jokes-bapak2/api/app/v1/middleware/auth.go

package middleware

import (
	"context"
	"errors"
	"time"

	"github.com/Masterminds/squirrel"
	phccrypto "github.com/aldy505/phc-crypto"
	"github.com/gofiber/fiber/v2"
	"github.com/jackc/pgx/v4"
	"github.com/jackc/pgx/v4/pgxpool"
)

var psql = squirrel.StatementBuilder.PlaceholderFormat(squirrel.Dollar)

func RequireAuth(db *pgxpool.Pool) fiber.Handler {
	return func(c *fiber.Ctx) error {
		var auth Auth
		err := c.BodyParser(&auth)
		if err != nil {
			return err
		}

		// Check if key exists
		sql, args, err := psql.
			Select("token").
			From("administrators").
			Where(squirrel.Eq{"key": auth.Key}).
			ToSql()
		if err != nil {
			return err
		}

		var token string
		err = db.QueryRow(context.Background(), sql, args...).Scan(&token)
		if err != nil {
			if errors.Is(err, pgx.ErrNoRows) {
				return c.
					Status(fiber.StatusForbidden).
					JSON(Error{
						Error: "Invalid key",
					})
			}
			return err
		}

		crypto, err := phccrypto.Use(phccrypto.Argon2, phccrypto.Config{})
		if err != nil {
			return err
		}

		verify, err := crypto.Verify(token, auth.Token)
		if err != nil {
			return err
		}

		if verify {
			sql, args, err = psql.
				Update("administrators").
				Set("last_used", time.Now().UTC().Format(time.RFC3339)).
				ToSql()
			if err != nil {
				return err
			}

			_, err = db.Query(context.Background(), sql, args...)
			if err != nil {
				return err
			}

			sql, args, err = psql.
				Select("id").
				From("administrators").
				Where(squirrel.Eq{"key": auth.Key}).
				ToSql()
			if err != nil {
				return err
			}

			var id int
			err = db.QueryRow(context.Background(), sql, args...).Scan(&id)
			if err != nil {
				return err
			}
			c.Locals("userID", id)
			return c.Next()
		}

		return c.
			Status(fiber.StatusForbidden).
			JSON(Error{
				Error: "Invalid key",
			})
	}
}
refactor: tidy up architecture design 2021-07-09 06:11:11 +00:00			`package middleware`

			`import (`
			`"context"`
refactor: better dependency injection method 2021-09-26 19:13:38 +00:00			`"errors"`
feat: working app 2021-07-14 18:17:01 +00:00			`"time"`

refactor: tidy up architecture design 2021-07-09 06:11:11 +00:00			`"github.com/Masterminds/squirrel"`
			`phccrypto "github.com/aldy505/phc-crypto"`
			`"github.com/gofiber/fiber/v2"`
refactor: better dependency injection method 2021-09-26 19:13:38 +00:00			`"github.com/jackc/pgx/v4"`
			`"github.com/jackc/pgx/v4/pgxpool"`
refactor: tidy up architecture design 2021-07-09 06:11:11 +00:00			`)`

			`var psql = squirrel.StatementBuilder.PlaceholderFormat(squirrel.Dollar)`

refactor: better dependency injection method 2021-09-26 19:13:38 +00:00			`func RequireAuth(db *pgxpool.Pool) fiber.Handler {`
refactor: tidy up architecture design 2021-07-09 06:11:11 +00:00			`return func(c *fiber.Ctx) error {`
refactor: better dependency injection method 2021-09-26 19:13:38 +00:00			`var auth Auth`
refactor: tidy up architecture design 2021-07-09 06:11:11 +00:00			`err := c.BodyParser(&auth)`
			`if err != nil {`
			`return err`
			`}`

feat: working app 2021-07-14 18:17:01 +00:00			`// Check if key exists`
style: chained function line breaks 2021-08-04 10:14:33 +00:00			`sql, args, err := psql.`
			`Select("token").`
			`From("administrators").`
			`Where(squirrel.Eq{"key": auth.Key}).`
			`ToSql()`
refactor: tidy up architecture design 2021-07-09 06:11:11 +00:00			`if err != nil {`
			`return err`
			`}`
feat: working app 2021-07-14 18:17:01 +00:00
refactor: tidy up architecture design 2021-07-09 06:11:11 +00:00			`var token string`
			`err = db.QueryRow(context.Background(), sql, args...).Scan(&token)`
			`if err != nil {`
refactor: better dependency injection method 2021-09-26 19:13:38 +00:00			`if errors.Is(err, pgx.ErrNoRows) {`
style: chained function line breaks 2021-08-04 10:14:33 +00:00			`return c.`
			`Status(fiber.StatusForbidden).`
refactor: better dependency injection method 2021-09-26 19:13:38 +00:00			`JSON(Error{`
style: chained function line breaks 2021-08-04 10:14:33 +00:00			`Error: "Invalid key",`
			`})`
feat: working app 2021-07-14 18:17:01 +00:00			`}`
refactor: tidy up architecture design 2021-07-09 06:11:11 +00:00			`return err`
			`}`

			`crypto, err := phccrypto.Use(phccrypto.Argon2, phccrypto.Config{})`
			`if err != nil {`
			`return err`
			`}`

feat: working app 2021-07-14 18:17:01 +00:00			`verify, err := crypto.Verify(token, auth.Token)`
refactor: tidy up architecture design 2021-07-09 06:11:11 +00:00			`if err != nil {`
			`return err`
			`}`

			`if verify {`
style: chained function line breaks 2021-08-04 10:14:33 +00:00			`sql, args, err = psql.`
			`Update("administrators").`
			`Set("last_used", time.Now().UTC().Format(time.RFC3339)).`
			`ToSql()`
feat: working app 2021-07-14 18:17:01 +00:00			`if err != nil {`
			`return err`
			`}`

			`_, err = db.Query(context.Background(), sql, args...)`
			`if err != nil {`
			`return err`
			`}`

style: chained function line breaks 2021-08-04 10:14:33 +00:00			`sql, args, err = psql.`
			`Select("id").`
			`From("administrators").`
			`Where(squirrel.Eq{"key": auth.Key}).`
			`ToSql()`
feat: working app 2021-07-14 18:17:01 +00:00			`if err != nil {`
			`return err`
			`}`

			`var id int`
			`err = db.QueryRow(context.Background(), sql, args...).Scan(&id)`
			`if err != nil {`
			`return err`
			`}`
			`c.Locals("userID", id)`
			`return c.Next()`
refactor: tidy up architecture design 2021-07-09 06:11:11 +00:00			`}`
feat: nearly finished 2021-07-09 12:13:19 +00:00
style: chained function line breaks 2021-08-04 10:14:33 +00:00			`return c.`
			`Status(fiber.StatusForbidden).`
refactor: better dependency injection method 2021-09-26 19:13:38 +00:00			`JSON(Error{`
style: chained function line breaks 2021-08-04 10:14:33 +00:00			`Error: "Invalid key",`
			`})`
refactor: tidy up architecture design 2021-07-09 06:11:11 +00:00			`}`
			`}`