api access controll

2016-05-17 10:52:39 +02:00 · 2016-05-17 10:52:39 +02:00 · a4b947a9b6
parent 668de8188d
commit a4b947a9b6
1 changed files with 29 additions and 22 deletions
--- a/api/lib.go
+++ b/api/lib.go
@ -6,7 +6,7 @@ import (
 	"net/http"
 	"encoding/json"
 	"encoding/base64"
-	
+
 	"github.com/julienschmidt/httprouter"
 )

@ -18,31 +18,38 @@ func jsonOutput(w http.ResponseWriter,data interface{}){
 	}

 	w.Header().Set("Content-Type", "application/json")
+	w.Header().Set("Access-Control-Allow-Origin", "*")
+	w.Header().Set("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE")
+	w.Header().Set("Access-Control-Allow-Headers","Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization")
 	w.Write(js)
 }
 func BasicAuth(h httprouter.Handle, pass []byte) httprouter.Handle {
-    return func(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
-        const basicAuthPrefix string = "Basic "
+		return func(w http.ResponseWriter, r *http.Request, ps httprouter.Params) {
+			w.Header().Set("Access-Control-Allow-Origin", "*")
+			w.Header().Set("Access-Control-Allow-Methods", "POST, GET, OPTIONS, PUT, DELETE")
+			w.Header().Set("Access-Control-Allow-Headers","Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization")
+			
+			const basicAuthPrefix string = "Basic "

-        // Get the Basic Authentication credentials
-        auth := r.Header.Get("Authorization")
-        if strings.HasPrefix(auth, basicAuthPrefix) {
-            // Check credentials
-            payload, err := base64.StdEncoding.DecodeString(auth[len(basicAuthPrefix):])
-            if err == nil {
-                pair := bytes.SplitN(payload, []byte(":"), 2)
-                if len(pair) == 2 &&
-                    bytes.Equal(pair[1], pass) {
+			// Get the Basic Authentication credentials
+			auth := r.Header.Get("Authorization")
+			if strings.HasPrefix(auth, basicAuthPrefix) {
+					// Check credentials
+					payload, err := base64.StdEncoding.DecodeString(auth[len(basicAuthPrefix):])
+					if err == nil {
+							pair := bytes.SplitN(payload, []byte(":"), 2)
+							if len(pair) == 2 &&
+									bytes.Equal(pair[1], pass) {

-                    // Delegate request to the given handle
-                    h(w, r, ps)
-                    return
-                }
-            }
-        }
+									// Delegate request to the given handle
+									h(w, r, ps)
+									return
+							}
+					}
+			}

-        // Request Basic Authentication otherwise
-        w.Header().Set("WWW-Authenticate", "Basic realm=Restricted")
-        http.Error(w, http.StatusText(http.StatusUnauthorized), http.StatusUnauthorized)
-    }
+			// Request Basic Authentication otherwise
+			w.Header().Set("WWW-Authenticate", "Basic realm=Restricted")
+			http.Error(w, http.StatusText(http.StatusUnauthorized), http.StatusUnauthorized)
+		}
 }