ghttp.Request增加服务端BasicAuth功能

2026-06-29 02:26:29 +08:00 · 2018-08-24 18:23:26 +08:00
parent 8311064464
commit 500da7e23f
2 changed files with 71 additions and 1 deletions
--- a/g/net/ghttp/ghttp_request_auth.go
+++ b/g/net/ghttp/ghttp_request_auth.go
@ -0,0 +1,64 @@
+// Copyright 2018 gf Author(https://gitee.com/johng/gf). All Rights Reserved.
+//
+// This Source Code Form is subject to the terms of the MIT License.
+// If a copy of the MIT was not distributed with this file,
+// You can obtain one at https://gitee.com/johng/gf.
+
+package ghttp
+
+import (
+    "net/http"
+    "strings"
+    "gitee.com/johng/gf/g/encoding/gbase64"
+    "fmt"
+)
+
+// 设置Basic Auth校验提示
+func (r *Request) setBasicAuth(tips...string) {
+    realm := ""
+    if len(tips) > 0 && tips[0] != "" {
+        realm = tips[0]
+    } else {
+        realm = "Need Login"
+    }
+    r.Response.Header().Set("WWW-Authenticate", fmt.Sprintf(`Basic realm="%s"`, realm))
+    r.Response.WriteHeader(http.StatusUnauthorized)
+}
+
+// 设置HTTP基础账号密码认证，如果用户没有提交账号密码，那么提示用户输出信息。
+// 验证成功之后返回true，否则返回false
+func (r *Request) BasicAuth(user, pass string, tips...string) bool {
+    auth := r.Header.Get("Authorization")
+    if auth == "" {
+        r.setBasicAuth(tips...)
+        return false
+    }
+    auths := strings.SplitN(auth, " ", 2)
+    if len(auths) != 2 {
+        r.Response.WriteStatus(http.StatusForbidden)
+        return false
+    }
+    switch auths[0] {
+        case "Basic":
+            authStr, err := gbase64.Decode(auths[1])
+            if err != nil {
+                r.Response.WriteStatus(http.StatusForbidden, err.Error())
+                return false
+            }
+            authArray := strings.SplitN(string(authStr), ":", 2)
+            if len(authArray) != 2 {
+                r.Response.WriteStatus(http.StatusForbidden)
+                return false
+            }
+            if authArray[0] != user || authArray[1] != pass {
+                r.setBasicAuth(tips...)
+                return false
+            }
+
+        default:
+            r.Response.WriteStatus(http.StatusForbidden)
+            return false
+    }
+    return true
+}
+
--- a/geg/net/ghttp/server/reload/admin.go
+++ b/geg/net/ghttp/server/reload/admin.go
@ -2,11 +2,17 @@ package main

 import (
    "gitee.com/johng/gf/g"
+    "gitee.com/johng/gf/g/net/ghttp"
 )

 func main() {
    s := g.Server()
-    s.EnableAdmin()
+    s.EnableAdmin("/admin")
+    s.BindHookHandler("/admin/*any", ghttp.HOOK_BEFORE_SERVE, func(r *ghttp.Request) {
+        if !r.BasicAuth("admin", "123", "") {
+            r.Exit()
+        }
+    })
    s.SetPort(8199)
    s.Run()
 }