Add BasicAuth Realm support

2025-01-01 22:09:21 +02:00 · 2017-02-21 13:27:40 +09:00 · 2017-02-21 13:27:40 +09:00 · d28ea936d4
commit d28ea936d4
parent 70be2c2f87
1 changed files with 18 additions and 2 deletions
--- a/middleware/basic_auth.go
+++ b/middleware/basic_auth.go
@ -2,6 +2,7 @@ package middleware

 import (
 	"encoding/base64"
+	"strconv"

 	"github.com/labstack/echo"
 )
@ -15,6 +16,9 @@ type (
 		// Validator is a function to validate BasicAuth credentials.
 		// Required.
 		Validator BasicAuthValidator
+
+		// Realm is a string to define realm attribute of BasicAuth
+		Realm string
 	}

 	// BasicAuthValidator defines a function to validate BasicAuth credentials.
@ -22,13 +26,15 @@ type (
 )

 const (
-	basic = "Basic"
+	basic        = "Basic"
+	defaultRealm = "Restricted"
 )

 var (
 	// DefaultBasicAuthConfig is the default BasicAuth middleware config.
 	DefaultBasicAuthConfig = BasicAuthConfig{
 		Skipper: DefaultSkipper,
+		Realm:   defaultRealm,
 	}
 )

@ -52,6 +58,9 @@ func BasicAuthWithConfig(config BasicAuthConfig) echo.MiddlewareFunc {
 	if config.Skipper == nil {
 		config.Skipper = DefaultBasicAuthConfig.Skipper
 	}
+	if config.Realm == "" {
+		config.Realm = defaultRealm
+	}

 	return func(next echo.HandlerFunc) echo.HandlerFunc {
 		return func(c echo.Context) error {
@ -78,8 +87,15 @@ func BasicAuthWithConfig(config BasicAuthConfig) echo.MiddlewareFunc {
 				}
 			}

+			var realm string
+			if config.Realm == defaultRealm {
+				realm = defaultRealm
+			} else {
+				realm = strconv.Quote(config.Realm)
+			}
+
 			// Need to return `401` for browsers to pop-up login box.
-			c.Response().Header().Set(echo.HeaderWWWAuthenticate, basic+" realm=Restricted")
+			c.Response().Header().Set(echo.HeaderWWWAuthenticate, basic+" realm="+realm)
 			return echo.ErrUnauthorized
 		}
 	}