Move creating tokens to auth package

pkg/integrations/integrations.go

@@ -17,6 +17,7 @@
 package integrations
 
 import (
+	"code.vikunja.io/api/pkg/modules/auth"
 	"net/http"
 	"net/http/httptest"
 	"net/url"
@@ -29,7 +30,6 @@ import (
 	"code.vikunja.io/api/pkg/files"
 	"code.vikunja.io/api/pkg/models"
 	"code.vikunja.io/api/pkg/routes"
-	v1 "code.vikunja.io/api/pkg/routes/api/v1"
 	"code.vikunja.io/api/pkg/user"
 	"code.vikunja.io/web"
 	"code.vikunja.io/web/handler"
@@ -119,7 +119,7 @@ func newTestRequest(t *testing.T, method string, handler func(ctx echo.Context)
 
 func addUserTokenToContext(t *testing.T, user *user.User, c echo.Context) {
 	// Get the token as a string
-	token, err := v1.NewUserJWTAuthtoken(user)
+	token, err := auth.NewUserJWTAuthtoken(user)
 	assert.NoError(t, err)
 	// We send the string token through the parsing function to get a valid jwt.Token
 	tken, err := jwt.Parse(token, func(t *jwt.Token) (interface{}, error) {
@@ -131,7 +131,7 @@ func addUserTokenToContext(t *testing.T, user *user.User, c echo.Context) {
 
 func addLinkShareTokenToContext(t *testing.T, share *models.LinkSharing, c echo.Context) {
 	// Get the token as a string
-	token, err := v1.NewLinkShareJWTAuthtoken(share)
+	token, err := auth.NewLinkShareJWTAuthtoken(share)
 	assert.NoError(t, err)
 	// We send the string token through the parsing function to get a valid jwt.Token
 	tken, err := jwt.Parse(token, func(t *jwt.Token) (interface{}, error) {

pkg/modules/auth/auth.go

@@ -14,7 +14,7 @@
 // You should have received a copy of the GNU General Public License
 // along with this program.  If not, see <https://www.gnu.org/licenses/>.
 
-package v1
+package auth
 
 import (
 	"net/http"
@@ -35,6 +35,11 @@ const (
 	AuthTypeLinkShare
 )
 
+// Token represents an authentification token
+type Token struct {
+	Token string `json:"token"`
+}
+
 func NewUserAuthTokenResponse(u *user.User, c echo.Context) error {
 	t, err := NewUserJWTAuthtoken(u)
 	if err != nil {

pkg/modules/auth/openid/openid.go

@@ -17,7 +17,7 @@
 package openid
 
 import (
-	apiv1 "code.vikunja.io/api/pkg/routes/api/v1"
+	"code.vikunja.io/api/pkg/modules/auth"
 	"context"
 	"encoding/json"
 	petname "github.com/dustinkirkland/golang-petname"
@@ -198,7 +198,7 @@ func HandleCallback(c echo.Context) error {
 	}
 
 	// Create token
-	return apiv1.NewUserAuthTokenResponse(u, c)
+	return auth.NewUserAuthTokenResponse(u, c)
 }
 
 func getOrCreateUser(cl *claims, issuer, subject string) (u *user.User, err error) {

pkg/modules/background/handler/background.go

@@ -17,6 +17,7 @@
 package handler
 
 import (
+	auth2 "code.vikunja.io/api/pkg/modules/auth"
 	"io"
 	"net/http"
 	"strconv"
@@ -27,7 +28,6 @@ import (
 	"code.vikunja.io/api/pkg/models"
 	"code.vikunja.io/api/pkg/modules/background"
 	"code.vikunja.io/api/pkg/modules/background/unsplash"
-	v1 "code.vikunja.io/api/pkg/routes/api/v1"
 	"code.vikunja.io/web"
 	"code.vikunja.io/web/handler"
 	"github.com/gabriel-vasile/mimetype"
@@ -69,7 +69,7 @@ func (bp *BackgroundProvider) SearchBackgrounds(c echo.Context) error {
 
 // This function does all kinds of preparations for setting and uploading a background
 func (bp *BackgroundProvider) setBackgroundPreparations(c echo.Context) (list *models.List, auth web.Auth, err error) {
-	auth, err = v1.GetAuthFromClaims(c)
+	auth, err = auth2.GetAuthFromClaims(c)
 	if err != nil {
 		return nil, nil, echo.NewHTTPError(http.StatusBadRequest, "Invalid auth token: "+err.Error())
 	}
@@ -180,7 +180,7 @@ func (bp *BackgroundProvider) UploadBackground(c echo.Context) error {
 // @Router /lists/{id}/background [get]
 func GetListBackground(c echo.Context) error {
 
-	auth, err := v1.GetAuthFromClaims(c)
+	auth, err := auth2.GetAuthFromClaims(c)
 	if err != nil {
 		return echo.NewHTTPError(http.StatusBadRequest, "Invalid auth token: "+err.Error())
 	}

pkg/routes/api/v1/link_sharing_auth.go

@@ -17,6 +17,7 @@
 package v1
 
 import (
+	"code.vikunja.io/api/pkg/modules/auth"
 	"net/http"
 
 	"code.vikunja.io/api/pkg/models"
@@ -26,7 +27,7 @@ import (
 
 // LinkShareToken represents a link share auth token with extra infos about the actual link share
 type LinkShareToken struct {
-	Token
+	auth.Token
 	*models.LinkSharing
 	ListID int64 `json:"list_id"`
 }
@@ -49,13 +50,13 @@ func AuthenticateLinkShare(c echo.Context) error {
 		return handler.HandleHTTPError(err, c)
 	}
 
-	t, err := NewLinkShareJWTAuthtoken(share)
+	t, err := auth.NewLinkShareJWTAuthtoken(share)
 	if err != nil {
 		return handler.HandleHTTPError(err, c)
 	}
 
 	return c.JSON(http.StatusOK, LinkShareToken{
-		Token:       Token{Token: t},
+		Token:       auth.Token{Token: t},
 		LinkSharing: share,
 		ListID:      share.ListID,
 	})

pkg/routes/api/v1/login.go

@@ -17,6 +17,7 @@
 package v1
 
 import (
+	"code.vikunja.io/api/pkg/modules/auth"
 	"net/http"
 
 	"code.vikunja.io/api/pkg/models"
@@ -26,11 +27,6 @@ import (
 	"github.com/labstack/echo/v4"
 )
 
-// Token represents an authentification token
-type Token struct {
-	Token string `json:"token"`
-}
-
 // Login is the login handler
 // @Summary Login
 // @Description Logs a user in. Returns a JWT-Token to authenticate further requests.
@@ -71,12 +67,7 @@ func Login(c echo.Context) error {
 	}
 
 	// Create token
-	t, err := NewUserJWTAuthtoken(user)
-	if err != nil {
-		return err
-	}
-
-	return c.JSON(http.StatusOK, Token{Token: t})
+	return auth.NewUserAuthTokenResponse(user, c)
 }
 
 // RenewToken gives a new token to every user with a valid token
@@ -94,18 +85,18 @@ func RenewToken(c echo.Context) (err error) {
 	jwtinf := c.Get("user").(*jwt.Token)
 	claims := jwtinf.Claims.(jwt.MapClaims)
 	typ := int(claims["type"].(float64))
-	if typ == AuthTypeLinkShare {
+	if typ == auth.AuthTypeLinkShare {
 		share := &models.LinkSharing{}
 		share.ID = int64(claims["id"].(float64))
 		err := share.ReadOne()
 		if err != nil {
 			return handler.HandleHTTPError(err, c)
 		}
-		t, err := NewLinkShareJWTAuthtoken(share)
+		t, err := auth.NewLinkShareJWTAuthtoken(share)
 		if err != nil {
 			return handler.HandleHTTPError(err, c)
 		}
-		return c.JSON(http.StatusOK, Token{Token: t})
+		return c.JSON(http.StatusOK, auth.Token{Token: t})
 	}
 
 	user, err := user2.GetUserFromClaims(claims)
@@ -114,5 +105,5 @@ func RenewToken(c echo.Context) (err error) {
 	}
 
 	// Create token
-	return NewUserAuthTokenResponse(user, c)
+	return auth.NewUserAuthTokenResponse(user, c)
 }

pkg/routes/api/v1/task_attachment.go

@@ -17,6 +17,7 @@
 package v1
 
 import (
+	auth2 "code.vikunja.io/api/pkg/modules/auth"
 	"net/http"
 
 	"code.vikunja.io/api/pkg/models"
@@ -46,7 +47,7 @@ func UploadTaskAttachment(c echo.Context) error {
 	}
 
 	// Rights check
-	auth, err := GetAuthFromClaims(c)
+	auth, err := auth2.GetAuthFromClaims(c)
 	if err != nil {
 		return handler.HandleHTTPError(err, c)
 	}
@@ -116,7 +117,7 @@ func GetTaskAttachment(c echo.Context) error {
 	}
 
 	// Rights check
-	auth, err := GetAuthFromClaims(c)
+	auth, err := auth2.GetAuthFromClaims(c)
 	if err != nil {
 		return handler.HandleHTTPError(err, c)
 	}

pkg/routes/api/v1/user_list.go

@@ -17,6 +17,7 @@
 package v1
 
 import (
+	auth2 "code.vikunja.io/api/pkg/modules/auth"
 	"net/http"
 	"strconv"
 
@@ -74,7 +75,7 @@ func ListUsersForList(c echo.Context) error {
 	}
 
 	list := models.List{ID: listID}
-	auth, err := GetAuthFromClaims(c)
+	auth, err := auth2.GetAuthFromClaims(c)
 	if err != nil {
 		return handler.HandleHTTPError(err, c)
 	}

pkg/routes/metrics.go

@@ -22,7 +22,7 @@ import (
 	"code.vikunja.io/api/pkg/log"
 	"code.vikunja.io/api/pkg/metrics"
 	"code.vikunja.io/api/pkg/models"
-	v1 "code.vikunja.io/api/pkg/routes/api/v1"
+	auth2 "code.vikunja.io/api/pkg/modules/auth"
 	"code.vikunja.io/api/pkg/user"
 	"github.com/labstack/echo/v4"
 	"github.com/prometheus/client_golang/prometheus/promhttp"
@@ -95,7 +95,7 @@ func setupMetricsMiddleware(a *echo.Group) {
 
 // updateActiveUsersFromContext updates the currently active users in redis
 func updateActiveUsersFromContext(c echo.Context) (err error) {
-	auth, err := v1.GetAuthFromClaims(c)
+	auth, err := auth2.GetAuthFromClaims(c)
 	if err != nil {
 		return
 	}

pkg/routes/rate_limit.go

@@ -18,6 +18,7 @@
 package routes
 
 import (
+	auth2 "code.vikunja.io/api/pkg/modules/auth"
 	"net/http"
 	"strconv"
 	"time"
@@ -25,7 +26,6 @@ import (
 	"code.vikunja.io/api/pkg/config"
 	"code.vikunja.io/api/pkg/log"
 	"code.vikunja.io/api/pkg/red"
-	apiv1 "code.vikunja.io/api/pkg/routes/api/v1"
 	"github.com/labstack/echo/v4"
 	"github.com/ulule/limiter/v3"
 	"github.com/ulule/limiter/v3/drivers/store/memory"
@@ -41,7 +41,7 @@ func RateLimit(rateLimiter *limiter.Limiter, rateLimitKind string) echo.Middlewa
 			case "ip":
 				rateLimitKey = c.RealIP()
 			case "user":
-				auth, err := apiv1.GetAuthFromClaims(c)
+				auth, err := auth2.GetAuthFromClaims(c)
 				if err != nil {
 					log.Errorf("Error getting auth from jwt claims: %v", err)
 				}

pkg/routes/routes.go

@@ -47,6 +47,7 @@
 package routes
 
 import (
+	"code.vikunja.io/api/pkg/modules/auth"
 	"code.vikunja.io/api/pkg/modules/auth/openid"
 	"strings"
 	"time"
@@ -166,7 +167,7 @@ func NewEcho() *echo.Echo {
 
 	// Handler config
 	handler.SetAuthProvider(&web.Auths{
-		AuthObject: apiv1.GetAuthFromClaims,
+		AuthObject: auth.GetAuthFromClaims,
 	})
 	handler.SetLoggingProvider(log.GetLogger())
 	handler.SetMaxItemsPerPage(config.ServiceMaxItemsPerPage.GetInt())