Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
oscarleiva
/
energylink
1
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: fcdcd63dc7
Branche Tagy
energylink
/
pkg
/
api
/
api_auth.go

api_auth.go 1.5 KB
História Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 
  1. package api
    2. 

  2. 

  3. import (
    4. 

  4. 	"errors"
    5. 

  5. 	"strconv"
    6. 

  6. 

  7. 	"github.com/torkelo/grafana-pro/pkg/models"
    8. 

  8. 

  9. 	"github.com/gin-gonic/gin"
    10. 

  10. 	"github.com/gorilla/sessions"
    11. 

  11. )
    12. 

  12. 

  13. type authContext struct {
    14. 

  14. 	account     *models.Account
    15. 

  15. 	userAccount *models.Account
    16. 

  16. }
    17. 

  17. 

  18. func (auth *authContext) getAccountId() int {
    19. 

  19. 	return auth.account.Id
    20. 

  20. }
    21. 

  21. 

  22. func (self *HttpServer) authDenied(c *gin.Context) {
    23. 

  23. 	c.Writer.Header().Set("Location", "/login")
    24. 

  24. 	c.Abort(302)
    25. 

  25. }
    26. 

  26. 

  27. func authGetRequestAccountId(c *gin.Context, session *sessions.Session) (int, error) {
    28. 

  28. 	accountId := session.Values["accountId"]
    29. 

  29. 

  30. 	urlQuery := c.Request.URL.Query()
    31. 

  31. 	if len(urlQuery["render"]) > 0 {
    32. 

  32. 		accId, _ := strconv.Atoi(urlQuery["accountId"][0])
    33. 

  33. 		session.Values["accountId"] = accId
    34. 

  34. 		accountId = accId
    35. 

  35. 	}
    36. 

  36. 

  37. 	if accountId == nil {
    38. 

  38. 		return -1, errors.New("Auth: session account id not found")
    39. 

  39. 	}
    40. 

  40. 

  41. 	return accountId.(int), nil
    42. 

  42. }
    43. 

  43. 

  44. func (self *HttpServer) auth() gin.HandlerFunc {
    45. 

  45. 	return func(c *gin.Context) {
    46. 

  46. 		session, _ := sessionStore.Get(c.Request, "grafana-session")
    47. 

  47. 		accountId, err := authGetRequestAccountId(c, session)
    48. 

  48. 

  49. 		if err != nil && c.Request.URL.Path != "/login" {
    50. 

  50. 			self.authDenied(c)
    51. 

  51. 			return
    52. 

  52. 		}
    53. 

  53. 

  54. 		account, err := self.store.GetAccount(accountId)
    55. 

  55. 		if err != nil {
    56. 

  56. 			self.authDenied(c)
    57. 

  57. 			return
    58. 

  58. 		}
    59. 

  59. 

  60. 		usingAccount, err := self.store.GetAccount(account.UsingAccountId)
    61. 

  61. 		if err != nil {
    62. 

  62. 			self.authDenied(c)
    63. 

  63. 			return
    64. 

  64. 		}
    65. 

  65. 

  66. 		c.Set("userAccount", account)
    67. 

  67. 		c.Set("usingAccount", usingAccount)
    68. 

  68. 		session.Save(c.Request, c.Writer)
    69. 

  69. 	}
    70. 

  70. }
    71.