-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathserver.go
92 lines (78 loc) · 2.01 KB
/
server.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
package main
import (
"fmt"
"net/http"
"github.com/gin-contrib/sessions"
"github.com/gin-contrib/sessions/cookie"
"github.com/gin-contrib/static"
"github.com/gin-gonic/gin"
)
type arguments struct {
LogLevel string
Endpoint string
BindAddress string
BindPort int
StaticContents string
HelloReply string
APIKey string
AuthzFilePath string
// Google OAuth options
GoogleOAuthConfig string
GoogleOAuthConfigData string
// JWT
JWTSecret string
}
func runServer(args arguments) error {
if err := setupLogger(args.LogLevel); err != nil {
return err
}
r := gin.Default()
store := cookie.NewStore([]byte("auth"))
r.Use(sessions.Sessions("strix", store))
r.Use(static.Serve("/", static.LocalFile(args.StaticContents, false)))
r.GET("/hello/revision", func(c *gin.Context) {
c.String(200, args.HelloReply)
})
// Setup session manager
authz, err := newAuthzServiceFromFile(args.AuthzFilePath)
if err != nil {
return err
}
ssnMgr := newSessionManager(args.JWTSecret)
authCheck := func(c *gin.Context) {
user, err := ssnMgr.validate(c)
if err != nil {
logger.WithError(err).Warn("Authentication Fail")
c.JSON(http.StatusUnauthorized, gin.H{"msg": "Authentication failed"})
} else {
c.Set("user", user.UserID)
c.Next()
}
}
// Auth route group
authGroup := r.Group("/auth")
if err := setupAuth(ssnMgr, authGroup); err != nil {
return err
}
if args.GoogleOAuthConfig != "" {
if err := setupAuthGoogleConfigFile(ssnMgr, args.GoogleOAuthConfig, authGroup); err != nil {
return err
}
}
if args.GoogleOAuthConfigData != "" {
if err := setupAuthGoogleBase64(ssnMgr, args.GoogleOAuthConfigData, authGroup); err != nil {
return err
}
}
// API route group
apiGroup := r.Group("/api/v1")
apiGroup.Use(authCheck)
if err := setupAPI(authz, args.APIKey, args.Endpoint, apiGroup); err != nil {
return err
}
// Start server
if err := r.Run(fmt.Sprintf("%s:%d", args.BindAddress, args.BindPort)); err != nil {
return err
}
return nil
}