2019-01-06 06:44:33 +08:00
|
|
|
package auth
|
|
|
|
|
|
|
|
import (
|
|
|
|
"net/http"
|
|
|
|
"os"
|
|
|
|
|
2019-01-06 07:01:16 +08:00
|
|
|
"github.com/filebrowser/filebrowser/v2/errors"
|
2019-01-06 06:44:33 +08:00
|
|
|
"github.com/filebrowser/filebrowser/v2/settings"
|
|
|
|
"github.com/filebrowser/filebrowser/v2/users"
|
|
|
|
)
|
|
|
|
|
|
|
|
// MethodProxyAuth is used to identify no auth.
|
|
|
|
const MethodProxyAuth settings.AuthMethod = "proxy"
|
|
|
|
|
|
|
|
// ProxyAuth is a proxy implementation of an auther.
|
|
|
|
type ProxyAuth struct {
|
2019-01-08 16:57:24 +08:00
|
|
|
Header string `json:"header"`
|
2019-01-06 06:44:33 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
// Auth authenticates the user via an HTTP header.
|
2019-01-08 16:57:24 +08:00
|
|
|
func (a ProxyAuth) Auth(r *http.Request, sto *users.Storage, root string) (*users.User, error) {
|
2019-01-06 06:44:33 +08:00
|
|
|
username := r.Header.Get(a.Header)
|
2019-01-08 04:34:44 +08:00
|
|
|
user, err := sto.Get(root, username)
|
2019-01-06 06:44:33 +08:00
|
|
|
if err == errors.ErrNotExist {
|
|
|
|
return nil, os.ErrPermission
|
|
|
|
}
|
|
|
|
|
|
|
|
return user, err
|
|
|
|
}
|
2019-02-15 20:58:45 +08:00
|
|
|
|
|
|
|
// LoginPage tells that proxy auth doesn't require a login page.
|
|
|
|
func (a ProxyAuth) LoginPage() bool {
|
|
|
|
return false
|
|
|
|
}
|