Fixed linting issues

2026-01-03 02:14:25 +00:00 · 2025-11-11 11:32:30 +02:00
parent 7b8216b71c
commit ecd7b31910
14 changed files with 104 additions and 65 deletions
--- a/pkg/security/callbacks_example.go
+++ b/pkg/security/callbacks_example.go
@@ -5,7 +5,6 @@ import (
 	"net/http"
 	"strconv"
 	"strings"
-	// DBM "github.com/bitechdev/GoCore/pkg/models"
 )

 // This file provides example implementations of the required security callbacks.
--- a/pkg/security/hooks.go
+++ b/pkg/security/hooks.go
@@ -27,9 +27,7 @@ func RegisterSecurityHooks(handler *restheadspec.Handler, securityList *Security
 	})

 	// Hook 4 (Optional): Audit logging
-	handler.Hooks().Register(restheadspec.AfterRead, func(hookCtx *restheadspec.HookContext) error {
-		return logDataAccess(hookCtx)
-	})
+	handler.Hooks().Register(restheadspec.AfterRead, logDataAccess)
 }

 // loadSecurityRules loads security configuration for the user and entity
@@ -162,7 +160,7 @@ func applyColumnSecurity(hookCtx *restheadspec.HookContext, securityList *Securi
 		resultValue = resultValue.Elem()
 	}

-	err, maskedResult := securityList.ApplyColumnSecurity(resultValue, modelType, userID, schema, tablename)
+	maskedResult, err := securityList.ApplyColumnSecurity(resultValue, modelType, userID, schema, tablename)
 	if err != nil {
 		logger.Warn("Column security error: %v", err)
 		// Don't fail the request, just log the issue
--- a/pkg/security/middleware.go
+++ b/pkg/security/middleware.go
@@ -5,11 +5,14 @@ import (
 	"net/http"
 )

+// contextKey is a custom type for context keys to avoid collisions
+type contextKey string
+
 const (
 	// Context keys for user information
-	UserIDKey    = "user_id"
-	UserRolesKey = "user_roles"
-	UserTokenKey = "user_token"
+	UserIDKey    contextKey = "user_id"
+	UserRolesKey contextKey = "user_roles"
+	UserTokenKey contextKey = "user_token"
 )

 // AuthMiddleware extracts user authentication from request and adds to context
--- a/pkg/security/provider.go
+++ b/pkg/security/provider.go
@@ -73,8 +73,9 @@ type SecurityList struct {
 	LoadColumnSecurityCallback LoadColumnSecurityFunc
 	LoadRowSecurityCallback    LoadRowSecurityFunc
 }
+type CONTEXT_KEY string

-const SECURITY_CONTEXT_KEY = "SecurityList"
+const SECURITY_CONTEXT_KEY CONTEXT_KEY = "SecurityList"

 var GlobalSecurity SecurityList

@@ -105,22 +106,22 @@ func maskString(pString string, maskStart, maskEnd int, maskChar string, invert
 	}
 	for index, char := range pString {
 		if invert && index >= middleIndex-maskStart && index <= middleIndex {
-			newStr = newStr + maskChar
+			newStr += maskChar
 			continue
 		}
 		if invert && index <= middleIndex+maskEnd && index >= middleIndex {
-			newStr = newStr + maskChar
+			newStr += maskChar
 			continue
 		}
 		if !invert && index <= maskStart {
-			newStr = newStr + maskChar
+			newStr += maskChar
 			continue
 		}
 		if !invert && index >= strLen-1-maskEnd {
-			newStr = newStr + maskChar
+			newStr += maskChar
 			continue
 		}
-		newStr = newStr + string(char)
+		newStr += string(char)
 	}

 	return newStr
@@ -145,7 +146,8 @@ func (m *SecurityList) ColumSecurityApplyOnRecord(prevRecord reflect.Value, newR
 		return cols, fmt.Errorf("no security data")
 	}

-	for _, colsec := range colsecList {
+	for i := range colsecList {
+		colsec := &colsecList[i]
 		if !strings.EqualFold(colsec.Accesstype, "mask") && !strings.EqualFold(colsec.Accesstype, "hide") {
 			continue
 		}
@@ -262,24 +264,25 @@ func setColSecValue(fieldsrc reflect.Value, colsec ColumnSecurity, fieldTypeName
 		fieldval = fieldval.Elem()
 	}

-	if strings.Contains(strings.ToLower(fieldval.Kind().String()), "int") &&
-		(strings.EqualFold(colsec.Accesstype, "mask") || strings.EqualFold(colsec.Accesstype, "hide")) {
+	fieldKindLower := strings.ToLower(fieldval.Kind().String())
+	switch {
+	case strings.Contains(fieldKindLower, "int") &&
+		(strings.EqualFold(colsec.Accesstype, "mask") || strings.EqualFold(colsec.Accesstype, "hide")):
 		if fieldval.CanInt() && fieldval.CanSet() {
 			fieldval.SetInt(0)
 		}
-	} else if (strings.Contains(strings.ToLower(fieldval.Kind().String()), "time") ||
-		strings.Contains(strings.ToLower(fieldval.Kind().String()), "date")) &&
-		(strings.EqualFold(colsec.Accesstype, "mask") || strings.EqualFold(colsec.Accesstype, "hide")) {
+	case (strings.Contains(fieldKindLower, "time") || strings.Contains(fieldKindLower, "date")) &&
+		(strings.EqualFold(colsec.Accesstype, "mask") || strings.EqualFold(colsec.Accesstype, "hide")):
 		fieldval.SetZero()
-	} else if strings.Contains(strings.ToLower(fieldval.Kind().String()), "string") {
+	case strings.Contains(fieldKindLower, "string"):
 		strVal := fieldval.String()
 		if strings.EqualFold(colsec.Accesstype, "mask") {
 			fieldval.SetString(maskString(strVal, colsec.MaskStart, colsec.MaskEnd, colsec.MaskChar, colsec.MaskInvert))
 		} else if strings.EqualFold(colsec.Accesstype, "hide") {
 			fieldval.SetString("")
 		}
-	} else if strings.Contains(fieldTypeName, "json") &&
-		(strings.EqualFold(colsec.Accesstype, "mask") || strings.EqualFold(colsec.Accesstype, "hide")) {
+	case strings.Contains(fieldTypeName, "json") &&
+		(strings.EqualFold(colsec.Accesstype, "mask") || strings.EqualFold(colsec.Accesstype, "hide")):
 		if len(colsec.Path) < 2 {
 			return 1, fieldval
 		}
@@ -300,11 +303,11 @@ func setColSecValue(fieldsrc reflect.Value, colsec ColumnSecurity, fieldTypeName
 	return 0, fieldsrc
 }

-func (m *SecurityList) ApplyColumnSecurity(records reflect.Value, modelType reflect.Type, pUserID int, pSchema, pTablename string) (error, reflect.Value) {
+func (m *SecurityList) ApplyColumnSecurity(records reflect.Value, modelType reflect.Type, pUserID int, pSchema, pTablename string) (reflect.Value, error) {
 	defer logger.CatchPanic("ApplyColumnSecurity")

 	if m.ColumnSecurity == nil {
-		return fmt.Errorf("security not initialized"), records
+		return records, fmt.Errorf("security not initialized")
 	}

 	m.ColumnSecurityMutex.RLock()
@@ -312,10 +315,11 @@ func (m *SecurityList) ApplyColumnSecurity(records reflect.Value, modelType refl

 	colsecList, ok := m.ColumnSecurity[fmt.Sprintf("%s.%s@%d", pSchema, pTablename, pUserID)]
 	if !ok || colsecList == nil {
-		return fmt.Errorf("no security data"), records
+		return records, fmt.Errorf("no security data")
 	}

-	for _, colsec := range colsecList {
+	for i := range colsecList {
+		colsec := &colsecList[i]
 		if !strings.EqualFold(colsec.Accesstype, "mask") && !strings.EqualFold(colsec.Accesstype, "hide") {
 			continue
 		}
@@ -353,7 +357,7 @@ func (m *SecurityList) ApplyColumnSecurity(records reflect.Value, modelType refl

 					if i == pathLen-1 {
 						if nameType == "sql" || nameType == "struct" {
-							setColSecValue(field, colsec, fieldName)
+							setColSecValue(field, *colsec, fieldName)
 						}
 						break
 					}
@@ -365,7 +369,7 @@ func (m *SecurityList) ApplyColumnSecurity(records reflect.Value, modelType refl
 		}
 	}

-	return nil, records
+	return records, nil
 }

 func (m *SecurityList) LoadColumnSecurity(pUserID int, pSchema, pTablename string, pOverwrite bool) error {
@@ -407,9 +411,10 @@ func (m *SecurityList) ClearSecurity(pUserID int, pSchema, pTablename string) er
 		return nil
 	}

-	for _, cs := range list {
+	for i := range list {
+		cs := &list[i]
 		if cs.Schema != pSchema && cs.Tablename != pTablename && cs.UserID != pUserID {
-			filtered = append(filtered, cs)
+			filtered = append(filtered, *cs)
 		}
 	}