-
Notifications
You must be signed in to change notification settings - Fork 10
/
jwt.go
73 lines (60 loc) · 1.59 KB
/
jwt.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
package controllerhelpers
import (
"encoding/base64"
"fmt"
"net/http"
"time"
"github.com/sirupsen/logrus"
"github.com/TF2Stadium/Helen/config"
"github.com/TF2Stadium/Helen/models/player"
"github.com/dgrijalva/jwt-go"
)
var (
signingKey []byte
)
func init() {
if config.Constants.CookieStoreSecret == "secret" {
logrus.Warning("Using an insecure encryption key")
signingKey = []byte("secret")
return
}
var err error
signingKey, err = base64.StdEncoding.DecodeString(config.Constants.CookieStoreSecret)
if err != nil {
logrus.Fatal(err)
}
}
func NewToken(player *player.Player) string {
token := jwt.New(jwt.SigningMethodHS512)
token.Claims = TF2StadiumClaims{
PlayerID: player.ID,
SteamID: player.SteamID,
MumblePassword: player.MumbleAuthkey,
Role: player.Role,
IssuedAt: time.Now().Unix(),
Issuer: config.Constants.PublicAddress,
}
str, err := token.SignedString([]byte(signingKey))
if err != nil {
logrus.Error(err)
}
return str
}
func verifyToken(token *jwt.Token) (interface{}, error) {
if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok {
return nil, fmt.Errorf("Unexpected signing method: %v", token.Header["alg"])
}
return signingKey, nil
}
func GetToken(r *http.Request) (*jwt.Token, error) {
cookie, err := r.Cookie("auth-jwt")
if err != nil {
return nil, err
}
token, err := jwt.ParseWithClaims(cookie.Value, &TF2StadiumClaims{}, verifyToken)
return token, err
}
func GetPlayer(token *jwt.Token) *player.Player {
player, _ := player.GetPlayerByID(token.Claims.(*TF2StadiumClaims).PlayerID)
return player
}