forked from dingoblog/dingo
-
Notifications
You must be signed in to change notification settings - Fork 0
/
middlewares.go
62 lines (58 loc) · 1.37 KB
/
middlewares.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
package handler
import (
"net/http"
"strconv"
"github.com/dinever/golf"
"github.com/dingoblog/dingo/app/model"
)
func AuthMiddleware(next golf.HandlerFunc) golf.HandlerFunc {
fn := func(ctx *golf.Context) {
userNum, err := model.GetNumberOfUsers()
if err == nil && userNum == 0 {
ctx.Redirect("/signup/")
return
}
tokenStr, err := ctx.Request.Cookie("token-value")
if err != nil {
ctx.Redirect("/login/")
return
}
//token, err := model.GetTokenByValue(tokenStr.Value)
token := &model.Token{Value: tokenStr.Value}
err = token.GetTokenByValue()
if err != nil || !token.IsValid() {
ctx.Redirect("/login/")
return
}
tokenUser, err := ctx.Request.Cookie("token-user")
if err != nil {
ctx.Redirect("/login/")
return
}
uid, _ := strconv.Atoi(tokenUser.Value)
user := &model.User{Id: int64(uid)}
err = user.GetUserById()
if err != nil {
panic(err)
}
ctx.Session.Set("user", user)
next(ctx)
}
return fn
}
func JWTAuthMiddleware(next golf.HandlerFunc) golf.HandlerFunc {
return func(ctx *golf.Context) {
tokenHeader := ctx.Header("X-SESSION-TOKEN")
if tokenHeader == "" {
ctx.SendStatus(http.StatusUnauthorized)
return
}
token, err := model.ValidateJWT(tokenHeader)
if err != nil {
ctx.SendStatus(http.StatusUnauthorized)
return
}
ctx.Session.Set("jwt", model.NewJWTFromToken(token))
next(ctx)
}
}