-
Notifications
You must be signed in to change notification settings - Fork 0
/
prevent-csrf.go
47 lines (40 loc) · 1.08 KB
/
prevent-csrf.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
package main
import (
"fmt"
"html/template"
"log"
"net/http"
"github.com/gorilla/csrf"
"github.com/gorilla/mux"
)
const (
CONN_HOST = "localhost"
CONN_PORT = "8443"
HTTPS_CERTIFICATE = "domain.crt"
DOMAIN_PRIVATE_KEY = "domain.key"
)
var AUTH_KEY = []byte("authentication-key")
func signUp(w http.ResponseWriter, r *http.Request) {
parsedTemplate, _ := template.ParseFiles("sign-up.html")
err := parsedTemplate.Execute(w, map[string]interface{}{
csrf.TemplateTag: csrf.TemplateField(r),
})
if err != nil {
log.Printf("Error occurred while executing the template : ", err)
return
}
}
func post(w http.ResponseWriter, r *http.Request) {
err := r.ParseForm()
if err != nil {
log.Print("error occurred while parsing form ", err)
}
name := r.FormValue("name")
fmt.Fprintf(w, "Hi %s", name)
}
func main() {
muxRouter := mux.NewRouter().StrictSlash(true)
muxRouter.HandleFunc("/signup", signUp)
muxRouter.HandleFunc("/post", post)
http.ListenAndServeTLS(CONN_HOST+":"+CONN_PORT, HTTPS_CERTIFICATE, DOMAIN_PRIVATE_KEY, csrf.Protect(AUTH_KEY)(muxRouter))
}