Refactors api key functionality

- API Key is now read from env file - API routes won't be set up if no API key is given via ENV file
2024-04-26 20:46:59 +02:00 · 2024-04-26 20:46:59 +02:00 · 08c7c1f9fa
commit 08c7c1f9fa
parent 86a7caa98f
2 changed files with 22 additions and 9 deletions
--- a/internal/api/api.go
+++ b/internal/api/api.go
@ -1,20 +1,31 @@
 package api
 import (
 	"errors"
 	"os"
 	"github.com/gofiber/fiber/v2"
 	"github.com/gofiber/fiber/v2/middleware/keyauth"
 )
-func Setup(app *fiber.App) {
+func Setup(app *fiber.App) error {
 	apiKey := os.Getenv("API_KEY")
 	if apiKey == "" {
 		return errors.New("Could not read API_KEY from ENV file.")
 	}
 	api := app.Group("/api", keyauth.New(keyauth.Config{
 		SuccessHandler: successHandler,
 		ErrorHandler:   errHandler,
 		KeyLookup:      "header:x-api-key",
 		ContextKey:     "apiKey",
-		Validator:      validateAPIKey,
+		Validator:      apiKeyValidator(apiKey),
 	}))
 	v1 := api.Group("/v1")
 	v1.Get("/users", FetchAllUsersHandler)
 	return nil
 }
--- a/internal/api/auth.go
+++ b/internal/api/auth.go
@ -21,15 +21,17 @@ var (
 	}
 )
-func validateAPIKey(_ *fiber.Ctx, key string) (bool, error) {
+func apiKeyValidator(apiKey string) func(*fiber.Ctx, string) (bool, error) {
-	hashedAPIKey := sha256.Sum256([]byte(apiKey))
+	return func(_ *fiber.Ctx, key string) (bool, error) {
-	hashedKey := sha256.Sum256([]byte(key))
+		hashedAPIKey := sha256.Sum256([]byte(apiKey))
 		hashedKey := sha256.Sum256([]byte(key))
-	if subtle.ConstantTimeCompare(hashedAPIKey[:], hashedKey[:]) == 1 {
+		if subtle.ConstantTimeCompare(hashedAPIKey[:], hashedKey[:]) == 1 {
-		return true, nil
+			return true, nil
 		}
 		return false, keyauth.ErrMissingOrMalformedAPIKey
 	}
 	return false, keyauth.ErrMissingOrMalformedAPIKey
 }
 func protectedRoutesFilter(ctx *fiber.Ctx) bool {