Home Esplora Aiuto
Registrati Accedi
oscarleiva
/
energylink
1
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Albero (Tree): 0dfd09ed0e
Rami (Branch) Tag
energylink
/
pkg
/
middleware
/
auth.go

auth.go 2.0 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899 
  1. package middleware
    2. 

  2. 

  3. import (
    4. 

  4. 	"errors"
    5. 

  5. 	"strconv"
    6. 

  6. 	"strings"
    7. 

  7. 

  8. 	"github.com/Unknwon/macaron"
    9. 

  9. 

  10. 	"github.com/torkelo/grafana-pro/pkg/bus"
    11. 

  11. 	m "github.com/torkelo/grafana-pro/pkg/models"
    12. 

  12. 	"github.com/torkelo/grafana-pro/pkg/setting"
    13. 

  13. )
    14. 

  14. 

  15. func authGetRequestAccountId(c *Context) (int64, error) {
    16. 

  16. 	accountId := c.Session.Get("accountId")
    17. 

  17. 

  18. 	urlQuery := c.Req.URL.Query()
    19. 

  19. 

  20. 	// TODO: check that this is a localhost request
    21. 

  21. 	if len(urlQuery["render"]) > 0 {
    22. 

  22. 		accId, _ := strconv.ParseInt(urlQuery["accountId"][0], 10, 64)
    23. 

  23. 		c.Session.Set("accountId", accId)
    24. 

  24. 		accountId = accId
    25. 

  25. 	}
    26. 

  26. 

  27. 	if accountId == nil {
    28. 

  28. 		if setting.Anonymous {
    29. 

  29. 			return setting.AnonymousAccountId, nil
    30. 

  30. 		}
    31. 

  31. 

  32. 		return -1, errors.New("Auth: session account id not found")
    33. 

  33. 	}
    34. 

  34. 

  35. 	return accountId.(int64), nil
    36. 

  36. }
    37. 

  37. 

  38. func authDenied(c *Context) {
    39. 

  39. 	if c.IsApiRequest() {
    40. 

  40. 		c.JsonApiErr(401, "Access denied", nil)
    41. 

  41. 	}
    42. 

  42. 

  43. 	c.Redirect(setting.AppSubUrl + "/login")
    44. 

  44. }
    45. 

  45. 

  46. func authByToken(c *Context) {
    47. 

  47. 	header := c.Req.Header.Get("Authorization")
    48. 

  48. 	parts := strings.SplitN(header, " ", 2)
    49. 

  49. 	if len(parts) != 2 || parts[0] != "Bearer" {
    50. 

  50. 		return
    51. 

  51. 	}
    52. 

  52. 	token := parts[1]
    53. 

  53. 	userQuery := m.GetAccountByTokenQuery{Token: token}
    54. 

  54. 

  55. 	if err := bus.Dispatch(&userQuery); err != nil {
    56. 

  56. 		return
    57. 

  57. 	}
    58. 

  58. 

  59. 	usingQuery := m.GetAccountByIdQuery{Id: userQuery.Result.UsingAccountId}
    60. 

  60. 	if err := bus.Dispatch(&usingQuery); err != nil {
    61. 

  61. 		return
    62. 

  62. 	}
    63. 

  63. 

  64. 	c.UserAccount = userQuery.Result
    65. 

  65. 	c.Account = usingQuery.Result
    66. 

  66. }
    67. 

  67. 

  68. func authBySession(c *Context) {
    69. 

  69. 	accountId, err := authGetRequestAccountId(c)
    70. 

  70. 

  71. 	if err != nil && c.Req.URL.Path != "/login" {
    72. 

  72. 		authDenied(c)
    73. 

  73. 		return
    74. 

  74. 	}
    75. 

  75. 

  76. 	userQuery := m.GetAccountByIdQuery{Id: accountId}
    77. 

  77. 	if err := bus.Dispatch(&userQuery); err != nil {
    78. 

  78. 		authDenied(c)
    79. 

  79. 		return
    80. 

  80. 	}
    81. 

  81. 

  82. 	usingQuery := m.GetAccountByIdQuery{Id: userQuery.Result.UsingAccountId}
    83. 

  83. 	if err := bus.Dispatch(&usingQuery); err != nil {
    84. 

  84. 		authDenied(c)
    85. 

  85. 		return
    86. 

  86. 	}
    87. 

  87. 

  88. 	c.UserAccount = userQuery.Result
    89. 

  89. 	c.Account = usingQuery.Result
    90. 

  90. }
    91. 

  91. 

  92. func Auth() macaron.Handler {
    93. 

  93. 	return func(c *Context) {
    94. 

  94. 		authByToken(c)
    95. 

  95. 		if c.UserAccount == nil {
    96. 

  96. 			authBySession(c)
    97. 

  97. 		}
    98. 

  98. 	}
    99. 

  99. }
    100.