tiny-url-ex/middleware/1-auth/main.go

package main

import (
	"git.xdrm.io/example/aicra/db"
	"net/http"
	"strings"
)

// Authentication middleware
func Inspect(req http.Request, scope *[]string) {

	// 1. get authorization header
	token := req.Header.Get("Authorization")

	// fail if no header
	if len(token) < 1 {
		return
	}

	// 2. fail on invalid token format
	if len(token) != 128 || strings.ContainsAny(token, "$-_") {
		return
	}

	// 3. get role for this token
	cli := db.Connect()
	if cli == nil {
		return
	}
	defer cli.Close()

	role := cli.Get(db.TOKEN, token)
	if role == nil {
		return
	}

	// add role to scope
	*scope = append(*scope, string(role))

}
update 2018-07-07 21:09:19 +00:00			`package main`

			`import (`
token management is ok with middleware .. OK 2018-07-08 13:29:25 +00:00			`"git.xdrm.io/example/aicra/db"`
update 2018-07-07 21:09:19 +00:00			`"net/http"`
token management is ok with middleware .. OK 2018-07-08 13:29:25 +00:00			`"strings"`
update 2018-07-07 21:09:19 +00:00			`)`

			`// Authentication middleware`
update according to go/aicra release 0.1.1 2018-09-28 14:06:20 +00:00			`func Inspect(req http.Request, scope *[]string) {`
token management is ok with middleware .. OK 2018-07-08 13:29:25 +00:00
			`// 1. get authorization header`
			`token := req.Header.Get("Authorization")`

			`// fail if no header`
			`if len(token) < 1 {`
			`return`
			`}`

			`// 2. fail on invalid token format`
			`if len(token) != 128 \|\| strings.ContainsAny(token, "$-_") {`
			`return`
			`}`

			`// 3. get role for this token`
			`cli := db.Connect()`
			`if cli == nil {`
			`return`
			`}`
			`defer cli.Close()`

			`role := cli.Get(db.TOKEN, token)`
			`if role == nil {`
			`return`
			`}`

			`// add role to scope`
			`scope = append(scope, string(role))`

update 2018-07-07 21:09:19 +00:00			`}`