Add user role to atuh token

Signed-off-by: Francesco Torchia <francesco.torchia@suse.com>
torchiaf · May 19, 2024 · 950da26 · 950da26
1 parent 29b485d
commit 950da26
Show file tree

Hide file tree

Showing 5 changed files with 17 additions and 6 deletions.
diff --git a/src/console/angular.json b/src/console/angular.json
@@ -84,7 +84,8 @@
                   "replace": "src/environments/environment.ts",
                   "with": "src/environments/environment.local.ts"
                 }
-              ]
+              ],
+              "baseHref": "/"
             },
             "cluster-dev": {
               "buildOptimizer": false,
@@ -98,7 +99,8 @@
                   "replace": "src/environments/environment.ts",
                   "with": "src/environments/environment.cluster-dev.ts"
                 }
-              ]
+              ],
+              "baseHref": "/"
             }
           },
           "defaultConfiguration": "production"

diff --git a/src/console/src/app/components/dashboard/admin/admin.component.html b/src/console/src/app/components/dashboard/admin/admin.component.html
@@ -1,4 +1,5 @@
 <div fxLayout="column" fxLayoutGap="15px">
   <div fxLayout="row" fxLayoutAlign="start none" fxLayoutGap="15px">
+    ADMIN ROLE
   </div>
 </div>
diff --git a/src/console/src/environments/environment.local.ts b/src/console/src/environments/environment.local.ts
@@ -1,6 +1,6 @@
 export const environment = {
   production: false,
-  restURL: 'https://localhost:8080',
+  restURL: 'http://localhost:8080',
   apiVersion: 'v1',
   jwtToken: 'token',
   languages: ['en', 'it'],

diff --git a/src/server/authentication/login.go b/src/server/authentication/login.go
@@ -40,7 +40,7 @@ func LoginCheck(auth models.Auth) (string, error) {
 		return "", errors.New("password is not correct")
 	}
 
-	token, err := GenerateToken(user.Name)
+	token, err := GenerateToken(user)
 
 	if err != nil {
 		return "", err

diff --git a/src/server/authentication/token.go b/src/server/authentication/token.go
@@ -19,7 +19,7 @@ import (
 var tokenSecret = utils.IfNull(os.Getenv("API_SECRET"), "francesco")
 var tokenExpiration = utils.IfNull(os.Getenv("API_TOKEN_EXPIRATION"), "24")
 
-func GenerateToken(username string) (string, error) {
+func GenerateToken(user models.User) (string, error) {
 
 	token_lifespan, err := strconv.Atoi(tokenExpiration)
 
@@ -29,7 +29,15 @@ func GenerateToken(username string) (string, error) {
 
 	claims := jwt.MapClaims{}
 	claims["authorized"] = true
-	claims["username"] = username
+	claims["id"] = user.Id
+	claims["username"] = user.Name
+
+	if user.IsAdmin {
+		claims["role"] = "Admin"
+	} else {
+		claims["role"] = "User"
+	}
+
 	claims["exp"] = time.Now().Add(time.Hour * time.Duration(token_lifespan)).Unix()
 	token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)