diff options
Diffstat (limited to 'db')
| -rw-r--r-- | db/auth.go | 80 | ||||
| -rw-r--r-- | db/db.go | 46 |
2 files changed, 126 insertions, 0 deletions
diff --git a/db/auth.go b/db/auth.go new file mode 100644 index 0000000..e2bac38 --- /dev/null +++ b/db/auth.go @@ -0,0 +1,80 @@ +package db + +import ( + "crypto/subtle" + "database/sql" +) + +type AuthProvider interface { + SaltedHash(username string) [32]byte + Salt(username string) [16]byte + UserExists(username string) bool +} + +type DBAuthProvider struct { + db *sql.DB +} + +func NewDBAuthProvider(db *sql.DB) AuthProvider { + provider := new(DBAuthProvider) + provider.db = db + + return provider +} + +func (dbAuth DBAuthProvider) Close() { + dbAuth.db.Close() +} + +func (dbAuth DBAuthProvider) SaltedHash(username string) [32]byte { + row := dbAuth.db.QueryRow(` + SELECT saltedhash FROM users WHERE username = ? + `, username) + + buf := make([]byte, 32) + should_copy := 1 + + saltedHash := [32]byte{0} + + err := row.Scan(&buf) + if err != nil { + should_copy = 0 + } + + subtle.ConstantTimeCopy(should_copy, saltedHash[:], buf[:32]) + + return saltedHash +} + +func (dbAuth DBAuthProvider) Salt(username string) [16]byte { + row := dbAuth.db.QueryRow(` + SELECT salt FROM users WHERE username = ? + `, username) + + buf := make([]byte, 16) + should_copy := 1 + + salt := [16]byte{0} + + err := row.Scan(&buf) + if err != nil { + should_copy = 0 + } + + subtle.ConstantTimeCopy(should_copy, salt[:], buf[:16]) + + return salt +} + +func (dbAuth DBAuthProvider) UserExists(username string) bool { + row := dbAuth.db.QueryRow(` + SELECT 1 FROM users WHERE username = ? + `, username) + + err := row.Scan(new(int)) + if err != nil { + return false + } + + return true +} diff --git a/db/db.go b/db/db.go new file mode 100644 index 0000000..8213903 --- /dev/null +++ b/db/db.go @@ -0,0 +1,46 @@ +package db + +import ( + "database/sql" + "log/slog" + "os" + + _ "github.com/mattn/go-sqlite3" +) + +var Logger *slog.Logger + +// Create a new database connection +func New() *sql.DB { + conn, err := sql.Open("sqlite3", "./foo.db") + if err != nil { + Logger.Error("Failed to create database connection") + panic(err) + } + + if err = InitTables(conn); err != nil { + panic(err) + } + + return conn +} + +func InitTables(conn *sql.DB) error { + _, err := conn.Exec(` + CREATE TABLE IF NOT EXISTS users ( + id INTEGER PRIMARY KEY AUTOINCREMENT, + username TEXT UNIQUE NOT NULL, + salt BLOB NOT NULL, + saltedHash BLOB NOT NULL + ) + `) + + if err != nil { + return err + } + return nil +} + +func init() { + Logger = slog.New(slog.NewTextHandler(os.Stdout, nil)) +} |