b376ee3b73
* feat: use multi roles login - add support for protected roles - refactor oauth code * fix: adminUpdate role validation * fix: update app
66 lines
1.1 KiB
Go
66 lines
1.1 KiB
Go
package utils
|
|
|
|
import (
|
|
"net/mail"
|
|
"strings"
|
|
|
|
"github.com/authorizerdev/authorizer/server/constants"
|
|
"github.com/gin-gonic/gin"
|
|
)
|
|
|
|
func IsValidEmail(email string) bool {
|
|
_, err := mail.ParseAddress(email)
|
|
return err == nil
|
|
}
|
|
|
|
func IsValidRedirectURL(url string) bool {
|
|
if len(constants.ALLOWED_ORIGINS) == 1 && constants.ALLOWED_ORIGINS[0] == "*" {
|
|
return true
|
|
}
|
|
|
|
hasValidURL := false
|
|
urlDomain := GetDomainName(url)
|
|
|
|
for _, val := range constants.ALLOWED_ORIGINS {
|
|
if strings.Contains(val, urlDomain) {
|
|
hasValidURL = true
|
|
break
|
|
}
|
|
}
|
|
|
|
return hasValidURL
|
|
}
|
|
|
|
func IsSuperAdmin(gc *gin.Context) bool {
|
|
secret := gc.Request.Header.Get("x-authorizer-admin-secret")
|
|
if secret == "" {
|
|
return false
|
|
}
|
|
|
|
return secret == constants.ADMIN_SECRET
|
|
}
|
|
|
|
func IsValidRoles(userRoles []string, roles []string) bool {
|
|
valid := true
|
|
for _, role := range roles {
|
|
if !StringContains(userRoles, role) {
|
|
valid = false
|
|
break
|
|
}
|
|
}
|
|
|
|
return valid
|
|
}
|
|
|
|
func IsStringArrayEqual(a, b []string) bool {
|
|
if len(a) != len(b) {
|
|
return false
|
|
}
|
|
for i, v := range a {
|
|
if v != b[i] {
|
|
return false
|
|
}
|
|
}
|
|
return true
|
|
}
|