Patrick
/
wechat_hitxy
Bevaka 1
Stjärnmärk 0
Förgrening 0
Kod Ärenden 0 Pull-förfrågningar 0 Släpp 0 Wiki Aktiviteter
Du kan inte välja fler än 25 ämnen Ämnen måste starta med en bokstav eller siffra, kan innehålla bindestreck ('-') och vara max 35 tecken långa.
435 Incheckningar
1 Gren
9.4MB
Gren: master
Grenar Taggar
${ item.name }
Skapa branchen ${ searchTerm }
från 'master'
${ noResults }
wechat_hitxy/crmpixel.go

275 lines
6.7KB
Permalänk Blame Historik 

  1. package main

  2. 

  3. import (

  4. 	"encoding/base64"

  5. 	"encoding/json"

  6. 	"errors"

  7. 	"fmt"

  8. 	"log"

  9. 	"math/rand"

  10. 	"net/http"

  11. 	"net/url"

  12. 	"strconv"

  13. 	"strings"

  14. 	"time"

  15. )

  16. 

  17. var cookLeadID = "biukop_cl"

  18. 

  19. func crmpixelImage() (pixel []byte, err error) {

  20. 	b64pixel := "iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAYAAAAfFcSJAAAABmJLR0QA/wD/AP+gvaeTAAAACXBIWXMAAAsTAAALEwEAmpwYAAAAB3RJTUUH4QcIBzEJ3JY/6wAAAAh0RVh0Q29tbWVudAD2zJa/AAAADUlEQVQI12NgYGBgAAAABQABXvMqOgAAAABJRU5ErkJggg=="

  21. 	pixel, err = base64.StdEncoding.DecodeString(b64pixel)

  22. 	return

  23. }

  24. 

  25. func crmpixel(w http.ResponseWriter, r *http.Request) {

  26. 	cookie := crmpixelCookie(r)

  27. 	http.SetCookie(w, &cookie)

  28. 

  29. 	//send out pixel 1x1 transparent png file

  30. 	pixel, err := crmpixelImage()

  31. 	if err == nil {

  32. 		w.Write(pixel)

  33. 	} else {

  34. 		fmt.Fprint(w, "decodig pixel image wrong")

  35. 	}

  36. }

  37. 

  38. func crmpixelCookie(r *http.Request) (ret http.Cookie) {

  39. 	cookie, leadok := r.Cookie(cookLeadID) //crm lead

  40. 

  41. 	if leadok != nil {

  42. 		ret, _ = createNewCookie(r)

  43. 		return

  44. 	}

  45. 

  46. 	valid := isValidCookieBiukopCL(cookie.Value)

  47. 	if !valid {

  48. 		ret, _ = createNewCookie(r)

  49. 		return

  50. 	}

  51. 

  52. 	//refresh expiration

  53. 	ret = *cookie

  54. 	ret.Expires = time.Now().Add(10 * 365 * 24 * time.Hour)

  55. 

  56. 	return

  57. }

  58. 

  59. func getLeadIDFromCookie(r *http.Request) (leadID string, ok bool) {

  60. 	return cookieVerifyAndGet(r, cookLeadID)

  61. }

  62. 

  63. func cookieVerifyAndGet(r *http.Request, name string) (value string, ok bool) {

  64. 	ok = false

  65. 	cookie, leadok := r.Cookie(name)

  66. 	if leadok != nil {

  67. 		return

  68. 	}

  69. 	valid := isValidCookieBiukopCL(cookie.Value)

  70. 	if !valid {

  71. 		return

  72. 	}

  73. 

  74. 	//correctly split string

  75. 	s := strings.Split(cookie.Value, "|")

  76. 	if len(s) != 4 || s[0] == "" {

  77. 		return

  78. 	}

  79. 	ok = true

  80. 	value = s[0]

  81. 	return

  82. 

  83. }

  84. 

  85. func createNewCookie(r *http.Request) (ret http.Cookie, info crmdLead) {

  86. 	info = crmCreateNewAnonymousLeadByHTTPRequest(r)

  87. 	ret = cookieFromLeadID(info.ID)

  88. 	return

  89. }

  90. 

  91. func cookieFromLeadID(leadID string) (ret http.Cookie) {

  92. 	return cookieCreateLongTerm(cookLeadID, leadID)

  93. }

  94. 

  95. func cookieCreateLongTerm(name, value string) (ret http.Cookie) {

  96. 	expiration := time.Now().Add(10 * 365 * 24 * time.Hour)

  97. 	signedValue := cookieSignValue(value)

  98. 	ret = http.Cookie{Name: name, Value: signedValue, Expires: expiration}

  99. 	return

  100. }

  101. 

  102. func cookieCreate(name, value string, expireInSeconds int) (ret http.Cookie) {

  103. 	expiration := time.Now().Add(time.Duration(expireInSeconds) * time.Second)

  104. 	signedValue := cookieSignValue(value)

  105. 	ret = http.Cookie{Name: name, Value: signedValue, Expires: expiration}

  106. 	return

  107. }

  108. 

  109. //set to "" and make it expire

  110. func cookieClear(name string) (ret http.Cookie) {

  111. 	expiration := time.Unix(0, 0) //Epoc

  112. 	ret = http.Cookie{Name: name, Value: "", Expires: expiration}

  113. 	return

  114. }

  115. 

  116. func crmCreateNewAnonymousLeadByHTTPRequest(r *http.Request) (info crmdLead) {

  117. 	info.FirstName = "Anonymous"

  118. 	info.LastName = "User " + r.RemoteAddr

  119. 	info.Password = "Password"

  120. 	info.Status = "Anonymous"

  121. 	info.Description = "Anonymous user from " + r.RemoteAddr

  122. 	info.ForceDuplicate = true

  123. 	b, err := json.Marshal(info)

  124. 	if err != nil {

  125. 		return

  126. 	}

  127. 	entity, err := crmCreateEntity("Lead", b)

  128. 	if err == nil || isErrIndicateDuplicate(err) {

  129. 		info, _ = entity.(crmdLead)

  130. 	}

  131. 	return

  132. }

  133. 

  134. func isValidCookieBiukopCL(cookieValue string) (valid bool) {

  135. 	valid = false

  136. 

  137. 	//correctly split string

  138. 	s := strings.Split(cookieValue, "|")

  139. 	if len(s) != 4 || s[0] == "" {

  140. 		return

  141. 	}

  142. 	id, nonce, timestamp, signature := s[0], s[1], s[2], s[3]

  143. 

  144. 	//check signature

  145. 	combined := id + nonce

  146. 	expected := calculateSignature(timestamp, combined, IntraAPIConfig.CRMSecrete)

  147. 	if expected != signature {

  148. 		return

  149. 	}

  150. 

  151. 	ts, err := strconv.Atoi(timestamp)

  152. 	if err != nil {

  153. 		return

  154. 	}

  155. 

  156. 	if timestampOldThan(int32(ts), 86400) { //older than 1 day

  157. 		//find lead data

  158. 		_, err := crmpixelLead(id)

  159. 		if err != nil {

  160. 			return

  161. 		}

  162. 	}

  163. 	valid = true

  164. 	return

  165. }

  166. 

  167. func buildBiukopCLsignature(id, nonce string) (timestamp, signature string) {

  168. 	combined := id + nonce

  169. 	timestamp = fmt.Sprintf("%d", time.Now().Unix())

  170. 	signature = calculateSignature(timestamp, combined, IntraAPIConfig.CRMSecrete)

  171. 	return

  172. }

  173. 

  174. func cookieSignValue(id string) (ret string) {

  175. 	rand.Seed(time.Now().Unix())

  176. 	nonce := fmt.Sprintf("%d", rand.Intn(655352017))

  177. 	timestamp, signature := buildBiukopCLsignature(id, nonce)

  178. 	strs := []string{id, nonce, timestamp, signature} //order is very important

  179. 	ret = strings.Join(strs, "|")

  180. 	return

  181. }

  182. 

  183. func crmpixelLead(id string) (info crmdLead, err error) {

  184. 	entity, err := crmGetEntity("Lead", id)

  185. 	if err != nil {

  186. 		return

  187. 	}

  188. 

  189. 	info, ok := entity.(crmdLead)

  190. 	if !ok {

  191. 		err = errors.New("search lead, return a bad entity type")

  192. 	}

  193. 	return

  194. }

  195. 

  196. //for user's initial registration, especially for wechat users

  197. //they visit a url that is specifically designed for them to

  198. //auth and input their profile data.

  199. //the url's query string will contains a token and a signature

  200. //so that it's verified, by single get request, to allow people to

  201. //enter their details into the CRM system.

  202. //

  203. //this handler, check's the query sting ,set an auth cookie to the client

  204. //and serve angular app, through an URL "/profile/edit"

  205. //or if the user has already been registered,

  206. //redirect user to a URL "/pages/dashboard"

  207. //

  208. func setTrackingCookieAndRecirect(w http.ResponseWriter, r *http.Request) {

  209. 	m, err := url.ParseQuery(r.URL.RawQuery)

  210. 	if err != nil {

  211. 		response400Handler(w)

  212. 		return

  213. 	}

  214. 

  215. 	url, ok := m["url"]

  216. 	if !ok {

  217. 		response400Handler(w)

  218. 		return

  219. 	}

  220. 

  221. 	//check request leadID - lid and my cookie lead id

  222. 	leadID, ok := m["lid"]

  223. 	myLeadID, found := getLeadIDFromCookie(r) //existing cookie

  224. 

  225. 	expireInSeconds := 120                    //default 2minute

  226. 	if found && ok && myLeadID == leadID[0] { //our cookie match the request lid

  227. 		expireInSeconds = 86400 //extended to 1 day

  228. 	}

  229. 

  230. 	//check signature, prevent unauthorized request

  231. 	if !checkSignatureByTokenWithExpireSeconds(r, IntraAPIConfig.CRMSecrete, expireInSeconds) {

  232. 		response403Handler(w)

  233. 		return

  234. 	}

  235. 

  236. 	//set cookie if any

  237. 	if ok {

  238. 		log.Println("setlead cookie :" + leadID[0])

  239. 		cookie := cookieFromLeadID(leadID[0])

  240. 		log.Println(cookie)

  241. 		http.SetCookie(w, &cookie)

  242. 	} else {

  243. 		cookie := crmpixelCookie(r)

  244. 		http.SetCookie(w, &cookie)

  245. 	}

  246. 

  247. 	//get expire settings if any

  248. 	expire := 7200 //2 hours

  249. 	expireTime, ok := m["expire"]

  250. 	if ok {

  251. 		expire, _ = strconv.Atoi(expireTime[0])

  252. 	}

  253. 

  254. 	//set all cookie from url

  255. 	for k, v := range m {

  256. 		if k == "lid" || k == "url" || k == "expire" || k == "nonce" || k == "signature" || k == "timestamp" { //skip lead id and URL and expire

  257. 			continue

  258. 		}

  259. 

  260. 		if v[0] != "" {

  261. 			log.Printf("set cookie %s=%s", k, v)

  262. 			cookie := cookieCreate(k, v[0], expire)

  263. 			http.SetCookie(w, &cookie)

  264. 		} else { //clear cook

  265. 			log.Printf("clear cookie %s=%s", k, v)

  266. 			cookie := cookieClear(k)

  267. 			http.SetCookie(w, &cookie)

  268. 		}

  269. 	}

  270. 

  271. 	//perform redirect

  272. 	http.Redirect(w, r, url[0], 307) //302 temp redirect

  273. 	return

  274. }