2019-04-30 22:49:28 +00:00
|
|
|
#ifndef SecurityManager_h
|
|
|
|
#define SecurityManager_h
|
|
|
|
|
2019-05-06 14:50:19 +00:00
|
|
|
#include <ArduinoJsonJWT.h>
|
2019-05-29 22:48:16 +00:00
|
|
|
#include <ESPAsyncWebServer.h>
|
2019-12-03 23:16:06 +00:00
|
|
|
#include <list>
|
2019-04-29 23:30:43 +00:00
|
|
|
|
|
|
|
#define DEFAULT_JWT_SECRET "esp8266-react"
|
|
|
|
|
2019-05-18 18:35:27 +00:00
|
|
|
#define AUTHORIZATION_HEADER "Authorization"
|
|
|
|
#define AUTHORIZATION_HEADER_PREFIX "Bearer "
|
|
|
|
#define AUTHORIZATION_HEADER_PREFIX_LEN 7
|
2019-04-29 23:30:43 +00:00
|
|
|
|
2019-05-02 23:31:20 +00:00
|
|
|
#define MAX_JWT_SIZE 128
|
2019-04-29 23:30:43 +00:00
|
|
|
|
|
|
|
class User {
|
2020-02-01 08:44:26 +00:00
|
|
|
public:
|
|
|
|
String username;
|
|
|
|
String password;
|
|
|
|
bool admin;
|
2019-12-03 23:16:06 +00:00
|
|
|
|
|
|
|
public:
|
2020-02-01 08:44:26 +00:00
|
|
|
User(String username, String password, bool admin) : username(username), password(password), admin(admin) {
|
2019-12-03 23:16:06 +00:00
|
|
|
}
|
2019-04-29 23:30:43 +00:00
|
|
|
};
|
|
|
|
|
2019-05-15 23:19:41 +00:00
|
|
|
class Authentication {
|
2020-02-01 08:44:26 +00:00
|
|
|
public:
|
|
|
|
User* user;
|
|
|
|
boolean authenticated;
|
2019-12-03 23:16:06 +00:00
|
|
|
|
|
|
|
public:
|
2020-02-01 08:44:26 +00:00
|
|
|
Authentication(User& user) : user(new User(user)), authenticated(true) {
|
2019-12-03 23:16:06 +00:00
|
|
|
}
|
2020-02-01 08:44:26 +00:00
|
|
|
Authentication() : user(nullptr), authenticated(false) {
|
2019-12-03 23:16:06 +00:00
|
|
|
}
|
|
|
|
~Authentication() {
|
2020-02-01 08:44:26 +00:00
|
|
|
delete (user);
|
2019-12-03 23:16:06 +00:00
|
|
|
}
|
2019-05-15 23:19:41 +00:00
|
|
|
};
|
|
|
|
|
2019-12-03 23:16:06 +00:00
|
|
|
typedef std::function<boolean(Authentication& authentication)> AuthenticationPredicate;
|
2019-04-29 23:30:43 +00:00
|
|
|
|
2019-05-29 22:48:16 +00:00
|
|
|
class AuthenticationPredicates {
|
2019-12-03 23:16:06 +00:00
|
|
|
public:
|
|
|
|
static bool NONE_REQUIRED(Authentication& authentication) {
|
|
|
|
return true;
|
|
|
|
};
|
|
|
|
static bool IS_AUTHENTICATED(Authentication& authentication) {
|
2020-02-01 08:44:26 +00:00
|
|
|
return authentication.authenticated;
|
2019-12-03 23:16:06 +00:00
|
|
|
};
|
|
|
|
static bool IS_ADMIN(Authentication& authentication) {
|
2020-02-01 08:44:26 +00:00
|
|
|
return authentication.authenticated && authentication.user->admin;
|
2019-12-03 23:16:06 +00:00
|
|
|
};
|
2019-05-29 22:48:16 +00:00
|
|
|
};
|
2019-04-29 23:30:43 +00:00
|
|
|
|
2019-05-29 22:48:16 +00:00
|
|
|
class SecurityManager {
|
2019-12-03 23:16:06 +00:00
|
|
|
public:
|
|
|
|
/*
|
|
|
|
* Authenticate, returning the user if found
|
|
|
|
*/
|
2020-02-01 08:44:26 +00:00
|
|
|
virtual Authentication authenticate(String username, String password) = 0;
|
2019-12-03 23:16:06 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* Check the request header for the Authorization token
|
|
|
|
*/
|
2020-02-01 08:44:26 +00:00
|
|
|
virtual Authentication authenticateRequest(AsyncWebServerRequest* request) = 0;
|
2019-12-03 23:16:06 +00:00
|
|
|
|
|
|
|
/*
|
|
|
|
* Generate a JWT for the user provided
|
|
|
|
*/
|
2020-02-01 08:44:26 +00:00
|
|
|
virtual String generateJWT(User* user) = 0;
|
2019-12-03 23:16:06 +00:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Wrap the provided request to provide validation against an AuthenticationPredicate.
|
|
|
|
*/
|
2020-02-01 08:44:26 +00:00
|
|
|
virtual ArRequestHandlerFunction wrapRequest(ArRequestHandlerFunction onRequest,
|
|
|
|
AuthenticationPredicate predicate) = 0;
|
2019-04-29 23:30:43 +00:00
|
|
|
};
|
|
|
|
|
2019-12-03 23:16:06 +00:00
|
|
|
#endif // end SecurityManager_h
|