/
auth.go
101 lines (85 loc) · 1.93 KB
/
auth.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
package main
import (
"encoding/json"
"errors"
"io/ioutil"
"log"
"net/http"
"time"
"github.com/dgrijalva/jwt-go"
)
const (
privateKey = "./keys/app.rsa"
)
var (
signKey []byte
)
func init() {
var err error
signKey, err = ioutil.ReadFile(privateKey)
if err != nil {
log.Fatal("Error reading Private Key")
}
}
func Login(w http.ResponseWriter, r *http.Request) {
type UserData struct {
Email string `json:"email"`
Password string `json:"password"`
}
decoder := json.NewDecoder(r.Body)
var userData UserData
err := decoder.Decode(&userData)
if err != nil {
log.Println(err)
return
}
if userData.Email == "" || userData.Password == "" {
BR(w, r, errors.New("Missing credentials"), http.StatusBadRequest)
return
}
db := GetDB(w, r)
user, errM := AuthUser(db, userData.Email, userData.Password)
if errM != nil {
HandleModelError(w, r, errM)
return
}
SetToken(w, r, user)
}
func SignUp(w http.ResponseWriter, r *http.Request) {
type UserData struct {
Email string `json:"email"`
Password string `json:"password"`
}
decoder := json.NewDecoder(r.Body)
var userData UserData
err := decoder.Decode(&userData)
if err != nil {
log.Println(err)
return
}
if userData.Email == "" || userData.Password == "" {
BR(w, r, errors.New("Missing information"), http.StatusBadRequest)
return
}
db := GetDB(w, r)
user := &User{Email: userData.Email, Password: userData.Password}
errM := CreateUser(db, user)
if errM != nil {
HandleModelError(w, r, errM)
return
}
SetToken(w, r, user)
}
func SetToken(w http.ResponseWriter, r *http.Request, user *User) {
t := jwt.New(jwt.GetSigningMethod("RS256"))
t.Claims["ID"] = user.ID.Hex()
t.Claims["iat"] = time.Now().Unix()
t.Claims["exp"] = time.Now().Add(time.Minute * 60 * 24 * 14).Unix()
tokenString, err := t.SignedString(signKey)
if err != nil {
ISR(w, r, err)
return
}
ServeJSON(w, r, &Response{"token": tokenString}, http.StatusOK)
return
}