credence-lib 0.0.6

An unfussy web server designed for straightforward authoring and scalable performance
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83

use super::super::resolve::*;

use {
    ::axum::http::HeaderMap,
    compris::resolve::*,
    kutil::{cli::depict::*, http::*, std::immutable::*},
};

//
// Protect
//

/// Protect.
#[derive(Clone, Debug, Default, Depict, Resolve)]
pub struct Protect {
    /// Regex.
    ///
    /// See [implementation syntax](https://docs.rs/regex/latest/regex/#syntax).
    #[resolve(required)]
    #[depict(option, as(display), style(string))]
    pub regex: Option<ResolveRegex>,

    /// Optional realm.
    ///
    /// Note that modern browsers do not display the realm.
    #[resolve]
    #[depict(option, style(string))]
    pub realm: Option<ByteString>,

    /// Username.
    #[resolve(required)]
    #[depict(style(string))]
    pub username: ByteString,

    /// Password.
    #[resolve(required)]
    #[depict(style(string))]
    pub password: ByteString,
}

impl Protect {
    /// True if protected.
    pub fn protect(&self, uri_path: &str) -> bool {
        if let Some(regex) = &self.regex
            && regex.inner.is_match(uri_path)
        {
            return true;
        }

        false
    }

    /// If the request is authorized returns [None].
    ///
    /// Otherwise returns a `WWW-Authenticate` header value.
    pub fn authorized(&self, headers: &HeaderMap) -> Option<ByteString> {
        if let Some((username, password)) = headers.authorization_basic()
            && (self.username == username)
            && (self.password == password)
        {
            match &self.realm {
                Some(realm) => tracing::debug!("authorized: {}", realm),
                None => tracing::debug!("authorized"),
            }
            return None;
        }

        let authenticate = match &self.realm {
            Some(realm) => {
                // Note that modern browsers do not display the realm
                tracing::debug!("unauthorized: {}", realm);
                &format!("Basic realm=\"{}\", charset=\"UTF-8\"", realm)
            }

            None => {
                tracing::debug!("unauthorized");
                "Basic charset=\"UTF-8\""
            }
        };

        Some(authenticate.into())
    }
}