1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
|
package authz
import (
"crypto/rand"
"encoding/csv"
"encoding/hex"
"fmt"
"math/big"
"os"
"golang.org/x/crypto/bcrypt"
)
// NewTokenMap create a new token map
func NewTokenMap() TokenMap {
return TokenMap{}
}
// TokenMap a map of username,hash
type TokenMap map[string]string
// LoadTokensFromFile load tokens from a csv into a map
func (tm TokenMap) LoadTokensFromFile(path string) error {
// TODO this should be configurable
contents, err := os.Open(path)
if err != nil {
fmt.Println("File reading error", err)
return err
}
defer contents.Close()
r := csv.NewReader(contents)
tokens, err := r.ReadAll()
if err != nil {
fmt.Println("File reading error", err)
return err
}
for _, acctToken := range tokens {
acct, hash := acctToken[0], acctToken[1]
tm[acct] = hash
}
return err
}
// GenerateNewToken generate a new token
func GenerateNewToken() (string, string, error) {
tokenBytes := make([]byte, 28)
for i := range tokenBytes {
maxInt := big.NewInt(int64(255))
randInt, err := rand.Int(rand.Reader, maxInt)
if err != nil {
return "", "", err
}
tokenBytes[i] = uint8(randInt.Int64())
}
hashBytes, err := bcrypt.GenerateFromPassword(tokenBytes, bcrypt.DefaultCost)
if err != nil {
return "", "", err
}
token := hex.EncodeToString(tokenBytes)
hash := string(hashBytes)
return token, hash, nil
}
|
