0ct0pu5/ente
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
ente/server/pkg/utils/auth/auth.go
Neeraj Gupta 531bb344fe Import museum
2024-03-01 13:37:01 +05:30

137 lines
3.5 KiB
Go
Raw Permalink Blame History

package auth
import (
"crypto/rand"
"encoding/base64"
"github.com/ente-io/museum/ente/cast"
"math/big"
"net/http"
"strconv"
"strings"
"github.com/ente-io/museum/ente"
"github.com/ente-io/stacktrace"
"github.com/gin-gonic/gin"
"golang.org/x/crypto/bcrypt"
)
const (
PublicAccessKey = "X-Public-Access-ID"
CastContext = "X-Cast-Context"
)
// GenerateRandomBytes returns securely generated random bytes.
// It will return an error if the system's secure random
// number generator fails to function correctly, in which
// case the caller should not continue.
func GenerateRandomBytes(n int) ([]byte, error) {
b := make([]byte, n)
_, err := rand.Read(b)
// Note that err == nil only if we read len(b) bytes.
if err != nil {
return nil, stacktrace.Propagate(err, "")
}
return b, nil
}
// GenerateRandomInt returns a securely generated random integer in [0, n).
//
// It will return an error if the system's secure random number generator fails
// to function correctly, in which case the caller should not continue.
func GenerateRandomInt(n int64) (int64, error) {
r, err := rand.Int(rand.Reader, big.NewInt(n))
if err != nil {
return 0, stacktrace.Propagate(err, "")
}
return r.Int64(), nil
}
// GenerateURLSafeRandomString returns a URL-safe, base64 encoded
// securely generated random string.
// It will return an error if the system's secure random
// number generator fails to function correctly, in which
// case the caller should not continue.
func GenerateURLSafeRandomString(s int) (string, error) {
b, err := GenerateRandomBytes(s)
return base64.URLEncoding.EncodeToString(b), stacktrace.Propagate(err, "")
}
// GetHashedPassword returns the has of a specified password
func GetHashedPassword(password string) (string, error) {
saltedBytes := []byte(password)
hashedBytes, err := bcrypt.GenerateFromPassword(saltedBytes, bcrypt.DefaultCost)
if err != nil {
return "", stacktrace.Propagate(err, "")
}
hash := string(hashedBytes[:])
return hash, nil
}
// CompareHashes compares a bcrypt hashed password with its possible plaintext
// equivalent. Returns nil on success, or an error on failure.
func CompareHashes(hash string, s string) error {
existing := []byte(hash)
incoming := []byte(s)
return bcrypt.CompareHashAndPassword(existing, incoming)
}
// GetUserID fetches the userID embedded in a request header
func GetUserID(header http.Header) int64 {
userID, _ := strconv.ParseInt(header.Get("X-Auth-User-ID"), 10, 64)
return userID
}
func GetApp(c *gin.Context) ente.App {
if strings.HasPrefix(c.GetHeader("X-Client-Package"), "io.ente.auth") {
return ente.Auth
}
if strings.HasPrefix(c.GetHeader("X-Client-Package"), "io.ente.locker") {
return ente.Locker
}
return ente.Photos
}
func GetToken(c *gin.Context) string {
token := c.GetHeader("X-Auth-Token")
if token == "" {
token = c.Query("token")
}
return token
}
func GetAccessToken(c *gin.Context) string {
token := c.GetHeader("X-Auth-Access-Token")
if token == "" {
token = c.Query("accessToken")
}
return token
}
func GetCastToken(c *gin.Context) string {
token := c.GetHeader("X-Cast-Access-Token")
if token == "" {
token = c.Query("castToken")
}
return token
}
func GetAccessTokenJWT(c *gin.Context) string {
token := c.GetHeader("X-Auth-Access-Token-JWT")
if token == "" {
token = c.Query("accessTokenJWT")
}
return token
}
func MustGetPublicAccessContext(c *gin.Context) ente.PublicAccessContext {
return c.MustGet(PublicAccessKey).(ente.PublicAccessContext)
}
func GetCastCtx(c *gin.Context) cast.AuthContext {
return c.MustGet(CastContext).(cast.AuthContext)
}
Reference in a new issue View git blame Copy permalink