yanic/api/lib.go

60 lines
1.9 KiB
Go
Raw Normal View History

2016-05-14 12:31:43 +02:00
package api
import (
2016-05-16 12:24:50 +02:00
"bytes"
"strings"
2016-05-14 13:21:10 +02:00
"net/http"
"encoding/json"
2016-05-16 12:24:50 +02:00
"encoding/base64"
2016-05-17 10:52:39 +02:00
2016-05-16 12:24:50 +02:00
"github.com/julienschmidt/httprouter"
2016-05-14 12:31:43 +02:00
)
func jsonOutput(w http.ResponseWriter,data interface{}){
2016-05-14 13:21:10 +02:00
js, err := json.Marshal(data)
if err != nil {
http.Error(w, err.Error(), http.StatusInternalServerError)
return
}
2016-05-14 12:31:43 +02:00
2016-05-14 13:21:10 +02:00
w.Header().Set("Content-Type", "application/json")
2016-05-17 10:54:57 +02:00
if origin := r.Header.Get("Origin"); origin != "" {
w.Header().Set("Access-Control-Allow-Origin", origin)
}
2016-05-17 10:52:39 +02:00
w.Header().Set("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE")
w.Header().Set("Access-Control-Allow-Headers","Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization")
2016-05-14 13:21:10 +02:00
w.Write(js)
2016-05-14 12:31:43 +02:00
}
2016-05-16 12:24:50 +02:00
func BasicAuth(h httprouter.Handle, pass []byte) httprouter.Handle {
2016-05-17 10:52:39 +02:00
return func(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
2016-05-17 10:54:57 +02:00
if origin := r.Header.Get("Origin"); origin != "" {
w.Header().Set("Access-Control-Allow-Origin", origin)
}
2016-05-17 10:52:39 +02:00
w.Header().Set("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE")
w.Header().Set("Access-Control-Allow-Headers","Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization")
2016-05-17 10:54:57 +02:00
2016-05-17 10:52:39 +02:00
const basicAuthPrefix string = "Basic "
2016-05-16 12:24:50 +02:00
2016-05-17 10:52:39 +02:00
// Get the Basic Authentication credentials
auth := r.Header.Get("Authorization")
if strings.HasPrefix(auth, basicAuthPrefix) {
// Check credentials
payload, err := base64.StdEncoding.DecodeString(auth[len(basicAuthPrefix):])
if err == nil {
pair := bytes.SplitN(payload, []byte(":"), 2)
if len(pair) == 2 &&
bytes.Equal(pair[1], pass) {
2016-05-16 12:24:50 +02:00
2016-05-17 10:52:39 +02:00
// Delegate request to the given handle
h(w, r, ps)
return
}
}
}
2016-05-16 12:24:50 +02:00
2016-05-17 10:52:39 +02:00
// Request Basic Authentication otherwise
w.Header().Set("WWW-Authenticate", "Basic realm=Restricted")
http.Error(w, http.StatusText(http.StatusUnauthorized), http.StatusUnauthorized)
}
2016-05-16 12:24:50 +02:00
}