adding auth claim to test setup

2025-02-14 12:39:17 +00:00 · 2022-02-14 23:20:42 -08:00 · 2022-02-14 23:20:42 -08:00 · f447dd1195
commit f447dd1195
parent 5fb8c5f245
2 changed files with 42 additions and 12 deletions
--- a/net/server/internal/api_authorize.go
+++ b/net/server/internal/api_authorize.go
@ -1,20 +1,33 @@
-/*
- * DataBag
- *
- * DataBag provides storage for decentralized identity based self-hosting apps. It is intended to support sharing of personal data and hosting group conversations. 
- *
- * API version: 0.0.1
- * Contact: roland.osborne@gmail.com
- * Generated by: Swagger Codegen (https://github.com/swagger-api/swagger-codegen.git)
- */
 package databag

 import (
-	"net/http"
+  "net/http"
 )

 func Authorize(w http.ResponseWriter, r *http.Request) {
-	w.Header().Set("Content-Type", "application/json; charset=UTF-8")
-	w.WriteHeader(http.StatusOK)
+
+  account, code, res := BearerAppToken(r, true);
+  if res != nil {
+    ErrResponse(w, code, res)
+    return
+  }
+  detail := account.AccountDetail
+
+  var token string
+  if err := ParseRequest(r, w, &token); err != nil {
+    ErrResponse(w, http.StatusBadRequest, err)
+    return
+  }
+
+  claim := &Claim{ Token: token }
+
+  msg, err := WriteDataMessage(detail.PrivateKey, detail.PublicKey, detail.KeyType,
+    APP_SIGNPKCS1V15, account.Guid, APP_MSGAUTHENTICATE, &claim)
+  if err != nil {
+    ErrResponse(w, http.StatusInternalServerError, err)
+    return
+  }
+
+  WriteResponse(w, msg)
 }

--- a/net/server/internal/testUtil.go
+++ b/net/server/internal/testUtil.go
@ -519,6 +519,8 @@ func AddTestAccount(username string) (guid string, token string, err error) {
    Description: "A test app",
    Url: "http://app.example.com",
  };
+  var claim Claim
+  var msg DataMessage
  var profile Profile
  var login = username + ":pass"

@ -564,6 +566,21 @@ func AddTestAccount(username string) (guid string, token string, err error) {
    return
  }
  token = guid + "." + access
+
+  // authorize claim
+  if r, w, err = NewRequest("PUT", "/authorize", "1234abcd"); err != nil {
+    return
+  }
+  SetBearerAuth(r, token)
+  Authorize(w, r)
+  if err = ReadResponse(w, &msg); err != nil {
+    return
+  }
+  signer, messageType, _, res := ReadDataMessage(&msg, &claim)
+  if res != nil || signer != guid || messageType != APP_MSGAUTHENTICATE || claim.Token != "1234abcd" {
+    err = errors.New("invalid authenticated claim")
+    return
+  }
  return
 }