-
-
Notifications
You must be signed in to change notification settings - Fork 1.6k
/
basic_auth.go
78 lines (73 loc) · 1.89 KB
/
basic_auth.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
package middleware
import (
"encoding/base64"
"strings"
"github.com/gofiber/fiber"
)
// BasicAuthConfig defines the config for BasicAuth middleware
type BasicAuthConfig struct {
// Skip defines a function to skip middleware.
// Optional. Default: nil
Skip func(*fiber.Ctx) bool
// Users defines the allowed credentials
// Required. Default: map[string]string{}
Users map[string]string
// Realm is a string to define realm attribute of BasicAuth.
// Optional. Default: "Restricted".
Realm string
}
// BasicAuthConfigDefault is the default BasicAuth middleware config.
var BasicAuthConfigDefault = BasicAuthConfig{
Skip: nil,
Users: map[string]string{},
Realm: "Restricted",
}
// BasicAuth ...
func BasicAuth(config ...BasicAuthConfig) func(*fiber.Ctx) {
// Init config
var cfg BasicAuthConfig
if len(config) > 0 {
cfg = config[0]
}
// Set config default values
if cfg.Users == nil {
cfg.Users = BasicAuthConfigDefault.Users
}
if cfg.Realm == "" {
cfg.Realm = BasicAuthConfigDefault.Realm
}
// Return middleware handler
return func(c *fiber.Ctx) {
// Skip middleware if Skip returns true
if cfg.Skip != nil && cfg.Skip(c) {
c.Next()
return
}
// Get authorization header
auth := c.Get(fiber.HeaderAuthorization)
// Check if characters are provided
if len(auth) > 6 && strings.ToLower(auth[:5]) == "basic" {
// Try to decode
if raw, err := base64.StdEncoding.DecodeString(auth[6:]); err == nil {
// Convert to string
cred := string(raw)
// Find semicolumn
for i := 0; i < len(cred); i++ {
if cred[i] == ':' {
// Split into user & pass
user := cred[:i]
pass := cred[i+1:]
// If exist & match in Users, we let him pass
if cfg.Users[user] == pass {
c.Next()
return
}
}
}
}
}
// Authentication required
c.Set(fiber.HeaderWWWAuthenticate, "basic realm="+cfg.Realm)
c.SendStatus(401)
}
}