Merge pull request #47 from memphisdev/backward-compatability

idanasulin2706 · web-flow · commit 016ff7657774 · 2023-08-15T11:05:22.000+03:00
Backward compatability
diff --git a/handlers/auth.go b/handlers/auth.go
@@ -16,11 +16,11 @@ import (
 )
 
 var configuration = conf.GetConfig()
-var connectionsCacheLock sync.Mutex
+var ConnectionsCacheLock sync.Mutex
 
 const (
-	errorMsgAuthorizationViolation = "authorization violation"
-	errorMsgMissionAccountId       = "account id"
+	ErrorMsgAuthorizationViolation = "authorization violation"
+	ErrorMsgMissionAccountId       = "account id"
 )
 
 type AuthHandler struct{}
@@ -35,9 +35,9 @@ type refreshTokenExpiration struct {
 	RefreshTokenExpiration int64 `json:"refresh_token_expiration"`
 }
 
-var connectionsCache = map[string]map[string]Connection{}
+var ConnectionsCache = map[string]map[string]Connection{}
 
-func connect(password, username, connectionToken string, accountId int) (*memphis.Conn, error) {
+func Connect(password, username, connectionToken string, accountId int) (*memphis.Conn, error) {
 	if configuration.USER_PASS_BASED_AUTH {
 		if accountId == 0 {
 			accountId = 1
@@ -75,10 +75,10 @@ func (ah AuthHandler) Authenticate(c *fiber.Ctx) error {
 		})
 	}
 
-	conn, err := connect(body.Password, body.Username, body.ConnectionToken, int(body.AccountId))
+	conn, err := Connect(body.Password, body.Username, body.ConnectionToken, int(body.AccountId))
 	if err != nil {
 		errMsg := strings.ToLower(err.Error())
-		if strings.Contains(errMsg, errorMsgAuthorizationViolation) || strings.Contains(errMsg, "token") || strings.Contains(errMsg, errorMsgMissionAccountId) {
+		if strings.Contains(errMsg, ErrorMsgAuthorizationViolation) || strings.Contains(errMsg, "token") || strings.Contains(errMsg, ErrorMsgMissionAccountId) {
 			log.Warnf("Authentication error")
 			return c.Status(401).JSON(fiber.Map{
 				"message": "Unauthorized",
@@ -103,15 +103,15 @@ func (ah AuthHandler) Authenticate(c *fiber.Ctx) error {
 
 	username := strings.ToLower(body.Username)
 	accountId := strconv.Itoa(int(body.AccountId))
-	if connectionsCache[accountId] == nil {
-		connectionsCacheLock.Lock()
-		connectionsCache[accountId] = make(map[string]Connection)
-		connectionsCacheLock.Unlock()
+	if ConnectionsCache[accountId] == nil {
+		ConnectionsCacheLock.Lock()
+		ConnectionsCache[accountId] = make(map[string]Connection)
+		ConnectionsCacheLock.Unlock()
 	}
 
-	connectionsCacheLock.Lock()
-	connectionsCache[accountId][username] = Connection{Connection: conn, ExpirationTime: tokenExpiry}
-	connectionsCacheLock.Unlock()
+	ConnectionsCacheLock.Lock()
+	ConnectionsCache[accountId][username] = Connection{Connection: conn, ExpirationTime: tokenExpiry}
+	ConnectionsCacheLock.Unlock()
 	return c.Status(fiber.StatusOK).JSON(fiber.Map{
 		"jwt":                      token,
 		"expires_in":               tokenExpiry * 60 * 1000,
@@ -186,10 +186,10 @@ func (ah AuthHandler) RefreshToken(c *fiber.Ctx) error {
 	password := userData.Password
 	connectionToken := userData.ConnectionToken
 
-	conn, err := connect(password, username, connectionToken, accountId)
+	conn, err := Connect(password, username, connectionToken, accountId)
 	if err != nil {
 		errMsg := strings.ToLower(err.Error())
-		if strings.Contains(errMsg, errorMsgAuthorizationViolation) || strings.Contains(errMsg, "token") || strings.Contains(errMsg, errorMsgMissionAccountId) {
+		if strings.Contains(errMsg, ErrorMsgAuthorizationViolation) || strings.Contains(errMsg, "token") || strings.Contains(errMsg, ErrorMsgMissionAccountId) {
 			log.Warnf("RefreshToken: Authentication error")
 			return c.Status(401).JSON(fiber.Map{
 				"message": "Unauthorized",
@@ -211,15 +211,15 @@ func (ah AuthHandler) RefreshToken(c *fiber.Ctx) error {
 	}
 
 	accountId = int(accountId)
-	if connectionsCache[strconv.Itoa(int(accountId))] == nil {
-		connectionsCacheLock.Lock()
-		connectionsCache[strconv.Itoa(accountId)] = make(map[string]Connection)
-		connectionsCacheLock.Unlock()
+	if ConnectionsCache[strconv.Itoa(int(accountId))] == nil {
+		ConnectionsCacheLock.Lock()
+		ConnectionsCache[strconv.Itoa(accountId)] = make(map[string]Connection)
+		ConnectionsCacheLock.Unlock()
 	}
 
-	connectionsCacheLock.Lock()
-	connectionsCache[strconv.Itoa(accountId)][username] = Connection{Connection: conn, ExpirationTime: refreshTokenExpiry}
-	connectionsCacheLock.Unlock()
+	ConnectionsCacheLock.Lock()
+	ConnectionsCache[strconv.Itoa(accountId)][username] = Connection{Connection: conn, ExpirationTime: refreshTokenExpiry}
+	ConnectionsCacheLock.Unlock()
 	return c.Status(fiber.StatusOK).JSON(fiber.Map{
 		"jwt":                      token,
 		"expires_in":               tokenExpiry * 60 * 1000,
@@ -230,22 +230,22 @@ func (ah AuthHandler) RefreshToken(c *fiber.Ctx) error {
 
 func CleanConnectionsCache() {
 	for range time.Tick(time.Second * 30) {
-		for t, tenant := range connectionsCache {
+		for t, tenant := range ConnectionsCache {
 			for u, user := range tenant {
 				currentTime := time.Now()
 				unixTimeNow := currentTime.Unix()
-				conn := connectionsCache[t][u].Connection
+				conn := ConnectionsCache[t][u].Connection
 				if unixTimeNow > int64(user.ExpirationTime) {
 					conn.Close()
-					connectionsCacheLock.Lock()
-					delete(connectionsCache[t], u)
-					connectionsCacheLock.Unlock()
+					ConnectionsCacheLock.Lock()
+					delete(ConnectionsCache[t], u)
+					ConnectionsCacheLock.Unlock()
 				}
 			}
-			if len(connectionsCache[t]) == 0 {
-				connectionsCacheLock.Lock()
-				delete(connectionsCache, t)
-				connectionsCacheLock.Unlock()
+			if len(ConnectionsCache[t]) == 0 {
+				ConnectionsCacheLock.Lock()
+				delete(ConnectionsCache, t)
+				ConnectionsCacheLock.Unlock()
 			}
 		}
 	}
diff --git a/handlers/producer.go b/handlers/producer.go
@@ -70,7 +70,7 @@ func CreateHandleMessage() func(*fiber.Ctx) error {
 			username := userData.Username
 			accountId := userData.AccountId
 			accountIdStr := strconv.Itoa(int(accountId))
-			conn := connectionsCache[accountIdStr][username].Connection
+			conn := ConnectionsCache[accountIdStr][username].Connection
 			if conn == nil {
 				errMsg := fmt.Sprintf("Connection does not exist")
 				log.Errorf("CreateHandleMessage - produce: %s", errMsg)
@@ -145,7 +145,7 @@ func CreateHandleBatch() func(*fiber.Ctx) error {
 			username := userData.Username
 			accountId := userData.AccountId
 			accountIdStr := strconv.Itoa(int(accountId))
-			conn := connectionsCache[accountIdStr][username].Connection
+			conn := ConnectionsCache[accountIdStr][username].Connection
 			if conn == nil {
 				errMsg := fmt.Sprintf("Connection does not exist")
 				log.Errorf("CreateHandleBatch - produce: %s", errMsg)
diff --git a/middlewares/auth.go b/middlewares/auth.go
@@ -4,6 +4,7 @@ import (
 	"errors"
 	"fmt"
 	"rest-gateway/conf"
+	"rest-gateway/handlers"
 	"rest-gateway/logger"
 	"rest-gateway/models"
 	"strings"
@@ -62,17 +63,24 @@ func verifyToken(tokenString string, secret string) (models.AuthSchema, error) {
 	}
 
 	var user models.AuthSchema
-	if !configuration.USER_PASS_BASED_AUTH {
-		user = models.AuthSchema{
-			Username:        claims["username"].(string),
-			ConnectionToken: claims["connection_token"].(string),
-			AccountId:       1,
+	if _, ok := claims["username"].(string); ok {
+		if !configuration.USER_PASS_BASED_AUTH {
+			user = models.AuthSchema{
+				Username:        claims["username"].(string),
+				ConnectionToken: claims["connection_token"].(string),
+				AccountId:       1,
+			}
+		} else {
+			user = models.AuthSchema{
+				Username:  claims["username"].(string),
+				Password:  claims["password"].(string),
+				AccountId: claims["account_id"].(float64),
+			}
 		}
 	} else {
+		// for backward compatability
 		user = models.AuthSchema{
-			Username:  claims["username"].(string),
-			Password:  claims["password"].(string),
-			AccountId: claims["account_id"].(float64),
+			TokenExpiryMins: int(claims["exp"].(float64)),
 		}
 	}
 	return user, nil
@@ -144,6 +152,44 @@ func Authenticate(c *fiber.Ctx) error {
 		user.AccountId = 1
 	}
 
+	// for backward compatability
+	if strings.HasSuffix(path, "/produce/single") || strings.HasSuffix(path, "/produce/batch") || path == "/auth/refreshtoken" {
+		if user.Username == "" {
+			accountId := 1
+			conn, err := handlers.Connect(configuration.ROOT_PASSWORD, configuration.ROOT_USER, configuration.CONNECTION_TOKEN, accountId)
+			if err != nil {
+				errMsg := strings.ToLower(err.Error())
+				if strings.Contains(errMsg, handlers.ErrorMsgAuthorizationViolation) || strings.Contains(errMsg, "token") || strings.Contains(errMsg, handlers.ErrorMsgMissionAccountId) {
+					log.Warnf("Authentication error")
+					return c.Status(401).JSON(fiber.Map{
+						"message": "Unauthorized",
+					})
+				}
+			}
+			if handlers.ConnectionsCache["1"] == nil {
+				handlers.ConnectionsCacheLock.Lock()
+				handlers.ConnectionsCache["1"] = make(map[string]handlers.Connection)
+				handlers.ConnectionsCacheLock.Unlock()
+			}
+
+			handlers.ConnectionsCache["1"][configuration.ROOT_USER] = handlers.Connection{Connection: conn, ExpirationTime: int64(user.TokenExpiryMins)}
+
+			if !configuration.USER_PASS_BASED_AUTH {
+				user = models.AuthSchema{
+					Username:        configuration.ROOT_USER,
+					ConnectionToken: configuration.CONNECTION_TOKEN,
+					AccountId:       1,
+				}
+			} else {
+				user = models.AuthSchema{
+					Username:  configuration.ROOT_USER,
+					Password:  configuration.ROOT_PASSWORD,
+					AccountId: 1,
+				}
+			}
+		}
+	}
+
 	c.Locals("userData", user)
 	return c.Next()
 }
