Emyrk
diff --git a/‎app/controllers/app.go‎
Lines changed: 16 additions & 7 deletions b/‎app/controllers/app.go‎
Lines changed: 16 additions & 7 deletions
diff --git a/‎app/controllers/appAdmin.go‎
Lines changed: 6 additions & 6 deletions b/‎app/controllers/appAdmin.go‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎app/controllers/appAuthRequired.go‎
Lines changed: 111 additions & 23 deletions b/‎app/controllers/appAuthRequired.go‎
Lines changed: 111 additions & 23 deletions
diff --git a/‎app/controllers/appSysAdmin.go‎
Lines changed: 6 additions & 6 deletions b/‎app/controllers/appSysAdmin.go‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎app/controllers/launch.go‎
Lines changed: 7 additions & 3 deletions b/‎app/controllers/launch.go‎
Lines changed: 7 additions & 3 deletions
@@ -2,11 +2,11 @@ package controllers
 
 import (
 	"encoding/json"
+	"net/url"
 
 	"github.com/Emyrk/LendingBot/src/core"
 	"github.com/Emyrk/LendingBot/src/core/email"
 	"github.com/revel/revel"
-	"net/url"
 
 	// Init logger
 	_ "github.com/Emyrk/LendingBot/src/log"
@@ -121,9 +121,12 @@ func (c App) Login() revel.Result {
 
 	c.Session[SESSION_EMAIL] = email
 
-	SetCacheEmail(c.Session.ID(), email)
-
-	c.SetCookie(GetTimeoutCookie())
+	httpCookie, err := SetCacheEmail(c.Session.ID(), c.ClientIP, email)
+	if err != nil {
+		llog.Errorf("Error setting email cache: %s", err.Error())
+	} else {
+		c.SetCookie(httpCookie)
+	}
 
 	AppPageHitLogin.Inc()
 
@@ -164,12 +167,17 @@ func (c App) Register() revel.Result {
 
 	c.Session[SESSION_EMAIL] = e
 
-	SetCacheEmail(c.Session.ID(), e)
-
 	u, err := state.FetchUser(e)
 	if err != nil {
 		llog.Errorf("Error fetching new user: %s", err)
 	} else {
+		httpCookie, err := SetCacheEmail(c.Session.ID(), c.ClientIP, u.Username)
+		if err != nil {
+			llog.Errorf("Error setting email cache: %s", err.Error())
+		} else {
+			c.SetCookie(httpCookie)
+		}
+
 		link := MakeURL("verifyemail/" + url.QueryEscape(u.Username) + "/" + url.QueryEscape(u.VerifyString))
 
 		emailRequest := email.NewHTMLRequest(email.SMTP_EMAIL_NO_REPLY, []string{
@@ -297,7 +305,8 @@ func (c App) ValidAuth() revel.Result {
 
 //called before any auth required function
 func (c App) AppAuthUser() revel.Result {
-	if !ValidCacheEmail(c.Session.ID(), c.Session[SESSION_EMAIL]) {
+	email := c.Session[SESSION_EMAIL]
+	if email != "" && !ValidCacheEmail(c.Session.ID(), c.ClientIP, email) {
 		c.Session[SESSION_EMAIL] = ""
 	}
 
 
@@ -69,17 +69,19 @@ func (s AppAdmin) ConductAudit() revel.Result {
 func (s AppAdmin) AuthUserAdmin() revel.Result {
 	llog := appAdminLog.WithField("method", "AuthUserAdmin")
 
-	if !ValidCacheEmail(s.Session.ID(), s.Session[SESSION_EMAIL]) {
-		llog.Warningf("Warning invalid cache: [%s] sessionId:[%s]\n", s.Session[SESSION_EMAIL], s.Session.ID())
+	if !ValidCacheEmail(s.Session.ID(), s.ClientIP, s.Session[SESSION_EMAIL]) {
+		llog.Warningf("Warning invalid cache: email[%s] sessionId:[%s] url[%s]", s.Session[SESSION_EMAIL], s.Session.ID(), s.Request.URL)
 		s.Session[SESSION_EMAIL] = ""
 		return s.Redirect(App.Index)
 	}
 
-	err := SetCacheEmail(s.Session.ID(), s.Session[SESSION_EMAIL])
+	httpCookie, err := SetCacheEmail(s.Session.ID(), s.ClientIP, s.Session[SESSION_EMAIL])
 	if err != nil {
-		llog.Warningf("Warning failed to set cache: [%s] and error: %s\n", s.Session.ID(), err.Error())
+		llog.Warningf("Warning failed to set cache: email[%s] sessionId:[%s] url[%s] and error: %s", s.Session[SESSION_EMAIL], s.Session.ID(), s.Request.URL, err.Error())
 		s.Session[SESSION_EMAIL] = ""
 		return s.Redirect(App.Index)
+	} else {
+		s.SetCookie(httpCookie)
 	}
 
 	if !state.HasUserPrivilege(s.Session[SESSION_EMAIL], userdb.Admin) {
@@ -89,8 +91,6 @@ func (s AppAdmin) AuthUserAdmin() revel.Result {
 	//do not cache auth pages yet
 	s.Response.Out.Header().Set("Cache-Control", "no-cache, max-age=0, must-revalidate, no-store")
 
-	s.SetCookie(GetTimeoutCookie())
-
 	return nil
 }
 
 
@@ -5,6 +5,9 @@ import (
 	"fmt"
 	"io"
 	"net/url"
+	"strconv"
+	"strings"
+	"time"
 
 	"github.com/Emyrk/LendingBot/balancer"
 	"github.com/Emyrk/LendingBot/src/core/email"
@@ -16,6 +19,8 @@ import (
 var _ = userdb.SaltLength
 var SkipAuth = false
 
+var ignoredRoutes = map[string]bool{"/logout": true, "/dashboard/getactivitylog": true}
+
 var appAuthrequiredLog = log.WithFields(log.Fields{
 	"package": "controllers",
 	"file":    "appAuthrequiredLog",
@@ -88,7 +93,12 @@ func (r AppAuthRequired) Dashboard() revel.Result {
 }
 
 func (r AppAuthRequired) Logout() revel.Result {
-	DeleteCacheToken(r.Session.ID())
+	llog := appAuthrequiredLog.WithField("method", "Logout")
+	if err := DeleteCacheToken(r.Session.ID(), r.ClientIP, r.Session[SESSION_EMAIL]); err != nil {
+		llog.Error("Error logging user[%s] out: %s", r.Session[SESSION_EMAIL], err.Error())
+		r.Response.Status = 500
+	}
+	delete(r.Session, SESSION_EMAIL)
 	AppPageHitInfoLogout.Inc()
 	return r.Redirect(App.Index)
 }
@@ -103,6 +113,54 @@ func (r AppAuthRequired) InfoDashboard() revel.Result {
 	return r.RenderTemplate("AppAuthRequired/InfoDashboard.html")
 }
 
+func (r AppAuthRequired) ChangeExpiry() revel.Result {
+	llog := appAuthrequiredLog.WithField("method", "ChangeExpiry")
+
+	data := make(map[string]interface{})
+
+	sesExp, err := strconv.Atoi(r.Params.Form.Get("sesexp"))
+	if err != nil {
+		llog.Errorf("Error parsing int user[%s] expiration: %s", r.Session[SESSION_EMAIL], r.Params.Form.Get("sesexp"))
+		data[JSON_ERROR] = "Internal error. Please contact: [email protected]"
+		r.Response.Status = 500
+		return r.RenderJSON(data)
+	}
+
+	err = state.SetUserExpiry(r.Session[SESSION_EMAIL], time.Duration(sesExp)*time.Millisecond)
+	if err != nil {
+		llog.Errorf("Error setting user[%s] exp: %s", r.Session[SESSION_EMAIL], err.Error())
+		data[JSON_ERROR] = "Internal error. Please contact: [email protected]"
+		r.Response.Status = 500
+		return r.RenderJSON(data)
+	}
+
+	err = SetCacheDurEnd(r.Session[SESSION_EMAIL], time.Duration(sesExp)*time.Millisecond)
+	if err != nil {
+		llog.Errorf("Error setting user[%s] cache session exp: %s", r.Session[SESSION_EMAIL], err.Error())
+		data[JSON_ERROR] = "Internal error. Please contact: [email protected]"
+		r.Response.Status = 500
+		return r.RenderJSON(data)
+	}
+	r.SetCookie(GetTimeoutCookie(time.Duration(sesExp) * time.Millisecond))
+	return r.RenderJSON(data)
+}
+
+func (r AppAuthRequired) GetExpiry() revel.Result {
+	llog := appAuthrequiredLog.WithField("method", "GetExpiry")
+
+	data := make(map[string]interface{})
+
+	dur, err := GetCacheDur(r.Session[SESSION_EMAIL])
+	if err != nil {
+		llog.Errorf("Error getting user[%s] exp: %s", r.Session[SESSION_EMAIL], err.Error())
+		data[JSON_ERROR] = "Internal error. Please contact: [email protected]"
+		r.Response.Status = 500
+		return r.RenderJSON(data)
+	}
+	data["sesexp"] = *dur / time.Millisecond
+	return r.RenderJSON(data)
+}
+
 func (r AppAuthRequired) Enable2FA() revel.Result {
 	llog := appAuthrequiredLog.WithField("method", "Enable2FA")
 
@@ -179,23 +237,23 @@ func (r AppAuthRequired) SettingsDashboardUser() revel.Result {
 	r.ViewArgs["verified"] = fmt.Sprintf("%t", u.Verified)
 	r.ViewArgs["has2FA"] = fmt.Sprintf("%t", u.Has2FA)
 	r.ViewArgs["enabled2FA"] = fmt.Sprintf("%t", u.Enabled2FA)
+	r.ViewArgs["minSessionTime"] = fmt.Sprintf("%d", CACHE_TIME_USER_SESSION_MIN/time.Minute)
+	r.ViewArgs["maxSessionTime"] = fmt.Sprintf("%d", CACHE_TIME_USER_SESSION_MAX/time.Hour*60)
+	r.ViewArgs["currentSessionTime"] = fmt.Sprintf("%d", u.SessionExpiryTime/time.Minute)
 
-	if u.PoloniexKeys.APIKeyEmpty() {
-		r.ViewArgs["poloniexKey"] = ""
-	} else {
-		s, err := u.PoloniexKeys.DecryptAPIKeyString(u.GetCipherKey(state.CipherKey))
-		if err != nil {
-			llog.Errorf("Error decrypting Api Keys String: %s\n", err.Error())
-			s = ""
-		}
-		r.ViewArgs["poloniexKey"] = s
+	uss, err := GetUserActiveSessions(r.Session[SESSION_EMAIL], r.Session.ID())
+	if err != nil {
+		llog.Error("Error getting user active sessions: %s", err.Error())
 	}
-
-	if u.PoloniexKeys.SecretKeyEmpty() {
-		r.ViewArgs["poloniexSecret"] = ""
-	} else {
-		r.ViewArgs["poloniexSecret"] = ""
+	b, err := json.Marshal(uss)
+	if err != nil {
+		llog.Errorf("Error marshalling user sessions: %s", err.Error())
+		b = []byte("[]")
 	}
+	if len(uss) == 0 {
+		b = []byte("[]")
+	}
+	r.ViewArgs["sessions"] = string(b)
 
 	AppPageHitSetSettingDashUser.Inc()
 	return r.RenderTemplate("AppAuthRequired/SettingsDashboardUser.html")
@@ -395,8 +453,31 @@ func (r AppAuthRequired) GetActivityLogs() revel.Result {
 	return r.RenderJSON(data)
 }
 
+func (r AppAuthRequired) DeleteSession() revel.Result {
+	llog := appAuthrequiredLog.WithField("method", "DeleteSession")
+
+	data := make(map[string]interface{})
+	//delete session
+	if err := DeleteCacheToken(r.Params.Form.Get("sesid"), r.ClientIP, r.Session[SESSION_EMAIL]); err != nil {
+		llog.Error("Error deleting user session: %s", err.Error())
+		data[JSON_ERROR] = "Server error, failed to delete session. Contact support: [email protected]."
+		r.Response.Status = 500
+		return r.RenderJSON(data)
+	}
+	//get active sessions
+	uss, err := GetUserActiveSessions(r.Session[SESSION_EMAIL], r.Session.ID())
+	if err != nil {
+		llog.Error("Error getting user active sessions after delete: %s", err.Error())
+		data[JSON_ERROR] = "Server error, failed to delete session. Contact support: [email protected]."
+		r.Response.Status = 500
+		return r.RenderJSON(data)
+	}
+	data["ses"] = uss
+	return r.RenderJSON(data)
+}
+
 func (r AppAuthRequired) UserDashboard() revel.Result {
-	if revel.DevMode {
+	if revel.DevMode || strings.Contains(revel.RunMode, "dev") {
 		return r.RenderError(&revel.Error{
 			Title:       "404 Error.",
 			Description: "Looks like you are lost.",
@@ -409,25 +490,32 @@ func (r AppAuthRequired) UserDashboard() revel.Result {
 func (r AppAuthRequired) AuthUser() revel.Result {
 	llog := appAuthrequiredLog.WithField("method", "AuthUser")
 
-	if !ValidCacheEmail(r.Session.ID(), r.Session[SESSION_EMAIL]) {
-		llog.Warningf("Warning invalid cache: [%s] sessionId:[%s]\n", r.Session[SESSION_EMAIL], r.Session.ID())
+	if !ValidCacheEmail(r.Session.ID(), r.ClientIP, r.Session[SESSION_EMAIL]) {
+		llog.Warningf("Warning invalid cache: email[%s] sessionId:[%s] url[%s]", r.Session[SESSION_EMAIL], r.Session.ID(), r.Request.URL)
 		r.Session[SESSION_EMAIL] = ""
 		r.Response.Status = 403
 		return r.RenderTemplate("errors/403.html")
 	}
 
-	err := SetCacheEmail(r.Session.ID(), r.Session[SESSION_EMAIL])
+	//must add rep
+	if ignoredRoutes[r.Request.RequestURI] == true {
+		return nil
+	}
+
+	AppPageAuthUser.Inc()
+
+	httpCookie, err := SetCacheEmail(r.Session.ID(), r.ClientIP, r.Session[SESSION_EMAIL])
 	if err != nil {
-		llog.Warningf("Warning failed to set cache: [%s] and error: %s\n", r.Session.ID(), err.Error())
+		llog.Warningf("Warning failed to set cache: email[%s] sessionId:[%s] url[%s] and error: %s", r.Session[SESSION_EMAIL], r.Session.ID(), r.Request.URL, err.Error())
 		r.Session[SESSION_EMAIL] = ""
 		r.Response.Status = 403
 		return r.RenderTemplate("errors/403.html")
+	} else {
+		r.SetCookie(httpCookie)
 	}
+
 	//do not cache auth pages
 	// r.Response.Out.Header().Set("Cache-Control", "no-cache, max-age=0, must-revalidate, no-store")
 
-	r.SetCookie(GetTimeoutCookie())
-
-	AppPageAuthUser.Inc()
 	return nil
 }
@@ -185,19 +185,21 @@ func (s AppSysAdmin) DeleteLogs() revel.Result {
 func (s AppSysAdmin) AuthUserSysAdmin() revel.Result {
 	llog := appSysAdminLog.WithField("method", "AuthUserSysAdmin")
 
-	if !ValidCacheEmail(s.Session.ID(), s.Session[SESSION_EMAIL]) {
-		llog.Warningf("Warning has invalid cache: [%s] sessionId:[%s]\n", s.Session[SESSION_EMAIL], s.Session.ID())
+	if !ValidCacheEmail(s.Session.ID(), s.ClientIP, s.Session[SESSION_EMAIL]) {
+		llog.Warningf("Warning invalid cache: email[%s] sessionId:[%s] url[%s]", s.Session[SESSION_EMAIL], s.Session.ID(), s.Request.URL)
 		s.Session[SESSION_EMAIL] = ""
 		s.Response.Status = 403
 		return s.RenderTemplate("errors/403.html")
 	}
 
-	err := SetCacheEmail(s.Session.ID(), s.Session[SESSION_EMAIL])
+	httpCookie, err := SetCacheEmail(s.Session.ID(), s.ClientIP, s.Session[SESSION_EMAIL])
 	if err != nil {
-		llog.Warningf("Warning failed to set cache: [%s] and error: %s\n", s.Session.ID(), err.Error())
+		llog.Warningf("Warning failed to set cache: email[%s] sessionId:[%s] url[%s] and error: %s", s.Session[SESSION_EMAIL], s.Session.ID(), s.Request.URL, err.Error())
 		s.Session[SESSION_EMAIL] = ""
 		s.Response.Status = 403
 		return s.RenderTemplate("errors/403.html")
+	} else {
+		s.SetCookie(httpCookie)
 	}
 
 	if !state.HasUserPrivilege(s.Session[SESSION_EMAIL], userdb.SysAdmin) {
@@ -208,7 +210,5 @@ func (s AppSysAdmin) AuthUserSysAdmin() revel.Result {
 	//do not cache auth pages yet
 	// s.Response.Out.Header().Set("Cache-Control", "no-cache, max-age=0, must-revalidate, no-store")
 
-	s.SetCookie(GetTimeoutCookie())
-
 	return nil
 }
@@ -74,10 +74,14 @@ func Launch() {
 		//devEmpty mode
 		//should be all in memory with empty data
 
-		state = core.NewStateWithMap()
-		state.NewUser("[email protected]", "admin")
+		state = core.NewStateWithMongoEmpty()
+		ape := state.NewUser("[email protected]", "admin")
+		if ape != nil {
+			fmt.Println(ape)
+		}
 		state.UpdateUserPrivilege("[email protected]", "SysAdmin")
-
+		Balancer = balancer.NewBalancer(state.CipherKey, revel.Config.StringDefault("database.uri", "mongodb://localhost:27017"), "", "")
+		// return
 		//to be used for unit testing/regression testing
 	case DEV_MONGO:
 		//mongo