ca40e2802e
The changes simplify the `req` method by moving the authentication-related code into the API. This makes it easy to add additional authentication methods. The API introduces an `Authorizer` that acts as an authenticator factory. The authentication flow itself is divided down into `Authorize` and `Verify` steps in order to encapsulate and control complex authentication challenges. The default `NewAutoAuth` negotiates the algorithms. Under the hood, it creates an authenticator shim per request, which delegates the authentication flow to our authenticators. The `NewEmptyAuth` and `NewPreemptiveAuth` authorizers allow you to have more control over algorithms and resources. The API also allows interception of the redirect mechanism by setting the `XInhibitRedirect` header. This closes: #15 #24 #38
43 lines
869 B
Go
43 lines
869 B
Go
package gowebdav
|
|
|
|
import (
|
|
"fmt"
|
|
"net/http"
|
|
)
|
|
|
|
// BasicAuth structure holds our credentials
|
|
type BasicAuth struct {
|
|
user string
|
|
pw string
|
|
}
|
|
|
|
// Authorize the current request
|
|
func (b *BasicAuth) Authorize(c *http.Client, rq *http.Request, path string) error {
|
|
rq.SetBasicAuth(b.user, b.pw)
|
|
return nil
|
|
}
|
|
|
|
// Verify verifies if the authentication
|
|
func (b *BasicAuth) Verify(c *http.Client, rs *http.Response, path string) (redo bool, err error) {
|
|
if rs.StatusCode == 401 {
|
|
err = NewPathError("Authorize", path, rs.StatusCode)
|
|
}
|
|
return
|
|
}
|
|
|
|
// Close cleans up all resources
|
|
func (b *BasicAuth) Close() error {
|
|
return nil
|
|
}
|
|
|
|
// Clone creates a Copy of itself
|
|
func (b *BasicAuth) Clone() Authenticator {
|
|
// no copy due to read only access
|
|
return b
|
|
}
|
|
|
|
// String toString
|
|
func (b *BasicAuth) String() string {
|
|
return fmt.Sprintf("BasicAuth login: %s", b.user)
|
|
}
|