WASAPhoto/service/api/authorization/auth-manager.go

package authorization

import (
	"errors"
	"net/http"

	"github.com/notherealmarco/WASAPhoto/service/api/helpers"
	"github.com/notherealmarco/WASAPhoto/service/api/reqcontext"
	"github.com/notherealmarco/WASAPhoto/service/database"
	"github.com/sirupsen/logrus"
)

func BuildAuth(header string) (reqcontext.Authorization, error) {
	auth, err := BuildBearer(header)
	if err != nil {
		if err.Error() == "invalid authorization header" {
			return nil, errors.New("method not supported") // todo: better error description
		}
		return nil, err
	}
	return auth, nil
}

func SendAuthorizationError(f func(db database.AppDatabase, uid string) (reqcontext.AuthStatus, error), uid string, db database.AppDatabase, w http.ResponseWriter, l logrus.FieldLogger, notFoundStatus int) bool {
	auth, err := f(db, uid)
	if err != nil {
		helpers.SendInternalError(err, "Authorization error", w, l)
		return false
	}
	if auth == reqcontext.UNAUTHORIZED {
		helpers.SendStatus(http.StatusUnauthorized, w, "Unauthorized", l)
		return false
	}
	if auth == reqcontext.FORBIDDEN {
		helpers.SendStatus(http.StatusForbidden, w, "Forbidden", l)
		return false
	}
	// requested user is not found -> 404 as the resource is not found
	if auth == reqcontext.USER_NOT_FOUND {
		helpers.SendStatus(notFoundStatus, w, "Resource not found", l)
		return false
	}
	return true
}

func SendErrorIfNotLoggedIn(f func(db database.AppDatabase) (reqcontext.AuthStatus, error), db database.AppDatabase, w http.ResponseWriter, l logrus.FieldLogger) bool {

	auth, err := f(db)

	if err != nil {
		helpers.SendInternalError(err, "Authorization error", w, l)
		return false
	}

	if auth == reqcontext.UNAUTHORIZED {
		helpers.SendStatus(http.StatusUnauthorized, w, "Unauthorized", l)
		return false
	}

	return true
}
identity providers and bearerauth 2022-11-18 13:05:40 +01:00			`package authorization`

			`import (`
			`"errors"`
Add update username method 2022-11-18 17:18:46 +01:00			`"net/http"`
identity providers and bearerauth 2022-11-18 13:05:40 +01:00
Add auth error description 2022-11-20 19:53:24 +01:00			`"github.com/notherealmarco/WASAPhoto/service/api/helpers"`
identity providers and bearerauth 2022-11-18 13:05:40 +01:00			`"github.com/notherealmarco/WASAPhoto/service/api/reqcontext"`
Add update username method 2022-11-18 17:18:46 +01:00			`"github.com/notherealmarco/WASAPhoto/service/database"`
Add auth error description 2022-11-20 19:53:24 +01:00			`"github.com/sirupsen/logrus"`
identity providers and bearerauth 2022-11-18 13:05:40 +01:00			`)`

			`func BuildAuth(header string) (reqcontext.Authorization, error) {`
			`auth, err := BuildBearer(header)`
			`if err != nil {`
			`if err.Error() == "invalid authorization header" {`
			`return nil, errors.New("method not supported") // todo: better error description`
			`}`
			`return nil, err`
			`}`
			`return auth, nil`
			`}`
Add update username method 2022-11-18 17:18:46 +01:00
Add auth error description 2022-11-20 19:53:24 +01:00			`func SendAuthorizationError(f func(db database.AppDatabase, uid string) (reqcontext.AuthStatus, error), uid string, db database.AppDatabase, w http.ResponseWriter, l logrus.FieldLogger, notFoundStatus int) bool {`
Add update username method 2022-11-18 17:18:46 +01:00			`auth, err := f(db, uid)`
			`if err != nil {`
Add auth error description 2022-11-20 19:53:24 +01:00			`helpers.SendInternalError(err, "Authorization error", w, l)`
Add update username method 2022-11-18 17:18:46 +01:00			`return false`
			`}`
			`if auth == reqcontext.UNAUTHORIZED {`
Add auth error description 2022-11-20 19:53:24 +01:00			`helpers.SendStatus(http.StatusUnauthorized, w, "Unauthorized", l)`
Add update username method 2022-11-18 17:18:46 +01:00			`return false`
			`}`
			`if auth == reqcontext.FORBIDDEN {`
Add auth error description 2022-11-20 19:53:24 +01:00			`helpers.SendStatus(http.StatusForbidden, w, "Forbidden", l)`
Add update username method 2022-11-18 17:18:46 +01:00			`return false`
			`}`
Add get followers 2022-11-18 18:58:12 +01:00			`// requested user is not found -> 404 as the resource is not found`
			`if auth == reqcontext.USER_NOT_FOUND {`
Add auth error description 2022-11-20 19:53:24 +01:00			`helpers.SendStatus(notFoundStatus, w, "Resource not found", l)`
Add get followers 2022-11-18 18:58:12 +01:00			`return false`
			`}`
Add update username method 2022-11-18 17:18:46 +01:00			`return true`
			`}`
Add getUserProfile and database.IsBanned 2022-11-21 19:44:50 +01:00
			`func SendErrorIfNotLoggedIn(f func(db database.AppDatabase) (reqcontext.AuthStatus, error), db database.AppDatabase, w http.ResponseWriter, l logrus.FieldLogger) bool {`

			`auth, err := f(db)`

			`if err != nil {`
			`helpers.SendInternalError(err, "Authorization error", w, l)`
			`return false`
			`}`

			`if auth == reqcontext.UNAUTHORIZED {`
			`helpers.SendStatus(http.StatusUnauthorized, w, "Unauthorized", l)`
			`return false`
			`}`

			`return true`
			`}`