feat: add simple jwt middleware and update oauth handlers

2026-02-10 21:26:48 +03:00
parent 7822da7e5c
commit a58e0f4451
8 changed files with 142 additions and 22 deletions
--- a/backend/internal/handlers/auth_handlers.go
+++ b/backend/internal/handlers/auth_handlers.go
@@ -13,36 +13,75 @@ import (
 type AuthHandlers struct {
 	repo   repositories.AuthRepository
 	logger *logger.Logger
-}
-
-var configGithub = &oauth2.Config{
-	ClientID:     os.Getenv("GITHUB_CLIENT_ID"),
-	ClientSecret: os.Getenv("GITHUB_CLIENT_SECRET"),
-	RedirectURL:  "https://d3m0k1d.ru/",
-	Scopes:       []string{"user"},
-	Endpoint:     endpoints.GitHub,
+	config *oauth2.Config
 }

 func NewAuthHandlers(repo repositories.AuthRepository) *AuthHandlers {
-	return &AuthHandlers{repo: repo, logger: logger.New(false)}
+	clientID := os.Getenv("GITHUB_CLIENT_ID")
+	clientSecret := os.Getenv("GITHUB_CLIENT_SECRET")
+	redirectURL := os.Getenv("REDIRECT_URL")
+
+	if clientID == "" || clientSecret == "" {
+		panic("GITHUB_CLIENT_ID and GITHUB_CLIENT_SECRET must be set")
+	}
+	if redirectURL == "" {
+		redirectURL = "http://localhost:8080/api/v1/callback/github"
+	}
+
+	return &AuthHandlers{
+		repo:   repo,
+		logger: logger.New(false),
+		config: &oauth2.Config{
+			ClientID:     clientID,
+			ClientSecret: clientSecret,
+			RedirectURL:  redirectURL,
+			Scopes:       []string{"user:email"},
+			Endpoint:     endpoints.GitHub,
+		},
+	}
 }

-// Callback godoc
-// @Summary Callback for oauth2 providers
-// @Description Callback for oauth2 providers
+// LoginGithub godoc
+// @Summary Start GitHub OAuth login
+// @Description Redirects to GitHub authorization
 // @Tags auth
-// @Accept  json
-// @Produce  json
-// @Success 200 {object} map[string]string
+// @Success 302
+// @Router /api/v1/auth/github [get]
+func (h *AuthHandlers) LoginGithub(c *gin.Context) {
+	url := h.config.AuthCodeURL("state", oauth2.AccessTypeOnline)
+	h.logger.Info("Redirect to GitHub: " + url)
+	c.Redirect(302, url)
+}
+
+// CallbackGithub godoc
+// @Summary GitHub OAuth callback
+// @Description Exchanges authorization code for access token
+// @Tags auth
+// @Param code query string true "Authorization code"
+// @Produce json
+// @Success 200 {object} map[string]interface{} "Access token"
+// @Failure 400 {object} map[string]string "Missing code"
+// @Failure 500 {object} map[string]string "Exchange failed"
 // @Router /callback/github [get]
 func (h *AuthHandlers) CallbackGithub(c *gin.Context) {
 	h.logger.Info("CallbackGithub called")

-	token, err := configGithub.Exchange(c.Request.Context(), c.Query("code"))
-	if err != nil {
-		h.logger.Error("error request: " + err.Error())
-		c.Status(500)
+	code := c.Query("code")
+	if code == "" {
+		h.logger.Error("missing code")
+		c.JSON(400, gin.H{"error": "missing code"})
+		return
 	}
-	h.logger.Info("200 OK GET /callback/github")
+
+	h.logger.Info("Processing code: " + code[:10] + "...")
+
+	token, err := h.config.Exchange(c.Request.Context(), code)
+	if err != nil {
+		h.logger.Error("Exchange failed: " + err.Error())
+		c.JSON(500, gin.H{"error": "exchange failed", "details": err.Error()})
+		return
+	}
+
+	h.logger.Info("200 OK - token received")
 	c.JSON(200, gin.H{"token": token})
 }
--- a/backend/internal/handlers/registry_handlers.go
+++ b/backend/internal/handlers/registry_handlers.go
@@ -11,7 +11,8 @@ func Register(router *gin.Engine, db *sql.DB) {
 	handler_posts := NewPostHandlers(repositories.NewPostRepository(db))
 	handler_auth := NewAuthHandlers(repositories.NewAuthRepository(db))
 	v1 := router.Group("api/v1")
-	v1.GET("/callback", handler_auth.CallbackGithub)
+	v1.GET("/callback/github", handler_auth.CallbackGithub)
+	v1.GET("/auth/github", handler_auth.LoginGithub)
 	posts := v1.Group("posts")
 	{
 		posts.GET("/", handler_posts.GetPosts)