1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
|
package handlers
import (
"net/http"
"portgate"
"strings"
"time"
"github.com/valyala/fasthttp"
)
// handlePortgateRequest handles all Portgate specific request for either showing Portgate
// specific pages or handling creation of authorization tokens.
func (h *RequestHandler) handlePortgateRequest(ctx *fasthttp.RequestCtx, destination portgate.Destination) {
if strings.HasPrefix(destination.Path, "/_portgate/static") {
h.staticHandler(ctx)
} else {
// TODO: Implement authentication, authorization
h.handlePortgateIndexRequest(ctx)
}
}
// handlePortgateIndexRequest delegates requests directed at /_portgate.
func (h *RequestHandler) handlePortgateIndexRequest(ctx *fasthttp.RequestCtx) {
switch string(ctx.Method()) {
case "GET":
// If we received a GET request, the user wants to see either the login page,
// or an info page if they're already authenticated.
h.handlePortgatePageRequest(ctx)
case "POST":
// If we received a POST request, the user wants to get authorization to Portgate.
h.handleAuthenticateRequest(ctx)
}
}
// handlePortgatePageRequest renders the Portgate page with either the authentication page or
// a basic information page.
func (h *RequestHandler) handlePortgatePageRequest(ctx *fasthttp.RequestCtx) {
ctx.Response.Header.SetContentType("text/html")
var err error
// We render the page template and pass it to the user.
if portgate.VerifyTokenFromCookie(h.config, ctx) {
// User is authenticated, show the information page
err = h.templates.ExecuteTemplate(ctx, "information.template.html", nil)
} else {
// Show the authentication page
err = h.templates.ExecuteTemplate(ctx, "authenticate.template.html", nil)
}
if err != nil {
h.handleError(ctx)
}
}
func (h *RequestHandler) handleAuthenticateRequest(ctx *fasthttp.RequestCtx) {
givenKey := ctx.PostArgs().Peek("key")
if givenKey == nil || !h.config.CheckKey(string(givenKey)) {
ctx.Error("Wrong key.", http.StatusUnauthorized)
return
}
token, err := portgate.CreateToken(h.config, string(givenKey))
if err != nil {
h.handleError(ctx)
}
cookie := fasthttp.AcquireCookie()
defer fasthttp.ReleaseCookie(cookie)
cookie.SetExpire(portgate.GetExpirationDateFrom(time.Now()))
cookie.SetSameSite(fasthttp.CookieSameSiteStrictMode)
cookie.SetHTTPOnly(true)
cookie.SetKey("_portgate_token")
cookie.SetValue(token)
ctx.Response.Header.SetCookie(cookie)
// TODO: Redirect to previously request path.
// http.StatusFound redirects a POST request to a GET request.
ctx.Redirect("/_portgate", http.StatusFound)
}
|
