empayre/fleet
14
0
Fork 0
mirror of https://github.com/empayre/fleet.git synced 2024-11-06 17:05:18 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
6580fe1c5a
fleet/server/service/service_invites.go
Zachary Wasserman adf87140a7
Add ability to prefix Fleet URLs (#2112) 
- Add the server_url_prefix flag for configuring this functionality
- Add prefix handling to the server routes
- Refactor JS to use appropriate paths from modules
- Use JS template to get URL prefix into JS environment
- Update webpack config to support prefixing

Thanks to securityonion.net for sponsoring the development of this feature.

Closes #1661
2019-10-16 16:40:45 -07:00

110 lines
2.6 KiB
Go
Raw Blame History

package service
import (
"context"
"encoding/base64"
"html/template"
"github.com/kolide/fleet/server/kolide"
)
func (svc service) InviteNewUser(ctx context.Context, payload kolide.InvitePayload) (*kolide.Invite, error) {
// verify that the user with the given email does not already exist
_, err := svc.ds.UserByEmail(*payload.Email)
if err == nil {
return nil, newInvalidArgumentError("email", "a user with this account already exists")
}
if _, ok := err.(kolide.NotFoundError); !ok {
return nil, err
}
// find the user who created the invite
inviter, err := svc.User(ctx, *payload.InvitedBy)
if err != nil {
return nil, err
}
random, err := kolide.RandomText(svc.config.App.TokenKeySize)
if err != nil {
return nil, err
}
token := base64.URLEncoding.EncodeToString([]byte(random))
invite := &kolide.Invite{
Email: *payload.Email,
Admin: *payload.Admin,
InvitedBy: inviter.ID,
Token: token,
}
if payload.Position != nil {
invite.Position = *payload.Position
}
if payload.Name != nil {
invite.Name = *payload.Name
}
if payload.SSOEnabled != nil {
invite.SSOEnabled = *payload.SSOEnabled
}
invite, err = svc.ds.NewInvite(invite)
if err != nil {
return nil, err
}
config, err := svc.AppConfig(ctx)
if err != nil {
return nil, err
}
invitedBy := inviter.Name
if invitedBy == "" {
invitedBy = inviter.Username
}
inviteEmail := kolide.Email{
Subject: "You are Invited to Fleet",
To: []string{invite.Email},
Config: config,
Mailer: &kolide.InviteMailer{
Invite: invite,
BaseURL: template.URL(config.KolideServerURL + svc.config.Server.URLPrefix),
AssetURL: getAssetURL(),
OrgName: config.OrgName,
InvitedByUsername: invitedBy,
},
}
err = svc.mailService.SendEmail(inviteEmail)
if err != nil {
return nil, err
}
return invite, nil
}
func (svc service) ListInvites(ctx context.Context, opt kolide.ListOptions) ([]*kolide.Invite, error) {
return svc.ds.ListInvites(opt)
}
func (svc service) VerifyInvite(ctx context.Context, token string) (*kolide.Invite, error) {
invite, err := svc.ds.InviteByToken(token)
if err != nil {
return nil, err
}
if invite.Token != token {
return nil, newInvalidArgumentError("invite_token", "Invite Token does not match Email Address.")
}
expiresAt := invite.CreatedAt.Add(svc.config.App.InviteTokenValidityPeriod)
if svc.clock.Now().After(expiresAt) {
return nil, newInvalidArgumentError("invite_token", "Invite token has expired.")
}
return invite, nil
}
func (svc service) DeleteInvite(ctx context.Context, id uint) error {
return svc.ds.DeleteInvite(id)
}
Reference in New Issue View Git Blame Copy Permalink