package handlers import ( "log/slog" "net/http" "github.com/labstack/echo/v4" "github.com/logto-io/go/client" "github.com/logto-io/go/core" "gitlab.unjx.de/flohoss/godash/internal/env" ) func NewAuthHandler(env *env.Config) *AuthHandler { return &AuthHandler{ env: env, logtoConfig: &client.LogtoConfig{ Endpoint: env.LogtoEndpoint, AppId: env.LogtoAppId, AppSecret: env.LogtoAppSecret, }, } } type AuthHandler struct { env *env.Config logtoConfig *client.LogtoConfig userInfo *core.UserInfoResponse } func (authHandler *AuthHandler) GetUserInfo() *core.UserInfoResponse { return authHandler.userInfo } func (authHandler *AuthHandler) logtoMiddleware(next echo.HandlerFunc) echo.HandlerFunc { return func(c echo.Context) error { logtoClient := client.NewLogtoClient( authHandler.logtoConfig, NewSessionStorage(c), ) if !logtoClient.IsAuthenticated() { return c.Redirect(http.StatusTemporaryRedirect, "/sign-in") } if authHandler.userInfo == nil { info, err := logtoClient.FetchUserInfo() if err != nil { return echo.ErrInternalServerError } authHandler.userInfo = &info } return next(c) } } func (authHandler *AuthHandler) signInHandler(c echo.Context) error { logtoClient := client.NewLogtoClient( authHandler.logtoConfig, NewSessionStorage(c), ) signInUri, err := logtoClient.SignIn(authHandler.env.PublicUrl + "/sign-in-callback") if err != nil { slog.Error("cannot process sign in request", "err", err) return echo.ErrInternalServerError } return c.Redirect(http.StatusTemporaryRedirect, signInUri) } func (authHandler *AuthHandler) signInCallbackHandler(c echo.Context) error { logtoClient := client.NewLogtoClient( authHandler.logtoConfig, NewSessionStorage(c), ) err := logtoClient.HandleSignInCallback(c.Request()) if err != nil { slog.Error("cannot process sign in callback", "err", err) return echo.ErrInternalServerError } return c.Redirect(http.StatusTemporaryRedirect, "/") } func (authHandler *AuthHandler) signOutCallbackHandler(c echo.Context) error { logtoClient := client.NewLogtoClient( authHandler.logtoConfig, NewSessionStorage(c), ) signOutUri, err := logtoClient.SignOut(authHandler.env.PublicUrl) if err != nil { slog.Error("cannot process sign out", "err", err) return echo.ErrInternalServerError } return c.Redirect(http.StatusTemporaryRedirect, signOutUri) }