package security import ( "context" "net/http" "github.com/portainer/portainer" ) type ( contextKey int ) const ( contextAuthenticationKey contextKey = iota contextRestrictedRequest ) // storeTokenData stores a TokenData object inside the request context and returns the enhanced context. func storeTokenData(request *http.Request, tokenData *portainer.TokenData) context.Context { return context.WithValue(request.Context(), contextAuthenticationKey, tokenData) } // RetrieveTokenData returns the TokenData object stored in the request context. func RetrieveTokenData(request *http.Request) (*portainer.TokenData, error) { contextData := request.Context().Value(contextAuthenticationKey) if contextData == nil { return nil, portainer.ErrMissingContextData } tokenData := contextData.(*portainer.TokenData) return tokenData, nil } // storeRestrictedRequestContext stores a RestrictedRequestContext object inside the request context // and returns the enhanced context. func storeRestrictedRequestContext(request *http.Request, requestContext *RestrictedRequestContext) context.Context { return context.WithValue(request.Context(), contextRestrictedRequest, requestContext) } // RetrieveRestrictedRequestContext returns the RestrictedRequestContext object stored in the request context. func RetrieveRestrictedRequestContext(request *http.Request) (*RestrictedRequestContext, error) { contextData := request.Context().Value(contextRestrictedRequest) if contextData == nil { return nil, portainer.ErrMissingSecurityContext } requestContext := contextData.(*RestrictedRequestContext) return requestContext, nil }