package orm import ( "fmt" "net/http" "os" "strings" "time" "git.andreafazzi.eu/andrea/oef/errors" "git.andreafazzi.eu/andrea/oef/mail" "git.andreafazzi.eu/andrea/oef/renderer" "github.com/dchest/captcha" "github.com/jinzhu/gorm" ) type RegionID uint var mailBody = ` Spettabile {{.NameForMail}}, grazie per l'interesse manifestato per i Campionati Italiani di Economia e Finanza. Di seguito riportiamo le credenziali di accesso tramite le quali potrà gestire le iscrizioni dei suoi studenti alla competizione (Fase Regionale). username: {{.Username}} password: {{.Password}} Per accedere alla pagina di login occorrerà seguire questo link https://piattaforma.oief.it/ ed inserire le credenziali riportate sopra (si consiglia di effettuare un copia/incolla). Questa mail è stata generata da un sistema automatico, si prega di non rispondere. Cordialmente, Lo Staff dei CEF. ` type School struct { gorm.Model UserModifier Name string Address string Email string Code string EmailSentDate time.Time SchoolContactPersonLastname string SchoolContactPersonFirstname string SchoolContactPersonEmail string SchoolContactPersonTelephoneNumber string ContestDirectorLastname string ContestDirectorFirstname string PreviousParticipantsSelection uint UserID uint RegionID RegionID `schema:"region_id"` Region *Region User *User Participants []*Participant SelectedRegion map[uint]string `gorm:"-"` AllRegions []*Region `gorm:"-"` CaptchaID string `gorm:"-" schema:"-"` CaptchaSolution string `gorm:"-" schema:"-"` mailSender *mail.MailSender } func (id *RegionID) UnmarshalCSV(csv string) error { *id = RegionID(regionsMap[strings.Title(strings.ToLower(csv))]) return nil } func (model *School) GetID() uint { return model.ID } func (model *School) String() string { return fmt.Sprintf("%s (%s)", model.Code, model.Name) } func (model *School) NameForMail() string { return fmt.Sprintf("%s (%s)", model.Name, model.Code) } func (model *School) Username() string { return strings.ToUpper(model.Code) } func (model *School) Password() string { return model.User.Password } func (model *School) To() string { return model.Email } func (model *School) Cc() string { return model.SchoolContactPersonEmail } func (model *School) SetCreatorID(id uint) { model.CreatorID = id } func (model *School) SetCreatorRole(role string) { model.CreatorRole = role } func (model *School) SetCreatorIP(addr string) { model.CreatorIP = addr } func (model *School) SetUpdaterID(id uint) { model.UpdaterID = id } func (model *School) SetUpdaterRole(role string) { model.UpdaterRole = role } func (model *School) SetUpdaterIP(addr string) { model.UpdaterIP = addr } func (model *School) exists(db *Database) (*User, error) { var user User if err := db._db.First(&user, &User{Username: model.Username()}).Error; err != nil && err != gorm.ErrRecordNotFound { return nil, err } else if err == gorm.ErrRecordNotFound { return nil, nil } return &user, nil } func (model *School) BeforeSave(tx *gorm.DB) error { var user User if err := tx.FirstOrCreate(&user, &User{ Username: model.Username(), Role: "school", }).Error; err != nil { return err } model.UserID = user.ID // School code is always uppercase model.Code = strings.ToUpper(model.Code) return nil } func (model *School) AfterDelete(tx *gorm.DB) error { if err := tx.Unscoped().Delete(model.User).Error; err != nil { return err } return nil } func (model *School) AfterCreate(tx *gorm.DB) error { if err := tx.Preload("User").First(model).Error; err != nil { return err } if err := model.mailSender.SendSubscriptionMail(model); err != nil { return err } if err := tx.Model(model).Update("email_sent_date", time.Now()).Error; err != nil { return err } return nil } func (model *School) Create(db *Database, args map[string]string, w http.ResponseWriter, r *http.Request) (interface{}, error) { if r.Method == "GET" { school := new(School) if err := db._db.Find(&school.AllRegions).Error; err != nil { return nil, err } return school, nil } else { if isSubscriber(r) && os.Getenv("OEF_REGRESSION_TEST") != "1" { if !captcha.VerifyString(r.FormValue("CaptchaID"), r.FormValue("CaptchaSolution")) { return nil, errors.WrongCaptcha } } school := new(School) err := renderer.Decode(school, r) if err != nil { return nil, err } // Check if this user already exists in the users table. if user, err := school.exists(db); err == nil && user != nil { if err := db._db.Where("user_id = ?", user.ID).Find(&school).Error; err != nil { return nil, err } return nil, errors.SchoolExists } else if err != nil { return nil, err } WriteCreator(r, school) school.mailSender = mail.NewMailSender(db.Config, mailBody) school, err = CreateSchool(db, school) if err != nil { return nil, err } return school, nil } } func (model *School) Read(db *Database, args map[string]string, w http.ResponseWriter, r *http.Request) (interface{}, error) { var school School id := args["id"] if isSchool(r) && id != getModelIDFromToken(r) { return nil, errors.NotAuthorized } if err := db._db. Preload("Participants"). Preload("Participants.Category"). Preload("Region"). Preload("User"). Preload("Creator"). Preload("Updater"). First(&school, id).Error; err != nil { return nil, err } return &school, nil } func (model *School) ReadAll(db *Database, args map[string]string, w http.ResponseWriter, r *http.Request) (interface{}, error) { var schools []*School if err := db._db. Preload("Participants"). Preload("Participants.Category"). Preload("Region"). Order("code"). Find(&schools).Error; err != nil { return nil, err } return schools, nil } func (model *School) Update(db *Database, args map[string]string, w http.ResponseWriter, r *http.Request) (interface{}, error) { if r.Method == "GET" { result, err := model.Read(db, args, w, r) if err != nil { return nil, err } school := result.(*School) if err := db._db.Find(&school.AllRegions).Error; err != nil { return nil, err } school.SelectedRegion = make(map[uint]string) school.SelectedRegion[uint(school.RegionID)] = "selected" return school, nil } else { school, err := model.Read(db, args, w, r) if err != nil { return nil, err } err = renderer.Decode(school, r) if err != nil { return nil, err } // Check if the modified school code belong to an existing school. if user, err := school.(*School).exists(db); err == nil && user != nil { if user.ID != school.(*School).UserID { return nil, errors.SchoolExists } } else if err != nil { return nil, err } WriteUpdater(r, school.(*School)) _, err = SaveSchool(db, school) if err != nil { return nil, err } school, err = model.Read(db, args, w, r) if err != nil { return nil, err } return school.(*School), nil } } func (model *School) Delete(db *Database, args map[string]string, w http.ResponseWriter, r *http.Request) (interface{}, error) { school, err := model.Read(db, args, w, r) if err != nil { return nil, err } if err := db._db.Unscoped().Delete(school.(*School)).Error; err != nil { return nil, err } return school.(*School), nil } func CreateSchool(db *Database, school *School) (*School, error) { if err := db._db.Create(school).Error; err != nil { return nil, err } return school, nil } func SaveSchool(db *Database, school interface{}) (interface{}, error) { if err := db._db.Omit("Region", "Creator", "Updater").Save(school).Error; err != nil { return nil, err } return school, nil } func (model *School) HasCategory(db *Database, participant *Participant) (bool, error) { var participants []*Participant if err := db._db. Where("category_id = ? AND school_id = ? AND id <> ?", participant.CategoryID, model.ID, participant.ID). Find(&participants).Error; err != nil { return false, err } return len(participants) > 0, nil }