fin-check-api/middleware/auth.go

package middleware

import (
	"errors"
	"log"
	"net/http"

	"git.qowevisa.me/Qowevisa/fin-check-api/consts"
	"git.qowevisa.me/Qowevisa/fin-check-api/tokens"
	"git.qowevisa.me/Qowevisa/fin-check-api/types"
	"github.com/gin-gonic/gin"
)

// Passes UserID with `c.Set("UserID")` as it gets id from token
func AuthMiddleware() gin.HandlerFunc {
	return func(c *gin.Context) {
		token, err := c.Cookie(consts.COOKIE_SESSION)
		if errors.Is(err, http.ErrNoCookie) {
			c.JSON(401, types.ErrorResponse{Message: "Authorization cookie is required"})
			c.Abort()
			return
		}
		if !tokens.ValidateSessionToken(token) {
			c.JSON(401, types.ErrorResponse{Message: "Invalid authorization cookie"})
			c.Abort()
			return
		}
		session, err := tokens.GetSession(token)
		if err != nil {
			log.Printf("ERROR: tokens.GetSession: %v\n", err)
			c.JSON(500, types.ErrorResponse{Message: "Server error"})
			c.Abort()
			return
		}
		c.Set("UserID", session.UserID)

		c.Next()
	}
}
Add middleware package with auth.go 2024-08-03 07:43:08 +02:00			`package middleware`

			`import (`
Change auth middleware to be session based on cookies 2024-11-06 18:47:40 +01:00			`"errors"`
			`"log"`
			`"net/http"`
Fix token issue 2024-10-31 09:07:36 +01:00
Change auth middleware to be session based on cookies 2024-11-06 18:47:40 +01:00			`"git.qowevisa.me/Qowevisa/fin-check-api/consts"`
Change name of module 2024-11-04 16:55:14 +01:00			`"git.qowevisa.me/Qowevisa/fin-check-api/tokens"`
			`"git.qowevisa.me/Qowevisa/fin-check-api/types"`
Add middleware package with auth.go 2024-08-03 07:43:08 +02:00			`"github.com/gin-gonic/gin"`
			`)`

Add setting userID from token as in middelware 2024-08-03 07:50:06 +02:00			// Passes UserID with `c.Set("UserID")` as it gets id from token
Add middleware package with auth.go 2024-08-03 07:43:08 +02:00			`func AuthMiddleware() gin.HandlerFunc {`
			`return func(c *gin.Context) {`
Change auth middleware to be session based on cookies 2024-11-06 18:47:40 +01:00			`token, err := c.Cookie(consts.COOKIE_SESSION)`
			`if errors.Is(err, http.ErrNoCookie) {`
			`c.JSON(401, types.ErrorResponse{Message: "Authorization cookie is required"})`
Add middleware package with auth.go 2024-08-03 07:43:08 +02:00			`c.Abort()`
			`return`
			`}`
Change auth middleware to be session based on cookies 2024-11-06 18:47:40 +01:00			`if !tokens.ValidateSessionToken(token) {`
			`c.JSON(401, types.ErrorResponse{Message: "Invalid authorization cookie"})`
Add middleware package with auth.go 2024-08-03 07:43:08 +02:00			`c.Abort()`
			`return`
			`}`
Change auth middleware to be session based on cookies 2024-11-06 18:47:40 +01:00			`session, err := tokens.GetSession(token)`
			`if err != nil {`
			`log.Printf("ERROR: tokens.GetSession: %v\n", err)`
			`c.JSON(500, types.ErrorResponse{Message: "Server error"})`
Add setting userID from token as in middelware 2024-08-03 07:50:06 +02:00			`c.Abort()`
			`return`
			`}`
Change auth middleware to be session based on cookies 2024-11-06 18:47:40 +01:00			`c.Set("UserID", session.UserID)`
Add setting userID from token as in middelware 2024-08-03 07:50:06 +02:00
Add middleware package with auth.go 2024-08-03 07:43:08 +02:00			`c.Next()`
			`}`
			`}`