mirror of
https://github.com/1f349/lavender.git
synced 2024-11-13 23:21:38 +00:00
34 lines
784 B
Go
34 lines
784 B
Go
|
package server
|
||
|
|
||
|
import (
|
||
|
"github.com/1f349/violet/utils"
|
||
|
"github.com/MrMelon54/mjwt"
|
||
|
"github.com/MrMelon54/mjwt/auth"
|
||
|
"github.com/julienschmidt/httprouter"
|
||
|
"net/http"
|
||
|
)
|
||
|
|
||
|
func (h *HttpServer) verifyHandler(rw http.ResponseWriter, req *http.Request, _ httprouter.Params) {
|
||
|
// find bearer token
|
||
|
bearer := utils.GetBearer(req)
|
||
|
if bearer == "" {
|
||
|
http.Error(rw, "Missing bearer", http.StatusForbidden)
|
||
|
return
|
||
|
}
|
||
|
|
||
|
// after this mjwt is considered valid
|
||
|
_, b, err := mjwt.ExtractClaims[auth.AccessTokenClaims](h.signer, bearer)
|
||
|
if err != nil {
|
||
|
http.Error(rw, "Invalid token", http.StatusForbidden)
|
||
|
return
|
||
|
}
|
||
|
|
||
|
// check issuer against config
|
||
|
if b.Issuer != h.baseUrl {
|
||
|
http.Error(rw, "Invalid issuer", http.StatusBadRequest)
|
||
|
return
|
||
|
}
|
||
|
|
||
|
rw.WriteHeader(http.StatusOK)
|
||
|
}
|