for backward compatability

Author: shohamroditimemphis

handlers/auth.go

@@ -16,7 +16,7 @@ import (
 )
 
 var configuration = conf.GetConfig()
-var connectionsCacheLock sync.Mutex
+var ConnectionsCacheLock sync.Mutex
 
 const (
 	errorMsgAuthorizationViolation = "authorization violation"
@@ -35,7 +35,7 @@ type refreshTokenExpiration struct {
 	RefreshTokenExpiration int64 `json:"refresh_token_expiration"`
 }
 
-var connectionsCache = map[string]map[string]Connection{}
+var ConnectionsCache = map[string]map[string]Connection{}
 
 func connect(password, username, connectionToken string, accountId int) (*memphis.Conn, error) {
 	if configuration.USER_PASS_BASED_AUTH {
@@ -103,15 +103,15 @@ func (ah AuthHandler) Authenticate(c *fiber.Ctx) error {
 
 	username := strings.ToLower(body.Username)
 	accountId := strconv.Itoa(int(body.AccountId))
-	if connectionsCache[accountId] == nil {
-		connectionsCacheLock.Lock()
-		connectionsCache[accountId] = make(map[string]Connection)
-		connectionsCacheLock.Unlock()
+	if ConnectionsCache[accountId] == nil {
+		ConnectionsCacheLock.Lock()
+		ConnectionsCache[accountId] = make(map[string]Connection)
+		ConnectionsCacheLock.Unlock()
 	}
 
-	connectionsCacheLock.Lock()
-	connectionsCache[accountId][username] = Connection{Connection: conn, ExpirationTime: tokenExpiry}
-	connectionsCacheLock.Unlock()
+	ConnectionsCacheLock.Lock()
+	ConnectionsCache[accountId][username] = Connection{Connection: conn, ExpirationTime: tokenExpiry}
+	ConnectionsCacheLock.Unlock()
 	return c.Status(fiber.StatusOK).JSON(fiber.Map{
 		"jwt":                      token,
 		"expires_in":               tokenExpiry * 60 * 1000,
@@ -211,15 +211,15 @@ func (ah AuthHandler) RefreshToken(c *fiber.Ctx) error {
 	}
 
 	accountId = int(accountId)
-	if connectionsCache[strconv.Itoa(int(accountId))] == nil {
-		connectionsCacheLock.Lock()
-		connectionsCache[strconv.Itoa(accountId)] = make(map[string]Connection)
-		connectionsCacheLock.Unlock()
+	if ConnectionsCache[strconv.Itoa(int(accountId))] == nil {
+		ConnectionsCacheLock.Lock()
+		ConnectionsCache[strconv.Itoa(accountId)] = make(map[string]Connection)
+		ConnectionsCacheLock.Unlock()
 	}
 
-	connectionsCacheLock.Lock()
-	connectionsCache[strconv.Itoa(accountId)][username] = Connection{Connection: conn, ExpirationTime: refreshTokenExpiry}
-	connectionsCacheLock.Unlock()
+	ConnectionsCacheLock.Lock()
+	ConnectionsCache[strconv.Itoa(accountId)][username] = Connection{Connection: conn, ExpirationTime: refreshTokenExpiry}
+	ConnectionsCacheLock.Unlock()
 	return c.Status(fiber.StatusOK).JSON(fiber.Map{
 		"jwt":                      token,
 		"expires_in":               tokenExpiry * 60 * 1000,
@@ -230,22 +230,22 @@ func (ah AuthHandler) RefreshToken(c *fiber.Ctx) error {
 
 func CleanConnectionsCache() {
 	for range time.Tick(time.Second * 30) {
-		for t, tenant := range connectionsCache {
+		for t, tenant := range ConnectionsCache {
 			for u, user := range tenant {
 				currentTime := time.Now()
 				unixTimeNow := currentTime.Unix()
-				conn := connectionsCache[t][u].Connection
+				conn := ConnectionsCache[t][u].Connection
 				if unixTimeNow > int64(user.ExpirationTime) {
 					conn.Close()
-					connectionsCacheLock.Lock()
-					delete(connectionsCache[t], u)
-					connectionsCacheLock.Unlock()
+					ConnectionsCacheLock.Lock()
+					delete(ConnectionsCache[t], u)
+					ConnectionsCacheLock.Unlock()
 				}
 			}
-			if len(connectionsCache[t]) == 0 {
-				connectionsCacheLock.Lock()
-				delete(connectionsCache, t)
-				connectionsCacheLock.Unlock()
+			if len(ConnectionsCache[t]) == 0 {
+				ConnectionsCacheLock.Lock()
+				delete(ConnectionsCache, t)
+				ConnectionsCacheLock.Unlock()
 			}
 		}
 	}

handlers/producer.go

@@ -70,7 +70,7 @@ func CreateHandleMessage() func(*fiber.Ctx) error {
 			username := userData.Username
 			accountId := userData.AccountId
 			accountIdStr := strconv.Itoa(int(accountId))
-			conn := connectionsCache[accountIdStr][username].Connection
+			conn := ConnectionsCache[accountIdStr][username].Connection
 			if conn == nil {
 				errMsg := fmt.Sprintf("Connection does not exist")
 				log.Errorf("CreateHandleMessage - produce: %s", errMsg)
@@ -145,7 +145,7 @@ func CreateHandleBatch() func(*fiber.Ctx) error {
 			username := userData.Username
 			accountId := userData.AccountId
 			accountIdStr := strconv.Itoa(int(accountId))
-			conn := connectionsCache[accountIdStr][username].Connection
+			conn := ConnectionsCache[accountIdStr][username].Connection
 			if conn == nil {
 				errMsg := fmt.Sprintf("Connection does not exist")
 				log.Errorf("CreateHandleBatch - produce: %s", errMsg)

middlewares/auth.go

@@ -4,12 +4,15 @@ import (
 	"errors"
 	"fmt"
 	"rest-gateway/conf"
+	"rest-gateway/handlers"
 	"rest-gateway/logger"
 	"rest-gateway/models"
 	"strings"
+	"time"
 
 	"github.com/gofiber/fiber/v2"
 	"github.com/golang-jwt/jwt/v4"
+	"github.com/memphisdev/memphis.go"
 )
 
 var configuration = conf.GetConfig()
@@ -62,19 +65,26 @@ func verifyToken(tokenString string, secret string) (models.AuthSchema, error) {
 	}
 
 	var user models.AuthSchema
-	if !configuration.USER_PASS_BASED_AUTH {
-		user = models.AuthSchema{
-			Username:        claims["username"].(string),
-			ConnectionToken: claims["connection_token"].(string),
-			AccountId:       1,
+	if _, ok := claims["username"].(string); ok {
+		if !configuration.USER_PASS_BASED_AUTH {
+			user = models.AuthSchema{
+				Username:        claims["username"].(string),
+				ConnectionToken: claims["connection_token"].(string),
+				AccountId:       1,
+			}
+		} else {
+			user = models.AuthSchema{
+				Username:  claims["username"].(string),
+				Password:  claims["password"].(string),
+				AccountId: claims["account_id"].(float64),
+			}
 		}
 	} else {
 		user = models.AuthSchema{
-			Username:  claims["username"].(string),
-			Password:  claims["password"].(string),
-			AccountId: claims["account_id"].(float64),
+			TokenExpiryMins: int(claims["exp"].(float64)),
 		}
 	}
+
 	return user, nil
 }
 
@@ -144,6 +154,42 @@ func Authenticate(c *fiber.Ctx) error {
 		user.AccountId = 1
 	}
 
+	// for backward compatability
+	if user.Username == "" {
+		opts := []memphis.Option{memphis.Reconnect(true), memphis.MaxReconnect(10), memphis.ReconnectInterval(3 * time.Second)}
+		if configuration.USER_PASS_BASED_AUTH {
+			opts = append(opts, memphis.Password(configuration.ROOT_PASSWORD))
+		} else {
+			opts = append(opts, memphis.ConnectionToken(configuration.CONNECTION_TOKEN))
+		}
+		if configuration.CLIENT_CERT_PATH != "" && configuration.CLIENT_KEY_PATH != "" && configuration.ROOT_CA_PATH != "" {
+			opts = append(opts, memphis.Tls(configuration.CLIENT_CERT_PATH, configuration.CLIENT_KEY_PATH, configuration.ROOT_CA_PATH))
+		}
+		conn, _ := memphis.Connect(configuration.MEMPHIS_HOST, configuration.ROOT_USER, opts...)
+
+		if handlers.ConnectionsCache["1"] == nil {
+			handlers.ConnectionsCacheLock.Lock()
+			handlers.ConnectionsCache["1"] = make(map[string]handlers.Connection)
+			handlers.ConnectionsCacheLock.Unlock()
+		}
+
+		handlers.ConnectionsCache["1"][configuration.ROOT_USER] = handlers.Connection{Connection: conn, ExpirationTime: int64(user.TokenExpiryMins)}
+
+		if !configuration.USER_PASS_BASED_AUTH {
+			user = models.AuthSchema{
+				Username:        configuration.ROOT_USER,
+				ConnectionToken: configuration.CONNECTION_TOKEN,
+				AccountId:       1,
+			}
+		} else {
+			user = models.AuthSchema{
+				Username:  configuration.ROOT_USER,
+				Password:  configuration.ROOT_PASSWORD,
+				AccountId: 1,
+			}
+		}
+	}
+
 	c.Locals("userData", user)
 	return c.Next()
 }