mirror of
https://github.com/fleetdm/fleet
synced 2026-05-06 14:58:33 +00:00
48 lines
1.2 KiB
Go
48 lines
1.2 KiB
Go
// Package token enables setting and reading
|
|
// authentication token contexts
|
|
package token
|
|
|
|
import (
|
|
"context"
|
|
"net/http"
|
|
"strings"
|
|
)
|
|
|
|
type key int
|
|
|
|
const tokenKey key = 0
|
|
|
|
// Token is the concrete type that represents Fleet session tokens
|
|
type Token string
|
|
|
|
// FromHTTPRequest extracts an Authorization
|
|
// from an HTTP request if present.
|
|
func FromHTTPRequest(r *http.Request) Token {
|
|
headers := r.Header.Get("Authorization")
|
|
headerParts := strings.Split(headers, " ")
|
|
if len(headerParts) > 0 && strings.ToUpper(headerParts[0]) == "BEARER" {
|
|
if len(headerParts) == 2 {
|
|
return Token(headerParts[1])
|
|
}
|
|
// This indicates "no token". We don't want to read the request-body here.
|
|
return ""
|
|
}
|
|
if err := r.ParseForm(); err != nil {
|
|
return ""
|
|
}
|
|
return Token(r.FormValue("token"))
|
|
}
|
|
|
|
// NewContext returns a new context carrying the Authorization Bearer token.
|
|
func NewContext(ctx context.Context, token Token) context.Context {
|
|
if token == "" {
|
|
return ctx
|
|
}
|
|
return context.WithValue(ctx, tokenKey, token)
|
|
}
|
|
|
|
// FromContext extracts the Authorization Bearer token if present.
|
|
func FromContext(ctx context.Context) (Token, bool) {
|
|
token, ok := ctx.Value(tokenKey).(Token)
|
|
return token, ok
|
|
}
|