mirror of
https://github.com/astaxie/beego.git
synced 2024-11-22 08:40:54 +00:00
662 lines
19 KiB
Go
662 lines
19 KiB
Go
// Copyright 2014 beego Author. All Rights Reserved.
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package beego
|
|
|
|
import (
|
|
"bytes"
|
|
"errors"
|
|
"html/template"
|
|
"io"
|
|
"mime/multipart"
|
|
"net/http"
|
|
"net/url"
|
|
"os"
|
|
"reflect"
|
|
"strconv"
|
|
"strings"
|
|
|
|
"github.com/astaxie/beego/context"
|
|
"github.com/astaxie/beego/context/param"
|
|
"github.com/astaxie/beego/session"
|
|
)
|
|
|
|
//commonly used mime-types
|
|
const (
|
|
applicationJSON = "application/json"
|
|
applicationXML = "application/xml"
|
|
textXML = "text/xml"
|
|
)
|
|
|
|
var (
|
|
// ErrAbort custom error when user stop request handler manually.
|
|
ErrAbort = errors.New("User stop run")
|
|
// GlobalControllerRouter store comments with controller. pkgpath+controller:comments
|
|
GlobalControllerRouter = make(map[string][]ControllerComments)
|
|
)
|
|
|
|
// ControllerComments store the comment for the controller method
|
|
type ControllerComments struct {
|
|
Method string
|
|
Router string
|
|
AllowHTTPMethods []string
|
|
Params []map[string]string
|
|
MethodParams []*param.MethodParam
|
|
}
|
|
|
|
// ControllerCommentsSlice implements the sort interface
|
|
type ControllerCommentsSlice []ControllerComments
|
|
|
|
func (p ControllerCommentsSlice) Len() int { return len(p) }
|
|
func (p ControllerCommentsSlice) Less(i, j int) bool { return p[i].Router < p[j].Router }
|
|
func (p ControllerCommentsSlice) Swap(i, j int) { p[i], p[j] = p[j], p[i] }
|
|
|
|
// Controller defines some basic http request handler operations, such as
|
|
// http context, template and view, session and xsrf.
|
|
type Controller struct {
|
|
// context data
|
|
Ctx *context.Context
|
|
Data map[interface{}]interface{}
|
|
|
|
// route controller info
|
|
controllerName string
|
|
actionName string
|
|
methodMapping map[string]func() //method:routertree
|
|
gotofunc string
|
|
AppController interface{}
|
|
|
|
// template data
|
|
TplName string
|
|
ViewPath string
|
|
Layout string
|
|
LayoutSections map[string]string // the key is the section name and the value is the template name
|
|
TplPrefix string
|
|
TplExt string
|
|
EnableRender bool
|
|
|
|
// xsrf data
|
|
_xsrfToken string
|
|
XSRFExpire int
|
|
EnableXSRF bool
|
|
|
|
// session
|
|
CruSession session.Store
|
|
}
|
|
|
|
// ControllerInterface is an interface to uniform all controller handler.
|
|
type ControllerInterface interface {
|
|
Init(ct *context.Context, controllerName, actionName string, app interface{})
|
|
Prepare()
|
|
Get()
|
|
Post()
|
|
Delete()
|
|
Put()
|
|
Head()
|
|
Patch()
|
|
Options()
|
|
Finish()
|
|
Render() error
|
|
XSRFToken() string
|
|
CheckXSRFCookie() bool
|
|
HandlerFunc(fn string) bool
|
|
URLMapping()
|
|
}
|
|
|
|
// Init generates default values of controller operations.
|
|
func (c *Controller) Init(ctx *context.Context, controllerName, actionName string, app interface{}) {
|
|
c.Layout = ""
|
|
c.TplName = ""
|
|
c.controllerName = controllerName
|
|
c.actionName = actionName
|
|
c.Ctx = ctx
|
|
c.TplExt = "tpl"
|
|
c.AppController = app
|
|
c.EnableRender = true
|
|
c.EnableXSRF = true
|
|
c.Data = ctx.Input.Data()
|
|
c.methodMapping = make(map[string]func())
|
|
}
|
|
|
|
// Prepare runs after Init before request function execution.
|
|
func (c *Controller) Prepare() {}
|
|
|
|
// Finish runs after request function execution.
|
|
func (c *Controller) Finish() {}
|
|
|
|
// Get adds a request function to handle GET request.
|
|
func (c *Controller) Get() {
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
}
|
|
|
|
// Post adds a request function to handle POST request.
|
|
func (c *Controller) Post() {
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
}
|
|
|
|
// Delete adds a request function to handle DELETE request.
|
|
func (c *Controller) Delete() {
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
}
|
|
|
|
// Put adds a request function to handle PUT request.
|
|
func (c *Controller) Put() {
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
}
|
|
|
|
// Head adds a request function to handle HEAD request.
|
|
func (c *Controller) Head() {
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
}
|
|
|
|
// Patch adds a request function to handle PATCH request.
|
|
func (c *Controller) Patch() {
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
}
|
|
|
|
// Options adds a request function to handle OPTIONS request.
|
|
func (c *Controller) Options() {
|
|
http.Error(c.Ctx.ResponseWriter, "Method Not Allowed", 405)
|
|
}
|
|
|
|
// HandlerFunc call function with the name
|
|
func (c *Controller) HandlerFunc(fnname string) bool {
|
|
if v, ok := c.methodMapping[fnname]; ok {
|
|
v()
|
|
return true
|
|
}
|
|
return false
|
|
}
|
|
|
|
// URLMapping register the internal Controller router.
|
|
func (c *Controller) URLMapping() {}
|
|
|
|
// Mapping the method to function
|
|
func (c *Controller) Mapping(method string, fn func()) {
|
|
c.methodMapping[method] = fn
|
|
}
|
|
|
|
// Render sends the response with rendered template bytes as text/html type.
|
|
func (c *Controller) Render() error {
|
|
if !c.EnableRender {
|
|
return nil
|
|
}
|
|
rb, err := c.RenderBytes()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
if c.Ctx.ResponseWriter.Header().Get("Content-Type") == "" {
|
|
c.Ctx.Output.Header("Content-Type", "text/html; charset=utf-8")
|
|
}
|
|
|
|
return c.Ctx.Output.Body(rb)
|
|
}
|
|
|
|
// RenderString returns the rendered template string. Do not send out response.
|
|
func (c *Controller) RenderString() (string, error) {
|
|
b, e := c.RenderBytes()
|
|
return string(b), e
|
|
}
|
|
|
|
// RenderBytes returns the bytes of rendered template string. Do not send out response.
|
|
func (c *Controller) RenderBytes() ([]byte, error) {
|
|
buf, err := c.renderTemplate()
|
|
//if the controller has set layout, then first get the tplName's content set the content to the layout
|
|
if err == nil && c.Layout != "" {
|
|
c.Data["LayoutContent"] = template.HTML(buf.String())
|
|
|
|
if c.LayoutSections != nil {
|
|
for sectionName, sectionTpl := range c.LayoutSections {
|
|
if sectionTpl == "" {
|
|
c.Data[sectionName] = ""
|
|
continue
|
|
}
|
|
buf.Reset()
|
|
err = ExecuteViewPathTemplate(&buf, sectionTpl, c.viewPath(), c.Data)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
c.Data[sectionName] = template.HTML(buf.String())
|
|
}
|
|
}
|
|
|
|
buf.Reset()
|
|
ExecuteViewPathTemplate(&buf, c.Layout, c.viewPath(), c.Data)
|
|
}
|
|
return buf.Bytes(), err
|
|
}
|
|
|
|
func (c *Controller) renderTemplate() (bytes.Buffer, error) {
|
|
var buf bytes.Buffer
|
|
if c.TplName == "" {
|
|
c.TplName = strings.ToLower(c.controllerName) + "/" + strings.ToLower(c.actionName) + "." + c.TplExt
|
|
}
|
|
if c.TplPrefix != "" {
|
|
c.TplName = c.TplPrefix + c.TplName
|
|
}
|
|
if BConfig.RunMode == DEV {
|
|
buildFiles := []string{c.TplName}
|
|
if c.Layout != "" {
|
|
buildFiles = append(buildFiles, c.Layout)
|
|
if c.LayoutSections != nil {
|
|
for _, sectionTpl := range c.LayoutSections {
|
|
if sectionTpl == "" {
|
|
continue
|
|
}
|
|
buildFiles = append(buildFiles, sectionTpl)
|
|
}
|
|
}
|
|
}
|
|
BuildTemplate(c.viewPath(), buildFiles...)
|
|
}
|
|
return buf, ExecuteViewPathTemplate(&buf, c.TplName, c.viewPath(), c.Data)
|
|
}
|
|
|
|
func (c *Controller) viewPath() string {
|
|
if c.ViewPath == "" {
|
|
return BConfig.WebConfig.ViewsPath
|
|
}
|
|
return c.ViewPath
|
|
}
|
|
|
|
// Redirect sends the redirection response to url with status code.
|
|
func (c *Controller) Redirect(url string, code int) {
|
|
c.Ctx.Redirect(code, url)
|
|
}
|
|
|
|
// Abort stops controller handler and show the error data if code is defined in ErrorMap or code string.
|
|
func (c *Controller) Abort(code string) {
|
|
status, err := strconv.Atoi(code)
|
|
if err != nil {
|
|
status = 200
|
|
}
|
|
c.CustomAbort(status, code)
|
|
}
|
|
|
|
// CustomAbort stops controller handler and show the error data, it's similar Aborts, but support status code and body.
|
|
func (c *Controller) CustomAbort(status int, body string) {
|
|
// first panic from ErrorMaps, it is user defined error functions.
|
|
if _, ok := ErrorMaps[body]; ok {
|
|
c.Ctx.Output.Status = status
|
|
panic(body)
|
|
}
|
|
// last panic user string
|
|
c.Ctx.ResponseWriter.WriteHeader(status)
|
|
c.Ctx.ResponseWriter.Write([]byte(body))
|
|
panic(ErrAbort)
|
|
}
|
|
|
|
// StopRun makes panic of USERSTOPRUN error and go to recover function if defined.
|
|
func (c *Controller) StopRun() {
|
|
panic(ErrAbort)
|
|
}
|
|
|
|
// URLFor does another controller handler in this request function.
|
|
// it goes to this controller method if endpoint is not clear.
|
|
func (c *Controller) URLFor(endpoint string, values ...interface{}) string {
|
|
if len(endpoint) == 0 {
|
|
return ""
|
|
}
|
|
if endpoint[0] == '.' {
|
|
return URLFor(reflect.Indirect(reflect.ValueOf(c.AppController)).Type().Name()+endpoint, values...)
|
|
}
|
|
return URLFor(endpoint, values...)
|
|
}
|
|
|
|
// ServeJSON sends a json response with encoding charset.
|
|
func (c *Controller) ServeJSON(encoding ...bool) {
|
|
var (
|
|
hasIndent = true
|
|
hasEncoding = false
|
|
)
|
|
if BConfig.RunMode == PROD {
|
|
hasIndent = false
|
|
}
|
|
if len(encoding) > 0 && encoding[0] {
|
|
hasEncoding = true
|
|
}
|
|
c.Ctx.Output.JSON(c.Data["json"], hasIndent, hasEncoding)
|
|
}
|
|
|
|
// ServeJSONP sends a jsonp response.
|
|
func (c *Controller) ServeJSONP() {
|
|
hasIndent := true
|
|
if BConfig.RunMode == PROD {
|
|
hasIndent = false
|
|
}
|
|
c.Ctx.Output.JSONP(c.Data["jsonp"], hasIndent)
|
|
}
|
|
|
|
// ServeXML sends xml response.
|
|
func (c *Controller) ServeXML() {
|
|
hasIndent := true
|
|
if BConfig.RunMode == PROD {
|
|
hasIndent = false
|
|
}
|
|
c.Ctx.Output.XML(c.Data["xml"], hasIndent)
|
|
}
|
|
|
|
// ServeFormatted serve Xml OR Json, depending on the value of the Accept header
|
|
func (c *Controller) ServeFormatted() {
|
|
accept := c.Ctx.Input.Header("Accept")
|
|
switch accept {
|
|
case applicationJSON:
|
|
c.ServeJSON()
|
|
case applicationXML, textXML:
|
|
c.ServeXML()
|
|
default:
|
|
c.ServeJSON()
|
|
}
|
|
}
|
|
|
|
// Input returns the input data map from POST or PUT request body and query string.
|
|
func (c *Controller) Input() url.Values {
|
|
if c.Ctx.Request.Form == nil {
|
|
c.Ctx.Request.ParseForm()
|
|
}
|
|
return c.Ctx.Request.Form
|
|
}
|
|
|
|
// ParseForm maps input data map to obj struct.
|
|
func (c *Controller) ParseForm(obj interface{}) error {
|
|
return ParseForm(c.Input(), obj)
|
|
}
|
|
|
|
// GetString returns the input value by key string or the default value while it's present and input is blank
|
|
func (c *Controller) GetString(key string, def ...string) string {
|
|
if v := c.Ctx.Input.Query(key); v != "" {
|
|
return v
|
|
}
|
|
if len(def) > 0 {
|
|
return def[0]
|
|
}
|
|
return ""
|
|
}
|
|
|
|
// GetStrings returns the input string slice by key string or the default value while it's present and input is blank
|
|
// it's designed for multi-value input field such as checkbox(input[type=checkbox]), multi-selection.
|
|
func (c *Controller) GetStrings(key string, def ...[]string) []string {
|
|
var defv []string
|
|
if len(def) > 0 {
|
|
defv = def[0]
|
|
}
|
|
|
|
if f := c.Input(); f == nil {
|
|
return defv
|
|
} else if vs := f[key]; len(vs) > 0 {
|
|
return vs
|
|
}
|
|
|
|
return defv
|
|
}
|
|
|
|
// GetInt returns input as an int or the default value while it's present and input is blank
|
|
func (c *Controller) GetInt(key string, def ...int) (int, error) {
|
|
strv := c.Ctx.Input.Query(key)
|
|
if len(strv) == 0 && len(def) > 0 {
|
|
return def[0], nil
|
|
}
|
|
return strconv.Atoi(strv)
|
|
}
|
|
|
|
// GetInt8 return input as an int8 or the default value while it's present and input is blank
|
|
func (c *Controller) GetInt8(key string, def ...int8) (int8, error) {
|
|
strv := c.Ctx.Input.Query(key)
|
|
if len(strv) == 0 && len(def) > 0 {
|
|
return def[0], nil
|
|
}
|
|
i64, err := strconv.ParseInt(strv, 10, 8)
|
|
return int8(i64), err
|
|
}
|
|
|
|
// GetUint8 return input as an uint8 or the default value while it's present and input is blank
|
|
func (c *Controller) GetUint8(key string, def ...uint8) (uint8, error) {
|
|
strv := c.Ctx.Input.Query(key)
|
|
if len(strv) == 0 && len(def) > 0 {
|
|
return def[0], nil
|
|
}
|
|
u64, err := strconv.ParseUint(strv, 10, 8)
|
|
return uint8(u64), err
|
|
}
|
|
|
|
// GetInt16 returns input as an int16 or the default value while it's present and input is blank
|
|
func (c *Controller) GetInt16(key string, def ...int16) (int16, error) {
|
|
strv := c.Ctx.Input.Query(key)
|
|
if len(strv) == 0 && len(def) > 0 {
|
|
return def[0], nil
|
|
}
|
|
i64, err := strconv.ParseInt(strv, 10, 16)
|
|
return int16(i64), err
|
|
}
|
|
|
|
// GetUint16 returns input as an uint16 or the default value while it's present and input is blank
|
|
func (c *Controller) GetUint16(key string, def ...uint16) (uint16, error) {
|
|
strv := c.Ctx.Input.Query(key)
|
|
if len(strv) == 0 && len(def) > 0 {
|
|
return def[0], nil
|
|
}
|
|
u64, err := strconv.ParseUint(strv, 10, 16)
|
|
return uint16(u64), err
|
|
}
|
|
|
|
// GetInt32 returns input as an int32 or the default value while it's present and input is blank
|
|
func (c *Controller) GetInt32(key string, def ...int32) (int32, error) {
|
|
strv := c.Ctx.Input.Query(key)
|
|
if len(strv) == 0 && len(def) > 0 {
|
|
return def[0], nil
|
|
}
|
|
i64, err := strconv.ParseInt(strv, 10, 32)
|
|
return int32(i64), err
|
|
}
|
|
|
|
// GetUint32 returns input as an uint32 or the default value while it's present and input is blank
|
|
func (c *Controller) GetUint32(key string, def ...uint32) (uint32, error) {
|
|
strv := c.Ctx.Input.Query(key)
|
|
if len(strv) == 0 && len(def) > 0 {
|
|
return def[0], nil
|
|
}
|
|
u64, err := strconv.ParseUint(strv, 10, 32)
|
|
return uint32(u64), err
|
|
}
|
|
|
|
// GetInt64 returns input value as int64 or the default value while it's present and input is blank.
|
|
func (c *Controller) GetInt64(key string, def ...int64) (int64, error) {
|
|
strv := c.Ctx.Input.Query(key)
|
|
if len(strv) == 0 && len(def) > 0 {
|
|
return def[0], nil
|
|
}
|
|
return strconv.ParseInt(strv, 10, 64)
|
|
}
|
|
|
|
// GetUint64 returns input value as uint64 or the default value while it's present and input is blank.
|
|
func (c *Controller) GetUint64(key string, def ...uint64) (uint64, error) {
|
|
strv := c.Ctx.Input.Query(key)
|
|
if len(strv) == 0 && len(def) > 0 {
|
|
return def[0], nil
|
|
}
|
|
return strconv.ParseUint(strv, 10, 64)
|
|
}
|
|
|
|
// GetBool returns input value as bool or the default value while it's present and input is blank.
|
|
func (c *Controller) GetBool(key string, def ...bool) (bool, error) {
|
|
strv := c.Ctx.Input.Query(key)
|
|
if len(strv) == 0 && len(def) > 0 {
|
|
return def[0], nil
|
|
}
|
|
return strconv.ParseBool(strv)
|
|
}
|
|
|
|
// GetFloat returns input value as float64 or the default value while it's present and input is blank.
|
|
func (c *Controller) GetFloat(key string, def ...float64) (float64, error) {
|
|
strv := c.Ctx.Input.Query(key)
|
|
if len(strv) == 0 && len(def) > 0 {
|
|
return def[0], nil
|
|
}
|
|
return strconv.ParseFloat(strv, 64)
|
|
}
|
|
|
|
// GetFile returns the file data in file upload field named as key.
|
|
// it returns the first one of multi-uploaded files.
|
|
func (c *Controller) GetFile(key string) (multipart.File, *multipart.FileHeader, error) {
|
|
return c.Ctx.Request.FormFile(key)
|
|
}
|
|
|
|
// GetFiles return multi-upload files
|
|
// files, err:=c.GetFiles("myfiles")
|
|
// if err != nil {
|
|
// http.Error(w, err.Error(), http.StatusNoContent)
|
|
// return
|
|
// }
|
|
// for i, _ := range files {
|
|
// //for each fileheader, get a handle to the actual file
|
|
// file, err := files[i].Open()
|
|
// defer file.Close()
|
|
// if err != nil {
|
|
// http.Error(w, err.Error(), http.StatusInternalServerError)
|
|
// return
|
|
// }
|
|
// //create destination file making sure the path is writeable.
|
|
// dst, err := os.Create("upload/" + files[i].Filename)
|
|
// defer dst.Close()
|
|
// if err != nil {
|
|
// http.Error(w, err.Error(), http.StatusInternalServerError)
|
|
// return
|
|
// }
|
|
// //copy the uploaded file to the destination file
|
|
// if _, err := io.Copy(dst, file); err != nil {
|
|
// http.Error(w, err.Error(), http.StatusInternalServerError)
|
|
// return
|
|
// }
|
|
// }
|
|
func (c *Controller) GetFiles(key string) ([]*multipart.FileHeader, error) {
|
|
if files, ok := c.Ctx.Request.MultipartForm.File[key]; ok {
|
|
return files, nil
|
|
}
|
|
return nil, http.ErrMissingFile
|
|
}
|
|
|
|
// SaveToFile saves uploaded file to new path.
|
|
// it only operates the first one of mutil-upload form file field.
|
|
func (c *Controller) SaveToFile(fromfile, tofile string) error {
|
|
file, _, err := c.Ctx.Request.FormFile(fromfile)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer file.Close()
|
|
f, err := os.OpenFile(tofile, os.O_WRONLY|os.O_CREATE|os.O_TRUNC, 0666)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer f.Close()
|
|
io.Copy(f, file)
|
|
return nil
|
|
}
|
|
|
|
// StartSession starts session and load old session data info this controller.
|
|
func (c *Controller) StartSession() session.Store {
|
|
if c.CruSession == nil {
|
|
c.CruSession = c.Ctx.Input.CruSession
|
|
}
|
|
return c.CruSession
|
|
}
|
|
|
|
// SetSession puts value into session.
|
|
func (c *Controller) SetSession(name interface{}, value interface{}) {
|
|
if c.CruSession == nil {
|
|
c.StartSession()
|
|
}
|
|
c.CruSession.Set(name, value)
|
|
}
|
|
|
|
// GetSession gets value from session.
|
|
func (c *Controller) GetSession(name interface{}) interface{} {
|
|
if c.CruSession == nil {
|
|
c.StartSession()
|
|
}
|
|
return c.CruSession.Get(name)
|
|
}
|
|
|
|
// DelSession removes value from session.
|
|
func (c *Controller) DelSession(name interface{}) {
|
|
if c.CruSession == nil {
|
|
c.StartSession()
|
|
}
|
|
c.CruSession.Delete(name)
|
|
}
|
|
|
|
// SessionRegenerateID regenerates session id for this session.
|
|
// the session data have no changes.
|
|
func (c *Controller) SessionRegenerateID() {
|
|
if c.CruSession != nil {
|
|
c.CruSession.SessionRelease(c.Ctx.ResponseWriter)
|
|
}
|
|
c.CruSession = GlobalSessions.SessionRegenerateID(c.Ctx.ResponseWriter, c.Ctx.Request)
|
|
c.Ctx.Input.CruSession = c.CruSession
|
|
}
|
|
|
|
// DestroySession cleans session data and session cookie.
|
|
func (c *Controller) DestroySession() {
|
|
c.Ctx.Input.CruSession.Flush()
|
|
c.Ctx.Input.CruSession = nil
|
|
GlobalSessions.SessionDestroy(c.Ctx.ResponseWriter, c.Ctx.Request)
|
|
}
|
|
|
|
// IsAjax returns this request is ajax or not.
|
|
func (c *Controller) IsAjax() bool {
|
|
return c.Ctx.Input.IsAjax()
|
|
}
|
|
|
|
// GetSecureCookie returns decoded cookie value from encoded browser cookie values.
|
|
func (c *Controller) GetSecureCookie(Secret, key string) (string, bool) {
|
|
return c.Ctx.GetSecureCookie(Secret, key)
|
|
}
|
|
|
|
// SetSecureCookie puts value into cookie after encoded the value.
|
|
func (c *Controller) SetSecureCookie(Secret, name, value string, others ...interface{}) {
|
|
c.Ctx.SetSecureCookie(Secret, name, value, others...)
|
|
}
|
|
|
|
// XSRFToken creates a CSRF token string and returns.
|
|
func (c *Controller) XSRFToken() string {
|
|
if c._xsrfToken == "" {
|
|
expire := int64(BConfig.WebConfig.XSRFExpire)
|
|
if c.XSRFExpire > 0 {
|
|
expire = int64(c.XSRFExpire)
|
|
}
|
|
c._xsrfToken = c.Ctx.XSRFToken(BConfig.WebConfig.XSRFKey, expire)
|
|
}
|
|
return c._xsrfToken
|
|
}
|
|
|
|
// CheckXSRFCookie checks xsrf token in this request is valid or not.
|
|
// the token can provided in request header "X-Xsrftoken" and "X-CsrfToken"
|
|
// or in form field value named as "_xsrf".
|
|
func (c *Controller) CheckXSRFCookie() bool {
|
|
if !c.EnableXSRF {
|
|
return true
|
|
}
|
|
return c.Ctx.CheckXSRFCookie()
|
|
}
|
|
|
|
// XSRFFormHTML writes an input field contains xsrf token value.
|
|
func (c *Controller) XSRFFormHTML() string {
|
|
return `<input type="hidden" name="_xsrf" value="` +
|
|
c.XSRFToken() + `" />`
|
|
}
|
|
|
|
// GetControllerAndAction gets the executing controller name and action name.
|
|
func (c *Controller) GetControllerAndAction() (string, string) {
|
|
return c.controllerName, c.actionName
|
|
}
|