Add impersonation route

2022-09-11 01:05:51 +02:00 · 2022-09-11 01:05:51 +02:00 · 95692db8bd
commit 95692db8bd
parent 7540190794
3 changed files with 58 additions and 6 deletions
--- a/auth.go
+++ b/auth.go
@ -27,6 +27,32 @@ func declareAPIAuthRoutes(router *gin.RouterGroup) {
 	router.POST("/auth/logout", logout)
 }

+func declareAPIAdminAuthRoutes(router *gin.RouterGroup) {
+	router.POST("/auth/impersonate", func(c *gin.Context) {
+		session := c.MustGet("Session").(*Session)
+
+		var u *User
+		if err := c.ShouldBindJSON(&u); err != nil {
+			c.AbortWithStatusJSON(http.StatusBadRequest, gin.H{"errmsg": err.Error()})
+			return
+		}
+
+		newuser, err := getUser(int(u.Id))
+		if err != nil {
+			c.AbortWithStatusJSON(http.StatusBadRequest, gin.H{"errmsg": err.Error()})
+			return
+		}
+
+		session.IdUser = &newuser.Id
+		session.Update()
+
+		c.JSON(http.StatusOK, authToken{
+			User:         newuser,
+			CurrentPromo: currentPromo,
+		})
+	})
+}
+
 type authToken struct {
 	*User
 	CurrentPromo uint     `json:"current_promo"`