abhas
/
MailyGo
mirror of https://git.jlel.se/jlelse/MailyGo
1
0
Fork 0
Code Issues 0 Projects 0 Releases 0 Wiki Activity
A simple way to handle form submissions from static websites.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
14 Commits
1 Branch
97 KiB
Tree: 2f9eede975
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '2f9eede975'
${ noResults }
MailyGo/forms.go

71 lines
1.7 KiB
Raw Normal View History

Initial version
4 years ago
Unescape sanitized keys and values
4 years ago
Initial version
4 years ago
Use pointers
4 years ago
Initial version
4 years ago
Use pointers
4 years ago
Run form sending in goroutine
4 years ago
Initial version
4 years ago
Use pointers
4 years ago
Initial version
4 years ago
Use pointers
4 years ago
Initial version
4 years ago
Unescape sanitized keys and values
4 years ago
Initial version
4 years ago
Unescape sanitized keys and values
4 years ago
Initial version
4 years ago
Use pointers
4 years ago
Initial version
4 years ago
Use pointers
4 years ago
Initial version
4 years ago
Use pointers
4 years ago
Initial version
4 years ago
Google Safe Browsing API support
4 years ago
Initial version
4 years ago
Use pointers
4 years ago
Initial version
4 years ago
Use pointers
4 years ago
Initial version
4 years ago
Use pointers
4 years ago
 
  1. package main
  2. 

  3. import (
  4. 	"html"
  5. 	"net/http"
  6. 	"net/url"
  7. 

  8. 	"github.com/microcosm-cc/bluemonday"
  9. )
  10. 

  11. type FormValues map[string][]string
  12. 

  13. func FormHandler(w http.ResponseWriter, r *http.Request) {
  14. 	if r.Method == http.MethodGet {
  15. 		_, _ = w.Write([]byte("MailyGo works!"))
  16. 		return
  17. 	}
  18. 	if r.Method != http.MethodPost {
  19. 		w.WriteHeader(http.StatusMethodNotAllowed)
  20. 		_, _ = w.Write([]byte("The HTTP method is not allowed, make a POST request"))
  21. 		return
  22. 	}
  23. 	_ = r.ParseForm()
  24. 	sanitizedForm := sanitizeForm(&r.PostForm)
  25. 	go func() {
  26. 		if !isBot(sanitizedForm) {
  27. 			sendForm(sanitizedForm)
  28. 		}
  29. 	}()
  30. 	sendResponse(sanitizedForm, w)
  31. 	return
  32. }
  33. 

  34. func sanitizeForm(values *url.Values) *FormValues {
  35. 	p := bluemonday.StrictPolicy()
  36. 	sanitizedForm := make(FormValues)
  37. 	for key, values := range *values {
  38. 		var sanitizedValues []string
  39. 		for _, value := range values {
  40. 			sanitizedValues = append(sanitizedValues, html.UnescapeString(p.Sanitize(value)))
  41. 		}
  42. 		sanitizedForm[html.UnescapeString(p.Sanitize(key))] = sanitizedValues
  43. 	}
  44. 	return &sanitizedForm
  45. }
  46. 

  47. func isBot(values *FormValues) bool {
  48. 	for _, honeyPot := range appConfig.HoneyPots {
  49. 		if len((*values)[honeyPot]) > 0 {
  50. 			for _, value := range (*values)[honeyPot] {
  51. 				if value != "" {
  52. 					return true
  53. 				}
  54. 			}
  55. 		}
  56. 	}
  57. 	return checkValues(values)
  58. }
  59. 

  60. func sendResponse(values *FormValues, w http.ResponseWriter) {
  61. 	if len((*values)["_redirectTo"]) == 1 && (*values)["_redirectTo"][0] != "" {
  62. 		w.Header().Add("Location", (*values)["_redirectTo"][0])
  63. 		w.WriteHeader(http.StatusSeeOther)
  64. 		_, _ = w.Write([]byte("Go to " + (*values)["_redirectTo"][0]))
  65. 		return
  66. 	} else {
  67. 		w.WriteHeader(http.StatusCreated)
  68. 		_, _ = w.Write([]byte("Submitted form"))
  69. 		return
  70. 	}
  71. }