mirror of
https://github.com/go-shiori/shiori.git
synced 2025-10-09 13:17:28 +08:00
5e9847a288
* add new api * UI use new API * remove legacy route * fix request to new api destination and read that response * feat: allow authentication using cookies * fix: return proper error on validatesession * typo: secret key envionment variable in makefile * serve ebook file with new api * cache update use new api path * add skipexist and batch download use same route as cache * fix bug - update hasebook status * remove unneeded part of code * add swagger documentation * fix swagger documentation * fix swagger response * better statuscode * fix swagger documentation * covert to snake_case * recover coverage.txt that remove --------- Co-authored-by: Felipe M <me@fmartingr.com> Co-authored-by: Felipe Martin <812088+fmartingr@users.noreply.github.com>
68 lines
1.7 KiB
Go
68 lines
1.7 KiB
Go
package middleware
|
|
|
|
import (
|
|
"net/http"
|
|
"strings"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/go-shiori/shiori/internal/config"
|
|
"github.com/go-shiori/shiori/internal/http/context"
|
|
"github.com/go-shiori/shiori/internal/http/response"
|
|
"github.com/go-shiori/shiori/internal/model"
|
|
)
|
|
|
|
// AuthMiddleware provides basic authentication capabilities to all routes underneath
|
|
// its usage, only allowing authenticated users access and set a custom local context
|
|
// `account` with the account model for the logged in user.
|
|
func AuthMiddleware(deps *config.Dependencies) gin.HandlerFunc {
|
|
return func(c *gin.Context) {
|
|
token := getTokenFromHeader(c)
|
|
if token == "" {
|
|
token = getTokenFromCookie(c)
|
|
}
|
|
|
|
account, err := deps.Domains.Auth.CheckToken(c, token)
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
c.Set(model.ContextAccountKey, account)
|
|
}
|
|
}
|
|
|
|
// AuthenticationRequired provides a middleware that checks if the user is logged in, returning
|
|
// a 401 error if not.
|
|
func AuthenticationRequired() gin.HandlerFunc {
|
|
return func(c *gin.Context) {
|
|
ctx := context.NewContextFromGin(c)
|
|
if !ctx.UserIsLogged() {
|
|
response.SendError(c, http.StatusUnauthorized, nil)
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
// getTokenFromHeader returns the token from the Authorization header, if any.
|
|
func getTokenFromHeader(c *gin.Context) string {
|
|
authorization := c.GetHeader(model.AuthorizationHeader)
|
|
if authorization == "" {
|
|
return ""
|
|
}
|
|
|
|
authParts := strings.SplitN(authorization, " ", 2)
|
|
if len(authParts) != 2 && authParts[0] != model.AuthorizationTokenType {
|
|
return ""
|
|
}
|
|
|
|
return authParts[1]
|
|
}
|
|
|
|
// getTokenFromCookie returns the token from the token cookie, if any.
|
|
func getTokenFromCookie(c *gin.Context) string {
|
|
cookie, err := c.Cookie("token")
|
|
if err != nil {
|
|
return ""
|
|
}
|
|
|
|
return cookie
|
|
}
|