sftpgo/httpd/web.go
Nicola Murino 78233ff9a3
web UI/REST API: add password reset
In order to reset the password from the admin/client user interface,
an SMTP configuration must be added and the user/admin must have an email
address.
You can prohibit the reset functionality on a per-user basis by using a
specific restriction.

Fixes #597
2021-11-13 13:25:43 +01:00

70 lines
1.7 KiB
Go

package httpd
import (
"strings"
)
const (
pageMFATitle = "Two-factor authentication"
page400Title = "Bad request"
page403Title = "Forbidden"
page404Title = "Not found"
page404Body = "The page you are looking for does not exist."
page500Title = "Internal Server Error"
page500Body = "The server is unable to fulfill your request."
webDateTimeFormat = "2006-01-02 15:04:05" // YYYY-MM-DD HH:MM:SS
redactedSecret = "[**redacted**]"
csrfFormToken = "_form_token"
csrfHeaderToken = "X-CSRF-TOKEN"
templateCommonDir = "common"
templateTwoFactor = "twofactor.html"
templateTwoFactorRecovery = "twofactor-recovery.html"
templateForgotPassword = "forgot-password.html"
templateResetPassword = "reset-password.html"
)
type loginPage struct {
CurrentURL string
Version string
Error string
CSRFToken string
StaticURL string
AltLoginURL string
ForgotPwdURL string
}
type twoFactorPage struct {
CurrentURL string
Version string
Error string
CSRFToken string
StaticURL string
RecoveryURL string
}
type forgotPwdPage struct {
CurrentURL string
Error string
CSRFToken string
StaticURL string
Title string
}
type resetPwdPage struct {
CurrentURL string
Error string
CSRFToken string
StaticURL string
Title string
}
func getSliceFromDelimitedValues(values, delimiter string) []string {
result := []string{}
for _, v := range strings.Split(values, delimiter) {
cleaned := strings.TrimSpace(v)
if cleaned != "" {
result = append(result, cleaned)
}
}
return result
}