Added 301 Redirect option to Basic Auth module

ka1han · Feb 24, 2014 · f1e71b7 · f1e71b7
1 parent e4a0578
commit f1e71b7
Showing 1 changed file with 10 additions and 2 deletions.
diff --git a/modules/auxiliary/server/capture/http_basic.rb b/modules/auxiliary/server/capture/http_basic.rb
@@ -39,7 +39,8 @@ def initialize(info={})
     register_options(
       [
         OptPort.new('SRVPORT', [ true, "The local port to listen on.", 80 ]),
-        OptString.new('REALM', [ true, "The authentication realm you'd like to present.", "Secure Site" ])
+        OptString.new('REALM', [ true, "The authentication realm you'd like to present.", "Secure Site" ]),
+        OptString.new('RedirectURL', [ false, "The page to redirect users to after they enter basic auth creds"])
       ], self.class)
   end
 
@@ -73,7 +74,14 @@ def on_request_uri(cli, req)
       )
 
       print_good("#{cli.peerhost} - Credential collected: \"#{user}:#{pass}\" => #{req.resource}")
-      send_not_found(cli)
+      if datastore['RedirectURL']
+        print_status("Sending redirect to client")
+        response = create_response(301, "Moved Permanently")
+        response.headers['Location'] = datastore['RedirectURL']
+        cli.send_response(response)
+      else
+        send_not_found(cli)
+      end
     else
       print_status("Sending 401 to client")
       response = create_response(401, "Unauthorized")