-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathauth.go
More file actions
69 lines (57 loc) · 1.45 KB
/
auth.go
File metadata and controls
69 lines (57 loc) · 1.45 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
package main
import (
"github.com/brane-app/librane/database"
"github.com/brane-app/librane/types"
"github.com/gastrodon/groudon/v2"
"net/http"
)
var (
badAuth map[string]interface{} = map[string]interface{}{"error": "bad_auth"}
)
func rotatedTokens(id string) (r_map map[string]interface{}, err error) {
var token string
var expires int64
if token, expires, err = database.CreateToken(id); err != nil {
return
}
var secret string
if secret, err = database.CreateSecret(id); err != nil {
return
}
r_map = map[string]interface{}{
"auth": map[string]interface{}{
"token": token,
"expires": expires,
"secret": secret,
},
}
return
}
func postAuth(request *http.Request) (code int, r_map map[string]interface{}, err error) {
var body AuthBody
var external error
if err, external = groudon.SerializeBody(request.Body, &body); err != nil || external != nil || (body.Secret == nil && body.Password == nil) {
code = 400
return
}
var who types.User
var exists bool
if who, exists, err = database.ReadSingleUserEmail(body.Email); err != nil {
return
}
var authed bool
switch {
case !exists:
case body.Secret != nil && *body.Secret != "":
authed, err = database.CheckSecret(who.ID, *body.Secret)
case body.Password != nil && *body.Password != "":
authed, err = database.CheckPassword(who.ID, *body.Password)
}
if authed && err == nil {
code = 200
r_map, err = rotatedTokens(who.ID)
return
}
code = 401
return
}