2021-08-01 17:06:33 +00:00
|
|
|
package handler
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"fmt"
|
|
|
|
|
"net/http"
|
2021-08-04 15:10:56 +00:00
|
|
|
"sirlab.de/go/knyt/user"
|
2021-08-01 17:06:33 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
func (authMux *AuthMux) PrivateHandleFunc(pattern string, handlerFunc HandlerFunc) {
|
|
|
|
|
authMux.mux.HandleFunc(pattern, func(w http.ResponseWriter, r *http.Request) {
|
|
|
|
|
if authMux.isAuthenticated(r) {
|
|
|
|
|
handlerFunc(w, r)
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
authMux.accessDenied(w, r)
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (authMux *AuthMux) PrivateHandle(pattern string, handler http.Handler) {
|
|
|
|
|
authMux.PrivateHandleFunc(pattern, func(w http.ResponseWriter, r *http.Request) {
|
|
|
|
|
handler.ServeHTTP(w, r)
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (authMux *AuthMux) accessDenied(w http.ResponseWriter, r *http.Request) {
|
|
|
|
|
w.WriteHeader(http.StatusForbidden)
|
|
|
|
|
fmt.Fprintf(w, "Forbidden")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (authMux *AuthMux) isAuthenticated(r *http.Request) bool {
|
2021-08-04 15:10:56 +00:00
|
|
|
_, err := authMux.getUserFromSession(r)
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
return false
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return true
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (authMux *AuthMux) getUserFromSession(r *http.Request) (*user.User, error) {
|
2021-08-01 17:06:33 +00:00
|
|
|
authCookie, err := r.Cookie("knyt-auth")
|
|
|
|
|
if err != nil {
|
2021-08-02 18:08:16 +00:00
|
|
|
fmt.Printf("%v\n", err)
|
2021-08-04 15:10:56 +00:00
|
|
|
return nil, fmt.Errorf("invalid cookie")
|
2021-08-01 17:06:33 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
usr, usrErr := authMux.app.GetUsers().GetUserById(authCookie.Value)
|
|
|
|
|
if usrErr != nil {
|
2021-08-04 15:10:56 +00:00
|
|
|
return nil, fmt.Errorf("invalid cookie")
|
2021-08-01 17:06:33 +00:00
|
|
|
}
|
|
|
|
|
|
2021-08-04 15:10:56 +00:00
|
|
|
return usr, nil
|
2021-08-01 17:06:33 +00:00
|
|
|
}
|
