mirror of
https://github.com/steveiliop56/tinyauth.git
synced 2025-10-28 04:35:40 +00:00
92 lines
2.1 KiB
Go
92 lines
2.1 KiB
Go
package auth
|
|
|
|
import (
|
|
"tinyauth/internal/types"
|
|
|
|
"github.com/gin-contrib/sessions"
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/rs/zerolog/log"
|
|
"golang.org/x/crypto/bcrypt"
|
|
)
|
|
|
|
func NewAuth(userList types.Users, oauthWhitelist []string) *Auth {
|
|
return &Auth{
|
|
Users: userList,
|
|
OAuthWhitelist: oauthWhitelist,
|
|
}
|
|
}
|
|
|
|
type Auth struct {
|
|
Users types.Users
|
|
OAuthWhitelist []string
|
|
}
|
|
|
|
func (auth *Auth) GetUser(username string) *types.User {
|
|
for _, user := range auth.Users {
|
|
if user.Username == username {
|
|
return &user
|
|
}
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func (auth *Auth) CheckPassword(user types.User, password string) bool {
|
|
hashedPasswordErr := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(password))
|
|
return hashedPasswordErr == nil
|
|
}
|
|
|
|
func (auth *Auth) EmailWhitelisted(emailSrc string) bool {
|
|
if len(auth.OAuthWhitelist) == 0 {
|
|
return true
|
|
}
|
|
for _, email := range auth.OAuthWhitelist {
|
|
if email == emailSrc {
|
|
return true
|
|
}
|
|
}
|
|
return false
|
|
}
|
|
|
|
func (auth *Auth) CreateSessionCookie(c *gin.Context, data *types.SessionCookie) {
|
|
log.Debug().Msg("Creating session cookie")
|
|
sessions := sessions.Default(c)
|
|
log.Debug().Msg("Setting session cookie")
|
|
sessions.Set("username", data.Username)
|
|
sessions.Set("provider", data.Provider)
|
|
sessions.Save()
|
|
}
|
|
|
|
func (auth *Auth) DeleteSessionCookie(c *gin.Context) {
|
|
log.Debug().Msg("Deleting session cookie")
|
|
sessions := sessions.Default(c)
|
|
sessions.Clear()
|
|
sessions.Save()
|
|
}
|
|
|
|
func (auth *Auth) GetSessionCookie(c *gin.Context) (types.SessionCookie, error) {
|
|
log.Debug().Msg("Getting session cookie")
|
|
sessions := sessions.Default(c)
|
|
|
|
cookieUsername := sessions.Get("username")
|
|
cookieProvider := sessions.Get("provider")
|
|
|
|
username, usernameOk := cookieUsername.(string)
|
|
provider, providerOk := cookieProvider.(string)
|
|
|
|
log.Debug().Str("username", username).Str("provider", provider).Msg("Parsed cookie")
|
|
|
|
if !usernameOk || !providerOk {
|
|
log.Warn().Msg("Session cookie invalid")
|
|
return types.SessionCookie{}, nil
|
|
}
|
|
|
|
return types.SessionCookie{
|
|
Username: username,
|
|
Provider: provider,
|
|
}, nil
|
|
}
|
|
|
|
func (auth *Auth) UserAuthConfigured() bool {
|
|
return len(auth.Users) > 0
|
|
}
|