Updated logging, added getRowNumber and a few more

2026-02-15 21:06:07 +00:00 · 2025-11-10 17:02:37 +02:00
parent faafe5abea
commit ceaa251301
23 changed files with 3215 additions and 312 deletions
--- a/pkg/security/middleware.go
+++ b/pkg/security/middleware.go
@@ -0,0 +1,54 @@
+package security
+
+import (
+	"context"
+	"net/http"
+)
+
+const (
+	// Context keys for user information
+	UserIDKey     = "user_id"
+	UserRolesKey  = "user_roles"
+	UserTokenKey  = "user_token"
+)
+
+// AuthMiddleware extracts user authentication from request and adds to context
+// This should be applied before the ResolveSpec handler
+// Uses GlobalSecurity.AuthenticateCallback if set, otherwise returns error
+func AuthMiddleware(next http.Handler) http.Handler {
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		// Check if callback is set
+		if GlobalSecurity.AuthenticateCallback == nil {
+			http.Error(w, "AuthenticateCallback not set - you must provide an authentication callback", http.StatusInternalServerError)
+			return
+		}
+
+		// Call the user-provided authentication callback
+		userID, roles, err := GlobalSecurity.AuthenticateCallback(r)
+		if err != nil {
+			http.Error(w, "Authentication failed: "+err.Error(), http.StatusUnauthorized)
+			return
+		}
+
+		// Add user information to context
+		ctx := context.WithValue(r.Context(), UserIDKey, userID)
+		if roles != "" {
+			ctx = context.WithValue(ctx, UserRolesKey, roles)
+		}
+
+		// Continue with authenticated context
+		next.ServeHTTP(w, r.WithContext(ctx))
+	})
+}
+
+// GetUserID extracts the user ID from context
+func GetUserID(ctx context.Context) (int, bool) {
+	userID, ok := ctx.Value(UserIDKey).(int)
+	return userID, ok
+}
+
+// GetUserRoles extracts user roles from context
+func GetUserRoles(ctx context.Context) (string, bool) {
+	roles, ok := ctx.Value(UserRolesKey).(string)
+	return roles, ok
+}