2020-05-06 03:45:12 +02:00
|
|
|
// Package main shows how to use a dependency to check if a user is logged in
|
|
|
|
// using a special custom Go type `Authenticated`, which when,
|
|
|
|
// present on a controller's method or a field then
|
|
|
|
// it limits the visibility to "authenticated" users only.
|
|
|
|
//
|
|
|
|
// The same result could be done through a middleware as well, however using a static type
|
|
|
|
// any person reads your code can see that an "X" controller or method
|
|
|
|
// should only be used by "authenticated" users.
|
|
|
|
package main
|
|
|
|
|
|
|
|
import (
|
|
|
|
"github.com/kataras/iris/v12"
|
|
|
|
"github.com/kataras/iris/v12/mvc"
|
|
|
|
"github.com/kataras/iris/v12/sessions"
|
|
|
|
)
|
|
|
|
|
|
|
|
func main() {
|
2020-06-14 14:24:42 +02:00
|
|
|
app := newApp()
|
2020-08-28 05:21:26 +02:00
|
|
|
// app.UseRouter(iris.Compression)
|
2020-05-06 03:45:12 +02:00
|
|
|
app.Logger().SetLevel("debug")
|
|
|
|
|
2020-06-14 14:24:42 +02:00
|
|
|
// Open a client, e.g. Postman and visit the below endpoints.
|
|
|
|
// GET: http://localhost:8080/user (UnauthenticatedUserController.Get)
|
|
|
|
// POST: http://localhost:8080/user/login (UnauthenticatedUserController.PostLogin)
|
|
|
|
// GET: http://localhost:8080/user (UserController.Get)
|
|
|
|
// POST: http://localhost:8080/user/logout (UserController.PostLogout)
|
|
|
|
app.Listen(":8080")
|
|
|
|
}
|
|
|
|
|
|
|
|
func newApp() *iris.Application {
|
|
|
|
app := iris.New()
|
2020-05-06 03:45:12 +02:00
|
|
|
sess := sessions.New(sessions.Config{
|
|
|
|
Cookie: "myapp_session_id",
|
|
|
|
AllowReclaim: true,
|
|
|
|
})
|
|
|
|
app.Use(sess.Handler())
|
|
|
|
|
|
|
|
userRouter := app.Party("/user")
|
|
|
|
{
|
2020-06-14 07:09:42 +02:00
|
|
|
// Use that in order to be able to register a route twice,
|
|
|
|
// last one will be executed if the previous route's handler(s) stopped and the response can be reset-ed.
|
|
|
|
// See core/router/route_register_rule_test.go#TestRegisterRuleOverlap.
|
|
|
|
userRouter.SetRegisterRule(iris.RouteOverlap)
|
|
|
|
|
2020-05-06 03:45:12 +02:00
|
|
|
// Initialize a new MVC application on top of the "userRouter".
|
|
|
|
userApp := mvc.New(userRouter)
|
|
|
|
// Register Dependencies.
|
|
|
|
userApp.Register(authDependency)
|
|
|
|
|
|
|
|
// Register Controllers.
|
|
|
|
userApp.Handle(new(UserController))
|
2020-06-14 07:09:42 +02:00
|
|
|
userApp.Handle(new(UnauthenticatedUserController))
|
2020-05-06 03:45:12 +02:00
|
|
|
}
|
|
|
|
|
2020-06-14 14:24:42 +02:00
|
|
|
return app
|
2020-05-06 03:45:12 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
// Authenticated is a custom type used as "annotation" for resources that requires authentication,
|
|
|
|
// its value should be the logged user ID.
|
|
|
|
type Authenticated uint64
|
|
|
|
|
|
|
|
func authDependency(ctx iris.Context, session *sessions.Session) Authenticated {
|
|
|
|
userID := session.GetUint64Default("user_id", 0)
|
|
|
|
if userID == 0 {
|
|
|
|
// If execution was stopped
|
|
|
|
// any controller's method will not be executed at all.
|
2020-08-28 03:11:56 +02:00
|
|
|
//
|
|
|
|
// Note that, the below will not fire the error to the user:
|
|
|
|
// ctx.StopWithStatus(iris.StatusUnauthorized)
|
|
|
|
// because of the imaginary:
|
|
|
|
// UnauthenticatedUserController.Get() (string, int) {
|
|
|
|
// return "...", iris.StatusOK
|
|
|
|
// }
|
|
|
|
//
|
|
|
|
// OR
|
|
|
|
// If you don't want to set a status code at all:
|
|
|
|
ctx.StopExecution()
|
2020-05-06 03:45:12 +02:00
|
|
|
return 0
|
|
|
|
}
|
|
|
|
|
|
|
|
return Authenticated(userID)
|
|
|
|
}
|
|
|
|
|
2020-06-14 07:09:42 +02:00
|
|
|
// UnauthenticatedUserController serves the "public" Unauthorized User API.
|
|
|
|
type UnauthenticatedUserController struct{}
|
|
|
|
|
2020-06-14 14:24:42 +02:00
|
|
|
// Get registers a route that will be executed when authentication is not passed
|
|
|
|
// (see UserController.Get) too.
|
|
|
|
func (c *UnauthenticatedUserController) Get() string {
|
2020-06-18 08:36:47 +02:00
|
|
|
return "custom action to redirect on authentication page"
|
2020-06-14 07:09:42 +02:00
|
|
|
}
|
|
|
|
|
2020-05-06 03:45:12 +02:00
|
|
|
// PostLogin serves
|
|
|
|
// POST: /user/login
|
2020-06-14 14:24:42 +02:00
|
|
|
func (c *UnauthenticatedUserController) PostLogin(session *sessions.Session) mvc.Response {
|
|
|
|
session.Set("user_id", 1)
|
2020-05-06 03:45:12 +02:00
|
|
|
|
|
|
|
// Redirect (you can still use the Context.Redirect if you want so).
|
|
|
|
return mvc.Response{
|
|
|
|
Path: "/user",
|
|
|
|
Code: iris.StatusFound,
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-06-14 14:24:42 +02:00
|
|
|
// UserController serves the "public" User API.
|
|
|
|
type UserController struct {
|
2020-05-06 03:45:12 +02:00
|
|
|
CurrentUserID Authenticated
|
|
|
|
}
|
|
|
|
|
2020-05-16 00:00:51 +02:00
|
|
|
// Get returns a message for the sake of the example.
|
2020-05-06 03:45:12 +02:00
|
|
|
// GET: /user
|
2020-06-14 14:24:42 +02:00
|
|
|
func (c *UserController) Get() string {
|
|
|
|
return `UserController.Get: The Authenticated type
|
|
|
|
can be used to secure a controller's method too.`
|
|
|
|
}
|
|
|
|
|
|
|
|
// PostLogout serves
|
|
|
|
// POST: /user/logout
|
|
|
|
func (c *UserController) PostLogout(ctx iris.Context) {
|
|
|
|
sessions.Get(ctx).Man.Destroy(ctx)
|
2020-05-06 03:45:12 +02:00
|
|
|
}
|