preparing for the Iris control panel -- stay tuned when you hear my new project name 'cornea'

Former-commit-id: 8c0ada865ee17801efe90b197bf49bdbd55f636b

middleware/basicauth/config.go

@@ -22,11 +22,31 @@ type Config struct {
 	Realm string
 	// Expires expiration duration, default is 0 never expires
 	Expires time.Duration
+
+	// OnAsk fires each time the server asks to the client for credentials in order to gain access and continue to the next handler.
+	//
+	// You could also ignore this option and
+	// - just add a listener for unauthorized status codes with:
+	// `app.OnErrorCode(iris.StatusUnauthorized, unauthorizedWantsAccessHandler)`
+	// - or register a middleware which will force `ctx.Next/or direct call`
+	// the basicauth middleware and check its `ctx.GetStatusCode()`.
+	//
+	// However, this option is very useful when you want the framework to fire a handler
+	// ONLY when the Basic Authentication sends an `iris.StatusUnauthorized`,
+	// and free the error code listener to catch other types of unauthorized access, i.e Kerberos.
+	// Also with this one, not recommended at all but, you are able to "force-allow" other users by calling the `ctx.StatusCode` inside this handler;
+	// i.e when it is possible to create authorized users dynamically but
+	// if that is the case then you should go with something like sessions instead of basic authentication.
+	//
+	// Usage: basicauth.New(basicauth.Config{..., OnAsk: unauthorizedWantsAccessViaBasicAuthHandler})
+	//
+	// Defaults to nil.
+	OnAsk context.Handler
 }
 
 // DefaultConfig returns the default configs for the BasicAuth middleware
 func DefaultConfig() Config {
-	return Config{make(map[string]string), DefaultBasicAuthRealm, 0}
+	return Config{make(map[string]string), DefaultBasicAuthRealm, 0, nil}
 }
 
 // User returns the user from context key same as  ctx.Request().BasicAuth().