-- vim: ft=terra
local terra
login_form(co: &lib.srv.convo, user: &lib.store.actor, creds: &lib.store.credset, msg: &int8)
var doc = data.view.docskel {
instance = co.srv.cfg.instance.ptr;
title = 'instance logon';
class = 'login';
navlinks = co.navbar.ptr;
}
if user == nil then
var form = data.view.login_username {
loginmsg = msg;
}
if form.loginmsg == nil then
form.loginmsg = 'identify yourself for access to this instance.'
end
var formtxt = form:tostr()
doc.body = formtxt.ptr
elseif creds:sz() == 0 then
co:complain(403,'access denied','your host is not eligible to authenticate as this user')
return
elseif creds:sz() == 1 then
if creds.trust() then
-- TODO log in immediately
return
end
var ch = data.view.login_challenge {
handle = user.handle;
name = lib.coalesce(user.nym, user.handle);
}
if creds.pw() then
ch.challenge = 'enter the password associated with your account'
ch.label = 'password'
ch.method = 'pw'
elseif creds.otp() then
ch.challenge = 'enter a valid one-time password for your account'
ch.label = 'OTP code'
ch.method = 'otp'
elseif creds.challenge() then
ch.challenge = 'sign the challenge token: <code>...</code>'
ch.label = 'digest'
ch.method = 'challenge'
else
co:complain(500,'login failure','unknown login method')
return
end
doc.body = ch:tostr().ptr
else
-- pick a method
end
var hdrs = array(
lib.http.header { 'Content-Type', 'text/html; charset=UTF-8' }
)
doc:send(co.con,200,[lib.mem.ptr(lib.http.header)] {ct = 1, ptr = &hdrs[0]})
lib.mem.heapf(doc.body)
end
return login_form