Add BasicAuth Realm support

nshmura · nshmura · commit d28ea936d402 · 2017-02-21T13:27:40.000+09:00
diff --git a/middleware/basic_auth.go b/middleware/basic_auth.go
@@ -2,6 +2,7 @@ package middleware
 
 import (
 	"encoding/base64"
+	"strconv"
 
 	"github.com/labstack/echo"
 )
@@ -15,20 +16,25 @@ type (
 		// Validator is a function to validate BasicAuth credentials.
 		// Required.
 		Validator BasicAuthValidator
+
+		// Realm is a string to define realm attribute of BasicAuth
+		Realm string
 	}
 
 	// BasicAuthValidator defines a function to validate BasicAuth credentials.
 	BasicAuthValidator func(string, string, echo.Context) bool
 )
 
 const (
-	basic = "Basic"
+	basic        = "Basic"
+	defaultRealm = "Restricted"
 )
 
 var (
 	// DefaultBasicAuthConfig is the default BasicAuth middleware config.
 	DefaultBasicAuthConfig = BasicAuthConfig{
 		Skipper: DefaultSkipper,
+		Realm:   defaultRealm,
 	}
 )
 
@@ -52,6 +58,9 @@ func BasicAuthWithConfig(config BasicAuthConfig) echo.MiddlewareFunc {
 	if config.Skipper == nil {
 		config.Skipper = DefaultBasicAuthConfig.Skipper
 	}
+	if config.Realm == "" {
+		config.Realm = defaultRealm
+	}
 
 	return func(next echo.HandlerFunc) echo.HandlerFunc {
 		return func(c echo.Context) error {
@@ -78,8 +87,15 @@ func BasicAuthWithConfig(config BasicAuthConfig) echo.MiddlewareFunc {
 				}
 			}
 
+			var realm string
+			if config.Realm == defaultRealm {
+				realm = defaultRealm
+			} else {
+				realm = strconv.Quote(config.Realm)
+			}
+
 			// Need to return `401` for browsers to pop-up login box.
-			c.Response().Header().Set(echo.HeaderWWWAuthenticate, basic+" realm=Restricted")
+			c.Response().Header().Set(echo.HeaderWWWAuthenticate, basic+" realm="+realm)
 			return echo.ErrUnauthorized
 		}
 	}

Original file line number	Diff line number	Diff line change
`@@ -2,6 +2,7 @@ package middleware`
`2`	`2`
`3`	`3`	`import (`
`4`	`4`	`"encoding/base64"`
	`5`	`+ "strconv"`
`5`	`6`
`6`	`7`	`"github.com/labstack/echo"`
`7`	`8`	`)`
`@@ -15,20 +16,25 @@ type (`
`15`	`16`	`// Validator is a function to validate BasicAuth credentials.`
`16`	`17`	`// Required.`
`17`	`18`	`Validator BasicAuthValidator`
	`19`	`+`
	`20`	`+ // Realm is a string to define realm attribute of BasicAuth`
	`21`	`+ Realm string`
`18`	`22`	`}`
`19`	`23`
`20`	`24`	`// BasicAuthValidator defines a function to validate BasicAuth credentials.`
`21`	`25`	`BasicAuthValidator func(string, string, echo.Context) bool`
`22`	`26`	`)`
`23`	`27`
`24`	`28`	`const (`
`25`		`- basic = "Basic"`
	`29`	`+ basic = "Basic"`
	`30`	`+ defaultRealm = "Restricted"`
`26`	`31`	`)`
`27`	`32`
`28`	`33`	`var (`
`29`	`34`	`// DefaultBasicAuthConfig is the default BasicAuth middleware config.`
`30`	`35`	`DefaultBasicAuthConfig = BasicAuthConfig{`
`31`	`36`	`Skipper: DefaultSkipper,`
	`37`	`+ Realm: defaultRealm,`
`32`	`38`	`}`
`33`	`39`	`)`
`34`	`40`
`@@ -52,6 +58,9 @@ func BasicAuthWithConfig(config BasicAuthConfig) echo.MiddlewareFunc {`
`52`	`58`	`if config.Skipper == nil {`
`53`	`59`	`config.Skipper = DefaultBasicAuthConfig.Skipper`
`54`	`60`	`}`
	`61`	`+ if config.Realm == "" {`
	`62`	`+ config.Realm = defaultRealm`
	`63`	`+ }`
`55`	`64`
`56`	`65`	`return func(next echo.HandlerFunc) echo.HandlerFunc {`
`57`	`66`	`return func(c echo.Context) error {`
`@@ -78,8 +87,15 @@ func BasicAuthWithConfig(config BasicAuthConfig) echo.MiddlewareFunc {`
`78`	`87`	`}`
`79`	`88`	`}`
`80`	`89`
	`90`	`+ var realm string`
	`91`	`+ if config.Realm == defaultRealm {`
	`92`	`+ realm = defaultRealm`
	`93`	`+ } else {`
	`94`	`+ realm = strconv.Quote(config.Realm)`
	`95`	`+ }`
	`96`	`+`
`81`	`97`	// Need to return `401` for browsers to pop-up login box.
`82`		`- c.Response().Header().Set(echo.HeaderWWWAuthenticate, basic+" realm=Restricted")`
	`98`	`+ c.Response().Header().Set(echo.HeaderWWWAuthenticate, basic+" realm="+realm)`
`83`	`99`	`return echo.ErrUnauthorized`
`84`	`100`	`}`
`85`	`101`	`}`