zhttp.http.middleware.Auth.scala Maven / Gradle / Ivy
package zhttp.http.middleware
import io.netty.handler.codec.http.HttpHeaderNames
import zhttp.http.Headers.{BasicSchemeName, BearerSchemeName}
import zhttp.http._
import zhttp.http.middleware.Auth.Credentials
import zio._
private[zhttp] trait Auth {
/**
* Creates a middleware for basic authentication
*/
final def basicAuth(f: Credentials => Boolean): HttpMiddleware[Any, Nothing] =
basicAuthZIO(credentials => ZIO.succeed(f(credentials)))
/**
* Creates a middleware for basic authentication that checks if the
* credentials are same as the ones given
*/
final def basicAuth(u: String, p: String): HttpMiddleware[Any, Nothing] =
basicAuth { case credentials => (credentials.uname == u) && (credentials.upassword == p) }
/**
* Creates a middleware for basic authentication using an effectful
* verification function
*/
final def basicAuthZIO[R, E](f: Credentials => ZIO[R, E, Boolean]): HttpMiddleware[R, E] =
customAuthZIO(
_.basicAuthorizationCredentials match {
case Some(credentials) => f(credentials)
case None => ZIO.succeed(false)
},
Headers(HttpHeaderNames.WWW_AUTHENTICATE, BasicSchemeName),
)
/**
* Creates a middleware for bearer authentication that checks the token using
* the given function
* @param f:
* function that validates the token string inside the Bearer Header
*/
final def bearerAuth(f: String => Boolean): HttpMiddleware[Any, Nothing] =
bearerAuthZIO(token => ZIO.succeed(f(token)))
/**
* Creates a middleware for bearer authentication that checks the token using
* the given effectful function
* @param f:
* function that effectfully validates the token string inside the Bearer
* Header
*/
final def bearerAuthZIO[R, E](f: String => ZIO[R, E, Boolean]): HttpMiddleware[R, E] =
customAuthZIO(
_.bearerToken match {
case Some(token) => f(token)
case None => ZIO.succeed(false)
},
Headers(HttpHeaderNames.WWW_AUTHENTICATE, BearerSchemeName),
)
/**
* Creates an authentication middleware that only allows authenticated
* requests to be passed on to the app.
*/
final def customAuth(
verify: Headers => Boolean,
responseHeaders: Headers = Headers.empty,
responseStatus: Status = Status.Unauthorized,
): HttpMiddleware[Any, Nothing] =
customAuthZIO(headers => ZIO.succeed(verify(headers)), responseHeaders, responseStatus)
/**
* Creates an authentication middleware that only allows authenticated
* requests to be passed on to the app using an effectful verification
* function.
*/
final def customAuthZIO[R, E](
verify: Headers => ZIO[R, E, Boolean],
responseHeaders: Headers = Headers.empty,
responseStatus: Status = Status.Unauthorized,
): HttpMiddleware[R, E] =
Middleware.ifThenElseZIO[Request](req => verify(req.headers))(
_ => Middleware.identity,
_ => Middleware.fromHttp(Http.status(responseStatus).addHeaders(responseHeaders)),
)
}
object Auth {
case class Credentials(uname: String, upassword: String)
}
© 2015 - 2024 Weber Informatics LLC | Privacy Policy