42 lines
779 B
Go
42 lines
779 B
Go
package web
|
|
|
|
import (
|
|
"errors"
|
|
"net/http"
|
|
"time"
|
|
|
|
"github.com/labstack/echo/v4"
|
|
)
|
|
|
|
var sessions map[string]time.Time
|
|
|
|
func init() {
|
|
sessions = make(map[string]time.Time)
|
|
}
|
|
|
|
func checkAuth(token string) error {
|
|
for sToken, expiree := range sessions {
|
|
// Expire old sessions
|
|
if time.Now().After(expiree) {
|
|
delete(sessions, sToken)
|
|
continue
|
|
}
|
|
// Check for valid session of token
|
|
if token == sToken {
|
|
return nil
|
|
}
|
|
}
|
|
|
|
return errors.New("this token is not associated with a valid session")
|
|
}
|
|
|
|
func withAuth(handler echo.HandlerFunc) echo.HandlerFunc {
|
|
return func(c echo.Context) error {
|
|
session, err := c.Cookie("session")
|
|
if err != nil || checkAuth(session.Value) != nil {
|
|
return c.Redirect(http.StatusSeeOther, "/")
|
|
}
|
|
return handler(c)
|
|
}
|
|
}
|