-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathauth.go
112 lines (99 loc) · 2.62 KB
/
auth.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
package main
import (
"fmt"
"github.com/golang-jwt/jwt"
"html/template"
"net/http"
"path"
"time"
)
var SECRET_KEY = []byte("secret_key")
func generateJWT(login string) string {
token := jwt.NewWithClaims(jwt.SigningMethodHS256, jwt.MapClaims{
"login": login,
"exp": time.Now().Add(time.Hour * 24).Unix(),
})
tokenString, _ := token.SignedString(SECRET_KEY)
return tokenString
}
func validateJWT(tokenString string) (string, error) {
token, err := jwt.Parse(tokenString, func(token *jwt.Token) (interface{}, error) {
if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok {
return nil, fmt.Errorf("invalid token")
}
return SECRET_KEY, nil
})
if err != nil {
return "", err
}
if claims, ok := token.Claims.(jwt.MapClaims); ok && token.Valid {
login, ok := claims["login"].(string)
if !ok {
return "", fmt.Errorf("invalid token")
}
exp, ok := claims["exp"].(float64)
if !ok || time.Unix(int64(exp), 0).Before(time.Now()) {
return "", fmt.Errorf("invalid token")
}
return login, nil
}
return "", fmt.Errorf("invalid token")
}
func getLogin(r *http.Request) (string, error) {
token, errToken := r.Cookie("token")
if errToken != nil {
return "", fmt.Errorf("no token")
}
return validateJWT(token.Value)
}
func handleLogout(w http.ResponseWriter, r *http.Request) {
resetCookie(w)
redirectToIndex(w, r)
}
func checkSession(r *http.Request) bool {
_, err := getLogin(r)
if err == nil {
return true
} else {
return false
}
}
func handleRegistration(w http.ResponseWriter, r *http.Request) {
if r.Method == "GET" {
page, _ := template.ParseFiles(path.Join("html", "registration.html"))
page.Execute(w, "")
} else {
username := r.URL.Query().Get("username")
login := r.URL.Query().Get("login")
password := r.URL.Query().Get("password")
if !isFreeLogin(login) {
fmt.Fprintf(w, "not free login")
return
}
if len(login) > 42 || len(username) > 42 {
fmt.Fprintf(w, "too long")
return
}
if username == "" || login == "" || password == "" || insertUser(login, password, username) != nil {
fmt.Fprintf(w, "wrong")
return
}
http.SetCookie(w, &http.Cookie{Name: "token", Value: generateJWT(login)})
fmt.Fprintf(w, "ok")
}
}
func handleLogin(w http.ResponseWriter, r *http.Request) {
if r.Method == "GET" {
page, _ := template.ParseFiles(path.Join("html", "login.html"))
page.Execute(w, "")
} else {
login := r.URL.Query().Get("login")
password := r.URL.Query().Get("password")
if getPassword(login) != password {
fmt.Fprintf(w, "wrong")
return
}
http.SetCookie(w, &http.Cookie{Name: "token", Value: generateJWT(login)})
fmt.Fprint(w, "ok")
}
}