feat: add support for custom security schemes

TristanSpeakEasy · TristanSpeakEasy · commit 84377b37e845 · 2024-08-29T13:50:00.000+01:00
diff --git a/cmd/server/main.go b/cmd/server/main.go
@@ -32,6 +32,7 @@ func main() {
 		_, _ = w.Write([]byte("pong"))
 	}).Methods(http.MethodGet)
 	r.HandleFunc("/auth", auth.HandleAuth).Methods(http.MethodPost)
+	r.HandleFunc("/auth/customsecurity/{customSchemeType}", auth.HandleCustomAuth).Methods(http.MethodGet)
 	r.HandleFunc("/requestbody", requestbody.HandleRequestBody).Methods(http.MethodPost)
 	r.HandleFunc("/vendorjson", responseHeaders.HandleVendorJsonResponseHeaders).Methods(http.MethodGet)
 	r.HandleFunc("/pagination/limitoffset/page", pagination.HandleLimitOffsetPage).Methods(http.MethodGet, http.MethodPut)
diff --git a/internal/auth/service.go b/internal/auth/service.go
@@ -2,6 +2,7 @@ package auth
 
 import (
 	"encoding/json"
+	"fmt"
 	"io"
 	"net/http"
 
@@ -28,3 +29,22 @@ func HandleAuth(w http.ResponseWriter, r *http.Request) {
 		return
 	}
 }
+
+func HandleCustomAuth(w http.ResponseWriter, r *http.Request) {
+	switch r.URL.Path {
+	case "/auth/customsecurity/customSchemeAppId":
+		appID := r.Header.Get("X-Security-App-Id")
+		if appID != "testAppID" {
+			utils.HandleError(w, fmt.Errorf("invalid app id: %w", authError))
+			return
+		}
+		secret := r.Header.Get("X-Security-Secret")
+		if secret != "testSecret" {
+			utils.HandleError(w, fmt.Errorf("invalid secret: %w", authError))
+			return
+		}
+	default:
+		utils.HandleError(w, fmt.Errorf("invalid path"))
+		return
+	}
+}
