httpbin-rs 0.1.0

使用 Rust 实现 httpbin
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99

use actix_web::{
    get,
    http::header,
    web::{self, ServiceConfig},
    HttpRequest, HttpResponse, Result,
};
use base64::{prelude::BASE64_STANDARD, Engine};
use serde_json::json;

const TAG: &str = "Auth";

pub(crate) fn api(cfg: &mut ServiceConfig) {
    cfg.service(basic_auth_api).service(bearer_auth_api);
}

#[utoipa::path(
    tag = TAG,
    get,
    params(
        ("user", description="user name"),
        ("passwd", description="password"),
    ),
    path = "/basic-auth/{user}/{passwd}",
    responses(
        (status=200, description="Sucessful authentication."),
        (status=401, description="Unsuccessful authentication.")
    ),
    security(
        (),
        ("basicAuth" = [])
    )
)]
#[get("/basic-auth/{user}/{passwd}")]
pub(crate) async fn basic_auth_api(
    path: web::Path<(String, String)>,
    req: HttpRequest,
) -> Result<HttpResponse> {
    let (user, passwd) = path.into_inner();

    if let Some(auth) = req.headers().get("Authorization") {
        // base64 decode
        let auth = auth.to_str().unwrap();
        if auth.starts_with("Basic ") {
            let auth = auth.trim_start_matches("Basic ");
            let decode = BASE64_STANDARD.decode(auth).unwrap();
            let decode_str = String::from_utf8(decode).unwrap();
            let (decoded_user, decoded_passwd) = decode_str.split_once(':').unwrap();

            if user == decoded_user && passwd == decoded_passwd {
                return Ok(HttpResponse::Ok().json(json!({
                    "authenticated": true,
                    "user": user,
                })));
            }
        }
    }

    Ok(HttpResponse::Unauthorized()
        .insert_header(("WWW-Authenticate", "Basic realm=\"Fake Realm\""))
        .body("Unsuccessful authentication."))
}

#[utoipa::path(
    tag = TAG,
    get,
    path = "/bearer",
    responses(
        (status=200, description="Sucessful authentication."),
        (status=401, description="Unsuccessful authentication.")
    ),
    security(
        (),
        ("bearerAuth" = [])
    )
)]
#[get("/bearer")]
pub(crate) async fn bearer_auth_api(req: HttpRequest) -> Result<HttpResponse> {
    let Some(authorization) = req.headers().get("Authorization") else {
        return Ok(HttpResponse::Unauthorized()
            .insert_header((header::WWW_AUTHENTICATE, "Bearer"))
            .finish());
    };

    println!("{:?}", authorization);

    let authorization = authorization.to_str().unwrap();

    let parts: Vec<&str> = authorization.split(' ').collect();
    if parts.len() != 2 || parts[0] != "Bearer" {
        return Ok(HttpResponse::Unauthorized()
            .insert_header((header::WWW_AUTHENTICATE, "Bearer"))
            .finish());
    };

    Ok(HttpResponse::Ok().json(json!({
        "authenticated": true,
        "token": parts[1],
    })))
}