Merge branch 'main' of https://github.com/gcclinux/scmd

Author: gcclinux

auth.go

@@ -0,0 +1,155 @@
+package main
+
+import (
+	"crypto/rand"
+	"encoding/base64"
+	"fmt"
+	"log"
+	"net/http"
+	"os"
+	"strings"
+	"sync"
+	"time"
+)
+
+// Session represents a user session
+type Session struct {
+	Email     string
+	CreatedAt time.Time
+	ExpiresAt time.Time
+}
+
+// SessionStore manages active sessions
+type SessionStore struct {
+	sessions map[string]*Session
+	mu       sync.RWMutex
+}
+
+var sessionStore = &SessionStore{
+	sessions: make(map[string]*Session),
+}
+
+// generateSessionID creates a random session ID
+func generateSessionID() (string, error) {
+	b := make([]byte, 32)
+	if _, err := rand.Read(b); err != nil {
+		return "", err
+	}
+	return base64.URLEncoding.EncodeToString(b), nil
+}
+
+// CreateSession creates a new session for the user
+func (s *SessionStore) CreateSession(email string) (string, error) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+
+	sessionID, err := generateSessionID()
+	if err != nil {
+		return "", err
+	}
+
+	session := &Session{
+		Email:     email,
+		CreatedAt: time.Now(),
+		ExpiresAt: time.Now().Add(24 * time.Hour), // 24 hour session
+	}
+
+	s.sessions[sessionID] = session
+	return sessionID, nil
+}
+
+// GetSession retrieves a session by ID
+func (s *SessionStore) GetSession(sessionID string) (*Session, bool) {
+	s.mu.RLock()
+	defer s.mu.RUnlock()
+
+	session, exists := s.sessions[sessionID]
+	if !exists {
+		return nil, false
+	}
+
+	// Check if session has expired
+	if time.Now().After(session.ExpiresAt) {
+		return nil, false
+	}
+
+	return session, true
+}
+
+// DeleteSession removes a session
+func (s *SessionStore) DeleteSession(sessionID string) {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+	delete(s.sessions, sessionID)
+}
+
+// CleanupExpiredSessions removes expired sessions
+func (s *SessionStore) CleanupExpiredSessions() {
+	s.mu.Lock()
+	defer s.mu.Unlock()
+
+	now := time.Now()
+	for id, session := range s.sessions {
+		if now.After(session.ExpiresAt) {
+			delete(s.sessions, id)
+		}
+	}
+}
+
+// AuthenticateUser validates email and API key against the database
+func AuthenticateUser(email, apiKey string) (bool, error) {
+	email = strings.TrimSpace(email)
+	apiKey = strings.TrimSpace(apiKey)
+
+	if email == "" || apiKey == "" {
+		return false, fmt.Errorf("email and API key are required")
+	}
+
+	if db == nil {
+		return false, fmt.Errorf("database not connected")
+	}
+
+	accessTbl := os.Getenv("ACCESS_TB")
+	if accessTbl == "" {
+		accessTbl = "access"
+	}
+
+	var count int
+	query := fmt.Sprintf("SELECT COUNT(*) FROM %s WHERE email = $1 AND api_key = $2", accessTbl)
+	err := db.QueryRow(query, email, apiKey).Scan(&count)
+	if err != nil {
+		return false, fmt.Errorf("authentication query failed: %v", err)
+	}
+
+	return count > 0, nil
+}
+
+// RequireAuth is middleware that checks if user is authenticated
+func RequireAuth(next http.HandlerFunc) http.HandlerFunc {
+	return func(w http.ResponseWriter, r *http.Request) {
+		cookie, err := r.Cookie("session_id")
+		if err != nil {
+			http.Redirect(w, r, "/login", http.StatusSeeOther)
+			return
+		}
+
+		_, exists := sessionStore.GetSession(cookie.Value)
+		if !exists {
+			http.Redirect(w, r, "/login", http.StatusSeeOther)
+			return
+		}
+
+		next(w, r)
+	}
+}
+
+// StartSessionCleanup starts a goroutine to periodically clean up expired sessions
+func StartSessionCleanup() {
+	ticker := time.NewTicker(1 * time.Hour)
+	go func() {
+		for range ticker.C {
+			sessionStore.CleanupExpiredSessions()
+			log.Println("Cleaned up expired sessions")
+		}
+	}()
+}

build.sh

@@ -0,0 +1,130 @@
+#!/bin/bash
+# Terminal Intelligence Build Script for Linux/macOS
+
+set -e
+
+BINARY_NAME="scmd"
+VERSION="2.0.1"
+BUILD_DIR="build"
+
+# Colors for output
+RED='\033[0;31m'
+GREEN='\033[0;32m'
+CYAN='\033[0;36m'
+YELLOW='\033[1;33m'
+NC='\033[0m' # No Color
+
+# Get build number from git
+if git rev-list --count HEAD &>/dev/null; then
+    BUILD_NUMBER=$(($(git rev-list --count HEAD) + 1))
+else
+    BUILD_NUMBER=1
+fi
+
+LDFLAGS="-s -w -X main.version=$VERSION -X main.buildNumber=$BUILD_NUMBER"
+
+ensure_build_dir() {
+    if [ ! -d "$BUILD_DIR" ]; then
+        mkdir -p "$BUILD_DIR"
+    fi
+}
+
+build_current() {
+    echo -e "${CYAN}Building $BINARY_NAME for current platform...${NC}"
+    ensure_build_dir
+    go build -ldflags="$LDFLAGS" -o "$BUILD_DIR/$BINARY_NAME" .
+    echo -e "${GREEN}Build complete: $BUILD_DIR/$BINARY_NAME${NC}"
+}
+
+build_windows() {
+    echo -e "${CYAN}Building $BINARY_NAME for Windows...${NC}"
+    ensure_build_dir
+    GOOS=windows GOARCH=amd64 go build -ldflags="$LDFLAGS" -o "$BUILD_DIR/$BINARY_NAME-windows-amd64.exe" .
+    echo -e "${GREEN}Build complete: $BUILD_DIR/$BINARY_NAME-windows-amd64.exe${NC}"
+}
+
+build_linux() {
+    echo -e "${CYAN}Building $BINARY_NAME for Linux...${NC}"
+    ensure_build_dir
+    GOOS=linux GOARCH=amd64 go build -ldflags="$LDFLAGS" -o "$BUILD_DIR/$BINARY_NAME-linux-amd64" .
+    GOOS=linux GOARCH=arm64 go build -ldflags="$LDFLAGS" -o "$BUILD_DIR/$BINARY_NAME-linux-aarch64" .
+    echo -e "${GREEN}Build complete: $BUILD_DIR/$BINARY_NAME-linux-amd64 and $BUILD_DIR/$BINARY_NAME-linux-aarch64${NC}"
+}
+
+build_darwin() {
+    echo -e "${CYAN}Building $BINARY_NAME for macOS...${NC}"
+    ensure_build_dir
+    GOOS=darwin GOARCH=amd64 go build -ldflags="$LDFLAGS" -o "$BUILD_DIR/$BINARY_NAME-darwin-amd64" .
+    GOOS=darwin GOARCH=arm64 go build -ldflags="$LDFLAGS" -o "$BUILD_DIR/$BINARY_NAME-darwin-arm64" .
+    echo -e "${GREEN}Build complete: $BUILD_DIR/$BINARY_NAME-darwin-amd64 and $BUILD_DIR/$BINARY_NAME-darwin-arm64${NC}"
+}
+
+build_all() {
+    build_windows
+    build_linux
+    build_darwin
+    echo -e "${GREEN}All platform builds complete!${NC}"
+}
+
+run_tests() {
+    echo -e "${CYAN}Running tests...${NC}"
+    go test ./... -v
+}
+
+run_clean() {
+    echo -e "${CYAN}Cleaning build artifacts...${NC}"
+    rm -rf "$BUILD_DIR"
+    rm -f coverage.out coverage.html
+    echo -e "${GREEN}Clean complete${NC}"
+}
+
+show_help() {
+    echo -e "${CYAN}Terminal Intelligence (TI) Build Script${NC}"
+    echo ""
+    echo -e "${YELLOW}Usage: ./build.sh [target]${NC}"
+    echo ""
+    echo -e "${YELLOW}Targets:${NC}"
+    echo "  build            - Build for current platform (default)"
+    echo "  windows          - Build for Windows (amd64)"
+    echo "  linux            - Build for Linux (amd64 and arm64)"
+    echo "  darwin           - Build for macOS (amd64 and arm64)"
+    echo "  all              - Build for all platforms"
+    echo "  test             - Run all tests"
+    echo "  clean            - Remove build artifacts"
+    echo "  help             - Show this help message"
+}
+
+# Execute target
+TARGET="${1:-build}"
+
+case "$TARGET" in
+    build)
+        build_current
+        ;;
+    windows)
+        build_windows
+        ;;
+    linux)
+        build_linux
+        ;;
+    darwin)
+        build_darwin
+        ;;
+    all)
+        build_all
+        ;;
+    test)
+        run_tests
+        ;;
+    clean)
+        run_clean
+        ;;
+    help)
+        show_help
+        ;;
+    *)
+        echo -e "${RED}Unknown target: $TARGET${NC}"
+        show_help
+        exit 1
+        ;;
+esac