首頁 探索 說明
註冊 登入
oscarleiva
/
energylink
1
0
複刻 0
檔案 問題管理 0 合併請求 0 Wiki
目錄樹: ced5e5500e
分支列表 標籤列表
energylink
/
pkg
/
middleware
/
auth.go

auth.go 2.0 KB
文件歷史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. package middleware
    2. 

  2. 

  3. import (
    4. 

  4. 	"errors"
    5. 

  5. 	"github.com/Unknwon/macaron"
    6. 

  6. 	"github.com/macaron-contrib/session"
    7. 

  7. 	"strconv"
    8. 

  8. 	"strings"
    9. 

  9. 

  10. 	"github.com/torkelo/grafana-pro/pkg/bus"
    11. 

  11. 	m "github.com/torkelo/grafana-pro/pkg/models"
    12. 

  12. 	"github.com/torkelo/grafana-pro/pkg/setting"
    13. 

  13. )
    14. 

  14. 

  15. func authGetRequestAccountId(c *Context, sess session.Store) (int64, error) {
    16. 

  16. 	accountId := sess.Get("accountId")
    17. 

  17. 

  18. 	urlQuery := c.Req.URL.Query()
    19. 

  19. 

  20. 	// TODO: check that this is a localhost request
    21. 

  21. 	if len(urlQuery["render"]) > 0 {
    22. 

  22. 		accId, _ := strconv.ParseInt(urlQuery["accountId"][0], 10, 64)
    23. 

  23. 		sess.Set("accountId", accId)
    24. 

  24. 		accountId = accId
    25. 

  25. 	}
    26. 

  26. 

  27. 	if accountId == nil {
    28. 

  28. 		if setting.Anonymous {
    29. 

  29. 			return setting.AnonymousAccountId, nil
    30. 

  30. 		}
    31. 

  31. 

  32. 		return -1, errors.New("Auth: session account id not found")
    33. 

  33. 	}
    34. 

  34. 

  35. 	return accountId.(int64), nil
    36. 

  36. }
    37. 

  37. 

  38. func authDenied(c *Context) {
    39. 

  39. 	c.Redirect(setting.AppSubUrl + "/login")
    40. 

  40. }
    41. 

  41. 

  42. func authByToken(c *Context) {
    43. 

  43. 	header := c.Req.Header.Get("Authorization")
    44. 

  44. 	parts := strings.SplitN(header, " ", 2)
    45. 

  45. 	if len(parts) != 2 || parts[0] != "Bearer" {
    46. 

  46. 		return
    47. 

  47. 	}
    48. 

  48. 	token := parts[1]
    49. 

  49. 	userQuery := m.GetAccountByTokenQuery{Token: token}
    50. 

  50. 

  51. 	if err := bus.Dispatch(&userQuery); err != nil {
    52. 

  52. 		return
    53. 

  53. 	}
    54. 

  54. 

  55. 	usingQuery := m.GetAccountByIdQuery{Id: userQuery.Result.UsingAccountId}
    56. 

  56. 	if err := bus.Dispatch(&usingQuery); err != nil {
    57. 

  57. 		return
    58. 

  58. 	}
    59. 

  59. 

  60. 	c.UserAccount = userQuery.Result
    61. 

  61. 	c.Account = usingQuery.Result
    62. 

  62. }
    63. 

  63. 

  64. func authBySession(c *Context, sess session.Store) {
    65. 

  65. 	accountId, err := authGetRequestAccountId(c, sess)
    66. 

  66. 

  67. 	if err != nil && c.Req.URL.Path != "/login" {
    68. 

  68. 		authDenied(c)
    69. 

  69. 		return
    70. 

  70. 	}
    71. 

  71. 

  72. 	userQuery := m.GetAccountByIdQuery{Id: accountId}
    73. 

  73. 	if err := bus.Dispatch(&userQuery); err != nil {
    74. 

  74. 		authDenied(c)
    75. 

  75. 		return
    76. 

  76. 	}
    77. 

  77. 

  78. 	usingQuery := m.GetAccountByIdQuery{Id: userQuery.Result.UsingAccountId}
    79. 

  79. 	if err := bus.Dispatch(&usingQuery); err != nil {
    80. 

  80. 		authDenied(c)
    81. 

  81. 		return
    82. 

  82. 	}
    83. 

  83. 

  84. 	c.UserAccount = userQuery.Result
    85. 

  85. 	c.Account = usingQuery.Result
    86. 

  86. }
    87. 

  87. 

  88. func Auth() macaron.Handler {
    89. 

  89. 	return func(c *Context, sess session.Store) {
    90. 

  90. 		authByToken(c)
    91. 

  91. 		if c.UserAccount == nil {
    92. 

  92. 			authBySession(c, sess)
    93. 

  93. 		}
    94. 

  94. 	}
    95. 

  95. }
    96.