mirror of
https://github.com/fleetdm/fleet
synced 2026-05-22 00:18:27 +00:00
79f2c7c391
* wip * wip * Make tests not flaky * Add changes file * Make logging and authz thread safe * Move cancel defer below err check
43 lines
1.1 KiB
Go
43 lines
1.1 KiB
Go
// Package authz defines the "authorization context", used to check that a
|
|
// request has had an authorization check performed before returning results.
|
|
package authz
|
|
|
|
import (
|
|
"context"
|
|
"sync"
|
|
)
|
|
|
|
type key int
|
|
|
|
const authzKey key = 0
|
|
|
|
// NewContext creates a new context.Context with an AuthorizationContext.
|
|
func NewContext(ctx context.Context, authz *AuthorizationContext) context.Context {
|
|
return context.WithValue(ctx, authzKey, authz)
|
|
}
|
|
|
|
// FromContext returns a pointer to the AuthorizationContext.
|
|
func FromContext(ctx context.Context) (*AuthorizationContext, bool) {
|
|
v, ok := ctx.Value(authzKey).(*AuthorizationContext)
|
|
return v, ok
|
|
}
|
|
|
|
// AuthorizationContext contains the context information used for the
|
|
// authorization check.
|
|
type AuthorizationContext struct {
|
|
l sync.Mutex
|
|
// checked indicates whether a call was made to check authorization for the request.
|
|
checked bool
|
|
}
|
|
|
|
func (a *AuthorizationContext) Checked() bool {
|
|
a.l.Lock()
|
|
defer a.l.Unlock()
|
|
return a.checked
|
|
}
|
|
|
|
func (a *AuthorizationContext) SetChecked() {
|
|
a.l.Lock()
|
|
defer a.l.Unlock()
|
|
a.checked = true
|
|
}
|