|
|
|
|
|
|
|
func (c *Controller) GoToFunc(funcname string) {
|
|
|
|
|
if funcname[0] < 65 || funcname[0] > 90 {
|
|
|
|
|
panic("GoToFunc should exported function")
|
|
|
|
|
}
|
|
|
|
|
c.gotofunc = funcname
|
|
|
|
|
}
|
