yanic/api/lib.go

package api

import (
	"bytes"
	"encoding/base64"
	"encoding/json"
	"net/http"
	"strings"

	"github.com/julienschmidt/httprouter"
)

func jsonOutput(w http.ResponseWriter, r *http.Request, data interface{}) {
	js, err := json.Marshal(data)
	if err != nil {
		http.Error(w, err.Error(), http.StatusInternalServerError)
		return
	}

	w.Header().Set("Content-Type", "application/json")
	if origin := r.Header.Get("Origin"); origin != "" {
		w.Header().Set("Access-Control-Allow-Origin", origin)
	}
	w.Header().Set("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE")
	w.Header().Set("Access-Control-Allow-Headers", "Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization")
	w.Header().Set("Access-Control-Allow-Credentials", "true")
	w.Write(js)
}

// BasicAuth for API request
func BasicAuth(h httprouter.Handle, pass []byte) httprouter.Handle {
	return func(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
		if origin := r.Header.Get("Origin"); origin != "" {
			w.Header().Set("Access-Control-Allow-Origin", origin)
		}
		w.Header().Set("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE")
		w.Header().Set("Access-Control-Allow-Headers", "Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization")
		w.Header().Set("Access-Control-Allow-Credentials", "true")

		const basicAuthPrefix string = "Basic "

		// Get the Basic Authentication credentials
		auth := r.Header.Get("Authorization")
		if strings.HasPrefix(auth, basicAuthPrefix) {
			// Check credentials
			payload, err := base64.StdEncoding.DecodeString(auth[len(basicAuthPrefix):])
			if err == nil {
				pair := bytes.SplitN(payload, []byte(":"), 2)
				if len(pair) == 2 &&
					bytes.Equal(pair[1], pass) {

					// Delegate request to the given handle
					h(w, r, ps)
					return
				}
			}
		}

		// Request Basic Authentication otherwise
		w.Header().Set("WWW-Authenticate", "Basic realm=Restricted")
		http.Error(w, http.StatusText(http.StatusUnauthorized), http.StatusUnauthorized)
	}
}
add API for aliases/ansible 2016-05-14 12:31:43 +02:00			`package api`

			`import (`
first try of graph.json 2016-05-16 12:24:50 +02:00			`"bytes"`
			`"encoding/base64"`
improve complete code with comments and co (thanks linter) 2017-01-20 22:27:44 +01:00			`"encoding/json"`
			`"net/http"`
			`"strings"`
api access controll 2016-05-17 10:52:39 +02:00
first try of graph.json 2016-05-16 12:24:50 +02:00			`"github.com/julienschmidt/httprouter"`
add API for aliases/ansible 2016-05-14 12:31:43 +02:00			`)`

improve complete code with comments and co (thanks linter) 2017-01-20 22:27:44 +01:00			`func jsonOutput(w http.ResponseWriter, r *http.Request, data interface{}) {`
add API for aliases/ansible 2016-05-14 13:21:10 +02:00			`js, err := json.Marshal(data)`
			`if err != nil {`
			`http.Error(w, err.Error(), http.StatusInternalServerError)`
			`return`
			`}`
add API for aliases/ansible 2016-05-14 12:31:43 +02:00
add API for aliases/ansible 2016-05-14 13:21:10 +02:00			`w.Header().Set("Content-Type", "application/json")`
api access controll 2016-05-17 10:54:57 +02:00			`if origin := r.Header.Get("Origin"); origin != "" {`
			`w.Header().Set("Access-Control-Allow-Origin", origin)`
			`}`
api access controll 2016-05-17 10:52:39 +02:00			`w.Header().Set("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE")`
improve complete code with comments and co (thanks linter) 2017-01-20 22:27:44 +01:00			`w.Header().Set("Access-Control-Allow-Headers", "Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization")`
api access controll 2016-05-17 11:01:29 +02:00			`w.Header().Set("Access-Control-Allow-Credentials", "true")`
add API for aliases/ansible 2016-05-14 13:21:10 +02:00			`w.Write(js)`
add API for aliases/ansible 2016-05-14 12:31:43 +02:00			`}`
improve complete code with comments and co (thanks linter) 2017-01-20 22:27:44 +01:00
			`// BasicAuth for API request`
first try of graph.json 2016-05-16 12:24:50 +02:00			`func BasicAuth(h httprouter.Handle, pass []byte) httprouter.Handle {`
improve complete code with comments and co (thanks linter) 2017-01-20 22:27:44 +01:00			`return func(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {`
			`if origin := r.Header.Get("Origin"); origin != "" {`
			`w.Header().Set("Access-Control-Allow-Origin", origin)`
			`}`
			`w.Header().Set("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE")`
			`w.Header().Set("Access-Control-Allow-Headers", "Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization")`
			`w.Header().Set("Access-Control-Allow-Credentials", "true")`

			`const basicAuthPrefix string = "Basic "`

			`// Get the Basic Authentication credentials`
			`auth := r.Header.Get("Authorization")`
			`if strings.HasPrefix(auth, basicAuthPrefix) {`
			`// Check credentials`
			`payload, err := base64.StdEncoding.DecodeString(auth[len(basicAuthPrefix):])`
			`if err == nil {`
			`pair := bytes.SplitN(payload, []byte(":"), 2)`
			`if len(pair) == 2 &&`
			`bytes.Equal(pair[1], pass) {`

			`// Delegate request to the given handle`
			`h(w, r, ps)`
			`return`
			`}`
api access controll 2016-05-17 10:52:39 +02:00			`}`
			`}`
improve complete code with comments and co (thanks linter) 2017-01-20 22:27:44 +01:00
			`// Request Basic Authentication otherwise`
			`w.Header().Set("WWW-Authenticate", "Basic realm=Restricted")`
			`http.Error(w, http.StatusText(http.StatusUnauthorized), http.StatusUnauthorized)`
			`}`
first try of graph.json 2016-05-16 12:24:50 +02:00			`}`