TRKJ/EdgeAdmin
2
0
Fork 0
mirror of https://github.com/TeaOSLab/EdgeAdmin.git synced 2025-11-04 13:10:26 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
316e793b1e60289d3987a05d9e695dc8bce0c4b7
EdgeAdmin/internal/web/actions/default/servers/server/settings/access/updatePopup.go

201 lines
4.7 KiB
Go
Raw Normal View History

阶段性提交
2021-06-17 21:17:43 +08:00
// Copyright 2021 Liuxiangchao iwind.liu@gmail.com. All rights reserved.
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
//go:build !plus
阶段性提交
2021-06-17 21:17:43 +08:00
package access
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
import (
"encoding/json"
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
"github.com/TeaOSLab/EdgeAdmin/internal/utils"
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
"github.com/TeaOSLab/EdgeAdmin/internal/web/actions/actionutils"
"github.com/TeaOSLab/EdgeCommon/pkg/rpc/pb"
"github.com/TeaOSLab/EdgeCommon/pkg/serverconfigs"
"github.com/iwind/TeaGo/actions"
"github.com/iwind/TeaGo/maps"
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
"strings"
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
)
阶段性提交
2021-06-17 21:17:43 +08:00
type UpdatePopupAction struct {
actionutils.ParentAction
}
func (this *UpdatePopupAction) Init() {
this.Nav("", "", "")
}
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
func (this *UpdatePopupAction) RunGet(params struct {
PolicyId int64
}) {
this.Data["authTypes"] = serverconfigs.FindAllHTTPAuthTypes()
policyResp, err := this.RPC().HTTPAuthPolicyRPC().FindEnabledHTTPAuthPolicy(this.AdminContext(), &pb.FindEnabledHTTPAuthPolicyRequest{HttpAuthPolicyId: params.PolicyId})
if err != nil {
this.ErrorPage(err)
return
}
policy := policyResp.HttpAuthPolicy
if policy == nil {
this.NotFound("httpAuthPolicy", params.PolicyId)
return
}
var authParams = map[string]interface{}{}
if len(policy.ParamsJSON) > 0 {
err = json.Unmarshal(policy.ParamsJSON, &authParams)
if err != nil {
this.ErrorPage(err)
return
}
}
this.Data["policy"] = maps.Map{
"id": policy.Id,
"isOn": policy.IsOn,
"name": policy.Name,
"type": policy.Type,
"params": authParams,
}
阶段性提交
2021-06-17 21:17:43 +08:00
this.Show()
}
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
func (this *UpdatePopupAction) RunPost(params struct {
PolicyId int64
Name string
IsOn bool
// BasicAuth
HttpAuthBasicAuthUsersJSON []byte
BasicAuthRealm string
BasicAuthCharset string
// SubRequest
SubRequestURL string
SubRequestMethod string
SubRequestFollowRequest bool
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
Exts []string
DomainsJSON []byte
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
Must *actions.Must
CSRF *actionutils.CSRF
}) {
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
defer this.CreateLogInfo("修改HTTP鉴权 %d", params.PolicyId)
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
policyResp, err := this.RPC().HTTPAuthPolicyRPC().FindEnabledHTTPAuthPolicy(this.AdminContext(), &pb.FindEnabledHTTPAuthPolicyRequest{HttpAuthPolicyId: params.PolicyId})
if err != nil {
this.ErrorPage(err)
return
}
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
var policy = policyResp.HttpAuthPolicy
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
if policy == nil {
this.NotFound("httpAuthPolicy", params.PolicyId)
return
}
policyType := policy.Type
params.Must.
Field("name", params.Name).
Require("请输入名称")
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
// 扩展名
var exts = utils.NewStringsStream(params.Exts).
Map(strings.TrimSpace, strings.ToLower).
Filter(utils.FilterNotEmpty).
Map(utils.MapAddPrefixFunc(".")).
Unique().
Result()
// 域名
var domains = []string{}
if len(params.DomainsJSON) > 0 {
var rawDomains = []string{}
err := json.Unmarshal(params.DomainsJSON, &rawDomains)
if err != nil {
this.ErrorPage(err)
return
}
// TODO 如果用户填写了一个网址,应该分析域名并填入
domains = utils.NewStringsStream(rawDomains).
Map(strings.TrimSpace, strings.ToLower).
Filter(utils.FilterNotEmpty).
Unique().
Result()
}
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
var ref = &serverconfigs.HTTPAuthPolicyRef{IsOn: true}
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
var method serverconfigs.HTTPAuthMethodInterface
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
switch policyType {
case serverconfigs.HTTPAuthTypeBasicAuth:
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
var users = []*serverconfigs.HTTPAuthBasicMethodUser{}
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
err := json.Unmarshal(params.HttpAuthBasicAuthUsersJSON, &users)
if err != nil {
this.ErrorPage(err)
return
}
if len(users) == 0 {
this.Fail("请添加至少一个用户")
}
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
method = &serverconfigs.HTTPAuthBasicMethod{
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
Users: users,
Realm: params.BasicAuthRealm,
Charset: params.BasicAuthCharset,
}
case serverconfigs.HTTPAuthTypeSubRequest:
params.Must.Field("subRequestURL", params.SubRequestURL).
Require("请输入子请求URL")
if params.SubRequestFollowRequest {
params.SubRequestMethod = ""
}
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
method = &serverconfigs.HTTPAuthSubRequestMethod{
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
URL: params.SubRequestURL,
Method: params.SubRequestMethod,
}
default:
优化访问控制,将“认证”两字改为“鉴权”
2022-08-30 11:22:54 +08:00
this.Fail("不支持的鉴权类型'" + policyType + "'")
}
if method == nil {
this.Fail("无法找到对应的鉴权方式")
}
method.SetExts(exts)
method.SetDomains(domains)
paramsJSON, err := json.Marshal(method)
if err != nil {
this.ErrorPage(err)
return
访问控制支持基本认证和子请求认证
2021-06-19 21:35:38 +08:00
}
var paramsMap map[string]interface{}
err = json.Unmarshal(paramsJSON, &paramsMap)
if err != nil {
this.ErrorPage(err)
return
}
_, err = this.RPC().HTTPAuthPolicyRPC().UpdateHTTPAuthPolicy(this.AdminContext(), &pb.UpdateHTTPAuthPolicyRequest{
HttpAuthPolicyId: params.PolicyId,
Name: params.Name,
ParamsJSON: paramsJSON,
IsOn: params.IsOn,
})
if err != nil {
this.ErrorPage(err)
return
}
ref.AuthPolicy = &serverconfigs.HTTPAuthPolicy{
Id: params.PolicyId,
Name: params.Name,
IsOn: params.IsOn,
Type: policyType,
Params: paramsMap,
}
this.Data["policyRef"] = ref
this.Success()
}
Reference in New Issue Copy Permalink