prompt-5

2026-02-22 17:43:04 +01:00
parent ae48383dc8
commit 722dd85fc6
9 changed files with 383 additions and 1 deletions
--- a/internal/http/middleware/auth.go
+++ b/internal/http/middleware/auth.go
@@ -0,0 +1,62 @@
+package middleware
+
+import (
+	"errors"
+
+	"trustcontact/internal/models"
+
+	"github.com/gofiber/fiber/v2"
+	"github.com/gofiber/fiber/v2/middleware/session"
+)
+
+func RequireAuth() fiber.Handler {
+	return func(c *fiber.Ctx) error {
+		if _, ok := CurrentUserFromContext(c); !ok {
+			return c.Redirect("/login")
+		}
+		return c.Next()
+	}
+}
+
+func RequireAdmin() fiber.Handler {
+	return func(c *fiber.Ctx) error {
+		user, ok := CurrentUserFromContext(c)
+		if !ok {
+			return c.Redirect("/login")
+		}
+		if user.Role != models.RoleAdmin {
+			return c.Status(fiber.StatusForbidden).SendString("forbidden")
+		}
+		return c.Next()
+	}
+}
+
+func SetSessionUserID(c *fiber.Ctx, userID uint) error {
+	store, ok := c.Locals(contextStoreKey).(*session.Store)
+	if !ok || store == nil {
+		return errors.New("session store not available")
+	}
+
+	sess, err := store.Get(c)
+	if err != nil {
+		return err
+	}
+
+	sess.Set(sessionUserIDKey, userID)
+	return sess.Save()
+}
+
+func ClearSessionUser(c *fiber.Ctx) error {
+	store, ok := c.Locals(contextStoreKey).(*session.Store)
+	if !ok || store == nil {
+		return errors.New("session store not available")
+	}
+
+	sess, err := store.Get(c)
+	if err != nil {
+		return err
+	}
+
+	sess.Delete(sessionUserIDKey)
+	return sess.Save()
+}