Add authentication and metrics

2025-05-31 16:06:08 +02:00 · 2023-03-07 15:14:08 +01:00 · 2023-03-07 15:14:08 +01:00 · 6abea91d7c
commit 6abea91d7c
parent 7667ea7b90
16 changed files with 894 additions and 31 deletions
--- a/internal/auth/context.go
+++ b/internal/auth/context.go
@ -0,0 +1,60 @@
+package auth
+
+import (
+	"context"
+	"github.com/Unkn0wnCat/calapi/internal/logger"
+	"github.com/go-chi/chi/middleware"
+	"go.uber.org/zap"
+	"net/http"
+	"strings"
+)
+
+var userCtxKey = &contextKey{"user"}
+
+type contextKey struct {
+	name string
+}
+
+func Middleware() func(http.Handler) http.Handler {
+	return func(next http.Handler) http.Handler {
+		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			auth := strings.SplitN(r.Header.Get("Authorization"), " ", 2)
+			authScheme := auth[0]
+
+			if len(auth) != 2 || (!strings.EqualFold(authScheme, "bearer") && !strings.EqualFold(authScheme, "jwt")) {
+				// No authentication provided
+				next.ServeHTTP(w, r)
+				return
+			}
+			authPayload := auth[1]
+
+			user, err := ParseJWT(authPayload)
+			if err != nil {
+				logger.Logger.Warn("invalid token provided",
+					zap.String("requestId", middleware.GetReqID(r.Context())),
+					zap.Error(err),
+				)
+				http.Error(w, "Invalid Token", http.StatusUnauthorized)
+				return
+			}
+
+			logger.Logger.Info("token validated",
+				zap.String("requestId", middleware.GetReqID(r.Context())),
+				zap.String("userId", user.ID),
+				zap.String("username", user.Username),
+			)
+
+			// put it in context
+			ctx := context.WithValue(r.Context(), userCtxKey, user)
+
+			// and call the next with our new context
+			r = r.WithContext(ctx)
+			next.ServeHTTP(w, r)
+		})
+	}
+}
+
+func ForContext(ctx context.Context) *User {
+	raw, _ := ctx.Value(userCtxKey).(*User)
+	return raw
+}