package/gortsplib
1
0
Fork 0
mirror of https://github.com/aler9/gortsplib synced 2025-10-06 15:46:51 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
792d74e6efb918c455dae2b175daabdba86d9cd3
gortsplib/pkg/auth/sender.go
aler9 9bd587e576 support hashed credentials
2020-12-31 19:27:41 +01:00

110 lines
2.4 KiB
Go
Raw Blame History

package auth
import (
"encoding/base64"
"fmt"
"strings"
"github.com/aler9/gortsplib/pkg/base"
"github.com/aler9/gortsplib/pkg/headers"
)
// Sender allows to generate credentials for a Validator.
type Sender struct {
user string
pass string
method headers.AuthMethod
realm string
nonce string
}
// NewSender allocates a Sender with the WWW-Authenticate header provided by
// a Validator and a set of credentials.
func NewSender(v base.HeaderValue, user string, pass string) (*Sender, error) {
// prefer digest
if headerAuthDigest := func() string {
for _, vi := range v {
if strings.HasPrefix(vi, "Digest ") {
return vi
}
}
return ""
}(); headerAuthDigest != "" {
auth, err := headers.ReadAuth(base.HeaderValue{headerAuthDigest})
if err != nil {
return nil, err
}
if auth.Realm == nil {
return nil, fmt.Errorf("realm not provided")
}
if auth.Nonce == nil {
return nil, fmt.Errorf("nonce not provided")
}
return &Sender{
user: user,
pass: pass,
method: headers.AuthDigest,
realm: *auth.Realm,
nonce: *auth.Nonce,
}, nil
}
if headerAuthBasic := func() string {
for _, vi := range v {
if strings.HasPrefix(vi, "Basic ") {
return vi
}
}
return ""
}(); headerAuthBasic != "" {
auth, err := headers.ReadAuth(base.HeaderValue{headerAuthBasic})
if err != nil {
return nil, err
}
if auth.Realm == nil {
return nil, fmt.Errorf("realm not provided")
}
return &Sender{
user: user,
pass: pass,
method: headers.AuthBasic,
realm: *auth.Realm,
}, nil
}
return nil, fmt.Errorf("there are no authentication methods available")
}
// GenerateHeader generates an Authorization Header that allows to authenticate a request with
// the given method and url.
func (se *Sender) GenerateHeader(method base.Method, ur *base.URL) base.HeaderValue {
urStr := ur.CloneWithoutCredentials().String()
switch se.method {
case headers.AuthBasic:
response := base64.StdEncoding.EncodeToString([]byte(se.user + ":" + se.pass))
return base.HeaderValue{"Basic " + response}
case headers.AuthDigest:
response := md5Hex(md5Hex(se.user+":"+se.realm+":"+se.pass) + ":" +
se.nonce + ":" + md5Hex(string(method)+":"+urStr))
return headers.Auth{
Method: headers.AuthDigest,
Username: &se.user,
Realm: &se.realm,
Nonce: &se.nonce,
URI: &urStr,
Response: &response,
}.Write()
}
return nil
}
Reference in New Issue View Git Blame Copy Permalink