htmlhouse
/
htmlhouse
mirror of https://github.com/writeas/htmlhouse
1
0
Fork 0
Code Issues 0 Releases 2 Activity
Publish HTML quickly. https://html.house
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
62 Commits
2 Branches
1.7 MiB
 
 
 
 
Tree: 17bbe49b30
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '17bbe49b30'
${ noResults }
htmlhouse/session.go

102 lines
2.1 KiB
Raw Blame History 

  1. package htmlhouse

  2. 

  3. import (

  4. 	"fmt"

  5. 	jwt "github.com/dgrijalva/jwt-go"

  6. 	"github.com/juju/errgo"

  7. 	"io/ioutil"

  8. 	"net/http"

  9. )

  10. 

  11. const (

  12. 	tokenHeader = "Authorization"

  13. )

  14. 

  15. type sessionManager interface {

  16. 	readToken(*http.Request) (string, error)

  17. 	createToken(string) (string, error)

  18. 	writeToken(http.ResponseWriter, string) error

  19. }

  20. 

  21. // Basic user session info

  22. type sessionInfo struct {

  23. 	ID string `json:"id"`

  24. }

  25. 

  26. func newSessionInfo(houseID string) *sessionInfo {

  27. 	return &sessionInfo{houseID}

  28. }

  29. 

  30. func newSessionManager(cfg *config) (sessionManager, error) {

  31. 	mgr := &defaultSessionManager{}

  32. 

  33. 	var err error

  34. 

  35. 	mgr.signKey, err = ioutil.ReadFile(cfg.PrivateKey)

  36. 	if err != nil {

  37. 		return mgr, errgo.Mask(err)

  38. 	}

  39. 

  40. 	mgr.verifyKey, err = ioutil.ReadFile(cfg.PublicKey)

  41. 	if err != nil {

  42. 		return mgr, errgo.Mask(err)

  43. 	}

  44. 	return mgr, nil

  45. }

  46. 

  47. type defaultSessionManager struct {

  48. 	verifyKey, signKey []byte

  49. }

  50. 

  51. func (m *defaultSessionManager) readToken(r *http.Request) (string, error) {

  52. 	tokenString := r.Header.Get(tokenHeader)

  53. 	if tokenString == "" {

  54. 		return "", nil

  55. 	}

  56. 

  57. 	token, err := jwt.Parse(tokenString, func(token *jwt.Token) (interface{}, error) {

  58. 		if _, ok := token.Method.(*jwt.SigningMethodRSA); !ok {

  59. 			return nil, fmt.Errorf("Unexpected signing method: %v", token.Header["alg"])

  60. 		}

  61. 		return m.verifyKey, nil

  62. 	})

  63. 	switch err.(type) {

  64. 	case nil:

  65. 		if !token.Valid {

  66. 			return "", nil

  67. 		}

  68. 

  69. 		claims := token.Claims.(jwt.MapClaims)

  70. 		houseID := claims["houseID"].(string)

  71. 

  72. 		return houseID, nil

  73. 	case *jwt.ValidationError:

  74. 		return "", nil

  75. 	default:

  76. 		return "", errgo.Mask(err)

  77. 	}

  78. }

  79. 

  80. func (m *defaultSessionManager) createToken(houseID string) (string, error) {

  81. 	token := jwt.New(jwt.SigningMethodRS512)

  82. 	claims := token.Claims.(jwt.MapClaims)

  83. 	claims["houseID"] = houseID

  84. 

  85. 	tokenString, err := token.SignedString(m.signKey)

  86. 	if err != nil {

  87. 		return tokenString, errgo.Mask(err)

  88. 	}

  89. 

  90. 	return tokenString, nil

  91. }

  92. 

  93. func (m *defaultSessionManager) writeToken(w http.ResponseWriter, houseID string) error {

  94. 	tokenString, err := m.createToken(houseID)

  95. 	if err != nil {

  96. 		return err

  97. 	}

  98. 

  99. 	w.Header().Set(tokenHeader, tokenString)

  100. 	return nil

  101. }