添加管理员登录功能，重构相关接口，增强权限管理和响应处理

include/db/auth.h

@@ -26,7 +26,7 @@ extern "C"
 
     int set_admin_password_hash(const char* hash);
 
-    int get_admin_password_hash(char** result);
+    int admin_login(const char* password, int* result);
 
     int has_admin_password_hash(int* result);
 

include/server/auth.h

@@ -3,10 +3,16 @@
 
 #include "server/types.h"
 
-int login_handler(mg_connection* conn, void* cbdata);
-int register_handler(mg_connection* conn, void* cbdata);
-int delete_handler(mg_connection* conn, void* cbdata);
+int user_login_handler(mg_connection* conn, void* cbdata);
+int user_register_handler(mg_connection* conn, void* cbdata);
+int user_delete_handler(mg_connection* conn, void* cbdata);
+int user_repasswd_handler(mg_connection* conn, void* cbdata);
+int user_logout_handler(mg_connection* conn, void* cbdata);
+int user_permission_handler(mg_connection* conn, void* cbdata);
+int admin_handler(mg_connection* conn, void* cbdata);
 
 extern char* secret;
 
+extern char* admin_session;
+
 #endif // SERVER_AUTH_H

include/server/response.h

@@ -11,7 +11,6 @@ void res_auth_fail(mg_connection* conn);
 void res_check_exist_fail(mg_connection* conn);
 void res_user_exist(mg_connection* conn);
 void res_not_exist(mg_connection* conn);
-void res_check_permission_fail(mg_connection* conn);
 void res_permission_denied(mg_connection* conn);
 void res_need_user_id(mg_connection* conn);
 void res_need_password(mg_connection* conn);
@@ -37,6 +36,12 @@ void res_repasswd(mg_connection* conn);
 void res_logout_fail(mg_connection* conn);
 void res_logout(mg_connection* conn);
 
+void res_check_permission_fail(mg_connection* conn);
+void res_permission(mg_connection* conn, int permission);
+
+void res_repermission_fail(mg_connection* conn);
+void res_repermission(mg_connection* conn);
+
 void res_(mg_connection* conn);
 void res_(mg_connection* conn);
 void res_(mg_connection* conn);

src/db/auth.cpp

@@ -160,17 +160,16 @@ extern "C"
         return 1;
     }
 
-    int get_admin_password_hash(char** result)
+    int admin_login(const char* password, int* result)
     {
         auto value  = std::string{};
         auto status = user_db->Get(leveldb::ReadOptions{}, "admin_password_hash", &value);
-        if (status.ok()) {
-            *result = strdup(value.c_str());
-            return 1;
-        } else {
-            std::println(stderr, "Failed to get admin password hash: {}", status.ToString());
+        if (!status.ok()) {
+            std::println(stderr, "Failed to login: {}", status.ToString());
             return 0;
         }
+        *result = validate_password(password, value.data());
+        return 1;
     }
 
     int has_admin_password_hash(int* result)

src/server/auth/admin.c

@@ -0,0 +1,87 @@
+#include "server/auth.h"
+#include "server/response.h"
+#include "server/util.h"
+
+#include "db/auth.h"
+
+#include "hash/hash.h"
+
+#include <civetweb.h>
+
+#include <cjson/cJSON.h>
+
+#include <assert.h>
+#include <stdlib.h>
+#include <string.h>
+
+typedef struct
+{
+    char* password;
+} admin_form_t;
+
+static void admin_form_dtor(admin_form_t* form)
+{
+    if (form->password) free(form->password);
+}
+
+static int field_found(const char* key, const char* filename, char* path, size_t pathlen, void* user_data)
+{
+    return MG_FORM_FIELD_HANDLE_GET;
+}
+
+static int field_get(const char* key, const char* value, size_t valuelen, void* user_data)
+{
+    admin_form_t* form = (admin_form_t*)user_data;
+    if (strcmp(key, "password") == 0) {
+        form->password = kqm_strndup(value, valuelen);
+        return MG_FORM_FIELD_HANDLE_ABORT;
+    }
+    return MG_FORM_FIELD_HANDLE_GET;
+}
+
+int admin_handler(mg_connection* conn, void* cbdata)
+{
+    const mg_request_info* post_body = mg_get_request_info(conn);
+
+    if (post_body == NULL) {
+        res_null_req(conn);
+        return 1;
+    }
+
+    if (strcmp(post_body->request_method, "POST")) {
+        res_must_post(conn);
+        return 1;
+    }
+
+    admin_form_t form = {NULL};
+
+    mg_form_data_handler admin_callback = {
+        .field_found = field_found,
+        .field_get   = field_get,
+        .field_store = NULL,
+        .user_data   = &form,
+    };
+
+    mg_handle_form_request(conn, &admin_callback);
+
+    if (!form.password) {
+        res_need_password(conn);
+        admin_form_dtor(&form);
+        return 1;
+    }
+
+    int result;
+    int flag = admin_login(form.password, &result);
+    if (!flag) {
+        res_login_fail(conn);
+    } else if (!result) {
+        res_incorrect(conn);
+    } else {
+        if (admin_session) free(admin_session);
+        admin_session = kqm_random_password(16);
+        res_login(conn, admin_session);
+    }
+
+    admin_form_dtor(&form);
+    return 1;
+}

src/server/auth/auth.c

@@ -3,4 +3,5 @@
 #include <stddef.h>
 
 char* secret = NULL;
-char* admin_password_hash = NULL;
+
+char* admin_session = NULL;

src/server/response.c

@@ -199,5 +199,29 @@ void res_logout(mg_connection* conn)
               "{\"success\":\"logout success\"}");
 }
 
-void res_(mg_connection* conn);
-void res_(mg_connection* conn);
+void res_permission(mg_connection* conn, int permission)
+{
+    mg_printf(conn,
+              "HTTP/1.1 200 OK\r\n"
+              "Content-Type: application/json\r\n"
+              "Access-Control-Allow-Origin: *\r\n\r\n"
+              "{\"success\":\"query success\", \"permission\":\"%d\"}",
+              permission);
+}
+
+void res_repermission_fail(mg_connection* conn)
+{
+    mg_printf(conn,
+              "HTTP/1.1 500 Internal Server Error\r\n"
+              "Content-Type: application/json\r\n"
+              "Access-Control-Allow-Origin: *\r\n\r\n"
+              "{\"error\":\"failed to repermission\"}");
+}
+void res_repermission(mg_connection* conn)
+{
+    mg_printf(conn,
+              "HTTP/1.1 200 OK\r\n"
+              "Content-Type: application/json\r\n"
+              "Access-Control-Allow-Origin: *\r\n\r\n"
+              "{\"success\":\"repermission success\"}");
+}