1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81


use hyper::header::AUTHORIZATION;
use hyper::StatusCode;
use async_trait::async_trait;

use salvo_core::server::ServerConfig;
use salvo_core::depot::Depot;
use salvo_core::http::{Request, Response};
use salvo_core::Handler;
use salvo_core::error::Error;
use std::sync::Arc;

pub struct BasicAuthHandler{
    config: BasicAuthConfig,
}

pub struct BasicAuthConfig{
    pub realm: String,
    pub context_key: Option<String>,
    pub expires: Option<time::Duration>,
    pub validator: Box<dyn BasicAuthValidator>,
}
pub trait BasicAuthValidator: Send+Sync{
    fn validate(&self, name: String, password: String)->bool;
}
impl<F> BasicAuthValidator for F
    where F: Send+Sync,
    F: Fn(String, String)->bool{
    fn validate(&self, name: String, password: String)->bool{
        self(name, password)
    }
}

impl BasicAuthHandler {
    pub fn new(config: BasicAuthConfig)->BasicAuthHandler{
        BasicAuthHandler{
            config,
        }
    }
}
impl BasicAuthHandler{
    fn ask_credentials(&self, resp: &mut Response){
        resp.headers_mut().insert("WWW-Authenticate", format!("Basic realm={:?}", self.config.realm).parse().unwrap());
        resp.set_status_code(StatusCode::UNAUTHORIZED);
    }
    fn parse_authorization<S:AsRef<str>>(&self, authorization:S)->Result<(String, String), Error> {
        if let Ok(auth) = base64::decode(authorization.as_ref()){
            let auth = auth.iter().map(|&c| c as char).collect::<String>();
            let parts: Vec<&str> = auth.splitn(2, ':').collect();
            if parts.len() == 2 {
                Ok((parts[0].to_owned(), parts[1].to_owned()))
            }else{
                Err(Error::General("error parse auth".to_owned()))
            }
        }else{
            Err(Error::General("base64 decode error".to_owned()))
        }
    }
}
#[async_trait]
impl Handler for BasicAuthHandler{
    async fn handle(&self, _sconf: Arc<ServerConfig>, req: &mut Request, depot: &mut Depot, resp: &mut Response) {
        if let Some(auth) = req.headers().get(AUTHORIZATION){
            if let Ok(auth) = auth.to_str() {
                if auth.starts_with("Basic") {
                    if let Some(auth) = auth.splitn(2, ' ').collect::<Vec<&str>>().pop() {
                        if let Ok((user_name, password)) = self.parse_authorization(auth){
                            if self.config.validator.validate(user_name.clone(), password) {
                                if let Some(key) = &self.config.context_key {
                                    depot.insert(key.clone(), user_name);
                                }
                                return
                            }
                        }
                    }
                }
            }
        }
        self.ask_credentials(resp);
    }
}