zishuo/ipchub
1
0
Fork 0
mirror of https://github.com/cnotch/ipchub.git synced 2025-09-26 19:41:18 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
b47b0cd6c25026059a0f9c7d2ae2f60c79dcf223
ipchub/provider/auth/user.go
notch b47b0cd6c2 init commit
2020-12-10 08:53:42 +08:00

142 lines
2.9 KiB
Go
Executable File
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

// Copyright (c) 2019,CAOHONGJU All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.
package auth
import (
"crypto/md5"
"encoding/hex"
"errors"
"strings"
"github.com/cnotch/tomatox/utils/scan"
)
// AccessRight 访问权限类型
type AccessRight int
// 权限常量
const (
PullRight AccessRight = 1 << iota // 拉流权限
PushRight // 推流权限
)
// UserProvider 用户提供者
type UserProvider interface {
LoadAll() ([]*User, error)
Flush(full []*User, saves []*User, removes []*User) error
}
// User 用户
type User struct {
Name string `json:"name"`
Password string `json:"password,omitempty"`
Admin bool `json:"admin,omitempty"`
PushAccess string `json:"push,omitempty"`
PullAccess string `json:"pull,omitempty"`
pushMatchers []PathMatcher
pullMatchers []PathMatcher
}
func initMatchers(access string, destMatcher *[]PathMatcher) {
advance := access
pathMask := ""
continueScan := true
for continueScan {
advance, pathMask, continueScan = scan.Semicolon.Scan(advance)
if len(pathMask) == 0 {
continue
}
*destMatcher = append(*destMatcher, NewPathMatcher(pathMask))
}
}
func (u *User) init() error {
u.Name = strings.ToLower(u.Name)
if u.Admin {
if len(u.PullAccess) == 0 {
u.PullAccess = "*"
}
if len(u.PushAccess) == 0 {
u.PushAccess = "*"
}
}
initMatchers(u.PushAccess, &u.pushMatchers)
initMatchers(u.PullAccess, &u.pullMatchers)
return nil
}
// PasswordMD5 返回口令的MD5字串
func (u *User) PasswordMD5() string {
if passwordNeedMD5(u.Password) {
pw := md5.Sum([]byte(u.Password))
return hex.EncodeToString(pw[:])
}
return u.Password
}
// ValidatePassword 验证密码
func (u *User) ValidatePassword(password string) error {
if passwordNeedMD5(password) {
pw := md5.Sum([]byte(password))
password = hex.EncodeToString(pw[:])
}
if strings.EqualFold(u.PasswordMD5(), password) {
return nil
}
return errors.New("password error")
}
// ValidatePermission 验证权限
func (u *User) ValidatePermission(path string, right AccessRight) bool {
var matchers []PathMatcher
switch right {
case PushRight:
matchers = u.pushMatchers
case PullRight:
matchers = u.pullMatchers
}
if matchers == nil {
return false
}
path = strings.TrimSpace(path)
for _, matcher := range matchers {
if matcher.Match(path) {
return true
}
}
return false
}
// CopyFrom 从源属性并初始化
func (u *User) CopyFrom(src *User, withPassword bool) {
if withPassword {
u.Password = src.Password
}
u.Admin = src.Admin
u.PushAccess = src.PushAccess
u.PullAccess = src.PullAccess
u.init()
}
// 密码是否需要进行md5处理如果已经是md5则不处理
func passwordNeedMD5(password string) bool {
if len(password) != 32 {
return true
}
_, err := hex.DecodeString(password)
if err != nil {
return true
}
return false
}
Reference in New Issue View Git Blame Copy Permalink