login with secret.

2025-06-02 19:03:54 +02:00 · 2020-11-27 19:59:54 +01:00 · 2020-11-27 19:59:54 +01:00 · a90bf87e24
commit a90bf87e24
parent a330a3cc76
4 changed files with 38 additions and 48 deletions
--- a/internal/session/auth.go
+++ b/internal/session/auth.go
@ -3,51 +3,24 @@ package session
 import (
 	"fmt"
 	"net/http"
-	"strings"

 	"demodesk/neko/internal/types"
 )

-const (
-	token_name = "password"
-)
-
 func (manager *SessionManagerCtx) Authenticate(r *http.Request) (types.Session, error) {
-	token := getToken(r)
-	if token == "" {
-		return nil, fmt.Errorf("no password provided")
+	id, secret, ok := r.BasicAuth()
+	if !ok {
+		return nil, fmt.Errorf("no authentication provided")
 	}

-	isAdmin := (token == manager.config.AdminPassword)
-	isUser := (token == manager.config.Password)
-
-	if !isAdmin && !isUser {
-		return nil, fmt.Errorf("invalid password")
+	session, ok := manager.Get(id)
+	if !ok {
+		return nil, fmt.Errorf("member not found")
 	}

-	// TODO: Enable persistent user autentication.
-	return manager.Create(types.MemberProfile{
-		IsAdmin: isAdmin,
-	})
-}
-
-func getToken(r *http.Request) string {
-	// Get token from query
-	if token := r.URL.Query().Get(token_name); token != "" {
-		return token
-	}
-
-	// Get token from authorization header
-	bearer := r.Header.Get("Authorization")
-	if len(bearer) > 7 && strings.ToUpper(bearer[0:6]) == "BEARER" {
-		return bearer[7:]
-	}
-
-	// Get token from cookie
-	cookie, err := r.Cookie(token_name)
-	if err == nil {
-		return cookie.Value
-	}
-
-	return ""
+	if !session.VerifySecret(secret) {
+		return nil, fmt.Errorf("invalid password provided")
+	}
+
+	return session, nil
 }