/
token.go
101 lines (88 loc) · 1.98 KB
/
token.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
package main
import (
"fmt"
"github.com/SermoDigital/jose/crypto"
"github.com/SermoDigital/jose/jws"
"database/sql"
_ "github.com/lib/pq"
)
var secret = []byte{1, 2, 3, 4, 5, 6, 7, 8, 9}
func ValidateToken(token string) bool {
parsed, err := jws.ParseJWT([]byte(token))
if(err != nil) {
return false
}
id := int(parsed.Claims().Get("id").(float64))
if id > 0 {
fmt.Printf("parsed: %d : %v\n", id, parsed)
db, err := sql.Open("postgres", config.DbConnection)
if err != nil {
fmt.Println(err.Error())
}
defer db.Close()
stmt, err := db.Prepare("SELECT token FROM tokens where user_id = $1;")
if err != nil {
fmt.Printf("ERROR prepare: %s\n", err.Error())
return false
}
defer stmt.Close()
row := stmt.QueryRow(id)
var dbToken string
err = row.Scan(&dbToken)
if err != nil {
fmt.Println(err.Error())
return false
}
return token == dbToken
} else {
return false
}
}
func GenerateToken(id int) string {
var claims = jws.Claims{
"id": id,
}
j := jws.NewJWT(claims, crypto.SigningMethodHS256)
t, err := j.Serialize(secret)
if err != nil {
return ""
}
token := string(t)
db, err := sql.Open("postgres", config.DbConnection)
if err != nil {
fmt.Println(err.Error())
}
defer db.Close()
stmt, err := db.Prepare("INSERT INTO tokens(user_id,token) VALUES($1,$2);")
if err != nil {
fmt.Printf("ERROR prepare: %s\n", err.Error())
return ""
}
defer stmt.Close()
_, err = stmt.Exec(id, token)
if err != nil {
fmt.Printf("ERROR execute: %s\n", err.Error())
return ""
}
return token
}
func FlushToken(id int) bool {
db, err := sql.Open("postgres", config.DbConnection)
if err != nil {
fmt.Println(err.Error())
return false
}
defer db.Close()
stmt, err := db.Prepare("DELETE FROM tokens where user_id = $1;")
if err != nil {
fmt.Printf("ERROR prepare: %s\n", err.Error())
return false
}
defer stmt.Close()
_, err = stmt.Exec(id)
if err != nil {
fmt.Printf("ERROR execute: %s\n", err.Error())
return false
}
return true
}