neko/internal/session/auth.go

package session

import (
	"fmt"
	"net/http"

	"demodesk/neko/internal/types"
)

func (manager *SessionManagerCtx) AuthenticateRequest(r *http.Request) (types.Session, error) {
	id, secret, ok := getAuthData(r)
	if !ok {
		return nil, fmt.Errorf("no authentication provided")
	}

	return manager.Authenticate(id, secret)
}

func (manager *SessionManagerCtx) Authenticate(id string, secret string) (types.Session, error) {
	session, ok := manager.Get(id)
	if !ok {
		return nil, fmt.Errorf("member not found")
	}

	if !session.VerifySecret(secret) {
		return nil, fmt.Errorf("invalid password provided")
	}

	if !session.CanLogin() {
		return nil, fmt.Errorf("login disabled")
	}

	return session, nil
}

func getAuthData(r *http.Request) (string, string, bool) {
	// get from Cookies
	cid, err1 := r.Cookie("neko-id")
	csecret, err2 := r.Cookie("neko-secret")
	if err1 == nil && err2 == nil {
		return cid.Value, csecret.Value, true
	}

	// get from BasicAuth
	id, secret, ok := r.BasicAuth()
	if ok {
		return id, secret, true
	}

	// get from QueryParams
	id = r.URL.Query().Get("id")
	secret = r.URL.Query().Get("secret")
	if id != "" && secret != "" {
		return id, secret, true
	}

	return "", "", false
}
auth moved from websockets to session. 2020-11-02 06:39:12 +13:00			`package session`

			`import (`
			`"fmt"`
			`"net/http"`

refactor WS authentication. 2020-11-02 08:23:09 +13:00			`"demodesk/neko/internal/types"`
auth moved from websockets to session. 2020-11-02 06:39:12 +13:00			`)`

session handler with cookies. 2021-01-30 10:22:14 +13:00			`func (manager SessionManagerCtx) AuthenticateRequest(r http.Request) (types.Session, error) {`
allow login using Query. 2020-11-29 03:22:04 +13:00			`id, secret, ok := getAuthData(r)`
login with secret. 2020-11-28 07:59:54 +13:00			`if !ok {`
			`return nil, fmt.Errorf("no authentication provided")`
auth moved from websockets to session. 2020-11-02 06:39:12 +13:00			`}`

session handler with cookies. 2021-01-30 10:22:14 +13:00			`return manager.Authenticate(id, secret)`
			`}`

			`func (manager *SessionManagerCtx) Authenticate(id string, secret string) (types.Session, error) {`
login with secret. 2020-11-28 07:59:54 +13:00			`session, ok := manager.Get(id)`
			`if !ok {`
			`return nil, fmt.Errorf("member not found")`
auth moved from websockets to session. 2020-11-02 06:39:12 +13:00			`}`

login with secret. 2020-11-28 07:59:54 +13:00			`if !session.VerifySecret(secret) {`
			`return nil, fmt.Errorf("invalid password provided")`
auth moved from websockets to session. 2020-11-02 06:39:12 +13:00			`}`

+ CanLogin. 2020-12-07 06:48:50 +13:00			`if !session.CanLogin() {`
			`return nil, fmt.Errorf("login disabled")`
			`}`

login with secret. 2020-11-28 07:59:54 +13:00			`return session, nil`
auth moved from websockets to session. 2020-11-02 06:39:12 +13:00			`}`
allow login using Query. 2020-11-29 03:22:04 +13:00
			`func getAuthData(r *http.Request) (string, string, bool) {`
session handler with cookies. 2021-01-30 10:22:14 +13:00			`// get from Cookies`
			`cid, err1 := r.Cookie("neko-id")`
			`csecret, err2 := r.Cookie("neko-secret")`
			`if err1 == nil && err2 == nil {`
			`return cid.Value, csecret.Value, true`
			`}`

			`// get from BasicAuth`
allow login using Query. 2020-11-29 03:22:04 +13:00			`id, secret, ok := r.BasicAuth()`
			`if ok {`
			`return id, secret, true`
			`}`

session handler with cookies. 2021-01-30 10:22:14 +13:00			`// get from QueryParams`
allow login using Query. 2020-11-29 03:22:04 +13:00			`id = r.URL.Query().Get("id")`
			`secret = r.URL.Query().Get("secret")`
			`if id != "" && secret != "" {`
			`return id, secret, true`
			`}`

			`return "", "", false`
format Go source code. 2021-02-15 02:40:17 +13:00			`}`