msb-public
/
cloudreve
mirror of https://github.com/cloudreve/Cloudreve
1
0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b5ee3ee609'
${ noResults }
cloudreve/middleware/auth.go

107 lines
2.1 KiB
Raw Normal View History Unescape

Feat: User/Me
5 years ago
package middleware
import (
Modify: package name
5 years ago
"github.com/HFO4/cloudreve/models"
Feat: sign auth middleware
5 years ago
"github.com/HFO4/cloudreve/pkg/auth"
Modify: package name
5 years ago
"github.com/HFO4/cloudreve/pkg/serializer"
Feat: User/Me
5 years ago
"github.com/gin-contrib/sessions"
"github.com/gin-gonic/gin"
Fix: unable to save office file in root directory of WebDAV
5 years ago
"net/http"
Feat: User/Me
5 years ago
)
Feat: sign file source url
5 years ago
// SignRequired 验证请求签名
func SignRequired() gin.HandlerFunc {
return func(c *gin.Context) {
Feat: auth middleware for complex request
5 years ago
var err error
switch c.Request.Method {
case "PUT", "POST":
err = auth.CheckRequest(c.Request)
// TODO 生产环境去掉下一行
err = nil
default:
err = auth.CheckURI(c.Request.URL)
}
Feat: sign auth middleware
5 years ago
if err != nil {
c.JSON(200, serializer.Err(serializer.CodeCheckLogin, err.Error(), err))
c.Abort()
}
Feat: sign file source url
5 years ago
c.Next()
}
}
Feat: User/Me
5 years ago
// CurrentUser 获取登录用户
func CurrentUser() gin.HandlerFunc {
return func(c *gin.Context) {
session := sessions.Default(c)
uid := session.Get("user_id")
if uid != nil {
user, err := model.GetUserByID(uid)
if err == nil {
c.Set("user", &user)
}
}
c.Next()
}
}
// AuthRequired 需要登录
func AuthRequired() gin.HandlerFunc {
return func(c *gin.Context) {
if user, _ := c.Get("user"); user != nil {
if _, ok := user.(*model.User); ok {
c.Next()
return
}
}
c.JSON(200, serializer.CheckLogin())
c.Abort()
}
}
Fix: unable to save office file in root directory of WebDAV
5 years ago
// WebDAVAuth 验证WebDAV登录及权限
Test: auth middleware for WebDAV
5 years ago
// TODO 测试
Fix: unable to save office file in root directory of WebDAV
5 years ago
func WebDAVAuth() gin.HandlerFunc {
return func(c *gin.Context) {
// OPTIONS 请求不需要鉴权否则Windows10下无法保存文档
if c.Request.Method == "OPTIONS" {
c.Next()
return
}
username, password, ok := c.Request.BasicAuth()
if !ok {
c.Writer.Header()["WWW-Authenticate"] = []string{`Basic realm="cloudreve"`}
c.Status(http.StatusUnauthorized)
c.Abort()
return
}
expectedUser, err := model.GetUserByEmail(username)
if err != nil {
c.Status(http.StatusUnauthorized)
c.Abort()
return
}
// 密码正确?
ok, _ = expectedUser.CheckPassword(password)
if !ok {
c.Status(http.StatusUnauthorized)
c.Abort()
return
}
// 用户组已启用WebDAV
if !expectedUser.Group.WebDAVEnabled {
c.Status(http.StatusForbidden)
c.Abort()
return
}
c.Set("user", &expectedUser)
c.Next()
}
}