Interactive/pkg/server/auth.go

package server

import (
	"git.solsynth.dev/hydrogen/interactive/pkg/services"
	"github.com/gofiber/fiber/v2"
	"strings"
)

func authMiddleware(c *fiber.Ctx) error {
	var token string
	if cookie := c.Cookies(services.CookieAccessKey); len(cookie) > 0 {
		token = cookie
	}
	if header := c.Get(fiber.HeaderAuthorization); len(header) > 0 {
		tk := strings.Replace(header, "Bearer", "", 1)
		token = strings.TrimSpace(tk)
	}

	c.Locals("token", token)

	if err := authFunc(c); err != nil {
		return err
	}

	return c.Next()
}

func authFunc(c *fiber.Ctx, overrides ...string) error {
	var token string
	if len(overrides) > 0 {
		token = overrides[0]
	} else {
		if tk, ok := c.Locals("token").(string); !ok {
			return fiber.NewError(fiber.StatusUnauthorized)
		} else {
			token = tk
		}
	}

	rtk := c.Cookies(services.CookieRefreshKey)
	if user, atk, rtk, err := services.Authenticate(token, rtk); err == nil {
		if atk != token {
			services.SetJwtCookieSet(c, atk, rtk)
		}
		c.Locals("principal", user)
		return nil
	} else {
		return fiber.NewError(fiber.StatusUnauthorized, err.Error())
	}
}
:tada: Init project from scratch 2024-02-01 15:26:17 +00:00			`package server`

			`import (`
:truck: Update domain 2024-03-20 12:57:21 +00:00			`"git.solsynth.dev/hydrogen/interactive/pkg/services"`
:tada: Init project from scratch 2024-02-01 15:26:17 +00:00			`"github.com/gofiber/fiber/v2"`
:sparkles: Use uni-token :lipstick: A lot of optimization 2024-02-21 14:58:51 +00:00			`"strings"`
:tada: Init project from scratch 2024-02-01 15:26:17 +00:00			`)`

:sparkles: Use uni-token :lipstick: A lot of optimization 2024-02-21 14:58:51 +00:00			`func authMiddleware(c *fiber.Ctx) error {`
			`var token string`
:recycle: Move realm system to Passport 2024-05-04 14:22:58 +00:00			`if cookie := c.Cookies(services.CookieAccessKey); len(cookie) > 0 {`
:sparkles: Use uni-token :lipstick: A lot of optimization 2024-02-21 14:58:51 +00:00			`token = cookie`
			`}`
			`if header := c.Get(fiber.HeaderAuthorization); len(header) > 0 {`
			`tk := strings.Replace(header, "Bearer", "", 1)`
			`token = strings.TrimSpace(tk)`
			`}`

			`c.Locals("token", token)`

			`if err := authFunc(c); err != nil {`
			`return err`
			`}`
:tada: Init project from scratch 2024-02-01 15:26:17 +00:00
:sparkles: Use uni-token :lipstick: A lot of optimization 2024-02-21 14:58:51 +00:00			`return c.Next()`
			`}`
:tada: Init project from scratch 2024-02-01 15:26:17 +00:00
:sparkles: Use uni-token :lipstick: A lot of optimization 2024-02-21 14:58:51 +00:00			`func authFunc(c *fiber.Ctx, overrides ...string) error {`
			`var token string`
			`if len(overrides) > 0 {`
			`token = overrides[0]`
			`} else {`
			`if tk, ok := c.Locals("token").(string); !ok {`
			`return fiber.NewError(fiber.StatusUnauthorized)`
			`} else {`
			`token = tk`
:tada: Init project from scratch 2024-02-01 15:26:17 +00:00			`}`
:sparkles: Use uni-token :lipstick: A lot of optimization 2024-02-21 14:58:51 +00:00			`}`
:tada: Init project from scratch 2024-02-01 15:26:17 +00:00
:recycle: Move realm system to Passport 2024-05-04 14:22:58 +00:00			`rtk := c.Cookies(services.CookieRefreshKey)`
:sparkles: Use uni-token :lipstick: A lot of optimization 2024-02-21 14:58:51 +00:00			`if user, atk, rtk, err := services.Authenticate(token, rtk); err == nil {`
			`if atk != token {`
:recycle: Move realm system to Passport 2024-05-04 14:22:58 +00:00			`services.SetJwtCookieSet(c, atk, rtk)`
:sparkles: Use uni-token :lipstick: A lot of optimization 2024-02-21 14:58:51 +00:00			`}`
:tada: Init project from scratch 2024-02-01 15:26:17 +00:00			`c.Locals("principal", user)`
:sparkles: Use uni-token :lipstick: A lot of optimization 2024-02-21 14:58:51 +00:00			`return nil`
			`} else {`
:bug: Fix didn't handle invalid auth sessions 2024-03-17 15:13:44 +00:00			`return fiber.NewError(fiber.StatusUnauthorized, err.Error())`
:sparkles: Use uni-token :lipstick: A lot of optimization 2024-02-21 14:58:51 +00:00			`}`
			`}`