admin/Authorization
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

added more error logs

Browse Source
This commit is contained in:
F04C
2026-02-27 10:18:38 +08:00
parent 6262c875b7
commit 3ac1f83dd4
1 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
handlers/authorize.go
+6
View File
@@ -35,6 +35,7 @@ func AuthorizeHandler(w http.ResponseWriter, r *http.Request) {
// Get claims from JWT middleware // Get claims from JWT middleware
claims, ok := middleware.GetClaims(r) claims, ok := middleware.GetClaims(r)
if !ok { if !ok {
log.Printf("ERROR: Missing JWT claims in request context (method=%s, path=%s)", r.Method, r.URL.Path)
helper.RespondWithError(w, http.StatusUnauthorized, "Unauthorized") helper.RespondWithError(w, http.StatusUnauthorized, "Unauthorized")
return return
} }
@@ -46,6 +47,7 @@ func AuthorizeHandler(w http.ResponseWriter, r *http.Request) {
// Read and log raw request body // Read and log raw request body
bodyBytes, err := io.ReadAll(r.Body) bodyBytes, err := io.ReadAll(r.Body)
if err != nil { if err != nil {
log.Printf("ERROR: Failed to read authorization request body: %v", err)
helper.RespondWithError(w, http.StatusBadRequest, "Invalid request body") helper.RespondWithError(w, http.StatusBadRequest, "Invalid request body")
return return
} }
@@ -85,6 +87,9 @@ func AuthorizeHandler(w http.ResponseWriter, r *http.Request) {
} }
claimRoles := collectClaimRoles(claims) claimRoles := collectClaimRoles(claims)
if len(claimRoles) == 0 {
log.Printf("ERROR: No roles found in JWT claims for user=%s", claims.UsersID)
}
requestedRoles := collectRequestedRoles(&ctx) requestedRoles := collectRequestedRoles(&ctx)
if len(requestedRoles) == 0 { if len(requestedRoles) == 0 {
requestedRoles = claimRoles requestedRoles = claimRoles
@@ -92,6 +97,7 @@ func AuthorizeHandler(w http.ResponseWriter, r *http.Request) {
validRoles := intersectRoles(requestedRoles, claimRoles) validRoles := intersectRoles(requestedRoles, claimRoles)
if len(validRoles) == 0 { if len(validRoles) == 0 {
log.Printf("ERROR: Role mismatch for user=%s - requestedRoles=%v, claimRoles=%v", ctx.UsersID, requestedRoles, claimRoles)
helper.RespondWithError(w, http.StatusForbidden, "Role ID mismatch") helper.RespondWithError(w, http.StatusForbidden, "Role ID mismatch")
return return
} }