first commits 3

2024-09-12 18:15:38 -05:00 · 2024-09-12 18:15:38 -05:00 · 6dc72d3e14
commit 6dc72d3e14
parent b3fc6d25ca
28 changed files with 1095 additions and 0 deletions
--- a/middlewares/another-example-middleware.go.go
+++ b/middlewares/another-example-middleware.go.go
@ -0,0 +1,18 @@
+// Copyright 2023 Harran Ali <harran.m@gmail.com>. All rights reserved.
+// Copyright (c) 2024 Zeni Kim <zenik@smarteching.com>
+// Use of this source code is governed by MIT-style
+// license that can be found in the LICENSE file.
+
+package middlewares
+
+import (
+	"fmt"
+
+	"git.smarteching.com/goffee/core"
+)
+
+// Another example middleware
+var AnotherExampleMiddleware core.Middleware = func(c *core.Context) {
+	fmt.Println("another example middleware!")
+	c.Next()
+}
--- a/middlewares/auth-check.go
+++ b/middlewares/auth-check.go
@ -0,0 +1,69 @@
+package middlewares
+
+import (
+	"errors"
+	"net/http"
+	"strings"
+
+	"git.smarteching.com/goffee/core"
+	"git.smarteching.com/goffee/cup/models"
+	"git.smarteching.com/goffee/cup/utils"
+	"gorm.io/gorm"
+)
+
+var AuthCheck core.Middleware = func(c *core.Context) {
+	tokenRaw := c.GetHeader("Authorization")
+	token := strings.TrimSpace(strings.Replace(tokenRaw, "Bearer", "", 1))
+	if token == "" {
+		c.Response.SetStatusCode(http.StatusUnauthorized).Json(c.MapToJson(map[string]interface{}{
+			"message": "unauthorized",
+		})).ForceSendResponse()
+		return
+	}
+	payload, err := c.GetJWT().DecodeToken(token)
+	if err != nil {
+		c.Response.SetStatusCode(http.StatusUnauthorized).Json(c.MapToJson(map[string]interface{}{
+			"message": "unauthorized",
+		})).ForceSendResponse()
+		return
+	}
+	userAgent := c.GetUserAgent()
+	hashedCacheKey := utils.CreateAuthTokenHashedCacheKey(uint(c.CastToInt(payload["userID"])), userAgent)
+
+	cachedToken, err := c.GetCache().Get(hashedCacheKey)
+	if err != nil {
+		// user signed out
+		c.Response.SetStatusCode(http.StatusUnauthorized).Json(c.MapToJson(map[string]interface{}{
+			"message": "unauthorized",
+		})).ForceSendResponse()
+		return
+	}
+	if cachedToken != token {
+		// using old token replaced with new one after recent signin
+		c.Response.SetStatusCode(http.StatusUnauthorized).Json(c.MapToJson(map[string]interface{}{
+			"message": "unauthorized",
+		})).ForceSendResponse()
+		return
+	}
+
+	var user models.User
+	res := c.GetGorm().Where("id = ?", payload["userID"]).First(&user)
+	if res.Error != nil && !errors.Is(res.Error, gorm.ErrRecordNotFound) {
+		// error with the database
+		c.GetLogger().Error(res.Error.Error())
+		c.Response.SetStatusCode(http.StatusInternalServerError).Json(c.MapToJson(map[string]interface{}{
+			"message": "internal error",
+		})).ForceSendResponse()
+		return
+	}
+
+	if res.Error != nil && errors.Is(res.Error, gorm.ErrRecordNotFound) {
+		// user record is not found (deleted)
+		c.Response.SetStatusCode(http.StatusUnauthorized).Json(c.MapToJson(map[string]interface{}{
+			"message": "unauthorized",
+		})).ForceSendResponse()
+		return
+	}
+
+	c.Next()
+}
--- a/middlewares/example-middleware.go
+++ b/middlewares/example-middleware.go
@ -0,0 +1,18 @@
+// Copyright 2023 Harran Ali <harran.m@gmail.com>. All rights reserved.
+// Copyright (c) 2024 Zeni Kim <zenik@smarteching.com>
+// Use of this source code is governed by MIT-style
+// license that can be found in the LICENSE file.
+
+package middlewares
+
+import (
+	"fmt"
+
+	"git.smarteching.com/goffee/core"
+)
+
+// Example middleware
+var ExampleMiddleware core.Middleware = func(c *core.Context) {
+	fmt.Println("example middleware!")
+	c.Next()
+}