@@ 20,4 20,5 @@ const (
PasswordHashFailed string = "password hash failed"
UserCreationFailed string = "user creation failed"
NotAuthorized string = "not authorized"
+ GameNotFound string = "game not found"
)
@@ 0,0 1,57 @@
+/*
+ * This file is part of sdbapi
+ * Copyright (C) 2022 Jonni Liljamo <jonni@liljamo.com>
+ *
+ * Licensed under GPL-3.0-only.
+ * See LICENSE for licensing information.
+ */
+
+package handlers
+
+import (
+ "api/auth"
+ "net/http"
+ "api/errors"
+ "api/db"
+ "api/models"
+
+ "github.com/gin-gonic/gin"
+ "github.com/golang-jwt/jwt/v4"
+)
+
+func GameInfo(c *gin.Context) {
+ id := c.Param("id")
+
+ // Check if the game exists
+ var game models.Game
+ record := db.DbConn.Where("id = ?", id).First(&game)
+ if record.Error != nil {
+ c.JSON(http.StatusNotFound, gin.H{"error": errors.GameNotFound})
+ c.Abort()
+ return
+ }
+
+ // Auth should match a registered user
+ tokenString := c.Request.Header.Get("Authorization")
+ token, _ := jwt.ParseWithClaims(tokenString, &auth.JWTClaims{}, func(token *jwt.Token) (interface{}, error) {
+ return []byte(auth.JWTSecret), nil
+ })
+
+ if claims, ok := token.Claims.(*auth.JWTClaims); ok && token.Valid {
+ // Check if the email in the claims matches a user in the database
+ var user models.User
+ user_record := db.DbConn.Where("email = ?", claims.Email).First(&user)
+ if user_record.Error != nil {
+ c.JSON(http.StatusUnauthorized, gin.H{"error": errors.NotAuthorized})
+ c.Abort()
+ return
+ }
+ } else {
+ c.JSON(http.StatusNotFound, gin.H{"error": errors.Placeholder})
+ c.Abort()
+ return
+ }
+
+ c.JSON(http.StatusOK, gin.H{"id": game.ID, "state": game.State, "p1": game.P1, "p2": game.P2})
+}
+