Skip to content

Commit

Permalink
Handle illegal token
Browse files Browse the repository at this point in the history
  • Loading branch information
@ianchen0119
Jesse Tu authored and ianchen0119 committed Jan 26, 2022
1 parent edc3824 commit aa5a340
Show file tree
Hide file tree
Showing 2 changed files with 58 additions and 18 deletions.
75 changes: 57 additions & 18 deletions backend/WebUI/api_webui.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,7 @@ import (
"github.com/dgrijalva/jwt-go"
"github.com/gin-gonic/gin"
"github.com/google/uuid"
"github.com/pkg/errors"
"go.mongodb.org/mongo-driver/bson"
"golang.org/x/crypto/bcrypt"

Expand Down Expand Up @@ -410,34 +411,41 @@ type AuthSub struct {
}

// Parse JWT
func ParseJWT(tokenStr string) jwt.MapClaims {
token, _ := jwt.Parse(tokenStr, func(token *jwt.Token) (interface{}, error) {
func ParseJWT(tokenStr string) (jwt.MapClaims, error) {
token, err := jwt.Parse(tokenStr, func(token *jwt.Token) (interface{}, error) {
return []byte(os.Getenv("SIGNINGKEY")), nil
})

if err != nil {
return nil, errors.Wrap(err, "ParseJWT error")
}

claims, _ := token.Claims.(jwt.MapClaims)

return claims
return claims, nil
}

// Check of admin user. This should be done with proper JWT token.
func CheckAuth(c *gin.Context) bool {
tokenStr := c.GetHeader("Token")
if tokenStr == "admin" || tokenStr == "" {
if tokenStr == "admin" {
return true
} else {
return false
}
}

// Tenat ID
func GetTenantId(c *gin.Context) string {
func GetTenantId(c *gin.Context) (string, error) {
tokenStr := c.GetHeader("Token")
if tokenStr == "admin" {
return ""
return "", nil
}
claims := ParseJWT(tokenStr)
return claims["tenantId"].(string)
claims, err := ParseJWT(tokenStr)
if err != nil {
return "", errors.Wrap(err, "GetTenantId error")
}
return claims["tenantId"].(string), nil
}

// Tenant
Expand Down Expand Up @@ -737,8 +745,16 @@ func GetSubscribers(c *gin.Context) {
tokenStr := c.GetHeader("Token")

var claims jwt.MapClaims = nil
var err error = nil
if tokenStr != "admin" {
claims = ParseJWT(tokenStr)
claims, err = ParseJWT(tokenStr)
}
if err != nil {
logger.WebUILog.Errorln(err.Error())
c.JSON(http.StatusBadRequest, gin.H{
"cause": "Illegal Token",
})
return
}

var subsList []SubsListIE = make([]SubsListIE, 0)
Expand Down Expand Up @@ -833,20 +849,27 @@ func PostSubscriberByID(c *gin.Context) {
logger.WebUILog.Infoln("Post One Subscriber Data")

var claims jwt.MapClaims = nil
var err error = nil
tokenStr := c.GetHeader("Token")
if tokenStr == "" {

if tokenStr != "admin" {
claims, err = ParseJWT(tokenStr)
}
if err != nil {
logger.WebUILog.Errorln(err.Error())
c.JSON(http.StatusBadRequest, gin.H{
"cause": "Illegal",
"cause": "Illegal Token",
})
return
}
if tokenStr != "admin" {
claims = ParseJWT(tokenStr)
}

var subsData SubsData
if err := c.ShouldBindJSON(&subsData); err != nil {
logger.WebUILog.Panic(err.Error())
logger.WebUILog.Errorf("PostSubscriberByID err: %v", err)
c.JSON(http.StatusBadRequest, gin.H{
"cause": "JSON format incorrect",
})
return
}

ueId := c.Param("ueId")
Expand Down Expand Up @@ -930,7 +953,11 @@ func PutSubscriberByID(c *gin.Context) {

var subsData SubsData
if err := c.ShouldBindJSON(&subsData); err != nil {
logger.WebUILog.Panic(err.Error())
logger.WebUILog.Errorf("PutSubscriberByID err: %v", err)
c.JSON(http.StatusBadRequest, gin.H{
"cause": "JSON format incorrect",
})
return
}

ueId := c.Param("ueId")
Expand Down Expand Up @@ -1000,7 +1027,11 @@ func PatchSubscriberByID(c *gin.Context) {

var subsData SubsData
if err := c.ShouldBindJSON(&subsData); err != nil {
logger.WebUILog.Panic(err.Error())
logger.WebUILog.Errorf("PatchSubscriberByID err: %v", err)
c.JSON(http.StatusBadRequest, gin.H{
"cause": "JSON format incorrect",
})
return
}

ueId := c.Param("ueId")
Expand Down Expand Up @@ -1102,7 +1133,15 @@ func GetRegisteredUEContext(c *gin.Context) {
}

// Filter by tenant.
tenantId := GetTenantId(c)
tenantId, err := GetTenantId(c)
if err != nil {
logger.WebUILog.Errorln(err.Error())
c.JSON(http.StatusBadRequest, gin.H{
"cause": "Illegal Token",
})
return
}

if tenantId == "" {
sendResponseToClient(c, resp)
} else {
Expand Down
1 change: 1 addition & 0 deletions go.mod
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,6 +16,7 @@ require (
github.com/gin-gonic/gin v1.6.3
github.com/google/uuid v1.3.0
github.com/mitchellh/mapstructure v1.4.0
github.com/pkg/errors v0.9.1 // indirect
github.com/russross/blackfriday/v2 v2.1.0 // indirect
github.com/sirupsen/logrus v1.7.0
github.com/urfave/cli v1.22.5
Expand Down

0 comments on commit aa5a340

Please sign in to comment.