fix(deps): update module github.com/labstack/echo/v4 to v4.10.0 (#1343)

Co-authored-by: kolaente <k@knt.li> Reviewed-on: https://kolaente.dev/vikunja/api/pulls/1343 Co-authored-by: renovate <renovatebot@kolaente.de> Co-committed-by: renovate <renovatebot@kolaente.de>
2022-12-28 10:32:12 +00:00
parent 304481cf28
commit c6429c8b13
3 changed files with 18 additions and 105 deletions
--- a/pkg/routes/routes.go
+++ b/pkg/routes/routes.go
@ -48,7 +48,6 @@ package routes

 import (
 	"errors"
-	"fmt"
 	"net/url"
 	"strings"
 	"time"
@ -80,7 +79,7 @@ import (

 	"github.com/getsentry/sentry-go"
 	sentryecho "github.com/getsentry/sentry-go/echo"
-	"github.com/golang-jwt/jwt/v4"
+	echojwt "github.com/labstack/echo-jwt/v4"
 	"github.com/labstack/echo/v4"
 	"github.com/labstack/echo/v4/middleware"
 	elog "github.com/labstack/gommon/log"
@ -273,29 +272,8 @@ func registerAPIRoutes(a *echo.Group) {
 		ur.POST("/shares/:share/auth", apiv1.AuthenticateLinkShare)
 	}

-	// ===== Routes with Authetication =====
-	// Authetification
-	a.Use(middleware.JWTWithConfig(middleware.JWTConfig{
-		// Custom parse function to make the middleware work with the github.com/golang-jwt/jwt/v4 package.
-		// See https://github.com/labstack/echo/pull/1916#issuecomment-878046299
-		ParseTokenFunc: func(auth string, c echo.Context) (interface{}, error) {
-			keyFunc := func(t *jwt.Token) (interface{}, error) {
-				if t.Method.Alg() != "HS256" {
-					return nil, fmt.Errorf("unexpected jwt signing method=%v", t.Header["alg"])
-				}
-				return []byte(config.ServiceJWTSecret.GetString()), nil
-			}
-
-			token, err := jwt.Parse(auth, keyFunc)
-			if err != nil {
-				return nil, err
-			}
-			if !token.Valid {
-				return nil, errors.New("invalid token")
-			}
-			return token, nil
-		},
-	}))
+	// ===== Routes with Authentication =====
+	a.Use(echojwt.JWT([]byte(config.ServiceJWTSecret.GetString())))

 	// Rate limit
 	setupRateLimit(a, config.RateLimitKind.GetString())