admin.ex (1443B)
1 # Zenflows is designed to implement the Valueflows vocabulary, 2 # written and maintained by srfsh <info@dyne.org>. 3 # Copyright (C) 2021-2023 Dyne.org foundation <foundation@dyne.org>. 4 # 5 # This program is free software: you can redistribute it and/or modify 6 # it under the terms of the GNU Affero General Public License as published by 7 # the Free Software Foundation, either version 3 of the License, or 8 # (at your option) any later version. 9 # 10 # This program is distributed in the hope that it will be useful, 11 # but WITHOUT ANY WARRANTY; without even the implied warranty of 12 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 13 # GNU Affero General Public License for more details. 14 # 15 # You should have received a copy of the GNU Affero General Public License 16 # along with this program. If not, see <https://www.gnu.org/licenses/>. 17 18 defmodule Zenflows.GQL.MW.Admin do 19 @moduledoc """ 20 Absinthe middleware to authenticate administrative calls. 21 """ 22 23 @behaviour Absinthe.Middleware 24 25 alias Zenflows.Restroom 26 27 @impl true 28 def call(res, _opts) do 29 if res.context.authenticate_calls? do 30 with %{gql_admin: key} <- res.context, 31 {:ok, key_given} <- Base.decode16(key, case: :lower), 32 key_want = Application.fetch_env!(:zenflows, Zenflows.Admin)[:admin_key], 33 true <- Restroom.byte_equal?(key_given, key_want) do 34 res 35 else _ -> 36 Absinthe.Resolution.put_result(res, {:error, "you are not an admin"}) 37 end 38 else 39 res 40 end 41 end 42 end