wronglucky

author: floppydiskette <floppydisk@hyprcat.net> 2024-09-13 12:58:12 +0100
committer: floppydiskette <floppydisk@hyprcat.net> 2024-09-13 12:59:16 +0100
commit: 2c3400fb4f5a22951d42f286975201bf817d7883 (patch)
tree: a08b06f5f6d5df4f6774da7645d85418609a4cf2 /src/actions/mixins/api/auth/helpers.cr
parent: d8915dcca4d9752f6f254e86afa39ef7f83617d1 (diff)
1 files changed, 28 insertions, 0 deletions
diff --git a/src/actions/mixins/api/auth/helpers.cr b/src/actions/mixins/api/auth/helpers.cr
new file mode 100644
index 0000000..6b51cb5
--- /dev/null
+++ b/src/actions/mixins/api/auth/helpers.cr
@@ -0,0 +1,28 @@
+module Api::Auth::Helpers
+  # The 'memoize' macro makes sure only one query is issued to find the user
+  memoize def current_user? : User?
+    auth_token.try do |value|
+      user_from_auth_token(value)
+    end
+  end
+
+  private def auth_token : String?
+    bearer_token || token_param
+  end
+
+  private def bearer_token : String?
+    context.request.headers["Authorization"]?
+      .try(&.gsub("Bearer", ""))
+      .try(&.strip)
+  end
+
+  private def token_param : String?
+    params.get?(:auth_token)
+  end
+
+  private def user_from_auth_token(token : String) : User?
+    UserToken.decode_user_id(token).try do |user_id|
+      UserQuery.new.id(user_id).first?
+    end
+  end
+end
author	floppydiskette <floppydisk@hyprcat.net>	2024-09-13 12:58:12 +0100
committer	floppydiskette <floppydisk@hyprcat.net>	2024-09-13 12:59:16 +0100
commit	2c3400fb4f5a22951d42f286975201bf817d7883 (patch)
tree	a08b06f5f6d5df4f6774da7645d85418609a4cf2 /src/actions/mixins/api/auth/helpers.cr
parent	d8915dcca4d9752f6f254e86afa39ef7f83617d1 (diff)