Add basic authentication

backend/app/middleware/auth.go

@@ -0,0 +1,32 @@
+package middleware
+
+import (
+    "strings"
+
+    "quay/internal/security"
+
+    "github.com/gofiber/fiber/v3"
+)
+
+func RequireAuth() fiber.Handler {
+    return func(c fiber.Ctx) error {
+        auth := c.Get("Authorization")
+        if auth == "" {
+            return c.Status(fiber.StatusUnauthorized).JSON(fiber.Map{"error": "missing authorization header"})
+        }
+
+        parts := strings.SplitN(auth, " ", 2)
+        if len(parts) != 2 || strings.ToLower(parts[0]) != "bearer" {
+            return c.Status(fiber.StatusUnauthorized).JSON(fiber.Map{"error": "invalid authorization header"})
+        }
+
+        claims, err := security.ValidateToken(parts[1])
+        if err != nil {
+            return c.Status(fiber.StatusUnauthorized).JSON(fiber.Map{"error": "invalid token"})
+        }
+
+        c.Locals("user_id", claims.UserID)
+        c.Locals("role", claims.Role)
+        return c.Next()
+    }
+}