twitch-bot/authBackends.go

package main

import (
	"time"

	"github.com/Luzifer/go_helpers/v2/str"
	"github.com/Luzifer/twitch-bot/v3/internal/service/authcache"
)

const internalTokenAuthCacheExpiry = 5 * time.Minute

func authBackendInternalAppToken(token string) (modules []string, expiresAt time.Time, err error) {
	for _, auth := range config.AuthTokens {
		if auth.validate(token) != nil {
			continue
		}

		// We found a matching token
		return auth.Modules, time.Now().Add(internalTokenAuthCacheExpiry), nil
	}

	return nil, time.Time{}, authcache.ErrUnauthorized
}

func authBackendInternalEditorToken(token string) ([]string, time.Time, error) {
	id, user, expiresAt, err := editorTokenService.ValidateLoginToken(token)
	if err != nil {
		// None of our tokens: Nay.
		return nil, time.Time{}, authcache.ErrUnauthorized
	}

	if !str.StringInSlice(user, config.BotEditors) && !str.StringInSlice(id, config.BotEditors) {
		// That user is none of our editors: Deny access
		return nil, time.Time{}, authcache.ErrUnauthorized
	}

	// Editors have full access: Return module "*"
	return []string{"*"}, expiresAt, nil
}
[core] Add auth-cache for token auth to speed up frontend and reduce CPU/MEM consumption on consecutive API requests Signed-off-by: Knut Ahlers <knut@ahlers.me> 2023-12-04 13:12:01 +00:00			`package main`

			`import (`
			`"time"`

			`"github.com/Luzifer/go_helpers/v2/str"`
			`"github.com/Luzifer/twitch-bot/v3/internal/service/authcache"`
			`)`

			`const internalTokenAuthCacheExpiry = 5 * time.Minute`

Add new editor token generator in order not to throw around Twitch tokens and have tokens expire Signed-off-by: Knut Ahlers <knut@ahlers.me> 2024-06-12 19:26:39 +00:00			`func authBackendInternalAppToken(token string) (modules []string, expiresAt time.Time, err error) {`
[core] Add auth-cache for token auth to speed up frontend and reduce CPU/MEM consumption on consecutive API requests Signed-off-by: Knut Ahlers <knut@ahlers.me> 2023-12-04 13:12:01 +00:00			`for _, auth := range config.AuthTokens {`
			`if auth.validate(token) != nil {`
			`continue`
			`}`

			`// We found a matching token`
			`return auth.Modules, time.Now().Add(internalTokenAuthCacheExpiry), nil`
			`}`

			`return nil, time.Time{}, authcache.ErrUnauthorized`
			`}`

Add new editor token generator in order not to throw around Twitch tokens and have tokens expire Signed-off-by: Knut Ahlers <knut@ahlers.me> 2024-06-12 19:26:39 +00:00			`func authBackendInternalEditorToken(token string) ([]string, time.Time, error) {`
			`id, user, expiresAt, err := editorTokenService.ValidateLoginToken(token)`
			`if err != nil {`
			`// None of our tokens: Nay.`
			`return nil, time.Time{}, authcache.ErrUnauthorized`
			`}`

			`if !str.StringInSlice(user, config.BotEditors) && !str.StringInSlice(id, config.BotEditors) {`
			`// That user is none of our editors: Deny access`
			`return nil, time.Time{}, authcache.ErrUnauthorized`
			`}`

			`// Editors have full access: Return module "*"`
			`return []string{"*"}, expiresAt, nil`
			`}`