mirror/phylum
1
0
Fork 0
mirror of https://codeberg.org/shroff/phylum.git synced 2026-05-03 18:49:15 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
0145bab3f5ea771e5402aef33dbcfde311a87a2e
phylum/server/internal/api/auth/auth_bearer.go
T
Abhishek Shroff bfdebb2d90 Add /users/me route
2024-08-09 22:44:06 +05:30

47 lines
1.2 KiB
Go
Raw Blame History

package auth
import (
"net/http"
"strings"
"github.com/gin-gonic/gin"
"github.com/shroff/phylum/server/internal/api/errors"
"github.com/shroff/phylum/server/internal/core"
"github.com/sirupsen/logrus"
)
const errCodeAuthRequred = "auth_required"
const errCodeTokenInvalid = "token_invalid"
func CreateBearerAuthHandler(a *core.App) func(c *gin.Context) {
return func(c *gin.Context) {
ctx := c.Request.Context()
authHeader := c.GetHeader("Authorization")
if authHeader == "" {
panic(errors.ApiErr{Status: 401, Code: errCodeAuthRequred})
}
authParts := strings.Split(authHeader, " ")
if len(authParts) != 2 {
panic(errors.ApiErr{Status: 401, Code: errCodeAuthRequred})
}
if authParts[0] != "bearer" {
panic(errors.ApiErr{Status: 401, Code: errCodeAuthRequred})
}
user, err := a.VerifyAccessToken(ctx, authParts[1])
if err != nil {
if errors.Is(err, core.ErrTokenExpired) || errors.Is(err, core.ErrTokenInvalid) {
panic(errors.ApiErr{Status: 401, Code: errCodeTokenInvalid})
}
panic(err)
}
if fs, err := a.OpenFileSystem(ctx, user); err != nil {
logrus.Warn(err)
c.AbortWithStatus(http.StatusInternalServerError)
} else {
c.Set(keyUser, user)
c.Set(keyFileSystem, fs)
}
}
}
Reference in New Issue View Git Blame Copy Permalink