Document GoSec nosec skip comments

2025-12-05 23:08:20 +02:00 · 2020-07-20 18:49:45 -07:00
parent 2bb0160bf3
commit ad52587ae6
8 changed files with 20 additions and 31 deletions
--- a/pkg/authentication/basic/htpasswd.go
+++ b/pkg/authentication/basic/htpasswd.go
@@ -1,6 +1,7 @@
 package basic

 import (
+	// We support SHA1 & bcrypt in HTPasswd
 	"crypto/sha1" // #nosec G505
 	"encoding/base64"
 	"encoding/csv"
@@ -29,6 +30,7 @@ type sha1Pass string
 // NewHTPasswdValidator constructs an httpasswd based validator from the file
 // at the path given.
 func NewHTPasswdValidator(path string) (Validator, error) {
+	// We allow HTPasswd location via config options
 	r, err := os.Open(path) // #nosec G304
 	if err != nil {
 		return nil, fmt.Errorf("could not open htpasswd file: %v", err)
@@ -90,6 +92,7 @@ func (h *htpasswdMap) Validate(user string, password string) bool {

 	switch rp := realPassword.(type) {
 	case sha1Pass:
+		// We support SHA1 HTPasswd entries
 		d := sha1.New() // #nosec G401
 		_, err := d.Write([]byte(password))
 		if err != nil {