admin/Authorization
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

removed username

Browse Source
This commit is contained in:
F04C
2026-01-16 10:50:50 +08:00
parent a361140629
commit 509a502a85
6 changed files with 36 additions and 102 deletions
Download Patch File Download Diff File Expand all files Collapse all files
handlers/authorize.go
+1 -1
View File
@@ -54,7 +54,7 @@ func AuthorizeHandler(w http.ResponseWriter, r *http.Request) {
}
log.Print("Authorization request for user=", ctx.UserID, ", resource=", ctx.Resource, ", action=", ctx.Action)
log.Print("JWT claims user=", claims.UserID, ", username=", claims.Username, ", role=", claims.RoleID)
log.Print("JWT claims user=", claims.UserID, ", role=", claims.RoleID)
// Verify JWT user matches request user (security check)
if ctx.UserID != claims.UserID {
helper.RespondWithError(w, http.StatusForbidden, "User ID mismatch")
handlers/authorize_test.go
+18 -27
View File
@@ -44,9 +44,8 @@ func TestAuthorizeHandlerNoJWTClaims(t *testing.T) {
func TestAuthorizeHandlerInvalidJSON(t *testing.T) {
// Setup - no need to init service, we're testing JSON parsing before auth
claims := &models.Claims{
UserID: "user123",
Username: "testuser",
RoleID: "admin",
UserID: "user123",
RoleID: "admin",
}
req := httptest.NewRequest("POST", AuthCheckEndpoint, bytes.NewBufferString("invalid json"))
@@ -85,9 +84,8 @@ func TestAuthorizeHandlerMissingRequiredFields(t *testing.T) {
for _, tc := range testCases {
t.Run(tc.name, func(t *testing.T) {
claims := &models.Claims{
UserID: "user123",
Username: "testuser",
RoleID: "admin",
UserID: "user123",
RoleID: "admin",
}
body, _ := json.Marshal(tc.payload)
@@ -108,9 +106,8 @@ func TestAuthorizeHandlerMissingRequiredFields(t *testing.T) {
func TestAuthorizeHandlerUserIDMismatch(t *testing.T) {
// Setup
claims := &models.Claims{
UserID: "user123",
Username: "testuser",
RoleID: "admin",
UserID: "user123",
RoleID: "admin",
}
payload := models.AuthorizationContext{
@@ -137,9 +134,8 @@ func TestAuthorizeHandlerUserIDMismatch(t *testing.T) {
func TestAuthorizeHandlerNilMaps(t *testing.T) {
// Test that nil maps don't cause additional panics beyond missing authService
claims := &models.Claims{
UserID: "user123",
Username: "testuser",
RoleID: "admin",
UserID: "user123",
RoleID: "admin",
}
payload := models.AuthorizationContext{
@@ -175,9 +171,8 @@ func TestAuthorizeHandlerNilMaps(t *testing.T) {
func TestAuthorizeHandlerEmptyUserID(t *testing.T) {
claims := &models.Claims{
UserID: "user123",
Username: "testuser",
RoleID: "admin",
UserID: "user123",
RoleID: "admin",
}
payload := models.AuthorizationContext{
@@ -201,9 +196,8 @@ func TestAuthorizeHandlerEmptyUserID(t *testing.T) {
func TestAuthorizeHandlerEmptyResource(t *testing.T) {
claims := &models.Claims{
UserID: "user123",
Username: "testuser",
RoleID: "admin",
UserID: "user123",
RoleID: "admin",
}
payload := models.AuthorizationContext{
@@ -227,9 +221,8 @@ func TestAuthorizeHandlerEmptyResource(t *testing.T) {
func TestAuthorizeHandlerEmptyAction(t *testing.T) {
claims := &models.Claims{
UserID: "user123",
Username: "testuser",
RoleID: "admin",
UserID: "user123",
RoleID: "admin",
}
payload := models.AuthorizationContext{
@@ -268,9 +261,8 @@ func TestAuthorizeHandlerInvalidClaimsType(t *testing.T) {
func TestAuthorizeHandlerMalformedJSON(t *testing.T) {
claims := &models.Claims{
UserID: "user123",
Username: "testuser",
RoleID: "admin",
UserID: "user123",
RoleID: "admin",
}
testCases := []struct {
@@ -325,9 +317,8 @@ func TestAuthorizeHandlerSpecialCharactersInFields(t *testing.T) {
// Update claims to match userID
testClaims := &models.Claims{
UserID: tc.userID,
Username: "testuser",
RoleID: "admin",
UserID: tc.userID,
RoleID: "admin",
}
ctx := context.WithValue(req.Context(), models.ContextKey("claims"), testClaims)
req = req.WithContext(ctx)