APISession.hpp

Go to the documentation of this file.

/*
    Copyright (C) 2014-2016 Leosac

    This file is part of Leosac.

    Leosac is free software: you can redistribute it and/or modify
    it under the terms of the GNU Affero General Public License as published by
    the Free Software Foundation, either version 3 of the License, or
    (at your option) any later version.

    Leosac is distributed in the hope that it will be useful,
    but WITHOUT ANY WARRANTY; without even the implied warranty of
    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
    GNU Affero General Public License for more details.

    You should have received a copy of the GNU Affero General Public License
    along with this program. If not, see <http://www.gnu.org/licenses/>.
*/

#pragma once

#include "core/SecurityContext.hpp"
#include "core/auth/AuthFwd.hpp"
#include <json.hpp>
#include <memory>

namespace Leosac
{
namespace Module
{
namespace WebSockAPI
{

class WSServer;

class APISession
{
  public:
    using json = nlohmann::json;

    enum class AuthStatus
    {
        NONE,
        LOGGED_IN
    };

    APISession(WSServer &server);
    APISession(const APISession &) = delete;
    APISession(APISession &&)      = delete;

    Auth::UserId current_user_id() const;

    Auth::UserPtr current_user() const;

    Auth::TokenPtr current_token() const;

    bool allowed(const std::string &cmd);

    json get_leosac_version(const json &);

    json create_auth_token(const json &req);

    json authenticate_with_token(const json &req);

    json logout(const json &req);

    json system_overview(const json &req);

    void hook_before_request();

    void abort_session();

    SecurityContext &security_context() const;

  private:
    void mark_authenticated(Auth::TokenPtr token);
    void clear_authentication();

    WSServer &server_;
    AuthStatus auth_status_;

    Auth::TokenPtr current_auth_token_;

    std::unique_ptr<SecurityContext> security_;
};
}
}
}