imgproxy/crypt.go

package main

import (
	"crypto/hmac"
	"crypto/sha256"
	"encoding/base64"
	"errors"
)

var (
	errInvalidToken         = errors.New("Invalid token")
	errInvalidTokenEncoding = errors.New("Invalid token encoding")
)

func validatePath(token, path string) error {
	messageMAC, err := base64.RawURLEncoding.DecodeString(token)
	if err != nil {
		return errInvalidTokenEncoding
	}

	mac := hmac.New(sha256.New, conf.Key)
	mac.Write(conf.Salt)
	mac.Write([]byte(path))
	expectedMAC := mac.Sum(nil)

	if !hmac.Equal(messageMAC, expectedMAC) {
		return errInvalidToken
	}

	return nil
}
Initial commit 2017-06-20 15:58:55 +02:00			`package main`

			`import (`
			`"crypto/hmac"`
			`"crypto/sha256"`
			`"encoding/base64"`
			`"errors"`
			`)`

Predefine static errors 2018-10-05 22:29:55 +02:00			`var (`
Typo 2018-10-05 23:01:54 +02:00			`errInvalidToken = errors.New("Invalid token")`
			`errInvalidTokenEncoding = errors.New("Invalid token encoding")`
Predefine static errors 2018-10-05 22:29:55 +02:00			`)`

Initial commit 2017-06-20 15:58:55 +02:00			`func validatePath(token, path string) error {`
			`messageMAC, err := base64.RawURLEncoding.DecodeString(token)`
			`if err != nil {`
Typo 2018-10-05 23:01:54 +02:00			`return errInvalidTokenEncoding`
Initial commit 2017-06-20 15:58:55 +02:00			`}`

Configure over env variables 2017-06-26 00:20:48 +02:00			`mac := hmac.New(sha256.New, conf.Key)`
			`mac.Write(conf.Salt)`
Initial commit 2017-06-20 15:58:55 +02:00			`mac.Write([]byte(path))`
			`expectedMAC := mac.Sum(nil)`

			`if !hmac.Equal(messageMAC, expectedMAC) {`
Predefine static errors 2018-10-05 22:29:55 +02:00			`return errInvalidToken`
Initial commit 2017-06-20 15:58:55 +02:00			`}`

			`return nil`
			`}`