rpdata
/
api
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
GraphQL API and utilities for the rpdata project
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
270 Commits
6 Branches
38 Tags
5.6 MiB
Tree: 6321ea1893
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '6321ea1893'
${ noResults }
api/models/token.go

48 lines
1.2 KiB
Raw Normal View History

auth: Moved token and user to models package, added graphql endpoint to check token
6 years ago
  1. package models
  3. // A Token contains the parsed results from an bearer token. Its methods are safe to use with a nil receiver, but
  4. // the userID should be checked.
  5. type Token struct {
  6. UserID string
  7. Permissions []string
  8. }
  10. // Authenticated returns true if the token is non-nil and parsed
  11. func (token *Token) Authenticated() bool {
  12. return token != nil && token.UserID != ""
  13. }
  15. // Permitted returns true if the token is non-nil and has the given permission or the "admin" permission
  16. func (token *Token) Permitted(permissions ...string) bool {
  17. if token == nil {
  18. return false
  19. }
  21. for _, tokenPermission := range token.Permissions {
  22. if tokenPermission == "admin" {
  23. return true
  24. }
  26. for _, permission := range permissions {
  27. if permission == tokenPermission {
  28. return true
  29. }
  30. }
  31. }
  33. return false
  34. }
  36. // PermittedUser checks the first permission if the user matches, the second otherwise. This is a common
  37. // pattern.
  38. func (token *Token) PermittedUser(userID, permissionIfUser, permissionOtherwise string) bool {
  39. if token == nil {
  40. return false
  41. }
  43. if token.UserID == userID {
  44. return token.Permitted(permissionIfUser)
  45. }
  47. return token.Permitted(permissionOtherwise)
  48. }