final commit finishing the project

Author: Adityasinghvats

README.md

@@ -0,0 +1,171 @@
+# Golang-JWT
+### A bullet-proof production ready authentication system.
+
+## POST
+### SignUp
+- ```bash
+  http://localhost:9000/users/signup
+  ```
+
+### Body
+- `raw (json)`
+ ```javascript
+    {
+        "First_name": "Aayush",
+        "Last_name":"Kumar",
+        "Password":"aayush@01",
+        "Email": "aayush@gmail.com",
+        "Phone":"9999966666",
+        "User_type": "ADMIN"   
+    }
+```
+## POST
+### Login
+- ```bash
+  http://localhost:9000/users/login
+  ```
+- `Login User`
+> This endpoint allows users to log in by providing their email and password.
+
+### Request Body
+- Type: `JSON`
+- `Email` (string): The email of the user.
+- `Password` (string): The password of the user.
+### Response
+> The response is in the form of a JSON schema representing the user's details upon successful login.
+
+```javascript
+{
+  "type": "object",
+  "properties": {
+    "ID": { "type": "string" },
+    "first_name": { "type": "string" },
+    "last_name": { "type": "string" },
+    "password": { "type": "string" },
+    "email": { "type": "string" },
+    "phone": { "type": "string" },
+    "token": { "type": "string" },
+    "user_type": { "type": "string" },
+    "refresh_token": { "type": "string" },
+    "created_at": { "type": "string" },
+    "update_at": { "type": "string" },
+    "user_id": { "type": "string" }
+  }
+}
+```
+
+### Authorization
+## JWT Bearer
+- Body `raw (json)`
+```json
+{
+    "Email": "aditya@gmail.com",
+    "Password":"aditya@01"
+}
+```
+## GET
+### GetUsers(Only ADMIN)
+```bash
+http://localhost:9000/users?recordPerPage=10&page=2
+```
+> This endpoint makes an HTTP GET request to retrieve a list of users with pagination support. The request includes query parameters for the number of records per page and the page number.
+
+### Response
+> The response is a JSON object with a status code of 200 and a content type of application/json. Below is the JSON schema for the response:
+
+```javascript
+{
+  "type": "object",
+  "properties": {
+    "total_count": {
+      "type": "integer"
+    },
+    "user_items": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "properties": {
+          "_id": {
+            "type": "string"
+          },
+          "created_at": {
+            "type": "string"
+          },
+          "email": {
+            "type": "string"
+          },
+          "first_name": {
+            "type": "string"
+          },
+          "last_name": {
+            "type": "string"
+          },
+          "password": {
+            "type": "string"
+          },
+          "phone": {
+            "type": "string"
+          },
+          "refreshToken": {
+            "type": "string"
+          },
+          "refresh_token": {
+            "type": "string"
+          },
+          "token": {
+            "type": "string"
+          },
+          "update_at": {
+            "type": "string"
+          },
+          "updated_at": {
+            "type": "string"
+          },
+          "user_id": {
+            "type": "string"
+          },
+          "user_type": {
+            "type": "string"
+          }
+        }
+      }
+    }
+  }
+}
+```
+
+### Authorization
+- Bearer Token
+  - Token `<token>`
+### Request Headers
+- token `eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJFbWFpbCI6ImFkaXR5YUBnbWFpbC5jb20iLCJGaXJzdF9uYW1lIjoiQWRpdHlhIiwiTGFzdF9uYW1lIjoiS3VtYXIiLCJVaWQiOiI2N2ZhYTE3N2RjMWU0ZDVmOGYyZTE0OGUiLCJVc2VyX3R5cGUiOiJBRE1JTiIsImV4cCI6MTc0NDU2NzcyMH0.CJikdZldJdVTKNXOH9yyq7-XIhcSTlZgVPzdjO1rxk4`
+### Query Params
+- `recordPerPage 10`
+- `page 2`
+## GET
+### GetUserById
+- `http://localhost:9000/users/67faa177dc1e4d5f8f2e148e`
+> This endpoint retrieves user information based on the provided user ID. The response returns a JSON object with the user's details, including ID, first name, last name, password, email, phone, token, user type, refresh token, creation timestamp, update timestamp, and user ID.
+
+```javascript
+{
+    "type": "object",
+    "properties": {
+        "ID": { "type": "string" },
+        "first_name": { "type": "string" },
+        "last_name": { "type": "string" },
+        "password": { "type": "string" },
+        "email": { "type": "string" },
+        "phone": { "type": "string" },
+        "token": { "type": "string" },
+        "user_type": { "type": "string" },
+        "refresh_token": { "type": "string" },
+        "created_at": { "type": "string" },
+        "update_at": { "type": "string" },
+        "user_id": { "type": "string" }
+    }
+}
+```
+
+### Request Headers
+- token `eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJFbWFpbCI6ImFkaXR5YUBnbWFpbC5jb20iLCJGaXJzdF9uYW1lIjoiQWRpdHlhIiwiTGFzdF9uYW1lIjoiS3VtYXIiLCJVaWQiOiI2N2ZhYTE3N2RjMWU0ZDVmOGYyZTE0OGUiLCJVc2VyX3R5cGUiOiJBRE1JTiIsImV4cCI6MTc0NDU2NzcyMH0.CJikdZldJdVTKNXOH9yyq7-XIhcSTlZgVPzdjO1rxk4`

controllers/userController.go

@@ -1,7 +1,6 @@
 package controllers
 
 import (
-	"bytes"
 	"context"
 	"fmt"
 	"log"
@@ -10,7 +9,6 @@ import (
 	"time"
 
 	"github.com/adix/gojwt/database"
-	"github.com/adix/gojwt/helpers"
 	helpers "github.com/adix/gojwt/helpers"
 	"github.com/adix/gojwt/models"
 	"github.com/gin-gonic/gin"
@@ -80,8 +78,9 @@ func Signup() gin.HandlerFunc {
 		user.Created_at, _ = time.Parse(time.RFC3339, time.Now().Format(time.RFC3339))
 		user.Update_at, _ = time.Parse(time.RFC3339, time.Now().Format(time.RFC3339))
 		user.ID = primitive.NewObjectID()
-		user.User_id = user.ID.Hex()
-		token, refreshToken, err := helpers.GenerateAllTokens(*user.Email, *user.First_name, *user.Last_name, *user.User_type, *&user.User_id)
+		userID := user.ID.Hex()
+		user.User_id = &userID
+		token, refreshToken, err := helpers.GenerateAllTokens(*user.Email, *user.First_name, *user.Last_name, *user.User_type, *user.User_id)
 		if err != nil {
 			c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
 			return
@@ -174,65 +173,38 @@ func GetUsers() gin.HandlerFunc {
 		}
 		var ctx, cancel = context.WithTimeout(context.Background(), 100*time.Second)
 
-		//pagination
 		recordPerPage, err := strconv.Atoi(c.Query("recordPerPage"))
 		if err != nil || recordPerPage < 1 {
 			recordPerPage = 10
 		}
-
 		page, err1 := strconv.Atoi(c.Query("page"))
 		if err1 != nil || page < 1 {
 			page = 1
 		}
 
-		//just like skip and limit in nodejs
 		startIndex := (page - 1) * recordPerPage
-
 		startIndex, err = strconv.Atoi(c.Query("startIndex"))
 
 		matchStage := bson.D{{"$match", bson.D{{}}}}
-		groupStage := bson.D{
-			{"$group", bson.D{
-					{"_id", bson.D{
-							{"_id", "null"}, 
-							{"total_count", bson.D{
-								{"$sum", 1}},
-							}, 
-							{"data", bson.D{
-								{"$push", "$$ROOT"}},
-							},
-						},
-					},
-				},
-			},
-		}
+		groupStage := bson.D{{"$group", bson.D{
+			{"_id", bson.D{{"_id", "null"}}},
+			{"total_count", bson.D{{"$sum", 1}}},
+			{"data", bson.D{{"$push", "$$ROOT"}}}}}}
 		projectStage := bson.D{
-			{"$project", {
-				bson.D{
-					{"_id", 0},
-					{"total_count", 1},
-					{"user_items", bson.D{
-						{"$slice", []interface{
-							"$data", startIndex, recordPerPage
-						}},
-					}}
-				}
-			}}
-		}
-		result ,err := userCollection.Aggregate(ctx, mongo.Pipeline{
-			matchStage, groupStage, projectStage
-		})
+			{"$project", bson.D{
+				{"_id", 0},
+				{"total_count", 1},
+				{"user_items", bson.D{{"$slice", []interface{}{"$data", startIndex, recordPerPage}}}}}}}
+		result, err := userCollection.Aggregate(ctx, mongo.Pipeline{
+			matchStage, groupStage, projectStage})
 		defer cancel()
-
-		if err != nil{
-			c.JSON(http.StatusInternalServerError, gin.H{"error": "error occured while listing users"})
-
+		if err != nil {
+			c.JSON(http.StatusInternalServerError, gin.H{"error": "error occured while listing user items"})
 		}
-		var allUsers []bson.M
-
-		if err = result.All(ctx, &allUsers); err != nil{
+		var allusers []bson.M
+		if err = result.All(ctx, &allusers); err != nil {
 			log.Fatal(err)
 		}
-		c.JSON(http.StatusOK, allUsers[0])
+		c.JSON(http.StatusOK, allusers[0])
 	}
 }

helpers/tokenHelper.go

@@ -2,12 +2,12 @@ package helpers
 
 import (
 	"context"
+	"fmt"
 	"log"
 	"os"
 	"time"
 
 	"github.com/adix/gojwt/database"
-	"github.com/dgrijalva/jwt-go"
 	jwt "github.com/dgrijalva/jwt-go"
 	"go.mongodb.org/mongo-driver/bson"
 	"go.mongodb.org/mongo-driver/bson/primitive"
@@ -91,3 +91,29 @@ func UpdateAllTokens(signedToken string, signedRefreshToken string, user_id stri
 	}
 	return
 }
+func ValidateToken(signedToken string) (claims *SignedDetails, msg string) {
+	token, err := jwt.ParseWithClaims(
+		signedToken,
+		&SignedDetails{},
+		func(t *jwt.Token) (interface{}, error) {
+			return []byte(SECRET_KEY), nil
+		},
+	)
+	if err != nil {
+		msg = err.Error()
+		return
+	}
+	claims, ok := token.Claims.(*SignedDetails)
+	if !ok {
+		msg = fmt.Sprintf("The token is invalid")
+		msg = err.Error()
+		return
+	}
+
+	if claims.ExpiresAt < time.Now().Local().Unix() {
+		msg = fmt.Sprintf("Token is expired")
+		msg = err.Error()
+		return
+	}
+	return claims, msg
+}

middlewares/authMiddleware.go

@@ -1,7 +1,34 @@
 package middlewares
 
-import ()
+import (
+	"fmt"
+	helpers "github.com/adix/gojwt/helpers"
+	"github.com/gin-gonic/gin"
+	"net/http"
+)
 
-func Authenticate() {
+func Authenticate() gin.HandlerFunc {
+	return func(c *gin.Context) {
+		clientToken := c.Request.Header.Get("token")
 
+		if clientToken == "" {
+			c.JSON(http.StatusInternalServerError, gin.H{"error": fmt.Sprintf("No authorization header provided")})
+			c.Abort()
+			return
+		}
+
+		claims, err := helpers.ValidateToken(clientToken)
+		if err != "" {
+			c.JSON(http.StatusInternalServerError, gin.H{"error": err})
+			c.Abort()
+			return
+		}
+
+		c.Set("email", claims.Email)
+		c.Set("first_name", claims.First_name)
+		c.Set("last_name", claims.Last_name)
+		c.Set("uid", claims.Uid)
+		c.Set("user_type", claims.User_type)
+		c.Next()
+	}
 }

models/userModel.go

@@ -8,13 +8,13 @@ import (
 
 type User struct {
 	ID            primitive.ObjectID `bson:"_id"`
-	First_name    *string            `json:"first_name" validate:"required, min=2, max=100"`
-	Last_name     *string            `json:"last_name" validate:"required, min=2, max=100"`
-	Password      *string            `json:"password" validate:"required, min=6"`
-	Email         *string            `json:"email" validate:"email, required"`
+	First_name    *string            `json:"first_name" validate:"required,min=2,max=100"`
+	Last_name     *string            `json:"last_name" validate:"required,min=2,max=100"`
+	Password      *string            `json:"password" validate:"required,min=6"`
+	Email         *string            `json:"email" validate:"email,required"`
 	Phone         *string            `json:"phone" validate:"required"`
 	Token         *string            `json:"token"`
-	User_type     *string            `json:"user_type" validate:"required, eq=ADMIN|eq=USER"`
+	User_type     *string            `json:"user_type" validate:"required,eq=ADMIN|eq=USER"`
 	Refresh_token *string            `json:"refresh_token"`
 	Created_at    time.Time          `json:"created_at"`
 	Update_at     time.Time          `json:"update_at"`

routes/authRouter.go

@@ -6,6 +6,6 @@ import (
 )
 
 func AuthRoutes(incomingRoutes *gin.Engine) {
-	incomingRoutes.POST("/users/singup", controller.Signup())
-	incomingRoutes.POST("users/login", controller.Login())
+	incomingRoutes.POST("/users/signup", controller.Signup())
+	incomingRoutes.POST("/users/login", controller.Login())
 }

routes/userRouter.go

@@ -9,5 +9,5 @@ import (
 func UserRoutes(incomingRoutes *gin.Engine) {
 	incomingRoutes.Use(middlewares.Authenticate())
 	incomingRoutes.GET("/users", controller.GetUsers())
-	incomingRoutes.GET("/users:id", controller.GetUser())
+	incomingRoutes.GET("/users/:id", controller.GetUser())
 }