Passport/pkg/internal/grpc/auth.go

package grpc

import (
	"context"
	"git.solsynth.dev/hypernet/nexus/pkg/nex"
	"git.solsynth.dev/hypernet/passport/pkg/authkit/models"

	"git.solsynth.dev/hypernet/passport/pkg/internal/services"
	jsoniter "github.com/json-iterator/go"

	"git.solsynth.dev/hypernet/nexus/pkg/proto"
)

func (v *App) Authenticate(_ context.Context, in *proto.AuthRequest) (*proto.AuthReply, error) {
	ticket, perms, err := services.Authenticate(uint(in.GetSessionId()))
	if err != nil {
		return &proto.AuthReply{
			IsValid: false,
		}, nil
	} else {
		user := ticket.Account
		userinfo := &proto.UserInfo{
			Id:        uint64(user.ID),
			Name:      user.Name,
			PermNodes: nex.EncodeMap(perms),
			Metadata:  nex.EncodeMap(user),
		}

		return &proto.AuthReply{
			IsValid: true,
			Info: &proto.AuthInfo{
				SessionId: uint64(ticket.ID),
				Info:      userinfo,
			},
		}, nil
	}
}

func (v *App) EnsurePermGranted(_ context.Context, in *proto.CheckPermRequest) (*proto.CheckPermResponse, error) {
	ctx, err := services.GetAuthContext(uint(in.GetSessionId()))
	if err != nil {
		return nil, err
	}

	var heldPerms map[string]any
	rawHeldPerms, _ := jsoniter.Marshal(ctx.Account.PermNodes)
	_ = jsoniter.Unmarshal(rawHeldPerms, &heldPerms)

	var value any
	_ = jsoniter.Unmarshal(in.GetValue(), &value)
	perms := services.FilterPermNodes(heldPerms, ctx.Claims)
	valid := services.HasPermNode(perms, in.GetKey(), value)

	return &proto.CheckPermResponse{
		IsValid: valid,
	}, nil
}

func (v *App) EnsureUserPermGranted(_ context.Context, in *proto.CheckUserPermRequest) (*proto.CheckUserPermResponse, error) {
	relation, err := services.GetRelationWithTwoNode(uint(in.GetUserId()), uint(in.GetOtherId()))
	if err != nil {
		return &proto.CheckUserPermResponse{
			IsValid: false,
		}, nil
	}

	defaultPerm := relation.Status == models.RelationshipFriend

	var value any
	_ = jsoniter.Unmarshal(in.GetValue(), &value)
	valid := services.HasPermNodeWithDefault(relation.PermNodes, in.GetKey(), value, defaultPerm)

	return &proto.CheckUserPermResponse{
		IsValid: valid,
	}, nil
}
:zap: Add a cache layer in auth to speed up auth 2024-03-22 16:28:27 +00:00			`package grpc`

			`import (`
			`"context"`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`"git.solsynth.dev/hypernet/nexus/pkg/nex"`
:truck: Update package name from Hypdrogen to Hypernet 2024-10-31 12:38:50 +00:00			`"git.solsynth.dev/hypernet/passport/pkg/authkit/models"`
:alien: Support new version dealer devkit 2024-09-11 15:04:14 +00:00
:truck: Update package name from Hypdrogen to Hypernet 2024-10-31 12:38:50 +00:00			`"git.solsynth.dev/hypernet/passport/pkg/internal/services"`
:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00			`jsoniter "github.com/json-iterator/go"`
:recycle: Remove most of the dealer deps and move to nexus 2024-10-23 16:13:16 +00:00
			`"git.solsynth.dev/hypernet/nexus/pkg/proto"`
:zap: Add a cache layer in auth to speed up auth 2024-03-22 16:28:27 +00:00			`)`

:truck: Move http server package 2024-10-27 04:50:07 +00:00			`func (v App) Authenticate(_ context.Context, in proto.AuthRequest) (*proto.AuthReply, error) {`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`ticket, perms, err := services.Authenticate(uint(in.GetSessionId()))`
:zap: Add a cache layer in auth to speed up auth 2024-03-22 16:28:27 +00:00			`if err != nil {`
:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`return &proto.AuthReply{`
:zap: Add a cache layer in auth to speed up auth 2024-03-22 16:28:27 +00:00			`IsValid: false,`
			`}, nil`
			`} else {`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`user := ticket.Account`
:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`userinfo := &proto.UserInfo{`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`Id: uint64(user.ID),`
			`Name: user.Name,`
			`PermNodes: nex.EncodeMap(perms),`
			`Metadata: nex.EncodeMap(user),`
:sparkles: Return affiliated to and automated by in userinfo grpc call 2024-08-24 16:08:06 +00:00			`}`

:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`return &proto.AuthReply{`
:recycle: Basiclly moved to Dealer from Consul 2024-07-14 16:01:17 +00:00			`IsValid: true,`
:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`Info: &proto.AuthInfo{`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`SessionId: uint64(ticket.ID),`
			`Info: userinfo,`
:recycle: Basiclly moved to Dealer from Consul 2024-07-14 16:01:17 +00:00			`},`
:zap: Add a cache layer in auth to speed up auth 2024-03-22 16:28:27 +00:00			`}, nil`
			`}`
			`}`
:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00
:truck: Move http server package 2024-10-27 04:50:07 +00:00			`func (v App) EnsurePermGranted(_ context.Context, in proto.CheckPermRequest) (*proto.CheckPermResponse, error) {`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`ctx, err := services.GetAuthContext(uint(in.GetSessionId()))`
:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00			`if err != nil {`
			`return nil, err`
			`}`

:bug: Fix decoding permission nodes from db 2024-05-17 12:34:34 +00:00			`var heldPerms map[string]any`
			`rawHeldPerms, _ := jsoniter.Marshal(ctx.Account.PermNodes)`
			`_ = jsoniter.Unmarshal(rawHeldPerms, &heldPerms)`

:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00			`var value any`
			`_ = jsoniter.Unmarshal(in.GetValue(), &value)`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`perms := services.FilterPermNodes(heldPerms, ctx.Claims)`
:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00			`valid := services.HasPermNode(perms, in.GetKey(), value)`

:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`return &proto.CheckPermResponse{`
			`IsValid: valid,`
			`}, nil`
			`}`

:truck: Move http server package 2024-10-27 04:50:07 +00:00			`func (v App) EnsureUserPermGranted(_ context.Context, in proto.CheckUserPermRequest) (*proto.CheckUserPermResponse, error) {`
:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`relation, err := services.GetRelationWithTwoNode(uint(in.GetUserId()), uint(in.GetOtherId()))`
			`if err != nil {`
			`return &proto.CheckUserPermResponse{`
			`IsValid: false,`
			`}, nil`
			`}`

			`defaultPerm := relation.Status == models.RelationshipFriend`

			`var value any`
			`_ = jsoniter.Unmarshal(in.GetValue(), &value)`
			`valid := services.HasPermNodeWithDefault(relation.PermNodes, in.GetKey(), value, defaultPerm)`

			`return &proto.CheckUserPermResponse{`
:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00			`IsValid: valid,`
			`}, nil`
			`}`