20 days of unstoppable work. Waiting fo go 1.8, I didn't finish yet, some touches remains.

Former-commit-id: ed84f99c89f43fe5e980a8e6d0ee22c186f0e1b9
2026-01-20 18:35:57 +00:00 · 2017-02-14 05:54:11 +02:00
parent 2b2a205e63
commit 244a59e055
108 changed files with 9016 additions and 7596 deletions
--- a/middleware/basicauth/_example/main.go
+++ b/middleware/basicauth/_example/main.go
@@ -0,0 +1,56 @@
+package main
+
+import (
+	"time"
+
+	"gopkg.in/kataras/iris.v6"
+	"gopkg.in/kataras/iris.v6/adaptors/httprouter"
+	"gopkg.in/kataras/iris.v6/middleware/basicauth"
+)
+
+func main() {
+	app := iris.New()
+	app.Adapt(httprouter.New()) // adapt a router first of all
+
+	authConfig := basicauth.Config{
+		Users:      map[string]string{"myusername": "mypassword", "mySecondusername": "mySecondpassword"},
+		Realm:      "Authorization Required", // defaults to "Authorization Required"
+		ContextKey: "mycustomkey",            // defaults to "user"
+		Expires:    time.Duration(30) * time.Minute,
+	}
+
+	authentication := basicauth.New(authConfig)
+	app.Get("/", func(ctx *iris.Context) { ctx.Redirect("/admin") })
+	// to global app.Use(authentication) (or app.UseGlobal before the .Listen)
+	// to routes
+	/*
+		app.Get("/mysecret", authentication, func(ctx *iris.Context) {
+			username := ctx.GetString("mycustomkey") //  the Contextkey from the authConfig
+			ctx.Writef("Hello authenticated user: %s ", username)
+		})
+	*/
+
+	// to party
+
+	needAuth := app.Party("/admin", authentication)
+	{
+		//http://localhost:8080/admin
+		needAuth.Get("/", func(ctx *iris.Context) {
+			username := ctx.GetString("mycustomkey") //  the Contextkey from the authConfig
+			ctx.Writef("Hello authenticated user: %s from: %s ", username, ctx.Path())
+		})
+		// http://localhost:8080/admin/profile
+		needAuth.Get("/profile", func(ctx *iris.Context) {
+			username := ctx.GetString("mycustomkey") //  the Contextkey from the authConfig
+			ctx.Writef("Hello authenticated user: %s from: %s ", username, ctx.Path())
+		})
+		// http://localhost:8080/admin/settings
+		needAuth.Get("/settings", func(ctx *iris.Context) {
+			username := authConfig.User(ctx) // shortcut for ctx.GetString("mycustomkey")
+			ctx.Writef("Hello authenticated user: %s from: %s ", username, ctx.Path())
+		})
+	}
+
+	// open http://localhost:8080/admin
+	app.Listen(":8080")
+}
--- a/middleware/basicauth/basicauth.go
+++ b/middleware/basicauth/basicauth.go
@@ -0,0 +1,131 @@
+package basicauth
+
+import (
+	"encoding/base64"
+	"strconv"
+	"time"
+
+	"gopkg.in/kataras/iris.v6"
+)
+
+//  +------------------------------------------------------------+
+//  | Middleware usage                                           |
+//  +------------------------------------------------------------+
+//
+// import "gopkg.in/kataras/iris.v6/middleware/basicauth"
+//
+// app := iris.New()
+// authentication := basicauth.Default(map[string]string{"myusername": "mypassword", "mySecondusername": "mySecondpassword"})
+// app.Get("/dashboard", authentication, func(ctx *iris.Context){})
+//
+// for more configuration basicauth.New(basicauth.Config{...})
+// see _example
+
+type (
+	encodedUser struct {
+		HeaderValue string
+		Username    string
+		logged      bool
+		expires     time.Time
+	}
+	encodedUsers []encodedUser
+
+	basicAuthMiddleware struct {
+		config Config
+		// these are filled from the config.Users map at the startup
+		auth             encodedUsers
+		realmHeaderValue string
+		expireEnabled    bool // if the config.Expires is a valid date, default disabled
+	}
+)
+
+//
+
+// New takes one parameter, the Config returns a HandlerFunc
+// use: iris.UseFunc(New(...)), iris.Get(...,New(...),...)
+func New(c Config) iris.HandlerFunc {
+	b := &basicAuthMiddleware{config: DefaultConfig().MergeSingle(c)}
+	b.init()
+	return b.Serve
+}
+
+// Default takes one parameter, the users returns a HandlerFunc
+// use: iris.UseFunc(Default(...)), iris.Get(...,Default(...),...)
+func Default(users map[string]string) iris.HandlerFunc {
+	c := DefaultConfig()
+	c.Users = users
+	return New(c)
+}
+
+//
+
+// User returns the user from context key same as 'ctx.GetString("user")' but cannot be used by the developer, use the basicauth.Config.User func instead.
+func (b *basicAuthMiddleware) User(ctx *iris.Context) string {
+	return b.config.User(ctx)
+}
+
+func (b *basicAuthMiddleware) init() {
+	// pass the encoded users from the user's config's Users value
+	b.auth = make(encodedUsers, 0, len(b.config.Users))
+
+	for k, v := range b.config.Users {
+		fullUser := k + ":" + v
+		header := "Basic " + base64.StdEncoding.EncodeToString([]byte(fullUser))
+		b.auth = append(b.auth, encodedUser{HeaderValue: header, Username: k, logged: false, expires: DefaultExpireTime})
+	}
+
+	// set the auth realm header's value
+	b.realmHeaderValue = "Basic realm=" + strconv.Quote(b.config.Realm)
+
+	if b.config.Expires > 0 {
+		b.expireEnabled = true
+	}
+}
+
+func (b *basicAuthMiddleware) findAuth(headerValue string) (auth *encodedUser, found bool) {
+	if len(headerValue) == 0 {
+		return
+	}
+
+	for _, user := range b.auth {
+		if user.HeaderValue == headerValue {
+			auth = &user
+			found = true
+			break
+		}
+	}
+
+	return
+}
+
+func (b *basicAuthMiddleware) askForCredentials(ctx *iris.Context) {
+	ctx.SetHeader("WWW-Authenticate", b.realmHeaderValue)
+	ctx.SetStatusCode(iris.StatusUnauthorized)
+}
+
+// Serve the actual middleware
+func (b *basicAuthMiddleware) Serve(ctx *iris.Context) {
+
+	if auth, found := b.findAuth(ctx.RequestHeader("Authorization")); !found {
+		b.askForCredentials(ctx)
+		// don't continue to the next handler
+	} else {
+		// all ok set the context's value in order to be getable from the next handler
+		ctx.Set(b.config.ContextKey, auth.Username)
+		if b.expireEnabled {
+
+			if auth.logged == false {
+				auth.expires = time.Now().Add(b.config.Expires)
+				auth.logged = true
+			}
+
+			if time.Now().After(auth.expires) {
+				b.askForCredentials(ctx) // ask for authentication again
+				return
+			}
+
+		}
+		ctx.Next() // continue
+	}
+
+}
--- a/middleware/basicauth/config.go
+++ b/middleware/basicauth/config.go
@@ -0,0 +1,48 @@
+package basicauth
+
+import (
+	"time"
+
+	"github.com/imdario/mergo"
+	"gopkg.in/kataras/iris.v6"
+)
+
+const (
+	// DefaultBasicAuthRealm is "Authorization Required"
+	DefaultBasicAuthRealm = "Authorization Required"
+	// DefaultBasicAuthContextKey is the "auth"
+	// this key is used to do context.Set("user", theUsernameFromBasicAuth)
+	DefaultBasicAuthContextKey = "user"
+)
+
+// DefaultExpireTime zero time
+var DefaultExpireTime time.Time // 0001-01-01 00:00:00 +0000 UTC
+
+// Config the configs for the basicauth middleware
+type Config struct {
+	// Users a map of login and the value (username/password)
+	Users map[string]string
+	// Realm http://tools.ietf.org/html/rfc2617#section-1.2. Default is "Authorization Required"
+	Realm string
+	// ContextKey the key for ctx.GetString(...). Default is 'user'
+	ContextKey string
+	// Expires expiration duration, default is 0 never expires
+	Expires time.Duration
+}
+
+// DefaultConfig returns the default configs for the BasicAuth middleware
+func DefaultConfig() Config {
+	return Config{make(map[string]string), DefaultBasicAuthRealm, DefaultBasicAuthContextKey, 0}
+}
+
+// MergeSingle merges the default with the given config and returns the result
+func (c Config) MergeSingle(cfg Config) (config Config) {
+	config = cfg
+	mergo.Merge(&config, c)
+	return
+}
+
+// User returns the user from context key same as 'ctx.GetString("user")' but cannot be used by the developer, this is only here in order to understand how you can get the authenticated username
+func (c Config) User(ctx *iris.Context) string {
+	return ctx.GetString(c.ContextKey)
+}