kiki/videoconf
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity

Auth module

Browse source
This commit is contained in:
Alex Myasoedov 2018-01-18 20:22:15 -05:00
parent 0a5d7931e4
commit 2be7f11e57
No known key found for this signature in database
GPG key ID: D261413C245982F0
2 changed files with 58 additions and 48 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

56
auth/auth.go Normal file
View file

@ -0,0 +1,56 @@
package auth
import (
"encoding/base64"
"fmt"
"os"
"strconv"
log "github.com/Sirupsen/logrus"
"github.com/gin-gonic/gin"
)
func Header(c *gin.Context, key string) string {
if values, _ := c.Request.Header[key]; len(values) > 0 {
return values[0]
}
return ""
}
func BasicAuth() gin.HandlerFunc {
realm := "Authorization Required"
realm = "Basic realm=" + strconv.Quote(realm)
user := os.Getenv("USER")
password := os.Getenv("PASSWORD")
enabled := isEnabled(user, password)
if enabled {
log.Warn("Auth mode enabled")
log.Warn(fmt.Sprintf("Visit http://%s:%s@0.0.0.0:8080", user, password))
}
return func(c *gin.Context) {
header := Header(c, "Authorization")
if enabled && header != authorizationHeader(user, password) {
// Credentials doesn't match, we return 401 and abort handlers chain.
c.Header("WWW-Authenticate", realm)
c.AbortWithStatus(401)
return
}
c.Next()
}
}
func isEnabled(user, password string) bool {
switch {
case user == "":
return false
case password == "":
return false
default:
return true
}
}
func authorizationHeader(user, password string) string {
base := user + ":" + password
return "Basic " + base64.StdEncoding.EncodeToString([]byte(base))
}

50
main.go
View file

@ -1,68 +1,22 @@
package main package main
import ( import (
"encoding/base64"
"errors" "errors"
"fmt" "fmt"
"io/ioutil" "io/ioutil"
"os" "os"
"strconv"
"strings" "strings"
log "github.com/Sirupsen/logrus" log "github.com/Sirupsen/logrus"
haikunator "github.com/atrox/haikunatorgo" haikunator "github.com/atrox/haikunatorgo"
"github.com/gin-contrib/sessions" "github.com/gin-contrib/sessions"
"github.com/gin-gonic/gin" "github.com/gin-gonic/gin"
"github.com/msoedov/hacker-slides/auth"
"github.com/msoedov/hacker-slides/files" "github.com/msoedov/hacker-slides/files"
) )
const sessionHeader = "slide-session" const sessionHeader = "slide-session"
func Header(c *gin.Context, key string) string {
if values, _ := c.Request.Header[key]; len(values) > 0 {
return values[0]
}
return ""
}
func BasicAuth() gin.HandlerFunc {
realm := "Authorization Required"
realm = "Basic realm=" + strconv.Quote(realm)
user := os.Getenv("USER")
password := os.Getenv("PASSWORD")
enabled := isEnabled(user, password)
if enabled {
log.Warn("Auth mode enabled")
log.Warn(fmt.Sprintf("Visit http://%s:%s@0.0.0.0:8080", user, password))
}
return func(c *gin.Context) {
header := Header(c, "Authorization")
if enabled && header != authorizationHeader(user, password) {
// Credentials doesn't match, we return 401 and abort handlers chain.
c.Header("WWW-Authenticate", realm)
c.AbortWithStatus(401)
return
}
c.Next()
}
}
func isEnabled(user, password string) bool {
switch {
case user == "":
return false
case password == "":
return false
default:
return true
}
}
func authorizationHeader(user, password string) string {
base := user + ":" + password
return "Basic " + base64.StdEncoding.EncodeToString([]byte(base))
}
func SlidePath(name string) string { func SlidePath(name string) string {
return fmt.Sprintf("slides/%s.md", name) return fmt.Sprintf("slides/%s.md", name)
} }
@ -73,7 +27,7 @@ func NewApp() *gin.Engine {
store := sessions.NewCookieStore([]byte("secret")) store := sessions.NewCookieStore([]byte("secret"))
r.Use(sessions.Sessions(sessionHeader, store)) r.Use(sessions.Sessions(sessionHeader, store))
r.Use(BasicAuth()) r.Use(auth.BasicAuth())
r.LoadHTMLGlob("templates/*.tmpl") r.LoadHTMLGlob("templates/*.tmpl")
r.Static("/static", "./static") r.Static("/static", "./static")