mirror of
https://github.com/kataras/iris.git
synced 2025-02-02 23:40:35 +01:00
5e4b63acb2
# FAQ ### Looking for free support? http://support.iris-go.com https://kataras.rocket.chat/channel/iris ### Looking for previous versions? https://github.com/kataras/iris#version ### Should I upgrade my Iris? Developers are not forced to upgrade if they don't really need it. Upgrade whenever you feel ready. > Iris uses the [vendor directory](https://docs.google.com/document/d/1Bz5-UB7g2uPBdOx-rw5t9MxJwkfpx90cqG9AFL0JAYo) feature, so you get truly reproducible builds, as this method guards against upstream renames and deletes. **How to upgrade**: Open your command-line and execute this command: `go get -u github.com/kataras/iris`. For further installation support, please click [here](http://support.iris-go.com/d/16-how-to-install-iris-web-framework). ### About our new home page http://iris-go.com Thanks to [Santosh Anand](https://github.com/santoshanand) the http://iris-go.com has been upgraded and it's really awesome! [Santosh](https://github.com/santoshanand) is a freelancer, he has a great knowledge of nodejs and express js, Android, iOS, React Native, Vue.js etc, if you need a developer to find or create a solution for your problem or task, please contact with him. The amount of the next two or three donations you'll send they will be immediately transferred to his own account balance, so be generous please! Read more at https://github.com/kataras/iris/blob/master/HISTORY.md Former-commit-id: eec2d71bbe011d6b48d2526eb25919e36e5ad94e
127 lines
3.0 KiB
Go
127 lines
3.0 KiB
Go
// Copyright 2017 Gerasimos Maropoulos, ΓΜ. All rights reserved.
|
|
// Use of this source code is governed by a BSD-style
|
|
// license that can be found in the LICENSE file.
|
|
|
|
// Package basicauth provides http basic authentication via middleware. See _examples/beginner/basicauth
|
|
package basicauth
|
|
|
|
import (
|
|
"encoding/base64"
|
|
"strconv"
|
|
"time"
|
|
|
|
"github.com/kataras/iris"
|
|
"github.com/kataras/iris/context"
|
|
)
|
|
|
|
type (
|
|
encodedUser struct {
|
|
HeaderValue string
|
|
Username string
|
|
logged bool
|
|
expires time.Time
|
|
}
|
|
encodedUsers []encodedUser
|
|
|
|
basicAuthMiddleware struct {
|
|
config Config
|
|
// these are filled from the config.Users map at the startup
|
|
auth encodedUsers
|
|
realmHeaderValue string
|
|
expireEnabled bool // if the config.Expires is a valid date, default disabled
|
|
}
|
|
)
|
|
|
|
//
|
|
|
|
// New takes one parameter, the Config returns a Handler
|
|
// use: iris.Use(New(...)), iris.Get(...,New(...),...)
|
|
func New(c Config) context.Handler {
|
|
config := DefaultConfig()
|
|
if c.ContextKey != "" {
|
|
config.ContextKey = c.ContextKey
|
|
}
|
|
if c.Realm != "" {
|
|
config.Realm = c.Realm
|
|
}
|
|
config.Users = c.Users
|
|
|
|
b := &basicAuthMiddleware{config: config}
|
|
b.init()
|
|
return b.Serve
|
|
}
|
|
|
|
// Default takes one parameter, the users returns a Handler
|
|
// use: iris.Use(Default(...)), iris.Get(...,Default(...),...)
|
|
func Default(users map[string]string) context.Handler {
|
|
c := DefaultConfig()
|
|
c.Users = users
|
|
return New(c)
|
|
}
|
|
|
|
func (b *basicAuthMiddleware) init() {
|
|
// pass the encoded users from the user's config's Users value
|
|
b.auth = make(encodedUsers, 0, len(b.config.Users))
|
|
|
|
for k, v := range b.config.Users {
|
|
fullUser := k + ":" + v
|
|
header := "Basic " + base64.StdEncoding.EncodeToString([]byte(fullUser))
|
|
b.auth = append(b.auth, encodedUser{HeaderValue: header, Username: k, logged: false, expires: DefaultExpireTime})
|
|
}
|
|
|
|
// set the auth realm header's value
|
|
b.realmHeaderValue = "Basic realm=" + strconv.Quote(b.config.Realm)
|
|
|
|
if b.config.Expires > 0 {
|
|
b.expireEnabled = true
|
|
}
|
|
}
|
|
|
|
func (b *basicAuthMiddleware) findAuth(headerValue string) (auth *encodedUser, found bool) {
|
|
if len(headerValue) == 0 {
|
|
return
|
|
}
|
|
|
|
for _, user := range b.auth {
|
|
if user.HeaderValue == headerValue {
|
|
auth = &user
|
|
found = true
|
|
break
|
|
}
|
|
}
|
|
|
|
return
|
|
}
|
|
|
|
func (b *basicAuthMiddleware) askForCredentials(ctx context.Context) {
|
|
ctx.Header("WWW-Authenticate", b.realmHeaderValue)
|
|
ctx.StatusCode(iris.StatusUnauthorized)
|
|
}
|
|
|
|
// Serve the actual middleware
|
|
func (b *basicAuthMiddleware) Serve(ctx context.Context) {
|
|
|
|
if auth, found := b.findAuth(ctx.GetHeader("Authorization")); !found {
|
|
b.askForCredentials(ctx)
|
|
// don't continue to the next handler
|
|
} else {
|
|
// all ok set the context's value in order to be getable from the next handler
|
|
ctx.Values().Set(b.config.ContextKey, auth.Username)
|
|
if b.expireEnabled {
|
|
|
|
if auth.logged == false {
|
|
auth.expires = time.Now().Add(b.config.Expires)
|
|
auth.logged = true
|
|
}
|
|
|
|
if time.Now().After(auth.expires) {
|
|
b.askForCredentials(ctx) // ask for authentication again
|
|
return
|
|
}
|
|
|
|
}
|
|
ctx.Next() // continue
|
|
}
|
|
|
|
}
|