Domů Procházet Nápověda
Přihlásit se
TC
/
arozos
1
0
Rozštěpit 0
Soubory Úkoly 0 Pull Requesty 0 Wiki
Strom: 09fbd9769e
Větve Značky
arozos
/
mod
/
auth
/
token.go

token.go 2.0 KB
Historie Surový

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091 
  1. package auth
    2. 

  2. 

  3. import (
    4. 

  4. 	"errors"
    5. 

  5. 	"net/http"
    6. 

  6. 	"time"
    7. 

  7. 

  8. 	uuid "github.com/satori/go.uuid"
    9. 

  9. )
    10. 

  10. 

  11. /*
    12. 

  12. 	Token Login Handler
    13. 

  13. 	This module support the API request via a user session login token
    14. 

  14. */
    15. 

  15. 

  16. type token struct {
    17. 

  17. 	Owner        string
    18. 

  18. 	CreationTime int64
    19. 

  19. }
    20. 

  20. 

  21. //Create a new token based on the given HTTP request
    22. 

  22. func (a *AuthAgent) NewTokenFromRequest(w http.ResponseWriter, r *http.Request) (string, error) {
    23. 

  23. 	if !a.CheckAuth(r) {
    24. 

  24. 		return "", errors.New("User not logged in")
    25. 

  25. 	} else {
    26. 

  26. 		//Generate a token for this request
    27. 

  27. 		username, _ := a.GetUserName(w, r)
    28. 

  28. 		newToken := a.NewToken(username)
    29. 

  29. 

  30. 		//Append it to the token storage
    31. 

  31. 		return newToken, nil
    32. 

  32. 	}
    33. 

  33. }
    34. 

  34. 

  35. //Generate and return a new token that will be valid for the given time
    36. 

  36. func (a *AuthAgent) NewToken(owner string) string {
    37. 

  37. 	//Generate a new token
    38. 

  38. 	newToken := uuid.NewV4().String()
    39. 

  39. 

  40. 	//Add token to tokenStore
    41. 

  41. 	a.tokenStore.Store(newToken, token{
    42. 

  42. 		Owner:        owner,
    43. 

  43. 		CreationTime: time.Now().Unix(),
    44. 

  44. 	})
    45. 

  45. 

  46. 	//Return the new token
    47. 

  47. 	return newToken
    48. 

  48. }
    49. 

  49. 

  50. //Get the token owner from the given token
    51. 

  51. func (a *AuthAgent) GetTokenOwner(tokenString string) (string, error) {
    52. 

  52. 	if val, ok := a.tokenStore.Load(tokenString); ok {
    53. 

  53. 		return val.(token).Owner, nil
    54. 

  54. 	} else {
    55. 

  55. 		return "", errors.New("Token not exists")
    56. 

  56. 	}
    57. 

  57. }
    58. 

  58. 

  59. //validate if the given token is valid
    60. 

  60. func (a *AuthAgent) TokenValid(tokenString string) bool {
    61. 

  61. 	//Check if the token validation is disabled
    62. 

  62. 	if a.ExpireTime == 0 {
    63. 

  63. 		return false
    64. 

  64. 	}
    65. 

  65. 

  66. 	//Check if key exists
    67. 

  67. 	if val, ok := a.tokenStore.Load(tokenString); ok {
    68. 

  68. 		//Exists. Check if the time fits
    69. 

  69. 		if time.Now().Unix()-val.(token).CreationTime < a.ExpireTime {
    70. 

  70. 			return true
    71. 

  71. 		} else {
    72. 

  72. 			//Expired
    73. 

  73. 			a.tokenStore.Delete(tokenString)
    74. 

  74. 			return false
    75. 

  75. 		}
    76. 

  76. 	}
    77. 

  77. 

  78. 	//Token not found
    79. 

  79. 	return false
    80. 

  80. }
    81. 

  81. 

  82. //Run a token store scan and remove all expired tokens
    83. 

  83. func (a *AuthAgent) ClearTokenStore() {
    84. 

  84. 	currentTime := time.Now().Unix()
    85. 

  85. 	a.tokenStore.Range(func(k interface{}, v interface{}) bool {
    86. 

  86. 		if currentTime-v.(token).CreationTime > a.ExpireTime {
    87. 

  87. 			a.tokenStore.Delete(k)
    88. 

  88. 		}
    89. 

  89. 		return true
    90. 

  90. 	})
    91. 

  91. }
    92.