feat: add basic header authorization

2025-10-28 04:35:40 +00:00 · 2025-02-07 17:08:39 +02:00
parent ce567ae3de
commit daad2abc33
2 changed files with 46 additions and 12 deletions
--- a/internal/auth/auth.go
+++ b/internal/auth/auth.go
@@ -73,7 +73,7 @@ func (auth *Auth) DeleteSessionCookie(c *gin.Context) {
 	sessions.Save()
 }

-func (auth *Auth) GetSessionCookie(c *gin.Context) (types.SessionCookie, error) {
+func (auth *Auth) GetSessionCookie(c *gin.Context) types.SessionCookie {
 	log.Debug().Msg("Getting session cookie")
 	sessions := sessions.Default(c)

@@ -87,13 +87,13 @@ func (auth *Auth) GetSessionCookie(c *gin.Context) (types.SessionCookie, error)

 	if !usernameOk || !providerOk || !expiryOk {
 		log.Warn().Msg("Session cookie invalid")
-		return types.SessionCookie{}, nil
+		return types.SessionCookie{}
 	}

 	if time.Now().Unix() > expiry {
 		log.Warn().Msg("Session cookie expired")
 		auth.DeleteSessionCookie(c)
-		return types.SessionCookie{}, nil
+		return types.SessionCookie{}
 	}

 	log.Debug().Str("username", username).Str("provider", provider).Int64("expiry", expiry).Msg("Parsed cookie")
@@ -101,7 +101,7 @@ func (auth *Auth) GetSessionCookie(c *gin.Context) (types.SessionCookie, error)
 	return types.SessionCookie{
 		Username: username,
 		Provider: provider,
-	}, nil
+	}
 }

 func (auth *Auth) UserAuthConfigured() bool {
@@ -164,3 +164,32 @@ func (auth *Auth) ResourceAllowed(context types.UserContext, host string) (bool,

 	return true, nil
 }
+
+func (auth *Auth) GetBasicAuth(c *gin.Context) types.User {
+	header := c.GetHeader("Authorization")
+
+	if header == "" {
+		return types.User{}
+	}
+
+	headerSplit := strings.Split(header, " ")
+
+	if len(headerSplit) != 2 {
+		return types.User{}
+	}
+
+	if headerSplit[0] != "Basic" {
+		return types.User{}
+	}
+
+	credentials := strings.Split(headerSplit[1], ":")
+
+	if len(credentials) != 2 {
+		return types.User{}
+	}
+
+	return types.User{
+		Username: credentials[0],
+		Password: credentials[1],
+	}
+}
--- a/internal/hooks/hooks.go
+++ b/internal/hooks/hooks.go
@@ -22,16 +22,21 @@ type Hooks struct {
 }

 func (hooks *Hooks) UseUserContext(c *gin.Context) types.UserContext {
-	cookie, cookiErr := hooks.Auth.GetSessionCookie(c)
+	cookie := hooks.Auth.GetSessionCookie(c)
+	basic := hooks.Auth.GetBasicAuth(c)

-	if cookiErr != nil {
-		log.Error().Err(cookiErr).Msg("Failed to get session cookie")
-		return types.UserContext{
-			Username:   "",
-			IsLoggedIn: false,
-			OAuth:      false,
-			Provider:   "",
+	if basic.Username != "" {
+		log.Debug().Msg("Got basic auth")
+		user := hooks.Auth.GetUser(basic.Username)
+		if user != nil && hooks.Auth.CheckPassword(*user, basic.Password) {
+			return types.UserContext{
+				Username:   basic.Username,
+				IsLoggedIn: true,
+				OAuth:      false,
+				Provider:   "",
+			}
 		}
+
 	}

 	if cookie.Provider == "username" {