gophish/controllers/route.go

package controllers

import (
	"fmt"
	"html/template"
	"net/http"

	ctx "github.com/gorilla/context"
	"github.com/gorilla/mux"
	"github.com/gorilla/sessions"
	"github.com/jordan-wright/gophish/auth"
	mid "github.com/jordan-wright/gophish/middleware"
	"github.com/jordan-wright/gophish/models"
	"github.com/justinas/nosurf"
)

var templateDelims = []string{"{{%", "%}}"}

func CreateRouter() *nosurf.CSRFHandler {
	router := mux.NewRouter()
	// Base Front-end routes
	router.HandleFunc("/login", Login)
	router.HandleFunc("/logout", Use(Logout, mid.RequireLogin))
	router.HandleFunc("/register", Register)
	router.HandleFunc("/", Use(Base, mid.RequireLogin))
	router.HandleFunc("/settings", Use(Settings, mid.RequireLogin))

	// Create the API routes
	api := router.PathPrefix("/api").Subrouter()
	api = api.StrictSlash(true)
	api.HandleFunc("/", Use(API, mid.RequireLogin))
	api.HandleFunc("/reset", Use(API_Reset, mid.RequireLogin))
	api.HandleFunc("/campaigns/", Use(API_Campaigns, mid.RequireAPIKey))
	api.HandleFunc("/campaigns/{id:[0-9]+}", Use(API_Campaigns_Id, mid.RequireAPIKey))
	api.HandleFunc("/groups/", Use(API_Groups, mid.RequireAPIKey))
	api.HandleFunc("/groups/{id:[0-9]+}", Use(API_Groups_Id, mid.RequireAPIKey))
	api.HandleFunc("/templates/", Use(API_Templates, mid.RequireAPIKey))
	api.HandleFunc("/templates/{id:[0-9]+}", Use(API_Templates_Id, mid.RequireAPIKey))

	// Setup static file serving
	router.PathPrefix("/").Handler(http.FileServer(http.Dir("./static/")))

	// Setup CSRF Protection
	csrfHandler := nosurf.New(router)
	// Exempt API routes and Static files
	csrfHandler.ExemptGlob("/api/campaigns/*")
	csrfHandler.ExemptGlob("/api/groups/*")
	csrfHandler.ExemptGlob("/api/templates/*")
	csrfHandler.ExemptGlob("/static/*")
	return csrfHandler
}

// Use allows us to stack middleware to process the request
// Example taken from https://github.com/gorilla/mux/pull/36#issuecomment-25849172
func Use(handler http.HandlerFunc, mid ...func(http.Handler) http.HandlerFunc) http.HandlerFunc {
	for _, m := range mid {
		handler = m(handler)
	}
	return handler
}

func Register(w http.ResponseWriter, r *http.Request) {
	// If it is a post request, attempt to register the account
	// Now that we are all registered, we can log the user in
	params := struct {
		Title   string
		Flashes []interface{}
		User    models.User
		Token   string
	}{Title: "Register", Token: nosurf.Token(r)}
	session := ctx.Get(r, "session").(*sessions.Session)
	switch {
	case r.Method == "GET":
		params.Flashes = session.Flashes()
		session.Save(r, w)
		getTemplate(w, "register").ExecuteTemplate(w, "base", params)
	case r.Method == "POST":
		//Attempt to register
		succ, err := auth.Register(r)
		//If we've registered, redirect to the login page
		if succ {
			session.AddFlash(models.Flash{
				Type:    "success",
				Message: "Registration successful!.",
			})
			session.Save(r, w)
			http.Redirect(w, r, "/login", 302)
		} else {
			// Check the error
			m := ""
			if err == models.ErrUsernameTaken {
				m = "Username already taken"
			} else {
				m = "Unknown error - please try again"
				fmt.Println(err)
			}
			session.AddFlash(models.Flash{
				Type:    "danger",
				Message: m,
			})
			session.Save(r, w)
			http.Redirect(w, r, "/register", 302)
		}

	}
}

func Logout(w http.ResponseWriter, r *http.Request) {
	// If it is a post request, attempt to register the account
	// Now that we are all registered, we can log the user in
	session := ctx.Get(r, "session").(*sessions.Session)
	delete(session.Values, "id")
	Flash(w, r, "success", "You have successfully logged out")
	http.Redirect(w, r, "login", 302)
}

func Base(w http.ResponseWriter, r *http.Request) {
	// Example of using session - will be removed.
	params := struct {
		User    models.User
		Title   string
		Flashes []interface{}
		Token   string
	}{Title: "Dashboard", User: ctx.Get(r, "user").(models.User), Token: nosurf.Token(r)}
	getTemplate(w, "dashboard").ExecuteTemplate(w, "base", params)
}

func Settings(w http.ResponseWriter, r *http.Request) {
	switch {
	case r.Method == "POST":
		err := auth.ChangePassword(r)
		msg := models.Response{Success: true, Message: "Settings Updated Successfully"}
		if err == auth.ErrInvalidPassword {
			msg.Message = "Invalid Password"
			msg.Success = false
		} else if err != nil {
			msg.Message = "Unknown Error Occured"
			msg.Success = false
		}
		writeJSON(w, msg)
	}
}

func Login(w http.ResponseWriter, r *http.Request) {
	params := struct {
		User    models.User
		Title   string
		Flashes []interface{}
		Token   string
	}{Title: "Login", Token: nosurf.Token(r)}
	session := ctx.Get(r, "session").(*sessions.Session)
	switch {
	case r.Method == "GET":
		params.Flashes = session.Flashes()
		session.Save(r, w)
		templates := template.New("template")
		templates.Delims(templateDelims[0], templateDelims[1])
		_, err := templates.ParseFiles("templates/login.html", "templates/flashes.html")
		if err != nil {
			fmt.Println(err)
		}
		template.Must(templates, err).ExecuteTemplate(w, "base", params)
	case r.Method == "POST":
		//Attempt to login
		succ, err := auth.Login(r)
		if err != nil {
			fmt.Println(err)
		}
		//If we've logged in, save the session and redirect to the dashboard
		if succ {
			session.Save(r, w)
			http.Redirect(w, r, "/", 302)
		} else {
			Flash(w, r, "danger", "Invalid Username/Password")
			http.Redirect(w, r, "/login", 302)
		}
	}
}

func getTemplate(w http.ResponseWriter, tmpl string) *template.Template {
	templates := template.New("template")
	templates.Delims(templateDelims[0], templateDelims[1])
	_, err := templates.ParseFiles("templates/base.html", "templates/"+tmpl+".html", "templates/flashes.html")
	if err != nil {
		fmt.Println(err)
	}
	return template.Must(templates, err)
}

func checkError(e error, w http.ResponseWriter, m string, c int) bool {
	if e != nil {
		fmt.Println(e)
		http.Error(w, "Error: "+m, c)
		return true
	}
	return false
}

func Flash(w http.ResponseWriter, r *http.Request, t string, m string) {
	session := ctx.Get(r, "session").(*sessions.Session)
	session.AddFlash(models.Flash{
		Type:    t,
		Message: m,
	})
	session.Save(r, w)
}
Major refactoring - created auth, config, models, controllers, and middleware packages. Should help provide modularity and a clean architecture. Added doc.go for each package 2014-01-09 06:42:05 +00:00			`package controllers`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00
			`import (`
Implemented auth.GetUser(id) Impemented RequireLogin() middleware Login is now working, just need to clean up the architecture a bit 2014-01-10 04:21:12 +00:00			`"fmt"`
Working on setting up Login functionality Introduced working with SQLite DB - working on setting up database on first run Added "dbpath" to config 2014-01-06 06:09:41 +00:00			`"html/template"`
			`"net/http"`

Implemented Flashes (Model and functionality) Working on login functionality Changed the way templates are loaded and rendered 2014-01-10 03:21:54 +00:00			`ctx "github.com/gorilla/context"`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`"github.com/gorilla/mux"`
Implemented Flashes (Model and functionality) Working on login functionality Changed the way templates are loaded and rendered 2014-01-10 03:21:54 +00:00			`"github.com/gorilla/sessions"`
Major refactoring - created auth, config, models, controllers, and middleware packages. Should help provide modularity and a clean architecture. Added doc.go for each package 2014-01-09 06:42:05 +00:00			`"github.com/jordan-wright/gophish/auth"`
Moved Use() to controllers from middleware for cleaner usage (I'll consider moving it back if it doesn't logically make sense) Renamed Base_Campaigns to Campaigns 2014-01-11 04:11:44 +00:00			`mid "github.com/jordan-wright/gophish/middleware"`
Implemented Flashes (Model and functionality) Working on login functionality Changed the way templates are loaded and rendered 2014-01-10 03:21:54 +00:00			`"github.com/jordan-wright/gophish/models"`
Updated README Added CSRF Protection to login, /api/reset functions Added auto highlighting of API key when clicked 2014-02-03 23:21:56 +00:00			`"github.com/justinas/nosurf"`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`)`

Changing int to int64 Starting to implement angularjs Implemented /api/campaigns/:id GET Changed template delims to {{% and %}} 2014-02-01 02:49:22 +00:00			`var templateDelims = []string{"{{%", "%}}"}`

Updated README Added CSRF Protection to login, /api/reset functions Added auto highlighting of API key when clicked 2014-02-03 23:21:56 +00:00			`func CreateRouter() *nosurf.CSRFHandler {`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`router := mux.NewRouter()`
			`// Base Front-end routes`
			`router.HandleFunc("/login", Login)`
Implemented Logout function 2014-02-02 22:55:26 +00:00			`router.HandleFunc("/logout", Use(Logout, mid.RequireLogin))`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`router.HandleFunc("/register", Register)`
Cleaned API even more (everything is via HandlerFunc) Sessions are now encrypted as well as signed. 2014-01-11 04:37:42 +00:00			`router.HandleFunc("/", Use(Base, mid.RequireLogin))`
			`router.HandleFunc("/settings", Use(Settings, mid.RequireLogin))`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00
			`// Create the API routes`
			`api := router.PathPrefix("/api").Subrouter()`
Set StrictSlash on API router to automatically redirect to correct url if slash is not provided 2014-03-18 18:58:08 +00:00			`api = api.StrictSlash(true)`
Cleaning up router /campaigns - depreciated /api/doc - now /api/ 2014-02-01 03:49:35 +00:00			`api.HandleFunc("/", Use(API, mid.RequireLogin))`
Added ability to reset API token Cleaned up session flash handling 2014-02-02 20:47:06 +00:00			`api.HandleFunc("/reset", Use(API_Reset, mid.RequireLogin))`
Added ng-table support (for future pagination, sorting, etc.) Created services for campaigns/groups Changed modals to be binded to the data. Will improve on this soon! Added trailing slash to api endpoints (I hope to be able to remove this later) 2014-02-08 01:40:16 +00:00			`api.HandleFunc("/campaigns/", Use(API_Campaigns, mid.RequireAPIKey))`
Cleaning up some broken links Changed default admin password to 'gophish' Fixed bug in POST /api/campaigns Starting to implements groups and users functionality 2014-02-02 22:37:36 +00:00			`api.HandleFunc("/campaigns/{id:[0-9]+}", Use(API_Campaigns_Id, mid.RequireAPIKey))`
Added ng-table support (for future pagination, sorting, etc.) Created services for campaigns/groups Changed modals to be binded to the data. Will improve on this soon! Added trailing slash to api endpoints (I hope to be able to remove this later) 2014-02-08 01:40:16 +00:00			`api.HandleFunc("/groups/", Use(API_Groups, mid.RequireAPIKey))`
Cleaning up some broken links Changed default admin password to 'gophish' Fixed bug in POST /api/campaigns Starting to implements groups and users functionality 2014-02-02 22:37:36 +00:00			`api.HandleFunc("/groups/{id:[0-9]+}", Use(API_Groups_Id, mid.RequireAPIKey))`
Implementing Template API calls (todo: PUT, DELETE) Cleaning up documentation for templates Bugfix for DB Tables 2014-03-17 03:18:48 +00:00			`api.HandleFunc("/templates/", Use(API_Templates, mid.RequireAPIKey))`
Working on implementing templates 2014-03-17 03:02:06 +00:00			`api.HandleFunc("/templates/{id:[0-9]+}", Use(API_Templates_Id, mid.RequireAPIKey))`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00
Cleaned up csrf exemptions Cleaned up models Added UNIQUE constraint on many-many tables Added form parsing/ userid from API key lookup in middleware 2014-02-04 21:23:09 +00:00			`// Setup static file serving`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`router.PathPrefix("/").Handler(http.FileServer(http.Dir("./static/")))`
Updated README Added CSRF Protection to login, /api/reset functions Added auto highlighting of API key when clicked 2014-02-03 23:21:56 +00:00
Cleaned up csrf exemptions Cleaned up models Added UNIQUE constraint on many-many tables Added form parsing/ userid from API key lookup in middleware 2014-02-04 21:23:09 +00:00			`// Setup CSRF Protection`
Updated README Added CSRF Protection to login, /api/reset functions Added auto highlighting of API key when clicked 2014-02-03 23:21:56 +00:00			`csrfHandler := nosurf.New(router)`
Cleaned up csrf exemptions Cleaned up models Added UNIQUE constraint on many-many tables Added form parsing/ userid from API key lookup in middleware 2014-02-04 21:23:09 +00:00			`// Exempt API routes and Static files`
Updated angular ui to support adding group Updated POST /api/groups/ to successfully add group Fixed CSRF in API issue Moved PUT and DELETE to /api/groups/:id (TODO: Implement) Changed SQL to use user_id instead of API key It is now possible to add a new group! Will propagate logic to campaigns soon. 2014-02-10 01:34:47 +00:00			`csrfHandler.ExemptGlob("/api/campaigns/*")`
			`csrfHandler.ExemptGlob("/api/groups/*")`
Working on implementing templates 2014-03-17 03:02:06 +00:00			`csrfHandler.ExemptGlob("/api/templates/*")`
Updated README Added CSRF Protection to login, /api/reset functions Added auto highlighting of API key when clicked 2014-02-03 23:21:56 +00:00			`csrfHandler.ExemptGlob("/static/*")`
			`return csrfHandler`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`}`

Moved Use() to controllers from middleware for cleaner usage (I'll consider moving it back if it doesn't logically make sense) Renamed Base_Campaigns to Campaigns 2014-01-11 04:11:44 +00:00			`// Use allows us to stack middleware to process the request`
			`// Example taken from https://github.com/gorilla/mux/pull/36#issuecomment-25849172`
Cleaned API even more (everything is via HandlerFunc) Sessions are now encrypted as well as signed. 2014-01-11 04:37:42 +00:00			`func Use(handler http.HandlerFunc, mid ...func(http.Handler) http.HandlerFunc) http.HandlerFunc {`
Moved Use() to controllers from middleware for cleaner usage (I'll consider moving it back if it doesn't logically make sense) Renamed Base_Campaigns to Campaigns 2014-01-11 04:11:44 +00:00			`for _, m := range mid {`
			`handler = m(handler)`
			`}`
			`return handler`
			`}`

Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`func Register(w http.ResponseWriter, r *http.Request) {`
			`// If it is a post request, attempt to register the account`
			`// Now that we are all registered, we can log the user in`
Implemented Registration Created auth.GenerateSecureKey to handle generating API Keys 2014-02-05 00:39:01 +00:00			`params := struct {`
			`Title string`
			`Flashes []interface{}`
			`User models.User`
			`Token string`
			`}{Title: "Register", Token: nosurf.Token(r)}`
			`session := ctx.Get(r, "session").(*sessions.Session)`
			`switch {`
			`case r.Method == "GET":`
			`params.Flashes = session.Flashes()`
			`session.Save(r, w)`
			`getTemplate(w, "register").ExecuteTemplate(w, "base", params)`
			`case r.Method == "POST":`
			`//Attempt to register`
			`succ, err := auth.Register(r)`
			`//If we've registered, redirect to the login page`
			`if succ {`
			`session.AddFlash(models.Flash{`
			`Type: "success",`
			`Message: "Registration successful!.",`
			`})`
			`session.Save(r, w)`
			`http.Redirect(w, r, "/login", 302)`
			`} else {`
			`// Check the error`
			`m := ""`
Major refactoring - modularized models into separate files. Removed db package (moved to models) I will be looking to migrate to gorm (instead of gorp) soon! 2014-03-25 03:31:33 +00:00			`if err == models.ErrUsernameTaken {`
Implemented Registration Created auth.GenerateSecureKey to handle generating API Keys 2014-02-05 00:39:01 +00:00			`m = "Username already taken"`
			`} else {`
			`m = "Unknown error - please try again"`
			`fmt.Println(err)`
			`}`
			`session.AddFlash(models.Flash{`
			`Type: "danger",`
			`Message: m,`
			`})`
			`session.Save(r, w)`
			`http.Redirect(w, r, "/register", 302)`
			`}`

			`}`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`}`

Implemented Logout function 2014-02-02 22:55:26 +00:00			`func Logout(w http.ResponseWriter, r *http.Request) {`
			`// If it is a post request, attempt to register the account`
			`// Now that we are all registered, we can log the user in`
			`session := ctx.Get(r, "session").(*sessions.Session)`
			`delete(session.Values, "id")`
Added easier support for Flashes Moving DB access (as much as possible) into `db` package. 2014-02-05 16:57:53 +00:00			`Flash(w, r, "success", "You have successfully logged out")`
Implemented Logout function 2014-02-02 22:55:26 +00:00			`http.Redirect(w, r, "login", 302)`
			`}`

Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`func Base(w http.ResponseWriter, r *http.Request) {`
Working on setting up Login functionality Introduced working with SQLite DB - working on setting up database on first run Added "dbpath" to config 2014-01-06 06:09:41 +00:00			`// Example of using session - will be removed.`
Implemented auth.GetUser(id) Impemented RequireLogin() middleware Login is now working, just need to clean up the architecture a bit 2014-01-10 04:21:12 +00:00			`params := struct {`
			`User models.User`
			`Title string`
			`Flashes []interface{}`
Major design change - more dashboard-ish. Working on more angularjs + gophish abstraction. Gophish for backend, AngularJS for the frontend Moved templates to partials for angular Using FlatUI color scheme 2014-05-27 01:29:12 +00:00			`Token string`
			`}{Title: "Dashboard", User: ctx.Get(r, "user").(models.User), Token: nosurf.Token(r)}`
Adding some models - Incorporated use of `gorp` package to allow ORM'ish functionality 2014-01-30 21:08:14 +00:00			`getTemplate(w, "dashboard").ExecuteTemplate(w, "base", params)`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`}`

Working on SendMail (currently NOT functional) Added user model for kicks - we'll see if it finds a reason to stay Setup /users and /settings routes 2013-12-12 07:00:22 +00:00			`func Settings(w http.ResponseWriter, r *http.Request) {`
Implemented ChangePassword() (now password can be changed from /settings) A couple of UI fixes in tables 2014-02-10 19:02:44 +00:00			`switch {`
			`case r.Method == "POST":`
			`err := auth.ChangePassword(r)`
Moving JSON Responses to a standard Response object Added cursor:pointer styling to dropdown menus 2014-06-02 03:30:23 +00:00			`msg := models.Response{Success: true, Message: "Settings Updated Successfully"}`
Implemented ChangePassword() (now password can be changed from /settings) A couple of UI fixes in tables 2014-02-10 19:02:44 +00:00			`if err == auth.ErrInvalidPassword {`
Added async settings update Removed /settings GET endpoint (not needed, since AngularJS in use) TODO: Move the anon struct in use to a model as appropriate 2014-05-29 04:29:41 +00:00			`msg.Message = "Invalid Password"`
			`msg.Success = false`
Implemented ChangePassword() (now password can be changed from /settings) A couple of UI fixes in tables 2014-02-10 19:02:44 +00:00			`} else if err != nil {`
Added async settings update Removed /settings GET endpoint (not needed, since AngularJS in use) TODO: Move the anon struct in use to a model as appropriate 2014-05-29 04:29:41 +00:00			`msg.Message = "Unknown Error Occured"`
			`msg.Success = false`
			`}`
Moving JSON Responses to a standard Response object Added cursor:pointer styling to dropdown menus 2014-06-02 03:30:23 +00:00			`writeJSON(w, msg)`
Implemented ChangePassword() (now password can be changed from /settings) A couple of UI fixes in tables 2014-02-10 19:02:44 +00:00			`}`
Working on SendMail (currently NOT functional) Added user model for kicks - we'll see if it finds a reason to stay Setup /users and /settings routes 2013-12-12 07:00:22 +00:00			`}`

Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`func Login(w http.ResponseWriter, r *http.Request) {`
Implemented Flashes (Model and functionality) Working on login functionality Changed the way templates are loaded and rendered 2014-01-10 03:21:54 +00:00			`params := struct {`
			`User models.User`
			`Title string`
			`Flashes []interface{}`
Updated README Added CSRF Protection to login, /api/reset functions Added auto highlighting of API key when clicked 2014-02-03 23:21:56 +00:00			`Token string`
			`}{Title: "Login", Token: nosurf.Token(r)}`
Implemented Flashes (Model and functionality) Working on login functionality Changed the way templates are loaded and rendered 2014-01-10 03:21:54 +00:00			`session := ctx.Get(r, "session").(*sessions.Session)`
Working on setting up Login functionality Introduced working with SQLite DB - working on setting up database on first run Added "dbpath" to config 2014-01-06 06:09:41 +00:00			`switch {`
			`case r.Method == "GET":`
Added ability to reset API token Cleaned up session flash handling 2014-02-02 20:47:06 +00:00			`params.Flashes = session.Flashes()`
			`session.Save(r, w)`
Major design change - more dashboard-ish. Working on more angularjs + gophish abstraction. Gophish for backend, AngularJS for the frontend Moved templates to partials for angular Using FlatUI color scheme 2014-05-27 01:29:12 +00:00			`templates := template.New("template")`
			`templates.Delims(templateDelims[0], templateDelims[1])`
			`_, err := templates.ParseFiles("templates/login.html", "templates/flashes.html")`
			`if err != nil {`
			`fmt.Println(err)`
			`}`
			`template.Must(templates, err).ExecuteTemplate(w, "base", params)`
Working on setting up Login functionality Introduced working with SQLite DB - working on setting up database on first run Added "dbpath" to config 2014-01-06 06:09:41 +00:00			`case r.Method == "POST":`
			`//Attempt to login`
Renamed CheckLogin to Login Changed encryption cookie to be 32 bytes (64 bytes not supported) 2014-01-11 06:10:52 +00:00			`succ, err := auth.Login(r)`
Cleaned up some errors Implemented using db.* helpers (ie GetUser) Implemented ChangePassword (not reachable from UI currently) Fixed angular issue in settings.html template 2014-02-06 16:49:53 +00:00			`if err != nil {`
			`fmt.Println(err)`
Implemented POST /api/campaigns Renamed "apikey" table to "api_key" for consistency Bug fix in checkError() 2014-01-31 22:25:02 +00:00			`}`
Working on authentication 2014-01-07 06:58:48 +00:00			`//If we've logged in, save the session and redirect to the dashboard`
			`if succ {`
Working on setting up Login functionality Introduced working with SQLite DB - working on setting up database on first run Added "dbpath" to config 2014-01-06 06:09:41 +00:00			`session.Save(r, w)`
			`http.Redirect(w, r, "/", 302)`
Working on authentication 2014-01-07 06:58:48 +00:00			`} else {`
Added easier support for Flashes Moving DB access (as much as possible) into `db` package. 2014-02-05 16:57:53 +00:00			`Flash(w, r, "danger", "Invalid Username/Password")`
Added ability to reset API token Cleaned up session flash handling 2014-02-02 20:47:06 +00:00			`http.Redirect(w, r, "/login", 302)`
Working on setting up Login functionality Introduced working with SQLite DB - working on setting up database on first run Added "dbpath" to config 2014-01-06 06:09:41 +00:00			`}`
			`}`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`}`

Implemented Flashes (Model and functionality) Working on login functionality Changed the way templates are loaded and rendered 2014-01-10 03:21:54 +00:00			`func getTemplate(w http.ResponseWriter, tmpl string) *template.Template {`
Changing int to int64 Starting to implement angularjs Implemented /api/campaigns/:id GET Changed template delims to {{% and %}} 2014-02-01 02:49:22 +00:00			`templates := template.New("template")`
			`templates.Delims(templateDelims[0], templateDelims[1])`
Major design change - more dashboard-ish. Working on more angularjs + gophish abstraction. Gophish for backend, AngularJS for the frontend Moved templates to partials for angular Using FlatUI color scheme 2014-05-27 01:29:12 +00:00			`_, err := templates.ParseFiles("templates/base.html", "templates/"+tmpl+".html", "templates/flashes.html")`
Changing int to int64 Starting to implement angularjs Implemented /api/campaigns/:id GET Changed template delims to {{% and %}} 2014-02-01 02:49:22 +00:00			`if err != nil {`
			`fmt.Println(err)`
			`}`
			`return template.Must(templates, err)`
Initial commit - getting the ball rolling! 2013-12-03 04:56:55 +00:00			`}`
- Working on implementing the API (started working on /api/campaigns) - Implemented APIKey middleware - Changed settings template to look a bit nicer and to, you know, work. 2014-01-31 04:46:25 +00:00
Fixed the way Angular POSTS data Added error code to checkError to support responses such as BadRequest, NotFound, etc. 2014-02-12 16:43:54 +00:00			`func checkError(e error, w http.ResponseWriter, m string, c int) bool {`
- Working on implementing the API (started working on /api/campaigns) - Implemented APIKey middleware - Changed settings template to look a bit nicer and to, you know, work. 2014-01-31 04:46:25 +00:00			`if e != nil {`
			`fmt.Println(e)`
Fixed the way Angular POSTS data Added error code to checkError to support responses such as BadRequest, NotFound, etc. 2014-02-12 16:43:54 +00:00			`http.Error(w, "Error: "+m, c)`
Implemented POST /api/campaigns Renamed "apikey" table to "api_key" for consistency Bug fix in checkError() 2014-01-31 22:25:02 +00:00			`return true`
- Working on implementing the API (started working on /api/campaigns) - Implemented APIKey middleware - Changed settings template to look a bit nicer and to, you know, work. 2014-01-31 04:46:25 +00:00			`}`
Implemented POST /api/campaigns Renamed "apikey" table to "api_key" for consistency Bug fix in checkError() 2014-01-31 22:25:02 +00:00			`return false`
- Working on implementing the API (started working on /api/campaigns) - Implemented APIKey middleware - Changed settings template to look a bit nicer and to, you know, work. 2014-01-31 04:46:25 +00:00			`}`
Added easier support for Flashes Moving DB access (as much as possible) into `db` package. 2014-02-05 16:57:53 +00:00
			`func Flash(w http.ResponseWriter, r *http.Request, t string, m string) {`
			`session := ctx.Get(r, "session").(*sessions.Session)`
			`session.AddFlash(models.Flash{`
			`Type: t,`
			`Message: m,`
			`})`
			`session.Save(r, w)`
			`}`