96 lines
2.8 KiB
Go
96 lines
2.8 KiB
Go
// Copyright (c) 2018, Andreas Schneider
|
|
// All rights reserved.
|
|
//
|
|
// Redistribution and use in source and binary forms, with or without
|
|
// modification, are permitted provided that the following conditions are met:
|
|
// * Redistributions of source code must retain the above copyright
|
|
// notice, this list of conditions and the following disclaimer.
|
|
// * Redistributions in binary form must reproduce the above copyright
|
|
// notice, this list of conditions and the following disclaimer in the
|
|
// documentation and/or other materials provided with the distribution.
|
|
// * Neither the name of the <organization> nor the
|
|
// names of its contributors may be used to endorse or promote products
|
|
// derived from this software without specific prior written permission.
|
|
//
|
|
// THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
|
|
// ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
|
|
// WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
|
|
// DISCLAIMED. IN NO EVENT SHALL <COPYRIGHT HOLDER> BE LIABLE FOR ANY
|
|
// DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
|
|
// (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
|
|
// LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
|
|
// ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
|
|
// (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
|
|
// SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
package main
|
|
|
|
import (
|
|
"github.com/BurntSushi/toml"
|
|
"golang.org/x/crypto/bcrypt"
|
|
"log"
|
|
"strings"
|
|
)
|
|
|
|
type Config struct {
|
|
ListenAddress string
|
|
BaseDirectory string
|
|
Shares map[string]Share
|
|
Logins map[string]Login
|
|
}
|
|
|
|
type Share struct {
|
|
Directory string
|
|
}
|
|
|
|
type Login struct {
|
|
Credentials map[string]Credential
|
|
}
|
|
|
|
type Credential struct {
|
|
Password string
|
|
Share string
|
|
}
|
|
|
|
func LoadConfig(filename string) Config {
|
|
c := Config{}
|
|
if _, err := toml.DecodeFile(filename, &c); err != nil {
|
|
panic(err)
|
|
}
|
|
|
|
return c
|
|
}
|
|
|
|
func (c *Config) ValidateDAVUser(username, password string) (valid bool, directory string) {
|
|
parts := strings.SplitN(username, "@", 2)
|
|
if len(parts) != 2 {
|
|
return false, ""
|
|
}
|
|
|
|
l, ok := c.Logins[parts[0]]
|
|
if !ok {
|
|
return false, ""
|
|
}
|
|
|
|
cred, ok := l.Credentials[parts[1]]
|
|
if !ok {
|
|
return false, ""
|
|
}
|
|
|
|
share, ok := c.Shares[cred.Share]
|
|
if !ok {
|
|
log.Printf("Invalid share for user %s: %s\n", username, cred.Share)
|
|
return false, ""
|
|
}
|
|
|
|
err := bcrypt.CompareHashAndPassword([]byte(cred.Password), []byte(password))
|
|
if err == bcrypt.ErrMismatchedHashAndPassword {
|
|
return false, ""
|
|
} else if err != nil {
|
|
log.Printf("Cannot validate password for user %s: %s\n", username, err.Error())
|
|
return false, ""
|
|
} else {
|
|
return true, share.Directory
|
|
}
|
|
}
|