feat: add admin session api
This commit is contained in:
Lakhan Samani
@@ -3,38 +3,32 @@ package resolvers
|
||||
import (
|
||||
"context"
|
||||
"fmt"
|
||||
"log"
|
||||
"time"
|
||||
|
||||
"github.com/authorizerdev/authorizer/server/constants"
|
||||
"github.com/authorizerdev/authorizer/server/enum"
|
||||
"github.com/authorizerdev/authorizer/server/graph/model"
|
||||
"github.com/authorizerdev/authorizer/server/session"
|
||||
"github.com/authorizerdev/authorizer/server/utils"
|
||||
)
|
||||
|
||||
func AdminLoginResolver(ctx context.Context, params model.AdminLoginInput) (*model.AdminLoginResponse, error) {
|
||||
gc, err := utils.GinContextFromContext(ctx)
|
||||
var res *model.AdminLoginResponse
|
||||
|
||||
if err != nil {
|
||||
log.Println("=> error:", err)
|
||||
return res, err
|
||||
}
|
||||
|
||||
if params.AdminSecret != constants.EnvData.ADMIN_SECRET {
|
||||
return nil, fmt.Errorf(`invalid admin secret`)
|
||||
return res, fmt.Errorf(`invalid admin secret`)
|
||||
}
|
||||
|
||||
refreshToken, _, _ := utils.CreateAdminAuthToken(enum.RefreshToken, gc)
|
||||
accessToken, expiresAt, _ := utils.CreateAdminAuthToken(enum.AccessToken, gc)
|
||||
|
||||
currentTime := time.Now().Unix()
|
||||
tokenId := fmt.Sprintf("authorizer_admin_%d", currentTime)
|
||||
session.SetToken(tokenId, accessToken, refreshToken)
|
||||
utils.SetAdminCookie(gc, accessToken)
|
||||
hashedKey, err := utils.HashPassword(constants.EnvData.ADMIN_SECRET)
|
||||
if err != nil {
|
||||
return res, err
|
||||
}
|
||||
utils.SetAdminCookie(gc, hashedKey)
|
||||
|
||||
res = &model.AdminLoginResponse{
|
||||
AccessToken: accessToken,
|
||||
ExpiresAt: expiresAt,
|
||||
AccessToken: hashedKey,
|
||||
Message: "admin logged in successfully",
|
||||
}
|
||||
return res, nil
|
||||
|
||||
35
server/resolvers/admin_session.go
Normal file
35
server/resolvers/admin_session.go
Normal file
@@ -0,0 +1,35 @@
|
||||
package resolvers
|
||||
|
||||
import (
|
||||
"context"
|
||||
"fmt"
|
||||
|
||||
"github.com/authorizerdev/authorizer/server/constants"
|
||||
"github.com/authorizerdev/authorizer/server/graph/model"
|
||||
"github.com/authorizerdev/authorizer/server/utils"
|
||||
)
|
||||
|
||||
func AdminSession(ctx context.Context) (*model.AdminLoginResponse, error) {
|
||||
gc, err := utils.GinContextFromContext(ctx)
|
||||
var res *model.AdminLoginResponse
|
||||
|
||||
if err != nil {
|
||||
return res, err
|
||||
}
|
||||
|
||||
if !utils.IsSuperAdmin(gc) {
|
||||
return res, fmt.Errorf("unauthorized")
|
||||
}
|
||||
|
||||
hashedKey, err := utils.HashPassword(constants.EnvData.ADMIN_SECRET)
|
||||
if err != nil {
|
||||
return res, err
|
||||
}
|
||||
utils.SetAdminCookie(gc, hashedKey)
|
||||
|
||||
res = &model.AdminLoginResponse{
|
||||
AccessToken: hashedKey,
|
||||
Message: "admin logged in successfully",
|
||||
}
|
||||
return res, nil
|
||||
}
|
||||
Reference in New Issue
Block a user