github.com/greenpau/go-authcrunch@v1.1.4/pkg/authn/api_test_user_api_key.go

github.com/greenpau/go-authcrunch@v1.1.4/pkg/authn/api_test_user_api_key.go (about)

     1  // Copyright 2024 Paul Greenberg greenpau@outlook.com
     2  //
     3  // Licensed under the Apache License, Version 2.0 (the "License");
     4  // you may not use this file except in compliance with the License.
     5  // You may obtain a copy of the License at
     6  //
     7  //     http://www.apache.org/licenses/LICENSE-2.0
     8  //
     9  // Unless required by applicable law or agreed to in writing, software
    10  // distributed under the License is distributed on an "AS IS" BASIS,
    11  // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    12  // See the License for the specific language governing permissions and
    13  // limitations under the License.
    14  
    15  package authn
    16  
    17  import (
    18  	"context"
    19  	"net/http"
    20  
    21  	"github.com/greenpau/go-authcrunch/pkg/authn/enums/operator"
    22  	"github.com/greenpau/go-authcrunch/pkg/identity"
    23  	"github.com/greenpau/go-authcrunch/pkg/ids"
    24  	"github.com/greenpau/go-authcrunch/pkg/requests"
    25  	"github.com/greenpau/go-authcrunch/pkg/user"
    26  )
    27  
    28  // TestUserAPIKey tests API key.
    29  func (p *Portal) TestUserAPIKey(
    30  	ctx context.Context,
    31  	w http.ResponseWriter,
    32  	r *http.Request,
    33  	rr *requests.Request,
    34  	parsedUser *user.User,
    35  	resp map[string]interface{},
    36  	usr *user.User,
    37  	backend ids.IdentityStore,
    38  	bodyData map[string]interface{}) error {
    39  
    40  	rr.Key.Usage = "api"
    41  
    42  	var keyContent string
    43  
    44  	// Extract data.
    45  	if v, exists := bodyData["id"]; exists {
    46  		switch keyID := v.(type) {
    47  		case string:
    48  			rr.Key.ID = keyID
    49  		default:
    50  			resp["message"] = "Profile API did find key id in the request payload, but it is malformed"
    51  			return handleAPIProfileResponse(w, rr, http.StatusBadRequest, resp)
    52  		}
    53  	} else {
    54  		resp["message"] = "Profile API did not find key id in the request payload"
    55  		return handleAPIProfileResponse(w, rr, http.StatusBadRequest, resp)
    56  	}
    57  	if v, exists := bodyData["content"]; exists {
    58  		switch exp := v.(type) {
    59  		case string:
    60  			keyContent = exp
    61  		default:
    62  			resp["message"] = "Profile API did find key content in the request payload, but it is malformed"
    63  			return handleAPIProfileResponse(w, rr, http.StatusBadRequest, resp)
    64  		}
    65  	} else {
    66  		resp["message"] = "Profile API did not find key content in the request payload"
    67  		return handleAPIProfileResponse(w, rr, http.StatusBadRequest, resp)
    68  	}
    69  
    70  	if err := backend.Request(operator.GetAPIKey, rr); err != nil {
    71  		resp["message"] = "Profile API failed to get API key"
    72  		return handleAPIProfileResponse(w, rr, http.StatusInternalServerError, resp)
    73  	}
    74  	apiKey := rr.Response.Payload.(*identity.APIKey)
    75  
    76  	if !apiKey.Match(keyContent) {
    77  		resp["message"] = "Profile API failed to validate provided API key"
    78  		return handleAPIProfileResponse(w, rr, http.StatusInternalServerError, resp)
    79  	}
    80  
    81  	resp["entry"] = "OK"
    82  	return handleAPIProfileResponse(w, rr, http.StatusOK, resp)
    83  }