2021-01-21 20:44:09 +01:00

80 lines
1.8 KiB
Go

package auth
import (
"context"
"net/http"
"demodesk/neko/internal/types"
"demodesk/neko/internal/utils"
)
type key int
const (
keySessionCtx key = iota
)
func SetSession(r *http.Request, session types.Session) *http.Request {
ctx := context.WithValue(r.Context(), keySessionCtx, session)
return r.WithContext(ctx)
}
func GetSession(r *http.Request) types.Session {
return r.Context().Value(keySessionCtx).(types.Session)
}
func AdminsOnly(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
session := GetSession(r)
if !session.IsAdmin() {
utils.HttpForbidden(w)
} else {
next.ServeHTTP(w, r)
}
})
}
func HostsOnly(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
session := GetSession(r)
if !session.IsHost() {
utils.HttpForbidden(w, "Only host can do this.")
} else {
next.ServeHTTP(w, r)
}
})
}
func HostsOrAdminsOnly(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
session := GetSession(r)
if !session.IsHost() && !session.IsAdmin() {
utils.HttpForbidden(w, "Only host can do this.")
} else {
next.ServeHTTP(w, r)
}
})
}
func CanHostOnly(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
session := GetSession(r)
if !session.CanHost() {
utils.HttpForbidden(w, "Only for members, that can host.")
} else {
next.ServeHTTP(w, r)
}
})
}
func CanWatchOnly(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
session := GetSession(r)
if !session.CanWatch() {
utils.HttpForbidden(w, "Only for members, that can watch.")
} else {
next.ServeHTTP(w, r)
}
})
}