casdoor/routers/base.go

// Copyright 2021 The casbin Authors. All Rights Reserved.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//      http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

package routers

import (
	"fmt"

	"github.com/astaxie/beego/context"
	"github.com/casbin/casdoor/object"
)

type Response struct {
	Status string      `json:"status"`
	Msg    string      `json:"msg"`
	Data   interface{} `json:"data"`
	Data2  interface{} `json:"data2"`
}

func responseError(ctx *context.Context, error string, data ...interface{}) {
	resp := Response{Status: "error", Msg: error}
	switch len(data) {
	case 2:
		resp.Data2 = data[1]
		fallthrough
	case 1:
		resp.Data = data[0]
	}

	err := ctx.Output.JSON(resp, true, false)
	if err != nil {
		panic(err)
	}
}

func denyRequest(ctx *context.Context) {
	responseError(ctx, "Unauthorized operation")
}

func getUsernameByClientIdSecret(ctx *context.Context) string {
	clientId := ctx.Input.Query("clientId")
	clientSecret := ctx.Input.Query("clientSecret")
	if clientId == "" || clientSecret == "" {
		return ""
	}

	application := object.GetApplicationByClientId(clientId)
	if application == nil || application.ClientSecret != clientSecret {
		return ""
	}

	return fmt.Sprintf("app/%s", application.Name)
}
Return 200 for denied request. 2021-08-14 14:02:45 +08:00			`// Copyright 2021 The casbin Authors. All Rights Reserved.`
			`//`
			`// Licensed under the Apache License, Version 2.0 (the "License");`
			`// you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at`
			`//`
			`// http://www.apache.org/licenses/LICENSE-2.0`
			`//`
			`// Unless required by applicable law or agreed to in writing, software`
			`// distributed under the License is distributed on an "AS IS" BASIS,`
			`// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`// See the License for the specific language governing permissions and`
			`// limitations under the License.`

			`package routers`

Support server-side upload-resource call. 2021-09-05 01:03:29 +08:00			`import (`
			`"fmt"`

			`"github.com/astaxie/beego/context"`
			`"github.com/casbin/casdoor/object"`
			`)`
Return 200 for denied request. 2021-08-14 14:02:45 +08:00
			`type Response struct {`
			Status string `json:"status"`
			Msg string `json:"msg"`
			Data interface{} `json:"data"`
			Data2 interface{} `json:"data2"`
			`}`

			`func responseError(ctx *context.Context, error string, data ...interface{}) {`
			`resp := Response{Status: "error", Msg: error}`
			`switch len(data) {`
			`case 2:`
			`resp.Data2 = data[1]`
			`fallthrough`
			`case 1:`
			`resp.Data = data[0]`
			`}`

			`err := ctx.Output.JSON(resp, true, false)`
			`if err != nil {`
			`panic(err)`
			`}`
			`}`

			`func denyRequest(ctx *context.Context) {`
			`responseError(ctx, "Unauthorized operation")`
			`}`
Support server-side upload-resource call. 2021-09-05 01:03:29 +08:00
			`func getUsernameByClientIdSecret(ctx *context.Context) string {`
			`clientId := ctx.Input.Query("clientId")`
			`clientSecret := ctx.Input.Query("clientSecret")`
			`if clientId == "" \|\| clientSecret == "" {`
			`return ""`
			`}`

			`application := object.GetApplicationByClientId(clientId)`
			`if application == nil \|\| application.ClientSecret != clientSecret {`
			`return ""`
			`}`

			`return fmt.Sprintf("app/%s", application.Name)`
			`}`