feat: add options accept user with encoded password

Author: marjune163

README.md

@@ -86,6 +86,12 @@ server [options]
     Use Basic Auth for specific file system path.
 --user [<username>]:[<password>] ...
     Specify users for Basic Auth, empty username and/or password is allowed.
+--user-base64 [<username>]:[<base64-password>] ...
+--user-md5 [<username>]:<md5-password> ...
+--user-sha1 [<username>]:<sha1-password> ...
+--user-sha256 [<username>]:<sha256-password> ...
+--user-sha512 [<username>]:<sha512-password> ...
+    Specify users for Basic Auth, with encoded password.
 
 -c|--cert <file>
     Specify TLS certificate file.

src/param/cli.go

@@ -3,7 +3,7 @@ package param
 import (
 	"../goNixArgParser"
 	"../serverErrHandler"
-	"errors"
+	"fmt"
 	"io/ioutil"
 	"os"
 	"strings"
@@ -63,6 +63,21 @@ func init() {
 	err = options.AddFlagValues("users", "--user", "", nil, "user info: <username>:<password>")
 	serverErrHandler.CheckFatal(err)
 
+	err = options.AddFlagValues("usersbase64", "--user-base64", "", nil, "user info: <username>:<base64-password>")
+	serverErrHandler.CheckFatal(err)
+
+	err = options.AddFlagValues("usersmd5", "--user-md5", "", nil, "user info: <username>:<md5-password>")
+	serverErrHandler.CheckFatal(err)
+
+	err = options.AddFlagValues("userssha1", "--user-sha1", "", nil, "user info: <username>:<sha1-password>")
+	serverErrHandler.CheckFatal(err)
+
+	err = options.AddFlagValues("userssha256", "--user-sha256", "", nil, "user info: <username>:<sha256-password>")
+	serverErrHandler.CheckFatal(err)
+
+	err = options.AddFlagValues("userssha512", "--user-sha512", "", nil, "user info: <username>:<sha512-password>")
+	serverErrHandler.CheckFatal(err)
+
 	err = options.AddFlagsValue("key", []string{"-k", "--key"}, "GHFS_KEY", "", "TLS certificate key path")
 	serverErrHandler.CheckFatal(err)
 
@@ -221,23 +236,29 @@ func doParseCli() []*Param {
 		param.AuthDirs = normalizeFsPaths(arrAuthDirs)
 
 		// normalize users
-		param.Users = map[string]string{}
-		arrUsers, _ := result.GetStrings("users")
-		for _, userEntry := range arrUsers {
-			username := userEntry
-			password := ""
-
-			colonIndex := strings.IndexByte(userEntry, ':')
-			if colonIndex >= 0 {
-				username = userEntry[:colonIndex]
-				password = userEntry[colonIndex+1:]
-			}
-
-			if _, ok := param.Users[username]; ok {
-				serverErrHandler.CheckError(errors.New("Duplicated username: " + username))
-			} else {
-				param.Users[username] = password
-			}
+		arrUsersPlain, _ := result.GetStrings("users")
+		param.UsersPlain = getUsers(arrUsersPlain)
+		arrUsersBase64, _ := result.GetStrings("usersbase64")
+		param.UsersBase64 = getUsers(arrUsersBase64)
+		arrUsersMd5, _ := result.GetStrings("usersmd5")
+		param.UsersMd5 = getUsers(arrUsersMd5)
+		arrUsersSha1, _ := result.GetStrings("userssha1")
+		param.UsersSha1 = getUsers(arrUsersSha1)
+		arrUsersSha256, _ := result.GetStrings("userssha256")
+		param.UsersSha256 = getUsers(arrUsersSha256)
+		arrUsersSha512, _ := result.GetStrings("userssha512")
+		param.UsersSha512 = getUsers(arrUsersSha512)
+
+		dupUsers := getDupUserNames(
+			param.UsersPlain,
+			param.UsersBase64,
+			param.UsersMd5,
+			param.UsersSha1,
+			param.UsersSha256,
+			param.UsersSha512,
+		)
+		if len(dupUsers) > 0 {
+			serverErrHandler.CheckFatal(fmt.Errorf("duplicated usernames: %q", dupUsers))
 		}
 
 		// shows

src/param/main.go

@@ -9,6 +9,11 @@ import (
 	"unicode/utf8"
 )
 
+type user struct {
+	Username string
+	Password string
+}
+
 type Param struct {
 	Root    string
 	Aliases map[string]string
@@ -25,10 +30,15 @@ type Param struct {
 	CorsUrls   []string
 	CorsDirs   []string
 
-	GlobalAuth bool
-	AuthUrls   []string
-	AuthDirs   []string
-	Users      map[string]string
+	GlobalAuth  bool
+	AuthUrls    []string
+	AuthDirs    []string
+	UsersPlain  []*user
+	UsersBase64 []*user
+	UsersMd5    []*user
+	UsersSha1   []*user
+	UsersSha256 []*user
+	UsersSha512 []*user
 
 	Key         string
 	Cert        string

src/param/util.go

@@ -0,0 +1,40 @@
+package param
+
+import "strings"
+
+func getUsers(userEntries []string) []*user {
+	users := make([]*user, 0, len(userEntries))
+	for _, userEntry := range userEntries {
+		username := userEntry
+		password := ""
+
+		colonIndex := strings.IndexByte(userEntry, ':')
+		if colonIndex >= 0 {
+			username = userEntry[:colonIndex]
+			password = userEntry[colonIndex+1:]
+		}
+
+		users = append(users, &user{username, password})
+	}
+	return users
+}
+
+func getDupUserNames(usersGroups ...[]*user) []string {
+	userMap := map[string]bool{}
+	dupUserMap := map[string]bool{}
+
+	for _, users := range usersGroups {
+		for _, user := range users {
+			if userMap[user.Username] {
+				dupUserMap[user.Username] = true
+			}
+			userMap[user.Username] = true
+		}
+	}
+
+	dupUsers := make([]string, 0, len(dupUserMap))
+	for username, _ := range dupUserMap {
+		dupUsers = append(dupUsers, username)
+	}
+	return dupUsers
+}

src/serveMux/main.go

@@ -22,8 +22,23 @@ func NewServeMux(
 	errorHandler *serverErrHandler.ErrHandler,
 ) *ServeMux {
 	users := user.NewUsers()
-	for username, password := range p.Users {
-		users.Add(username, password)
+	for _, u := range p.UsersPlain {
+		users.AddPlain(u.Username, u.Password)
+	}
+	for _, u := range p.UsersBase64 {
+		users.AddBase64(u.Username, u.Password)
+	}
+	for _, u := range p.UsersMd5 {
+		users.AddMd5(u.Username, u.Password)
+	}
+	for _, u := range p.UsersSha1 {
+		users.AddSha1(u.Username, u.Password)
+	}
+	for _, u := range p.UsersSha256 {
+		users.AddSha256(u.Username, u.Password)
+	}
+	for _, u := range p.UsersSha512 {
+		users.AddSha512(u.Username, u.Password)
 	}
 
 	tplObj, err := tpl.LoadPage(p.Template)

src/user/main.go

@@ -2,38 +2,68 @@ package user
 
 import "errors"
 
-type user struct {
-	username string
-	password string
+type Users map[string]user
+
+func (users Users) checkExist(username string) error {
+	if _, exist := users[username]; exist {
+		return errors.New("username already exist")
+	}
+	return nil
 }
 
-func newUser(username, password string) *user {
-	return &user{
-		username,
-		password,
+func (users Users) AddPlain(username, password string) (err error) {
+	err = users.checkExist(username);
+	if err == nil {
+		users[username] = newPlainUser(password)
 	}
+	return
 }
 
-type Users struct {
-	pool map[string]*user
+func (users Users) AddBase64(username, password string) (err error) {
+	err = users.checkExist(username);
+	if err == nil {
+		users[username] = newBase64User(password)
+	}
+	return
 }
 
-func (users Users) Add(username, password string) error {
-	if _, exist := users.pool[username]; exist {
-		return errors.New("username already exist")
+func (users Users) AddMd5(username, password string) (err error) {
+	err = users.checkExist(username);
+	if err == nil {
+		users[username] = newMd5User(password)
 	}
+	return
+}
 
-	users.pool[username] = newUser(username, password)
-	return nil
+func (users Users) AddSha1(username, password string) (err error) {
+	err = users.checkExist(username);
+	if err == nil {
+		users[username] = newSha1User(password)
+	}
+	return
+}
+
+func (users Users) AddSha256(username, password string) (err error) {
+	err = users.checkExist(username);
+	if err == nil {
+		users[username] = newSha256User(password)
+	}
+	return
+}
+
+func (users Users) AddSha512(username, password string) (err error) {
+	err = users.checkExist(username);
+	if err == nil {
+		users[username] = newSha512User(password)
+	}
+	return
 }
 
 func (users Users) Auth(username, password string) bool {
-	user, exist := users.pool[username]
-	return exist && user.password == password
+	user, exist := users[username]
+	return exist && user.auth(password)
 }
 
 func NewUsers() Users {
-	return Users{
-		pool: map[string]*user{},
-	}
+	return Users{}
 }

src/user/main_test.go

@@ -0,0 +1,71 @@
+package user
+
+import (
+	"testing"
+)
+
+var users Users
+
+func init() {
+	users = NewUsers()
+}
+
+func TestUserPlain(t *testing.T) {
+	users.AddPlain("plain_user", "123")
+	if !users.Auth("plain_user", "123") {
+		t.Error()
+	}
+	if users.Auth("plain_user", "12") {
+		t.Error()
+	}
+}
+
+func TestUserBase64(t *testing.T) {
+	users.AddBase64("base64_user", "MjM0")
+	if !users.Auth("base64_user", "234") {
+		t.Error()
+	}
+	if users.Auth("base64_user", "23") {
+		t.Error()
+	}
+}
+
+func TestUserMd5(t *testing.T) {
+	users.AddMd5("md5_user", "d81f9c1be2e08964bf9f24b15f0e4900")
+	if !users.Auth("md5_user", "345") {
+		t.Error()
+	}
+	if users.Auth("md5_user", "34") {
+		t.Error()
+	}
+}
+
+func TestUserSha1(t *testing.T) {
+	users.AddSha1("sha1_user", "51eac6b471a284d3341d8c0c63d0f1a286262a18")
+	if !users.Auth("sha1_user", "456") {
+		t.Error()
+	}
+	if users.Auth("sha1_user", "45") {
+		t.Error()
+	}
+}
+
+func TestUserSha256(t *testing.T) {
+	users.AddSha256("sha256_user", "97a6d21df7c51e8289ac1a8c026aaac143e15aa1957f54f42e30d8f8a85c3a55")
+	if !users.Auth("sha256_user", "567") {
+		t.Error()
+	}
+	if users.Auth("sha256_user", "56") {
+		t.Error()
+	}
+}
+
+func TestUserSha512(t *testing.T) {
+	users.AddSha512("sha512_user", "c7d57e5c0b0792b154d573089792d80f5b64d2bc0cf4d7d1f551a9e4a4966e925d06b253cc9662c01df76623fdfecb812a2a0604119cb1ac37c47e8027e94cb5")
+	if !users.Auth("sha512_user", "678") {
+		t.Error()
+	}
+	if users.Auth("sha512_user", "67") {
+		t.Error()
+	}
+}