Skip to content

Commit

Permalink
Adding very simple Basic Auth
Browse files Browse the repository at this point in the history
  • Loading branch information
@thorsager
thorsager committed Apr 28, 2024
1 parent 7629b3b commit 58425bc
Showing 1 changed file with 25 additions and 1 deletion.
26 changes: 25 additions & 1 deletion main.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@ package main

import (
"context"
"encoding/base64"
"errors"
"fmt"
"io"
Expand Down Expand Up @@ -31,6 +32,7 @@ var (
exitAfterFlag uint
certFileFlag string
keyFileFlag string
userFlag string

responseCount uint = 0
)
Expand All @@ -45,7 +47,7 @@ func main() {
pflag.StringVarP(&responseBodyFlag, "data", "d", "", "add HTTP response body")
pflag.UintVarP(&exitAfterFlag, "count", "c", 0, "exit after number of requests (0 keep running)")
pflag.StringVar(&certFileFlag, "cert", "", "TLS certificate file")
pflag.StringVar(&keyFileFlag, "key", "", "TLS certificate key-file")
pflag.StringVarP(&userFlag, "user", "u", "", "user credentials '<user:passwword>' for Basic Auth")

pflag.Usage = func() {
_, _ = fmt.Fprintf(os.Stderr, "Usage: %s [options...] <addr>\n%s", filepath.Base(os.Args[0]),
Expand Down Expand Up @@ -73,6 +75,15 @@ func main() {
sigChan := make(chan os.Signal, 1)

http.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) {
if userFlag != "" {
if !validateBasicAuth(r, userFlag) {
w.Header().Add("WWW-Authenticate", "Basic realm=\"Auth Required\"")
http.Error(w, "Unauthorized", http.StatusUnauthorized)
return
}

}

responseCount += 1

log.Printf("request: %s %s %s", r.RemoteAddr, r.Method, r.URL)
Expand Down Expand Up @@ -119,6 +130,7 @@ func main() {
}
}
}

if exitAfterFlag != 0 && exitAfterFlag == responseCount {
log.Printf("response count of %d reached, shutting down", responseCount)
sigChan <- os.Interrupt
Expand Down Expand Up @@ -167,6 +179,18 @@ func validAddr(s string) error {
return nil
}

func validateBasicAuth(r *http.Request, up string) bool {
ah := r.Header.Get("Authorization")
if ah == "" || !strings.HasPrefix(ah, "Basic ") {
return false
}
ah = strings.TrimPrefix(ah, "Basic ")
if clear, err := base64.StdEncoding.DecodeString(ah); err != nil || string(clear) != up {
return false
}
return true
}

func parseAddr() (string, error) {
if pflag.NArg() != 1 {
return "", fmt.Errorf("requred: 'addr'")
Expand Down

0 comments on commit 58425bc

Please sign in to comment.