prometheus-fail2ban-exporter/src/cfg/basicAuth.go

package cfg

import "fail2ban-prometheus-exporter/auth"

type hashedBasicAuth struct {
	username string
	password string
}

func newHashedBasicAuth(rawUsername, rawPassword string) *hashedBasicAuth {
	return &hashedBasicAuth{
		username: auth.HashString(rawUsername),
		password: auth.HashString(rawPassword),
	}
}

func (p *hashedBasicAuth) Enabled() bool {
	return len(p.username) > 0 && len(p.password) > 0
}

func (p *hashedBasicAuth) DoesBasicAuthMatch(rawUsername, rawPassword string) bool {
	username := auth.HashString(rawUsername)
	password := auth.HashString(rawPassword)
	return username == p.username && password == p.password
}
feat: add support for basic auth (#16) Add new CLI parameters to enable protecting the API endpoints with basic auth authentication. Wrap the server endpoints in a new auth middleware that protects it using the provided basic auth credentials (if set). Store the provided basic auth credentials as hashed values to prevent them from being accidentally leaked. Add unit tests to ensure the new functionality works as expected. 2022-01-14 21:36:49 +00:00			`package cfg`

			`import "fail2ban-prometheus-exporter/auth"`

			`type hashedBasicAuth struct {`
			`username string`
			`password string`
			`}`

			`func newHashedBasicAuth(rawUsername, rawPassword string) *hashedBasicAuth {`
			`return &hashedBasicAuth{`
			`username: auth.HashString(rawUsername),`
			`password: auth.HashString(rawPassword),`
			`}`
			`}`

			`func (p *hashedBasicAuth) Enabled() bool {`
			`return len(p.username) > 0 && len(p.password) > 0`
			`}`

			`func (p *hashedBasicAuth) DoesBasicAuthMatch(rawUsername, rawPassword string) bool {`
			`username := auth.HashString(rawUsername)`
			`password := auth.HashString(rawPassword)`
			`return username == p.username && password == p.password`
			`}`