databag/net/server/internal/api_authorize.go

package databag

import (
  "crypto"
  "crypto/rand"
  "crypto/sha256"
  "crypto/rsa"
	"net/http"
  "encoding/json"
  "encoding/base64"
  "time"
)

func Authorize(w http.ResponseWriter, r *http.Request) {

  account, res := BearerAppToken(r, true);
  if res != nil {
    w.WriteHeader(http.StatusUnauthorized)
    return
  }
  if account.Disabled {
    w.WriteHeader(http.StatusGone);
    return
  }

  // extract token from body
  var token string
  err := ParseRequest(r, w, &token)
  if err != nil {
    w.WriteHeader(http.StatusBadRequest)
    return
  }

  // load details to sign data
  if account.AccountDetail.KeyType != "RSA4096" {
    w.WriteHeader(http.StatusServiceUnavailable)
    return
  }
  privateKey, res := ParseRsaPrivateKeyFromPemStr(account.AccountDetail.PrivateKey);
  if  res != nil {
    w.WriteHeader(http.StatusInternalServerError)
    return
  }

  // generate message
  auth := Authenticate{
    Guid: account.Guid,
    Token: token,
    Timestamp: time.Now().Unix(),
  }
  var data []byte
  data, err = json.Marshal(auth);
  if err != nil {
    w.WriteHeader(http.StatusInternalServerError)
    return
  }
  hash := sha256.Sum256(data);
  var signature []byte
  signature, err = rsa.SignPKCS1v15(rand.Reader, privateKey, crypto.SHA256, hash[:])
  if err != nil {
    w.WriteHeader(http.StatusInternalServerError)
    return
  }
  msg := DataMessage{
    MessageType: "authenticate",
    Message: base64.StdEncoding.EncodeToString([]byte(data)),
    KeyType: account.AccountDetail.KeyType,
    PublicKey: base64.StdEncoding.EncodeToString([]byte(account.AccountDetail.PublicKey)),
    Signature: base64.StdEncoding.EncodeToString(signature),
    SignatureType: "PKCS1v15",
  }

  WriteResponse(w, msg)
}
adding server stub 2022-01-11 06:20:32 +00:00			`package databag`

			`import (`
generate and validate authorization message 2022-01-19 04:46:45 +00:00			`"crypto"`
			`"crypto/rand"`
			`"crypto/sha256"`
			`"crypto/rsa"`
adding server stub 2022-01-11 06:20:32 +00:00			`"net/http"`
generate and validate authorization message 2022-01-19 04:46:45 +00:00			`"encoding/json"`
			`"encoding/base64"`
preparing account authorization 2022-01-18 08:40:39 +00:00			`"time"`
adding server stub 2022-01-11 06:20:32 +00:00			`)`

fixing build 2022-01-13 05:23:18 +00:00			`func Authorize(w http.ResponseWriter, r *http.Request) {`
separating account details for efficient loading 2022-01-18 08:30:27 +00:00
generate and validate authorization message 2022-01-19 04:46:45 +00:00			`account, res := BearerAppToken(r, true);`
separating account details for efficient loading 2022-01-18 08:30:27 +00:00			`if res != nil {`
			`w.WriteHeader(http.StatusUnauthorized)`
			`return`
			`}`
			`if account.Disabled {`
			`w.WriteHeader(http.StatusGone);`
			`return`
			`}`

preparing account authorization 2022-01-18 08:40:39 +00:00			`// extract token from body`
			`var token string`
generate and validate authorization message 2022-01-19 04:46:45 +00:00			`err := ParseRequest(r, w, &token)`
			`if err != nil {`
added profile getter and setter 2022-01-19 08:03:46 +00:00			`w.WriteHeader(http.StatusBadRequest)`
preparing account authorization 2022-01-18 08:40:39 +00:00			`return`
			`}`

			`// load details to sign data`
generate and validate authorization message 2022-01-19 04:46:45 +00:00			`if account.AccountDetail.KeyType != "RSA4096" {`
			`w.WriteHeader(http.StatusServiceUnavailable)`
			`return`
			`}`
			`privateKey, res := ParseRsaPrivateKeyFromPemStr(account.AccountDetail.PrivateKey);`
			`if res != nil {`
			`w.WriteHeader(http.StatusInternalServerError)`
			`return`
			`}`
preparing account authorization 2022-01-18 08:40:39 +00:00
			`// generate message`
			`auth := Authenticate{`
			`Guid: account.Guid,`
			`Token: token,`
			`Timestamp: time.Now().Unix(),`
			`}`
generate and validate authorization message 2022-01-19 04:46:45 +00:00			`var data []byte`
			`data, err = json.Marshal(auth);`
			`if err != nil {`
			`w.WriteHeader(http.StatusInternalServerError)`
			`return`
			`}`
			`hash := sha256.Sum256(data);`
			`var signature []byte`
			`signature, err = rsa.SignPKCS1v15(rand.Reader, privateKey, crypto.SHA256, hash[:])`
			`if err != nil {`
			`w.WriteHeader(http.StatusInternalServerError)`
			`return`
			`}`
			`msg := DataMessage{`
			`MessageType: "authenticate",`
			`Message: base64.StdEncoding.EncodeToString([]byte(data)),`
			`KeyType: account.AccountDetail.KeyType,`
			`PublicKey: base64.StdEncoding.EncodeToString([]byte(account.AccountDetail.PublicKey)),`
			`Signature: base64.StdEncoding.EncodeToString(signature),`
			`SignatureType: "PKCS1v15",`
			`}`
preparing account authorization 2022-01-18 08:40:39 +00:00
generate and validate authorization message 2022-01-19 04:46:45 +00:00			`WriteResponse(w, msg)`
adding server stub 2022-01-11 06:20:32 +00:00			`}`