2018-12-24 18:45:15 +01:00
|
|
|
/*
|
2022-11-11 05:49:16 +01:00
|
|
|
* Copyright © 2018-2021 Musing Studio LLC.
|
2018-12-24 18:45:15 +01:00
|
|
|
*
|
|
|
|
* This file is part of WriteFreely.
|
|
|
|
*
|
|
|
|
* WriteFreely is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU Affero General Public License, included
|
|
|
|
* in the LICENSE file in this source code package.
|
|
|
|
*/
|
2018-12-31 07:05:26 +01:00
|
|
|
|
2018-10-17 05:27:04 +02:00
|
|
|
package author
|
|
|
|
|
|
|
|
import (
|
2023-01-06 21:34:22 +01:00
|
|
|
"github.com/writeas/web-core/log"
|
2021-04-06 23:24:07 +02:00
|
|
|
"github.com/writefreely/writefreely/config"
|
2018-10-17 05:27:04 +02:00
|
|
|
"os"
|
|
|
|
"path/filepath"
|
|
|
|
"regexp"
|
|
|
|
)
|
|
|
|
|
|
|
|
// Regex pattern for valid usernames
|
|
|
|
var validUsernameReg = regexp.MustCompile("^[a-zA-Z0-9][a-zA-Z0-9-]*$")
|
|
|
|
|
|
|
|
// List of reserved usernames
|
|
|
|
var reservedUsernames = map[string]bool{
|
|
|
|
"a": true,
|
|
|
|
"about": true,
|
|
|
|
"add": true,
|
|
|
|
"admin": true,
|
|
|
|
"administrator": true,
|
|
|
|
"adminzone": true,
|
|
|
|
"api": true,
|
|
|
|
"article": true,
|
|
|
|
"articles": true,
|
|
|
|
"auth": true,
|
|
|
|
"authenticate": true,
|
|
|
|
"browse": true,
|
|
|
|
"c": true,
|
|
|
|
"categories": true,
|
|
|
|
"category": true,
|
|
|
|
"changes": true,
|
2018-12-10 22:18:09 +01:00
|
|
|
"community": true,
|
2018-10-17 05:27:04 +02:00
|
|
|
"create": true,
|
|
|
|
"css": true,
|
|
|
|
"data": true,
|
|
|
|
"dev": true,
|
|
|
|
"developers": true,
|
|
|
|
"draft": true,
|
|
|
|
"drafts": true,
|
|
|
|
"edit": true,
|
|
|
|
"edits": true,
|
|
|
|
"faq": true,
|
|
|
|
"feed": true,
|
|
|
|
"feedback": true,
|
|
|
|
"guide": true,
|
|
|
|
"guides": true,
|
|
|
|
"help": true,
|
|
|
|
"index": true,
|
2019-01-18 06:05:50 +01:00
|
|
|
"invite": true,
|
2018-10-17 05:27:04 +02:00
|
|
|
"js": true,
|
|
|
|
"login": true,
|
|
|
|
"logout": true,
|
|
|
|
"me": true,
|
|
|
|
"media": true,
|
|
|
|
"meta": true,
|
|
|
|
"metadata": true,
|
|
|
|
"new": true,
|
|
|
|
"news": true,
|
2020-01-16 18:18:21 +01:00
|
|
|
"oauth": true,
|
2018-10-17 05:27:04 +02:00
|
|
|
"post": true,
|
|
|
|
"posts": true,
|
|
|
|
"privacy": true,
|
|
|
|
"publication": true,
|
|
|
|
"publications": true,
|
|
|
|
"publish": true,
|
|
|
|
"random": true,
|
|
|
|
"read": true,
|
|
|
|
"reader": true,
|
|
|
|
"register": true,
|
|
|
|
"remove": true,
|
|
|
|
"signin": true,
|
|
|
|
"signout": true,
|
|
|
|
"signup": true,
|
|
|
|
"start": true,
|
|
|
|
"status": true,
|
|
|
|
"summary": true,
|
|
|
|
"support": true,
|
|
|
|
"tag": true,
|
|
|
|
"tags": true,
|
|
|
|
"team": true,
|
|
|
|
"template": true,
|
|
|
|
"templates": true,
|
|
|
|
"terms": true,
|
|
|
|
"terms-of-service": true,
|
|
|
|
"termsofservice": true,
|
|
|
|
"theme": true,
|
|
|
|
"themes": true,
|
|
|
|
"tips": true,
|
|
|
|
"tos": true,
|
|
|
|
"update": true,
|
|
|
|
"updates": true,
|
|
|
|
"user": true,
|
|
|
|
"users": true,
|
|
|
|
"yourname": true,
|
|
|
|
}
|
|
|
|
|
|
|
|
// IsValidUsername returns true if a given username is neither reserved nor
|
|
|
|
// of the correct format.
|
|
|
|
func IsValidUsername(cfg *config.Config, username string) bool {
|
|
|
|
// Username has to be above a character limit
|
|
|
|
if len(username) < cfg.App.MinUsernameLen {
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
// Username is invalid if page with the same name exists. So traverse
|
|
|
|
// available pages, adding them to reservedUsernames map that'll be checked
|
|
|
|
// later.
|
2023-01-06 21:34:22 +01:00
|
|
|
err := filepath.Walk(filepath.Join(cfg.Server.PagesParentDir, "pages"), func(path string, i os.FileInfo, err error) error {
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
2018-10-17 05:27:04 +02:00
|
|
|
reservedUsernames[i.Name()] = true
|
|
|
|
return nil
|
|
|
|
})
|
2023-01-06 21:34:22 +01:00
|
|
|
if err != nil {
|
|
|
|
log.Error("[IMPORTANT WARNING]: Could not determine IsValidUsername! %s", err)
|
|
|
|
return false
|
|
|
|
}
|
2018-10-17 05:27:04 +02:00
|
|
|
|
|
|
|
// Username is invalid if it is reserved!
|
|
|
|
if _, reserved := reservedUsernames[username]; reserved {
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
|
|
|
|
// TODO: use correct regexp function here
|
|
|
|
return len(validUsernameReg.FindStringSubmatch(username)) > 0
|
|
|
|
}
|