2026-02-23 19:33:21 +03:00
|
|
|
package router
|
2026-03-02 17:31:15 +03:00
|
|
|
|
2026-03-04 16:59:00 +03:00
|
|
|
import (
|
|
|
|
|
"github.com/gin-gonic/gin"
|
|
|
|
|
log "github.com/sirupsen/logrus"
|
2026-03-06 19:07:14 +03:00
|
|
|
"merch-api/pkg/responses"
|
|
|
|
|
"net/http"
|
2026-03-04 16:59:00 +03:00
|
|
|
)
|
2026-03-02 17:31:15 +03:00
|
|
|
|
2026-03-21 15:21:30 +03:00
|
|
|
type DepsMW struct {
|
2026-04-01 17:48:12 +03:00
|
|
|
UserProv UserProvider
|
|
|
|
|
AuthProv AuthChecker
|
2026-03-21 15:21:30 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type Middlewares struct {
|
|
|
|
|
AuthMW gin.HandlerFunc
|
|
|
|
|
RegMW gin.HandlerFunc
|
|
|
|
|
}
|
|
|
|
|
|
2026-04-01 17:48:12 +03:00
|
|
|
func AuthMW(up UserProvider, ap AuthChecker) gin.HandlerFunc {
|
2026-03-25 22:29:28 +03:00
|
|
|
const funcHeader string = "Auth Middleware |"
|
|
|
|
|
log.Debugf("%v %v begin", pkgLogHeader, funcHeader)
|
2026-03-02 17:31:15 +03:00
|
|
|
return func(c *gin.Context) {
|
2026-03-21 15:21:30 +03:00
|
|
|
cookie, err := c.Cookie(tokenCookieName)
|
2026-03-28 16:41:48 +03:00
|
|
|
log.WithFields(log.Fields{
|
|
|
|
|
"value": cookie,
|
|
|
|
|
"len": len(cookie),
|
|
|
|
|
}).Debugf("%v %v get session token from cookie", pkgLogHeader, funcHeader)
|
2026-03-20 14:53:01 +03:00
|
|
|
if err != nil {
|
|
|
|
|
c.JSON(http.StatusUnauthorized, responses.Unauthorized{Error: err.Error()})
|
|
|
|
|
c.Abort()
|
|
|
|
|
}
|
|
|
|
|
|
2026-04-01 17:48:12 +03:00
|
|
|
userUuid, err := ap.VerifySession(c, cookie)
|
2026-03-21 15:21:30 +03:00
|
|
|
if err != nil {
|
|
|
|
|
c.JSON(http.StatusUnauthorized, responses.Unauthorized{Error: err.Error()})
|
|
|
|
|
c.Abort()
|
|
|
|
|
}
|
2026-03-25 22:29:28 +03:00
|
|
|
log.WithField("value", userUuid).Debugf("%v %v get user uuid from auth service", pkgLogHeader, funcHeader)
|
2026-03-06 19:07:14 +03:00
|
|
|
|
2026-03-25 22:29:28 +03:00
|
|
|
log.Debugf("%v trying to get user id", pkgLogHeader)
|
2026-03-06 19:07:14 +03:00
|
|
|
userId, err := up.GetUserId(c, userUuid)
|
|
|
|
|
if err != nil {
|
|
|
|
|
c.JSON(http.StatusUnauthorized, responses.Unauthorized{Error: err.Error()})
|
2026-03-25 22:29:28 +03:00
|
|
|
log.WithError(err).Errorf("%v %v error converting user uuid to user id: %v", pkgLogHeader, funcHeader, userUuid)
|
2026-03-06 19:07:14 +03:00
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
c.Set("userId", userId)
|
2026-03-20 16:08:54 +03:00
|
|
|
c.Set("userUuid", userUuid)
|
2026-03-02 17:31:15 +03:00
|
|
|
c.Next()
|
|
|
|
|
}
|
|
|
|
|
}
|
2026-03-21 15:21:30 +03:00
|
|
|
|
2026-04-01 17:48:12 +03:00
|
|
|
func RegisterMW(ap AuthChecker) gin.HandlerFunc {
|
2026-03-21 15:21:30 +03:00
|
|
|
log.Debug("Auth Middlewares enabled")
|
|
|
|
|
return func(c *gin.Context) {
|
|
|
|
|
cookie, err := c.Cookie(tokenCookieName)
|
|
|
|
|
if err != nil {
|
|
|
|
|
c.JSON(http.StatusUnauthorized, responses.Unauthorized{Error: err.Error()})
|
|
|
|
|
c.Abort()
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
|
2026-04-01 17:48:12 +03:00
|
|
|
userUuid, err := ap.VerifySession(c, cookie)
|
2026-03-21 15:21:30 +03:00
|
|
|
if err != nil {
|
|
|
|
|
c.JSON(http.StatusUnauthorized, responses.Unauthorized{Error: err.Error()})
|
|
|
|
|
c.Abort()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
c.Set("userUuid", userUuid)
|
|
|
|
|
c.Next()
|
|
|
|
|
}
|
|
|
|
|
}
|
