1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
|
package handlers
import (
"encoding/json"
"fmt"
"io"
"net/http"
"os"
"time"
"github.com/gin-gonic/gin"
"github.com/golang-jwt/jwt/v4"
"github.com/pektezol/leastportalshub/backend/database"
"github.com/pektezol/leastportalshub/backend/models"
"github.com/solovev/steam_go"
)
type LoginResponse struct {
Token string `json:"token"`
}
// Login
//
// @Description Get (redirect) login page for Steam auth.
// @Tags login
// @Accept json
// @Produce json
// @Success 200 {object} models.Response{data=LoginResponse}
// @Failure 400 {object} models.Response
// @Router /login [get]
func Login(c *gin.Context) {
openID := steam_go.NewOpenId(c.Request)
switch openID.Mode() {
case "":
c.Redirect(http.StatusMovedPermanently, openID.AuthUrl())
case "cancel":
c.Redirect(http.StatusMovedPermanently, "/")
default:
steamID, err := openID.ValidateAndGetId()
if err != nil {
CreateLog(steamID, LogTypeLogin, LogDescriptionLoginFailValidate)
c.JSON(http.StatusBadRequest, models.ErrorResponse(err.Error()))
return
}
// Create user if new
var checkSteamID int64
database.DB.QueryRow("SELECT steam_id FROM users WHERE steam_id = $1", steamID).Scan(&checkSteamID)
// User does not exist
if checkSteamID == 0 {
user, err := GetPlayerSummaries(steamID, os.Getenv("API_KEY"))
if err != nil {
CreateLog(steamID, LogTypeLogin, LogDescriptionLoginFailSummary)
c.JSON(http.StatusBadRequest, models.ErrorResponse(err.Error()))
return
}
// Empty country code check
if user.LocCountryCode == "" {
user.LocCountryCode = "XX"
}
// Insert new user to database
database.DB.Exec(`INSERT INTO users (steam_id, user_name, avatar_link, country_code)
VALUES ($1, $2, $3, $4)`, steamID, user.PersonaName, user.AvatarFull, user.LocCountryCode)
}
moderator := false
rows, _ := database.DB.Query("SELECT title_name FROM titles t INNER JOIN user_titles ut ON t.id=ut.title_id WHERE ut.user_id = $1", steamID)
for rows.Next() {
var title string
rows.Scan(&title)
if title == "Moderator" {
moderator = true
}
}
// Generate JWT token
token := jwt.NewWithClaims(jwt.SigningMethodHS256, jwt.MapClaims{
"sub": steamID,
"exp": time.Now().Add(time.Hour * 24 * 30).Unix(),
"mod": moderator,
})
// Sign and get the complete encoded token as a string using the secret
tokenString, err := token.SignedString([]byte(os.Getenv("SECRET_KEY")))
if err != nil {
CreateLog(steamID, LogTypeLogin, LogDescriptionLoginFailToken)
c.JSON(http.StatusBadRequest, models.ErrorResponse("Failed to generate token."))
return
}
c.SetCookie("token", tokenString, 3600*24*30, "/", "", true, true)
CreateLog(steamID, LogTypeLogin, LogDescriptionLoginSuccess)
c.Redirect(http.StatusTemporaryRedirect, "/")
// c.JSON(http.StatusOK, models.Response{
// Success: true,
// Message: "Successfully generated token.",
// Data: LoginResponse{
// Token: tokenString,
// },
// })
return
}
}
// GET Token
//
// @Description Gets the token cookie value from the user.
// @Tags auth
// @Produce json
//
// @Success 200 {object} models.Response{data=LoginResponse}
// @Failure 404 {object} models.Response
// @Router /token [get]
func GetCookie(c *gin.Context) {
cookie, err := c.Cookie("token")
if err != nil {
c.JSON(http.StatusNotFound, models.ErrorResponse("No token cookie found."))
return
}
c.JSON(http.StatusOK, models.Response{
Success: true,
Message: "Token cookie successfully retrieved.",
Data: LoginResponse{
Token: cookie,
},
})
}
// DELETE Token
//
// @Description Deletes the token cookie from the user.
// @Tags auth
// @Produce json
//
// @Success 200 {object} models.Response{data=LoginResponse}
// @Failure 404 {object} models.Response
// @Router /token [delete]
func DeleteCookie(c *gin.Context) {
cookie, err := c.Cookie("token")
if err != nil {
c.JSON(http.StatusNotFound, models.ErrorResponse("No token cookie found."))
return
}
c.SetCookie("token", "", -1, "/", "", true, true)
c.JSON(http.StatusOK, models.Response{
Success: true,
Message: "Token cookie successfully deleted.",
Data: LoginResponse{
Token: cookie,
},
})
}
func GetPlayerSummaries(steamId, apiKey string) (*models.PlayerSummaries, error) {
url := fmt.Sprintf("http://api.steampowered.com/ISteamUser/GetPlayerSummaries/v2/?key=%s&steamids=%s", apiKey, steamId)
resp, err := http.Get(url)
if err != nil {
return nil, err
}
body, err := io.ReadAll(resp.Body)
if err != nil {
return nil, err
}
type Result struct {
Response struct {
Players []models.PlayerSummaries `json:"players"`
} `json:"response"`
}
var data Result
if err := json.Unmarshal(body, &data); err != nil {
return nil, err
}
return &data.Response.Players[0], err
}
|