Home Explore Help
Register Sign In
eugeniucarvalho
/
apicodegen
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
apicodegen
/
authorization
/
authorization.go

authorization.go 1.4 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263 
  1. package authorization
    2. 

  2. 

  3. import (
    4. 

  4. 	"strings"
    5. 

  5. 	"time"
    6. 

  6. 

  7. 	"git.eugeniocarvalho.dev/eugeniucarvalho/apicodegen/api/errs"
    8. 

  8. 	context "github.com/kataras/iris/v12/context"
    9. 

  9. 	"github.com/pascaldekloe/jwt"
    10. 

  10. )
    11. 

  11. 

  12. var (
    13. 

  13. 	SECRET                     = []byte{}
    14. 

  14. 	PREFIX_AUTHORIZATION_TOKEN = "Bearer "
    15. 

  15. )
    16. 

  16. 

  17. type JwtChk func(ctx context.Context, resourceID string, claims *jwt.Claims) (err *errs.Error)
    18. 

  18. 

  19. func Handler(resource string, fn JwtChk) func(ctx context.Context) (resp interface{}, err *errs.Error) {
    20. 

  20. 

  21. 	return func(ctx context.Context) (resp interface{}, err *errs.Error) {
    22. 

  22. 		var (
    23. 

  23. 			claims *jwt.Claims
    24. 

  24. 		)
    25. 

  25. 

  26. 		if claims, err = ParseToken(ctx.GetHeader("Authorization")); err != nil {
    27. 

  27. 			return
    28. 

  28. 		}
    29. 

  29. 

  30. 		if err = fn(ctx, resource, claims); err != nil {
    31. 

  31. 			return
    32. 

  32. 		}
    33. 

  33. 

  34. 		ctx.Next()
    35. 

  35. 		return
    36. 

  36. 	}
    37. 

  37. }
    38. 

  38. 

  39. func ParseToken(token string) (claims *jwt.Claims, err *errs.Error) {
    40. 

  40. 	var (
    41. 

  41. 		_err error
    42. 

  42. 	)
    43. 

  43. 

  44. 	token = strings.Replace(token, PREFIX_AUTHORIZATION_TOKEN, "", -1)
    45. 

  45. 

  46. 	if claims, _err = jwt.HMACCheck([]byte(token), SECRET); _err != nil {
    47. 

  47. 		err = errs.Unauthenticated().Details(&errs.Detail{
    48. 

  48. 			Message:      "Login required",
    49. 

  49. 			Location:     "Authorization",
    50. 

  50. 			LocationType: "header",
    51. 

  51. 			Reason:       "InvalidAuthorizationToken",
    52. 

  52. 		})
    53. 

  53. 

  54. 	} else if !claims.Valid(time.Now()) {
    55. 

  55. 		err = errs.Unauthenticated().Details(&errs.Detail{
    56. 

  56. 			Message:      "Login required",
    57. 

  57. 			Location:     "Authorization",
    58. 

  58. 			LocationType: "header",
    59. 

  59. 			Reason:       "TokenExpired",
    60. 

  60. 		})
    61. 

  61. 	}
    62. 

  62. 	return
    63. 

  63. }
    64.