1
0
mirror of https://github.com/labstack/echo.git synced 2024-12-24 20:14:31 +02:00

Adding http basic authentication middleware

Signed-off-by: Vishal Rana <vr@labstack.com>
This commit is contained in:
Vishal Rana 2015-05-11 15:43:54 -07:00
parent 8ace8e2143
commit 69a97671ad
4 changed files with 125 additions and 0 deletions

View File

@ -79,6 +79,7 @@ const (
ApplicationJSON = "application/json"
ApplicationProtobuf = "application/protobuf"
ApplicationMsgpack = "application/msgpack"
TextPlain = "text/plain"
TextHTML = "text/html"
ApplicationForm = "application/x-www-form-urlencoded"
@ -92,6 +93,7 @@ const (
ContentDisposition = "Content-Disposition"
ContentLength = "Content-Length"
ContentType = "Content-Type"
Authorization = "Authorization"
)
var (

64
middleware/auth.go Normal file
View File

@ -0,0 +1,64 @@
package middleware
import (
"encoding/base64"
"github.com/labstack/echo"
"net/http"
)
type (
AuthFunc func(string, string) bool
)
const (
Basic = "Basic"
)
// BasicAuth provides HTTP basic authentication middleware.
func BasicAuth(fn AuthFunc) echo.HandlerFunc {
return func(c *echo.Context) (he *echo.HTTPError) {
auth := c.Request.Header.Get(echo.Authorization)
i := 0
l := len(Basic)
he = &echo.HTTPError{Code: http.StatusUnauthorized}
for ; i < len(auth); i++ {
c := auth[i]
// Ignore empty spaces
if c == ' ' {
continue
}
// Check scheme
if i < l {
// Ignore case
if i == 0 {
if c != Basic[i] && c != 'b' {
return
}
} else {
if c != Basic[i] {
return
}
}
} else {
// Extract credentials
b, err := base64.StdEncoding.DecodeString(auth[i:])
if err != nil {
return
}
cred := string(b)
for i := 0; i < len(cred); i++ {
if cred[i] == ':' {
// Verify credentials
if !fn(cred[:i], cred[i+1:]) {
return
}
return nil
}
}
}
}
return nil
}
}

58
middleware/auth_test.go Normal file
View File

@ -0,0 +1,58 @@
package middleware
import (
"encoding/base64"
"github.com/labstack/echo"
"net/http"
"net/http/httptest"
"testing"
)
func TestBasicAuth(t *testing.T) {
req, _ := http.NewRequest(echo.POST, "/", nil)
res := &echo.Response{Writer: httptest.NewRecorder()}
c := echo.NewContext(req, res, echo.New())
fn := func(u, p string) bool {
if u == "joe" && p == "secret" {
return true
}
return false
}
b := BasicAuth(fn)
//-------------------
// Valid credentials
//-------------------
auth := Basic + " " + base64.StdEncoding.EncodeToString([]byte("joe:secret"))
req.Header.Set(echo.Authorization, auth)
if b(c) != nil {
t.Error("basic auth should pass")
}
// Case insensitive
auth = "basic " + base64.StdEncoding.EncodeToString([]byte("joe:secret"))
req.Header.Set(echo.Authorization, auth)
if b(c) != nil {
t.Error("basic auth should ignore case and pass")
}
//---------------------
// Invalid credentials
//---------------------
auth = Basic + " " + base64.StdEncoding.EncodeToString([]byte(" joe: secret"))
req.Header.Set(echo.Authorization, auth)
b = BasicAuth(fn)
if b(c) == nil {
t.Error("basic auth should fail")
}
// Invalid scheme
auth = "foo " + base64.StdEncoding.EncodeToString([]byte(" joe: secret"))
req.Header.Set(echo.Authorization, auth)
b = BasicAuth(fn)
if b(c) == nil {
t.Error("basic auth should fail for invalid scheme")
}
}

1
middleware/middleware.go Normal file
View File

@ -0,0 +1 @@
package middleware