mirror of
https://github.com/DarkflameUniverse/DarkflameServer.git
synced 2026-01-31 16:09:55 +00:00
35 lines
1.1 KiB
C++
35 lines
1.1 KiB
C++
#ifndef __AUTHMIDDLEWARE_H__
|
|
#define __AUTHMIDDLEWARE_H__
|
|
|
|
#include <string>
|
|
#include <memory>
|
|
#include "IHTTPMiddleware.h"
|
|
|
|
/**
|
|
* AuthMiddleware: Extracts and verifies authentication tokens
|
|
*
|
|
* Token extraction sources (in priority order):
|
|
* 1. Query parameter: ?token=eyJhbGc...
|
|
* 2. Cookie: dashboardToken=...
|
|
* 3. Authorization header: Bearer <token> or Token <token>
|
|
*
|
|
* Sets HTTPContext.isAuthenticated, HTTPContext.authenticatedUser,
|
|
* and HTTPContext.gmLevel if token is valid.
|
|
*/
|
|
class AuthMiddleware final : public IHTTPMiddleware {
|
|
public:
|
|
AuthMiddleware() = default;
|
|
~AuthMiddleware() override = default;
|
|
|
|
bool Process(HTTPContext& context, HTTPReply& reply) override;
|
|
std::string GetName() const override { return "AuthMiddleware"; }
|
|
|
|
private:
|
|
// Extract token from various sources
|
|
static std::string ExtractTokenFromQueryString(const std::string& queryString);
|
|
static std::string ExtractTokenFromCookies(const std::string& cookieHeader);
|
|
static std::string ExtractTokenFromAuthHeader(const std::string& authHeader);
|
|
};
|
|
|
|
#endif // !__AUTHMIDDLEWARE_H__
|