diff options
Diffstat (limited to 'api/cmd/main.go')
-rw-r--r-- | api/cmd/main.go | 104 |
1 files changed, 104 insertions, 0 deletions
diff --git a/api/cmd/main.go b/api/cmd/main.go new file mode 100644 index 0000000..1924556 --- /dev/null +++ b/api/cmd/main.go | |||
@@ -0,0 +1,104 @@ | |||
1 | package main | ||
2 | |||
3 | import ( | ||
4 | "errors" | ||
5 | "log" | ||
6 | "net/http" | ||
7 | "strings" | ||
8 | "water/api/internal/database" | ||
9 | "water/api/internal/controllers" | ||
10 | |||
11 | "github.com/gin-gonic/gin" | ||
12 | _ "github.com/mattn/go-sqlite3" | ||
13 | ) | ||
14 | |||
15 | func CORSMiddleware() gin.HandlerFunc { | ||
16 | return func(c *gin.Context) { | ||
17 | c.Writer.Header().Set("Access-Control-Allow-Origin", "*") | ||
18 | c.Writer.Header().Set("Access-Control-Allow-Credentials", "true") | ||
19 | c.Writer.Header().Set("Access-Control-Allow-Headers", "Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With") | ||
20 | c.Writer.Header().Set("Access-Control-Allow-Methods", "POST, OPTIONS, GET, PUT") | ||
21 | |||
22 | if c.Request.Method == "OPTIONS" { | ||
23 | log.Println(c.Request.Header) | ||
24 | c.AbortWithStatus(http.StatusNoContent) | ||
25 | return | ||
26 | } | ||
27 | |||
28 | c.Next() | ||
29 | } | ||
30 | } | ||
31 | |||
32 | func checkForTokenInContext(c *gin.Context) (string, error) { | ||
33 | authorizationHeader := c.GetHeader("Authorization") | ||
34 | if authorizationHeader == "" { | ||
35 | return "", errors.New("authorization header is missing") | ||
36 | } | ||
37 | |||
38 | parts := strings.Split(authorizationHeader, " ") | ||
39 | |||
40 | if len(parts) != 2 || parts[0] != "Bearer" { | ||
41 | return "", errors.New("invalid Authorization header format") | ||
42 | } | ||
43 | |||
44 | return parts[1], nil | ||
45 | } | ||
46 | |||
47 | func TokenRequired() gin.HandlerFunc { | ||
48 | return func(c *gin.Context) { | ||
49 | _, err := checkForTokenInContext(c) | ||
50 | |||
51 | if err != nil { | ||
52 | c.JSON(http.StatusUnauthorized, gin.H{"error": "Unauthorized"}) | ||
53 | c.Abort() | ||
54 | return | ||
55 | } | ||
56 | |||
57 | c.Next() | ||
58 | } | ||
59 | } | ||
60 | |||
61 | func setupRouter() *gin.Engine { | ||
62 | // Disable Console Color | ||
63 | // gin.DisableConsoleColor() | ||
64 | r := gin.Default() | ||
65 | r.Use(CORSMiddleware()) | ||
66 | r.Use(gin.Logger()) | ||
67 | r.Use(gin.Recovery()) | ||
68 | |||
69 | api := r.Group("api/v1") | ||
70 | |||
71 | api.POST("/auth", controllers.AuthHandler) | ||
72 | |||
73 | user := api.Group("/user/:uuid") | ||
74 | user.Use(TokenRequired()) | ||
75 | { | ||
76 | user.GET("", controllers.GetUser) | ||
77 | user.GET("preferences", controllers.GetUserPreferences) | ||
78 | user.PATCH("preferences", controllers.UpdateUserPreferences) | ||
79 | } | ||
80 | |||
81 | stats := api.Group("/stats") | ||
82 | stats.Use(TokenRequired()) | ||
83 | { | ||
84 | stats.GET("/", controllers.GetAllStatistics) | ||
85 | stats.POST("/", controllers.PostNewStatistic) | ||
86 | stats.GET("weekly/", controllers.GetWeeklyStatistics) | ||
87 | stats.GET("daily/", controllers.GetDailyUserStatistics) | ||
88 | stats.GET("user/:uuid", controllers.GetUserStatistics) | ||
89 | stats.PATCH("user/:uuid", controllers.UpdateUserStatistic) | ||
90 | stats.DELETE("user/:uuid", controllers.DeleteUserStatistic) | ||
91 | } | ||
92 | |||
93 | return r | ||
94 | } | ||
95 | |||
96 | func main() { | ||
97 | database.SetupDatabase() | ||
98 | r := setupRouter() | ||
99 | // Listen and Server in 0.0.0.0:8080 | ||
100 | err := r.Run(":8080") | ||
101 | if err != nil { | ||
102 | return | ||
103 | } | ||
104 | } | ||