/
authorize.go
65 lines (53 loc) · 2.41 KB
/
authorize.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
package bridge
import (
"net/http"
"net/url"
"github.com/stellar/gateway/bridge/config"
"github.com/stellar/gateway/protocols"
)
var (
// AllowTrustMalformed is an error response
AllowTrustMalformed = &protocols.ErrorResponse{Code: "allow_trust_malformed", Message: "Asset name is malformed.", Status: http.StatusBadRequest}
// AllowTrustNoTrustline is an error response
AllowTrustNoTrustline = &protocols.ErrorResponse{Code: "allow_trust_no_trustline", Message: "Trustor does not have a trustline yet.", Status: http.StatusBadRequest}
// AllowTrustTrustNotRequired is an error response
AllowTrustTrustNotRequired = &protocols.ErrorResponse{Code: "allow_trust_trust_not_required", Message: "Authorizing account does not require allowing trust. Set AUTH_REQUIRED_FLAG on your account to use this feature.", Status: http.StatusBadRequest}
// AllowTrustCantRevoke is an error response
AllowTrustCantRevoke = &protocols.ErrorResponse{Code: "allow_trust_cant_revoke", Message: "Authorizing account has AUTH_REVOCABLE_FLAG set. Can't revoke the trustline.", Status: http.StatusBadRequest}
)
// AuthorizeRequest represents request made to /authorize endpoint of bridge server
type AuthorizeRequest struct {
AccountID string `name:"account_id" required:""`
AssetCode string `name:"asset_code" required:""`
protocols.FormRequest
}
// FromRequest will populate request fields using http.Request.
func (request *AuthorizeRequest) FromRequest(r *http.Request) error {
return request.FormRequest.FromRequest(r, request)
}
// ToValues will create url.Values from request.
func (request *AuthorizeRequest) ToValues() url.Values {
return request.FormRequest.ToValues(request)
}
// Validate validates if request fields are valid. Useful when checking if a request is correct.
func (request *AuthorizeRequest) Validate(allowedAssets []config.Asset, issuingAccountID string) error {
err := request.FormRequest.CheckRequired(request)
if err != nil {
return err
}
if !protocols.IsValidAccountID(request.AccountID) {
return protocols.NewInvalidParameterError("account_id", request.AccountID, "Account ID must start with `G`.")
}
// Is asset allowed?
allowed := false
for _, asset := range allowedAssets {
if asset.Code == request.AssetCode && asset.Issuer == issuingAccountID {
allowed = true
break
}
}
if !allowed {
return protocols.NewInvalidParameterError("asset_code", request.AssetCode, "Asset code not allowed.")
}
return nil
}