edge/pkg/module/auth/module.go

package auth

import (
	"net/http"

	"forge.cadoles.com/arcad/edge/pkg/app"
	edgeHTTP "forge.cadoles.com/arcad/edge/pkg/http"
	"forge.cadoles.com/arcad/edge/pkg/module/util"
	"github.com/dop251/goja"
	"github.com/pkg/errors"
)

const (
	ClaimSubject = "sub"
)

type Module struct {
	server       *app.Server
	getClaimFunc GetClaimFunc
}

func (m *Module) Name() string {
	return "auth"
}

func (m *Module) Export(export *goja.Object) {
	if err := export.Set("getClaim", m.getClaim); err != nil {
		panic(errors.Wrap(err, "could not set 'getClaim' function"))
	}

	if err := export.Set("CLAIM_SUBJECT", ClaimSubject); err != nil {
		panic(errors.Wrap(err, "could not set 'CLAIM_SUBJECT' property"))
	}
}

func (m *Module) getClaim(call goja.FunctionCall, rt *goja.Runtime) goja.Value {
	ctx := util.AssertContext(call.Argument(0), rt)
	claimName := util.AssertString(call.Argument(1), rt)

	req, ok := ctx.Value(edgeHTTP.ContextKeyOriginRequest).(*http.Request)
	if !ok {
		panic(rt.ToValue(errors.New("could not find http request in context")))
	}

	claim, err := m.getClaimFunc(ctx, req, claimName)
	if err != nil {
		if errors.Is(err, ErrUnauthenticated) || errors.Is(err, ErrClaimNotFound) {
			return nil
		}

		panic(rt.ToValue(errors.WithStack(err)))
	}

	return rt.ToValue(claim)
}

func ModuleFactory(funcs ...OptionFunc) app.ServerModuleFactory {
	opt := defaultOptions()
	for _, fn := range funcs {
		fn(opt)
	}

	return func(server *app.Server) app.ServerModule {
		return &Module{
			server:       server,
			getClaimFunc: opt.GetClaim,
		}
	}
}
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`package auth`

			`import (`
			`"net/http"`

			`"forge.cadoles.com/arcad/edge/pkg/app"`
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`edgeHTTP "forge.cadoles.com/arcad/edge/pkg/http"`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`"forge.cadoles.com/arcad/edge/pkg/module/util"`
			`"github.com/dop251/goja"`
			`"github.com/pkg/errors"`
			`)`

			`const (`
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`ClaimSubject = "sub"`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`)`

			`type Module struct {`
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`server *app.Server`
			`getClaimFunc GetClaimFunc`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`}`

			`func (m *Module) Name() string {`
			`return "auth"`
			`}`

			`func (m Module) Export(export goja.Object) {`
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`if err := export.Set("getClaim", m.getClaim); err != nil {`
			`panic(errors.Wrap(err, "could not set 'getClaim' function"))`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`}`

feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`if err := export.Set("CLAIM_SUBJECT", ClaimSubject); err != nil {`
			`panic(errors.Wrap(err, "could not set 'CLAIM_SUBJECT' property"))`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`}`
			`}`

feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`func (m Module) getClaim(call goja.FunctionCall, rt goja.Runtime) goja.Value {`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`ctx := util.AssertContext(call.Argument(0), rt)`
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`claimName := util.AssertString(call.Argument(1), rt)`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`req, ok := ctx.Value(edgeHTTP.ContextKeyOriginRequest).(*http.Request)`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`if !ok {`
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`panic(rt.ToValue(errors.New("could not find http request in context")))`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`}`

feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`claim, err := m.getClaimFunc(ctx, req, claimName)`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`if err != nil {`
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`if errors.Is(err, ErrUnauthenticated) \|\| errors.Is(err, ErrClaimNotFound) {`
			`return nil`
			`}`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`panic(rt.ToValue(errors.WithStack(err)))`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`}`

feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`return rt.ToValue(claim)`
			`}`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`func ModuleFactory(funcs ...OptionFunc) app.ServerModuleFactory {`
feat(module,auth): use dummy getclaim func 2023-03-10 14:33:12 +01:00			`opt := defaultOptions()`
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`for _, fn := range funcs {`
			`fn(opt)`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`}`

			`return func(server *app.Server) app.ServerModule {`
			`return &Module{`
feat(module,auth): authentication module with arbitrary claims support 2023-02-24 14:40:28 +01:00			`server: server,`
			`getClaimFunc: opt.GetClaim,`
feat(module,auth): auth based on jwt 2023-02-21 12:14:29 +01:00			`}`
			`}`
			`}`