proposal: net/http: Export parseBasicAuth #22332

mlowicki · 2017-10-18T20:12:20Z

Currently parseBasicAuth is not exported and used only by BasicAuth function which always uses "Authorization" header. Proxy server can use something like "Proxy-Authorization" or "XXX-Proxy-Authorization" headers and currently it's not possible to reuse parseBasicAuth to parse basic auth payload there. My proposal would be to simply export this function so proxy servers could apply it like:

    auth := r.Header.Get("XXX-Proxy-Authorization")
    if auth == "" {
        http.Error(w, "", http.StatusProxyAuthRequired)
        return
    } 
    username, password, ok := http.ParseBasicAuth(auth)

The text was updated successfully, but these errors were encountered:

ianlancetaylor · 2017-10-18T21:09:51Z

CC @tombergan

tombergan · 2017-10-18T22:22:19Z

parseBasicAuth is trivial: trim "Basic ", decode base64, split on ":". I do not think it's worth expanding the API just so that custom headers can reuse those same 14 lines of code.

odeke-em changed the title ~~Export `parseBasicAuth` from `http` package~~ proposal: net/http: Export parseBasicAuth Oct 18, 2017

gopherbot added this to the Proposal milestone Oct 18, 2017

gopherbot added the Proposal label Oct 18, 2017

tombergan closed this Oct 18, 2017

golang locked and limited conversation to collaborators Oct 18, 2018

gopherbot added the FrozenDueToAge label Oct 18, 2018

golang / go

proposal: net/http: Export parseBasicAuth #22332

proposal: net/http: Export parseBasicAuth #22332

mlowicki commented Oct 18, 2017

ianlancetaylor commented Oct 18, 2017

tombergan commented Oct 18, 2017

golang / go

proposal: net/http: Export parseBasicAuth #22332

proposal: net/http: Export parseBasicAuth #22332

Comments

mlowicki commented Oct 18, 2017

ianlancetaylor commented Oct 18, 2017

tombergan commented Oct 18, 2017