diff options
| author | nsfisis <nsfisis@gmail.com> | 2023-10-09 08:42:33 +0900 |
|---|---|---|
| committer | nsfisis <nsfisis@gmail.com> | 2023-10-09 08:42:33 +0900 |
| commit | ceb264cb65f4a62531e11b3ce666f931074b778a (patch) | |
| tree | b727df20ca1c6ef35c4dcea2798f29e19a2035c9 /config.go | |
| parent | d137a764d050e3d5296da2830a32f6d83bdb364f (diff) | |
| download | mioproxy-ceb264cb65f4a62531e11b3ce666f931074b778a.tar.gz mioproxy-ceb264cb65f4a62531e11b3ce666f931074b778a.tar.zst mioproxy-ceb264cb65f4a62531e11b3ce666f931074b778a.zip | |
support basic authv0.2.0
Diffstat (limited to 'config.go')
| -rw-r--r-- | config.go | 49 |
1 files changed, 43 insertions, 6 deletions
@@ -30,9 +30,10 @@ type ACMEChallengeConfig struct { } type ProxyConfig struct { - Name string - From ProxyFromConfig - To ProxyToConfig + Name string + From ProxyFromConfig + To ProxyToConfig + BasicAuth *ProxyBasicAuthConfig } type ProxyFromConfig struct { @@ -45,6 +46,11 @@ type ProxyToConfig struct { Port int } +type ProxyBasicAuthConfig struct { + Realm string + CredentialFile string +} + type InternalHCLConfig struct { User string `hcl:"user,optional"` Servers []InternalHCLServerConfig `hcl:"server,block"` @@ -66,9 +72,10 @@ type InternalHCLACMEChallengeConfig struct { } type InternalHCLProxyConfig struct { - Name string `hcl:"name,label"` - From InternalHCLProxyFromConfig `hcl:"from,block"` - To InternalHCLProxyToConfig `hcl:"to,block"` + Name string `hcl:"name,label"` + From InternalHCLProxyFromConfig `hcl:"from,block"` + To InternalHCLProxyToConfig `hcl:"to,block"` + Auths []InternalHCLProxyAuthConfig `hcl:"auth,block"` } type InternalHCLProxyFromConfig struct { @@ -81,6 +88,12 @@ type InternalHCLProxyToConfig struct { Port int `hcl:"port"` } +type InternalHCLProxyAuthConfig struct { + Scheme string `hcl:"scheme,label"` + Realm string `hcl:"realm"` + CredentialFile string `hcl:"credential_file"` +} + func fromHCLConfigToConfig(hclConfig *InternalHCLConfig) *Config { servers := make([]ServerConfig, len(hclConfig.Servers)) for i, s := range hclConfig.Servers { @@ -92,6 +105,14 @@ func fromHCLConfigToConfig(hclConfig *InternalHCLConfig) *Config { } proxies := make([]ProxyConfig, len(s.Proxies)) for j, p := range s.Proxies { + var basicAuth *ProxyBasicAuthConfig + if len(p.Auths) != 0 { + auth := p.Auths[0] + basicAuth = &ProxyBasicAuthConfig{ + Realm: auth.Realm, + CredentialFile: auth.CredentialFile, + } + } proxies[j] = ProxyConfig{ Name: p.Name, From: ProxyFromConfig{ @@ -102,6 +123,7 @@ func fromHCLConfigToConfig(hclConfig *InternalHCLConfig) *Config { Host: p.To.Host, Port: p.To.Port, }, + BasicAuth: basicAuth, } } servers[i] = ServerConfig{ @@ -199,6 +221,21 @@ func LoadConfig(fileName string) (*Config, error) { if err != nil { return nil, fmt.Errorf("Invalid host or port: %s:%d", p.To.Host, p.To.Port) } + if 2 <= len(p.Auths) { + return nil, fmt.Errorf("Too many auth blocks found") + } + if len(p.Auths) == 1 { + auth := p.Auths[0] + if auth.Scheme != "basic" { + return nil, fmt.Errorf("Only basic auth is supported") + } + if auth.Realm == "" { + return nil, fmt.Errorf("realm is required") + } + if auth.CredentialFile == "" { + return nil, fmt.Errorf("credential_file is required") + } + } } } if redirectToHTTPS && !listenHTTPS { |