super-graph/serv/auth.go

package serv

import (
	"context"
	"errors"
	"net/http"
)

const (
	salt        = "encrypted cookie"
	signSalt    = "signed encrypted cookie"
	emptySecret = ""
	authHeader  = "Authorization"
)

var (
	userIDProviderKey = struct{}{}
	userIDKey         = struct{}{}
	errSessionData    = errors.New("error decoding session data")
)

func headerHandler(next http.HandlerFunc) http.HandlerFunc {
	fn := conf.Auth.Header
	if len(fn) == 0 {
		panic(errors.New("no auth.header defined"))
	}

	return func(w http.ResponseWriter, r *http.Request) {
		userID := r.Header.Get(fn)
		if len(userID) == 0 {
			next.ServeHTTP(w, r)
			return
		}

		ctx := context.WithValue(r.Context(), userIDKey, userID)
		next.ServeHTTP(w, r.WithContext(ctx))
	}
}

func withAuth(next http.HandlerFunc) http.HandlerFunc {
	at := conf.Auth.Type

	switch at {
	case "header":
		return headerHandler(next)

	case "rails_cookie":
		return railsCookieHandler(next)

	case "rails_memcache":
		return railsMemcacheHandler(next)

	case "rails_redis":
		return railsRedisHandler(next)

	case "jwt":
		return jwtHandler(next)

	default:
		return next
	}

	return next
}
First commit 2019-03-24 14:57:29 +01:00			`package serv`

			`import (`
			`"context"`
			`"errors"`
			`"net/http"`
			`)`

			`const (`
			`salt = "encrypted cookie"`
			`signSalt = "signed encrypted cookie"`
			`emptySecret = ""`
			`authHeader = "Authorization"`
			`)`

			`var (`
Add Auth0 JWT support 2019-03-29 03:34:42 +01:00			`userIDProviderKey = struct{}{}`
			`userIDKey = struct{}{}`
			`errSessionData = errors.New("error decoding session data")`
First commit 2019-03-24 14:57:29 +01:00			`)`

			`func headerHandler(next http.HandlerFunc) http.HandlerFunc {`
Cleanup and redesign config files 2019-04-08 08:47:59 +02:00			`fn := conf.Auth.Header`
First commit 2019-03-24 14:57:29 +01:00			`if len(fn) == 0 {`
Cleanup and redesign config files 2019-04-08 08:47:59 +02:00			`panic(errors.New("no auth.header defined"))`
First commit 2019-03-24 14:57:29 +01:00			`}`

			`return func(w http.ResponseWriter, r *http.Request) {`
			`userID := r.Header.Get(fn)`
			`if len(userID) == 0 {`
			`next.ServeHTTP(w, r)`
			`return`
			`}`

			`ctx := context.WithValue(r.Context(), userIDKey, userID)`
			`next.ServeHTTP(w, r.WithContext(ctx))`
			`}`
			`}`

			`func withAuth(next http.HandlerFunc) http.HandlerFunc {`
Cleanup and redesign config files 2019-04-08 08:47:59 +02:00			`at := conf.Auth.Type`
First commit 2019-03-24 14:57:29 +01:00
Cleanup and redesign config files 2019-04-08 08:47:59 +02:00			`switch at {`
First commit 2019-03-24 14:57:29 +01:00			`case "header":`
			`return headerHandler(next)`

Cleanup and redesign config files 2019-04-08 08:47:59 +02:00			`case "rails_cookie":`
			`return railsCookieHandler(next)`
First commit 2019-03-24 14:57:29 +01:00
Cleanup and redesign config files 2019-04-08 08:47:59 +02:00			`case "rails_memcache":`
			`return railsMemcacheHandler(next)`
First commit 2019-03-24 14:57:29 +01:00
Cleanup and redesign config files 2019-04-08 08:47:59 +02:00			`case "rails_redis":`
			`return railsRedisHandler(next)`
First commit 2019-03-24 14:57:29 +01:00
			`case "jwt":`
			`return jwtHandler(next)`

			`default:`
Cleanup and redesign config files 2019-04-08 08:47:59 +02:00			`return next`
First commit 2019-03-24 14:57:29 +01:00			`}`

			`return next`
			`}`