nicoeri/filebrowser
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: support basic auth

Browse Source
This commit is contained in:
Mystery0 2023-12-27 17:35:10 +08:00
parent cfafefa35a
commit 02cbe2168d
1 changed files with 32 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

42
http/auth.go
View File

@ -65,6 +65,24 @@ func (e extractor) ExtractToken(r *http.Request) (string, error) {
func withUser(fn handleFunc) handleFunc { func withUser(fn handleFunc) handleFunc {
return func(w http.ResponseWriter, r *http.Request, d *data) (int, error) { return func(w http.ResponseWriter, r *http.Request, d *data) (int, error) {
username, password, ok := r.BasicAuth()
if ok {
tokenExpirationTime := d.server.GetTokenExpirationTime(DefaultTokenExpirationTime)
user, err := d.store.Users.Get(d.server.Root, username)
if err != nil || !users.CheckPwd(password, user.Password) {
return http.StatusForbidden, nil
}
if err != nil {
return http.StatusInternalServerError, err
} else {
token, err := generateToken(d, user, tokenExpirationTime)
if err != nil {
return http.StatusInternalServerError, err
}
r.Header.Set("X-Auth", token)
}
}
keyFunc := func(token *jwt.Token) (interface{}, error) { keyFunc := func(token *jwt.Token) (interface{}, error) {
return d.settings.Key, nil return d.settings.Key, nil
} }
@ -182,6 +200,19 @@ func renewHandler(tokenExpireTime time.Duration) handleFunc {
} }
func printToken(w http.ResponseWriter, _ *http.Request, d *data, user *users.User, tokenExpirationTime time.Duration) (int, error) { func printToken(w http.ResponseWriter, _ *http.Request, d *data, user *users.User, tokenExpirationTime time.Duration) (int, error) {
signed, err := generateToken(d, user, tokenExpirationTime)
if err != nil {
return http.StatusInternalServerError, err
}
w.Header().Set("Content-Type", "text/plain")
if _, err := w.Write([]byte(signed)); err != nil {
return http.StatusInternalServerError, err
}
return 0, nil
}
func generateToken(d *data, user *users.User, tokenExpirationTime time.Duration) (string, error) {
claims := &authToken{ claims := &authToken{
User: userInfo{ User: userInfo{
ID: user.ID, ID: user.ID,
@ -202,14 +233,5 @@ func printToken(w http.ResponseWriter, _ *http.Request, d *data, user *users.Use
} }
token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims) token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
signed, err := token.SignedString(d.settings.Key) return token.SignedString(d.settings.Key)
if err != nil {
return http.StatusInternalServerError, err
}
w.Header().Set("Content-Type", "text/plain")
if _, err := w.Write([]byte(signed)); err != nil {
return http.StatusInternalServerError, err
}
return 0, nil
} }