particle-os/debian-forge-composer
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
debian-forge-composer/internal/auth/middleware.go
Sanne Raymaekers 0f946e1c9e internal/auth: add TenantChannelMiddleware 
Extracts the tenant from the JWT and sets it in the request context.
2023-06-28 15:08:37 +02:00

29 lines
746 B
Go
Raw Blame History

package auth
import (
"errors"
"fmt"
"github.com/labstack/echo/v4"
)
const TenantCtxKey string = "tenant"
func TenantChannelMiddleware(tenantProviderFields []string, onFail error) func(next echo.HandlerFunc) echo.HandlerFunc {
return func(next echo.HandlerFunc) echo.HandlerFunc {
return func(ctx echo.Context) error {
tenant, err := GetFromClaims(ctx.Request().Context(), tenantProviderFields)
// Allowlisted paths won't have a token
if err != nil && !errors.Is(err, NoJWTError) {
return onFail
}
// prefix the tenant to prevent collisions if support for specifying channels in a request is ever added
if tenant != "" {
ctx.Set(TenantCtxKey, fmt.Sprintf("org-%s", tenant))
}
return next(ctx)
}
}
}
Reference in a new issue View git blame Copy permalink