aboutsummaryrefslogtreecommitdiff
path: root/backend/internal/server/middleware/auth.go
diff options
context:
space:
mode:
Diffstat (limited to 'backend/internal/server/middleware/auth.go')
-rw-r--r--backend/internal/server/middleware/auth.go46
1 files changed, 46 insertions, 0 deletions
diff --git a/backend/internal/server/middleware/auth.go b/backend/internal/server/middleware/auth.go
new file mode 100644
index 0000000..f01e4b9
--- /dev/null
+++ b/backend/internal/server/middleware/auth.go
@@ -0,0 +1,46 @@
+package middleware
+
+import (
+ "context"
+ "net/http"
+ "time"
+
+ "ibd-trader/internal/database"
+)
+
+const SessionCookie = "_session"
+
+func Auth(store database.SessionStore) func(next http.Handler) http.Handler {
+ return func(next http.Handler) http.Handler {
+ return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+ // Get session cookie
+ cookie, err := r.Cookie(SessionCookie)
+ if err != nil {
+ http.Error(w, "Unauthorized", http.StatusUnauthorized)
+ return
+ }
+
+ // Check session
+ session, err := store.GetSession(r.Context(), cookie.Value)
+ if err != nil {
+ http.Error(w, "Error getting session", http.StatusInternalServerError)
+ return
+ }
+ if session == nil {
+ http.Error(w, "Unauthorized", http.StatusUnauthorized)
+ return
+ }
+
+ // Check session expiry
+ if session.OAuthToken.Expiry.Before(time.Now()) {
+ http.Error(w, "Session expired", http.StatusUnauthorized)
+ return
+ }
+
+ // Add session to context
+ ctx := context.WithValue(r.Context(), "session", session)
+
+ next.ServeHTTP(w, r.WithContext(ctx))
+ })
+ }
+}
generated by cgit v1.2.3 (git 2.46.0) at 2025-10-04 15:42:52 +0000