snap/auth/basic.go

package auth

import (
	"encoding/base64"
	"net/http"
	"strings"
)

type BasicAuthInfo struct {
	Group    string
	Password string
}

type BasicAuth struct {
	users map[string]BasicAuthInfo
}

func (ba *BasicAuth) authenticate(user, password string) bool {
	rec, ok := ba.users[user]
	if !ok {
		return false
	}

	if rec.Password == password {
		return true
	}

	return false
}

func (ba *BasicAuth) DoAuth(w http.ResponseWriter, r *http.Request) (*AuthData, int) {
	w.Header().Set("WWW-Authenticate", `Basic realm="Restricted"`)

	s := strings.SplitN(r.Header.Get("Authorization"), " ", 2)
	if len(s) != 2 {
		return nil, http.StatusUnauthorized
	}

	b, err := base64.StdEncoding.DecodeString(s[1])
	if err != nil {
		return nil, http.StatusUnauthorized
	}

	pair := strings.SplitN(string(b), ":", 2)
	if len(pair) != 2 {
		http.Error(w, "Not authorized", 401)
		return nil, http.StatusUnauthorized
	}

	if ba.authenticate(pair[0], pair[1]) {
		return &AuthData{User: pair[0], Group: ""}, http.StatusOK
	}

	return nil, http.StatusUnauthorized
}

func (ba *BasicAuth) AddUser(user, group, password string) error {
	ba.users[user] = BasicAuthInfo{
		Password: password,
		Group:    group,
	}
	return nil
}

func (ba *BasicAuth) DeleteUser(user string) error {
	delete(ba.users, user)
	return nil
}

func NewBasicAuth() AuthManager {
	return &BasicAuth{
		users: make(map[string]BasicAuthInfo),
	}
}
snap server base 2018-01-24 02:26:26 +00:00			`package auth`

			`import (`
Cleanup and autobuild file 2021-01-19 03:23:52 +00:00			`"encoding/base64"`
snap server base 2018-01-24 02:26:26 +00:00			`"net/http"`
			`"strings"`
			`)`

Add support for per path authenticators 2018-03-24 16:12:02 +00:00			`type BasicAuthInfo struct {`
			`Group string`
			`Password string`
snap server base 2018-01-24 02:26:26 +00:00			`}`

Add support for per path authenticators 2018-03-24 16:12:02 +00:00			`type BasicAuth struct {`
			`users map[string]BasicAuthInfo`
			`}`
snap server base 2018-01-24 02:26:26 +00:00
			`func (ba *BasicAuth) authenticate(user, password string) bool {`
Add support for per path authenticators 2018-03-24 16:12:02 +00:00			`rec, ok := ba.users[user]`
snap server base 2018-01-24 02:26:26 +00:00			`if !ok {`
			`return false`
			`}`

Add support for per path authenticators 2018-03-24 16:12:02 +00:00			`if rec.Password == password {`
snap server base 2018-01-24 02:26:26 +00:00			`return true`
			`}`

			`return false`
			`}`

Make authentication a bit more flexible 2023-05-28 16:34:12 +00:00			`func (ba BasicAuth) DoAuth(w http.ResponseWriter, r http.Request) (*AuthData, int) {`
cleanup som stuff snap things 2018-02-07 22:25:00 +00:00			w.Header().Set("WWW-Authenticate", `Basic realm="Restricted"`)
snap server base 2018-01-24 02:26:26 +00:00
cleanup som stuff snap things 2018-02-07 22:25:00 +00:00			`s := strings.SplitN(r.Header.Get("Authorization"), " ", 2)`
			`if len(s) != 2 {`
Make authentication a bit more flexible 2023-05-28 16:34:12 +00:00			`return nil, http.StatusUnauthorized`
cleanup som stuff snap things 2018-02-07 22:25:00 +00:00			`}`
snap server base 2018-01-24 02:26:26 +00:00
cleanup som stuff snap things 2018-02-07 22:25:00 +00:00			`b, err := base64.StdEncoding.DecodeString(s[1])`
			`if err != nil {`
Make authentication a bit more flexible 2023-05-28 16:34:12 +00:00			`return nil, http.StatusUnauthorized`
cleanup som stuff snap things 2018-02-07 22:25:00 +00:00			`}`
snap server base 2018-01-24 02:26:26 +00:00
cleanup som stuff snap things 2018-02-07 22:25:00 +00:00			`pair := strings.SplitN(string(b), ":", 2)`
			`if len(pair) != 2 {`
			`http.Error(w, "Not authorized", 401)`
Make authentication a bit more flexible 2023-05-28 16:34:12 +00:00			`return nil, http.StatusUnauthorized`
snap server base 2018-01-24 02:26:26 +00:00			`}`
cleanup som stuff snap things 2018-02-07 22:25:00 +00:00
Add support for per path authenticators 2018-03-24 16:12:02 +00:00			`if ba.authenticate(pair[0], pair[1]) {`
Make authentication a bit more flexible 2023-05-28 16:34:12 +00:00			`return &AuthData{User: pair[0], Group: ""}, http.StatusOK`
Add support for per path authenticators 2018-03-24 16:12:02 +00:00			`}`

Make authentication a bit more flexible 2023-05-28 16:34:12 +00:00			`return nil, http.StatusUnauthorized`
snap server base 2018-01-24 02:26:26 +00:00			`}`

Add support for per path authenticators 2018-03-24 16:12:02 +00:00			`func (ba *BasicAuth) AddUser(user, group, password string) error {`
			`ba.users[user] = BasicAuthInfo{`
			`Password: password,`
			`Group: group,`
			`}`
			`return nil`
			`}`
snap server base 2018-01-24 02:26:26 +00:00
Add support for per path authenticators 2018-03-24 16:12:02 +00:00			`func (ba *BasicAuth) DeleteUser(user string) error {`
			`delete(ba.users, user)`
			`return nil`
snap server base 2018-01-24 02:26:26 +00:00			`}`

Add support for per path authenticators 2018-03-24 16:12:02 +00:00			`func NewBasicAuth() AuthManager {`
snap server base 2018-01-24 02:26:26 +00:00			`return &BasicAuth{`
Add support for per path authenticators 2018-03-24 16:12:02 +00:00			`users: make(map[string]BasicAuthInfo),`
snap server base 2018-01-24 02:26:26 +00:00			`}`
			`}`