frostfs-s3-gw/api/user-auth.go

34 lines
943 B
Go
Raw Normal View History

package api
2020-07-16 15:33:47 +00:00
import (
"context"
2020-07-16 15:33:47 +00:00
"net/http"
"github.com/gorilla/mux"
"github.com/nspcc-dev/neofs-s3-gw/api/auth"
2020-07-16 15:33:47 +00:00
"go.uber.org/zap"
)
// KeyWrapper is wrapper for context keys.
type KeyWrapper string
// BearerTokenKey is an ID used to store bearer token in a context.
var BearerTokenKey = KeyWrapper("__context_bearer_token_key")
// AttachUserAuth adds user authentication via center to router using log for logging.
func AttachUserAuth(router *mux.Router, center auth.Center, log *zap.Logger) {
router.Use(func(h http.Handler) http.Handler {
2020-07-16 15:33:47 +00:00
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
token, err := center.Authenticate(r)
2020-07-16 15:33:47 +00:00
if err != nil {
log.Error("failed to pass authentication", zap.Error(err))
2020-07-27 22:54:47 +00:00
WriteErrorResponse(r.Context(), w, GetAPIError(ErrAccessDenied), r.URL)
2020-07-24 14:05:33 +00:00
return
2020-07-16 15:33:47 +00:00
}
h.ServeHTTP(w, r.WithContext(
context.WithValue(r.Context(), BearerTokenKey, token)))
2020-07-16 15:33:47 +00:00
})
})
2020-07-16 15:33:47 +00:00
}