From f1b7589b2936335957a6a1da1eea3d66233ad0ce Mon Sep 17 00:00:00 2001
From: Arda Serdar Pektezol <1669855+pektezol@users.noreply.github.com>
Date: Sat, 26 Aug 2023 08:53:24 +0300
Subject: refactor: reorganizing packages

Former-commit-id: 99410223654c2a5ffc15fdab6ec3e921b5410cba
---
 backend/api/auth.go | 65 +++++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 65 insertions(+)
 create mode 100644 backend/api/auth.go

(limited to 'backend/api/auth.go')

diff --git a/backend/api/auth.go b/backend/api/auth.go
new file mode 100644
index 0000000..91ef80c
--- /dev/null
+++ b/backend/api/auth.go
@@ -0,0 +1,65 @@
+package api
+
+import (
+	"fmt"
+	"os"
+	"time"
+
+	"github.com/gin-gonic/gin"
+	"github.com/golang-jwt/jwt/v4"
+	"github.com/pektezol/leastportalshub/backend/database"
+	"github.com/pektezol/leastportalshub/backend/models"
+)
+
+func CheckAuth(c *gin.Context) {
+	tokenString := c.GetHeader("Authorization")
+	// Validate token
+	token, err := jwt.Parse(tokenString, func(token *jwt.Token) (interface{}, error) {
+		if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok {
+			return nil, fmt.Errorf("unexpected signing method: %v", token.Header["alg"])
+		}
+		return []byte(os.Getenv("SECRET_KEY")), nil
+	})
+	if token == nil {
+		c.Next()
+		return
+	}
+	if err != nil {
+		c.Next()
+		return
+	}
+	if claims, ok := token.Claims.(jwt.MapClaims); ok && token.Valid {
+		// Check exp
+		if float64(time.Now().Unix()) > claims["exp"].(float64) {
+			c.Next()
+			return
+		}
+		// Get user from DB
+		var user models.User
+		database.DB.QueryRow(`SELECT u.steam_id, u.user_name, u.avatar_link, u.country_code, u.created_at, u.updated_at FROM users u WHERE steam_id = $1`, claims["sub"]).Scan(
+			&user.SteamID, &user.UserName, &user.AvatarLink,
+			&user.CountryCode, &user.CreatedAt, &user.UpdatedAt)
+		if user.SteamID == "" {
+			c.Next()
+			return
+		}
+		// Get user titles from DB
+		var moderator bool
+		user.Titles = []models.Title{}
+		rows, _ := database.DB.Query(`SELECT t.title_name, t.title_color FROM titles t INNER JOIN user_titles ut ON t.id=ut.title_id WHERE ut.user_id = $1`, user.SteamID)
+		for rows.Next() {
+			var title models.Title
+			rows.Scan(&title.Name, &title.Color)
+			if title.Name == "Moderator" {
+				moderator = true
+			}
+			user.Titles = append(user.Titles, title)
+		}
+		c.Set("user", user)
+		c.Set("mod", moderator)
+		c.Next()
+	} else {
+		c.Next()
+		return
+	}
+}
-- 
cgit v1.2.3