github/paralus
1
0
Fork 0
mirror of https://github.com/paralus/paralus.git synced 2026-03-04 18:10:21 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add authentication middleware

Browse Source
This commit is contained in:
Akshay Gaikwad
2022-02-24 13:56:46 +05:30
parent a2f03c60da
commit ff7bbec976
1 changed files with 21 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

32
components/common/pkg/auth/v3/middleware.go
View File

@@ -3,17 +3,21 @@ package authv3
import (
"net/http"
commonpbv3 "github.com/RafaySystems/rcloud-base/components/common/proto/types/commonpb/v3"
commonv3 "github.com/RafaySystems/rcloud-base/components/common/proto/types/commonpb/v3"
"github.com/urfave/negroni"
)
type authMiddleware struct {
ac authContext
ac authContext
opt Option
}
// Not maintained. Instead use gRPC interceptor for authentication.
func (ac authContext) NewAuthMiddleware() negroni.Handler {
return &authMiddleware{ac}
func NewAuthMiddleware(opt Option) negroni.Handler {
return &authMiddleware{
ac: NewAuthContext(),
opt: opt,
}
}
func (am *authMiddleware) ServeHTTP(rw http.ResponseWriter, r *http.Request, next http.HandlerFunc) {
@@ -25,19 +29,25 @@ func (am *authMiddleware) ServeHTTP(rw http.ResponseWriter, r *http.Request, nex
}
res, err := am.ac.IsRequestAllowed(r.Context(), req)
if err != nil {
_log.Errorf("Failed to authenticate a request: %s", err)
http.Error(rw, http.StatusText(http.StatusInternalServerError), http.StatusInternalServerError)
return
}
if res.GetStatus() == commonv3.RequestStatus_RequestNotAuthenticated {
http.Error(rw, res.GetReason(), http.StatusUnauthorized)
return
} else if res.GetStatus() == commonv3.RequestStatus_RequestMethodOrURLNotAllowed {
s := res.GetStatus()
switch s {
case commonpbv3.RequestStatus_RequestAllowed:
ctx := newSessionContext(r.Context(), res.SessionData)
next(rw, r.WithContext(ctx))
case commonpbv3.RequestStatus_RequestMethodOrURLNotAllowed:
http.Error(rw, res.GetReason(), http.StatusForbidden)
return
case commonpbv3.RequestStatus_RequestNotAuthenticated:
http.Error(rw, res.GetReason(), http.StatusUnauthorized)
return
}
if res.GetStatus() == commonv3.RequestStatus_RequestAllowed {
next(rw, r)
}
// status is unknown
http.Error(rw, http.StatusText(http.StatusInternalServerError), http.StatusInternalServerError)
return
}