refactor: move grpc and http APIs to separate packages

management/server/http/middleware/auth.go

@@ -0,0 +1,39 @@
+package middleware
+
+import (
+	"context"
+	"golang.org/x/oauth2"
+	"log"
+
+	"github.com/coreos/go-oidc"
+)
+
+type Authenticator struct {
+	Provider *oidc.Provider
+	Config   oauth2.Config
+	Ctx      context.Context
+}
+
+func NewAuthenticator(authDomain string, authClientId string, authClientSecret string, authCallback string) (*Authenticator, error) {
+	ctx := context.Background()
+
+	provider, err := oidc.NewProvider(ctx, "https://"+authDomain+"/")
+	if err != nil {
+		log.Printf("failed to get provider: %v", err)
+		return nil, err
+	}
+
+	conf := oauth2.Config{
+		ClientID:     authClientId,
+		ClientSecret: authClientSecret,
+		RedirectURL:  authCallback,
+		Endpoint:     provider.Endpoint(),
+		Scopes:       []string{oidc.ScopeOpenID, "profile"},
+	}
+
+	return &Authenticator{
+		Provider: provider,
+		Config:   conf,
+		Ctx:      ctx,
+	}, nil
+}

management/server/http/middleware/authenticated.go

@@ -0,0 +1,31 @@
+package middleware
+
+import (
+	"github.com/gorilla/sessions"
+	"net/http"
+)
+
+type AuthMiddleware struct {
+	sessionStore sessions.Store
+}
+
+func NewAuth(sessionStore sessions.Store) *AuthMiddleware {
+	return &AuthMiddleware{sessionStore: sessionStore}
+}
+
+func (am *AuthMiddleware) IsAuthenticated(w http.ResponseWriter, r *http.Request, next http.HandlerFunc) {
+
+	session, err := am.sessionStore.Get(r, "auth-session")
+	if err != nil {
+		//todo redirect to the error page stating: "error occurred plz try again later and a link to login"
+		//http.Error(w, err.Error(), http.StatusInternalServerError)
+		http.Redirect(w, r, "/login", http.StatusSeeOther)
+		return
+	}
+
+	if _, ok := session.Values["profile"]; !ok {
+		http.Redirect(w, r, "/login", http.StatusSeeOther)
+	} else {
+		next(w, r)
+	}
+}