nathan/smt
1
0
Fork 0
Code Issues 4 Pull Requests Packages Projects Releases 2 Wiki Activity
Files
ac60d1daef2e2ad845b242bab4e47989f8d8b0bb
smt/middlewares/middlewares.go
Nathan Coad 85f96a31d2
All checks were successful
continuous-integration/drone/push Build is passing
Details
add debugging
2024-01-08 14:56:21 +11:00

71 lines
1.6 KiB
Go
Raw Blame History

package middlewares
import (
"log"
"net/http"
"smt/models"
"smt/utils/token"
"github.com/gin-gonic/gin"
)
func JwtAuthMiddleware() gin.HandlerFunc {
return func(c *gin.Context) {
err := token.TokenValid(c)
if err != nil {
log.Printf("JwtAuthMiddleware token is not valid : '%s'\n", err)
c.String(http.StatusUnauthorized, "Unauthorized")
c.Abort()
return
}
c.Next()
}
}
func JwtAuthAdminMiddleware() gin.HandlerFunc {
return func(c *gin.Context) {
err := token.TokenValid(c)
if err != nil {
log.Printf("JwtAuthAdminMiddleware token is not valid : '%s'\n", err)
c.String(http.StatusUnauthorized, "Unauthorized")
c.Abort()
return
}
// Once we know the token is valid, figure out if this user is an admin
user_id, err := token.ExtractTokenID(c)
if err != nil {
log.Printf("JwtAuthAdminMiddleware could not extract user ID from context : '%s'\n", err)
c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
c.Abort()
return
}
log.Printf("JwtAuthAdminMiddleware determined user id as '%v'\n", user_id)
// TODO determine user role
//ur, err := models.GetUserRoleByID(user_id)
ug, err := models.UserGetGroupByID(user_id)
if err != nil {
c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
c.Abort()
return
}
log.Printf("JwtAuthAdminMiddleware retrieved UserGroup object for UserId '%d'\n", ug.UserId)
// Verify that the user has a role with the admin flag set
if !ug.Admin {
c.String(http.StatusUnauthorized, "User role is Non-Admin")
c.Abort()
return
}
// What does this do?
c.Next()
}
}
Reference in New Issue View Git Blame Copy Permalink