mirror of
https://github.com/chaitin/MonkeyCode.git
synced 2026-02-01 22:33:30 +08:00
94 lines
2.3 KiB
Go
94 lines
2.3 KiB
Go
package middleware
|
|
|
|
import (
|
|
"context"
|
|
"log/slog"
|
|
"net/http"
|
|
|
|
"github.com/labstack/echo/v4"
|
|
|
|
"github.com/chaitin/MonkeyCode/backend/consts"
|
|
"github.com/chaitin/MonkeyCode/backend/domain"
|
|
"github.com/chaitin/MonkeyCode/backend/ent/rule"
|
|
"github.com/chaitin/MonkeyCode/backend/pkg/session"
|
|
)
|
|
|
|
const (
|
|
adminKey = "session:admin"
|
|
userKey = "session:user"
|
|
)
|
|
|
|
type AuthMiddleware struct {
|
|
usecase domain.UserUsecase
|
|
session *session.Session
|
|
logger *slog.Logger
|
|
}
|
|
|
|
func NewAuthMiddleware(
|
|
usecase domain.UserUsecase,
|
|
session *session.Session,
|
|
logger *slog.Logger,
|
|
) *AuthMiddleware {
|
|
return &AuthMiddleware{
|
|
usecase: usecase,
|
|
session: session,
|
|
logger: logger,
|
|
}
|
|
}
|
|
|
|
func (m *AuthMiddleware) UserAuth() echo.MiddlewareFunc {
|
|
return func(next echo.HandlerFunc) echo.HandlerFunc {
|
|
return func(c echo.Context) error {
|
|
user, err := session.Get[domain.User](m.session, c, consts.UserSessionName)
|
|
if err != nil {
|
|
m.logger.Error("auth failed", "error", err)
|
|
return c.String(http.StatusUnauthorized, "Unauthorized")
|
|
}
|
|
c.Set(userKey, &user)
|
|
ctx := rule.SkipPermission(c.Request().Context())
|
|
c.SetRequest(c.Request().WithContext(ctx))
|
|
return next(c)
|
|
}
|
|
}
|
|
}
|
|
|
|
func (m *AuthMiddleware) Auth() echo.MiddlewareFunc {
|
|
return func(next echo.HandlerFunc) echo.HandlerFunc {
|
|
return func(c echo.Context) error {
|
|
admin, err := session.Get[domain.AdminUser](m.session, c, consts.SessionName)
|
|
if err != nil {
|
|
m.logger.Error("auth failed", "error", err)
|
|
return c.String(http.StatusUnauthorized, "Unauthorized")
|
|
}
|
|
c.Set(adminKey, &admin)
|
|
if permissions, err := m.usecase.GetPermissions(c.Request().Context(), admin.ID); err == nil {
|
|
ctx := context.WithValue(c.Request().Context(), rule.PermissionKey{}, permissions)
|
|
c.SetRequest(c.Request().WithContext(ctx))
|
|
} else {
|
|
ctx := context.WithValue(c.Request().Context(), rule.PermissionKey{}, &domain.Permissions{
|
|
AdminID: admin.ID,
|
|
IsAdmin: admin.IsAdmin(),
|
|
})
|
|
c.SetRequest(c.Request().WithContext(ctx))
|
|
}
|
|
return next(c)
|
|
}
|
|
}
|
|
}
|
|
|
|
func GetAdmin(c echo.Context) *domain.AdminUser {
|
|
i := c.Get(adminKey)
|
|
if i == nil {
|
|
return nil
|
|
}
|
|
return i.(*domain.AdminUser)
|
|
}
|
|
|
|
func GetUser(c echo.Context) *domain.User {
|
|
i := c.Get(userKey)
|
|
if i == nil {
|
|
return nil
|
|
}
|
|
return i.(*domain.User)
|
|
}
|