jwt for api endpoints about auth HOT 12 OPEN

@x0rzkov
auth module partly supports JWT authentication:

You can wrap SessionStorer with decorator to extend behaviour of Update method

from auth.

hi @x0rzkov

Do you want to integrate JWT with QOR Admin resources? Or your own handler but with QOR Auth?

from auth.

@raven-chen

Both is it possible ?

But in priority, I want to create an api endpoint with a bearer and allow users to get it with their login credentials (I use auth_themes/clean); not admin users.

So if "Or your own handler but with QOR Auth?" means that so the answer is that.

Btw, it is my second handle of @x0rzkov

Cheers

from auth.

Both are possible. but integrate JWT into QOR Admin is not an easy job.

Since you're in rush. better to do something with the Auth.

type Auth interface {
	GetCurrentUser(*Context) qor.CurrentUser
	LoginURL(*Context) string
	LogoutURL(*Context) string
}

A quick patch would be inserting the jwt logic into GetCurrentUser. I'm not 100% sure it would work but worth a try.

from auth.

@raven-chen

Do you have a snippet to share ? plz

I found that integrating jwt:

• https://github.com/cryptix/ssb-pubmon/blob/master/config/config.go#L86
• https://github.com/cryptix/ssb-pubmon/blob/master/config/auth/auth.go
• https://github.com/imagepit/go-micro-user/blob/master/main.go

from auth.

I don't have a snippet. just an idea. e.g.

func (AdminAuth) GetCurrentUser(c *admin.Context) qor.CurrentUser {
        // this is a normal implementation. You can try embed JWT logic here, if user passes the jwt check, return a proper user. otherwise return nil?
	currentUser := Auth.GetCurrentUser(c.Request)
	if currentUser != nil {
		qorCurrentUser, ok := currentUser.(qor.CurrentUser)
		if !ok {
			fmt.Printf("User %#v haven't implement qor.CurrentUser interface\n", currentUser)
		}
		return qorCurrentUser
	}
	return nil
}

from auth.

@sergolius thanks for your reply :-)

Is there a way to create login controller without the form to get it and/or refresh it ?

Cheers,
X

from auth.

@x0rzkov QOR is very flexible, it's up to you to extend or override functionality.
See Password provider as base example: https://github.com/qor/auth/blob/11d4c974507d28e2fd10ff94edcdd00369e069a6/providers/password/password.go

from auth.

Unfortunately, I am lost on this one, do not know how to do it... If you have a snippet, you would be my saviour ^^

from auth.

from auth.

I send pull request to auth package.

#45

from auth.

@lutfuahmet do you have an example with the full implementation mate ? Thanks for you reply also, greatly appreciated :-)

from auth.