mirror of
https://github.com/ruby/ruby.git
synced 2022-11-09 12:17:21 -05:00
151d11b5b1
(WEBrick::HTTPAuth::Authenticator#check_scheme): auth-scheme must be treated as a case-insensitive token according to RFC 2617 section 1.2. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@12692 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
79 lines
2.3 KiB
Ruby
79 lines
2.3 KiB
Ruby
#
|
|
# httpauth/authenticator.rb -- Authenticator mix-in module.
|
|
#
|
|
# Author: IPR -- Internet Programming with Ruby -- writers
|
|
# Copyright (c) 2003 Internet Programming with Ruby writers. All rights
|
|
# reserved.
|
|
#
|
|
# $IPR: authenticator.rb,v 1.3 2003/02/20 07:15:47 gotoyuzo Exp $
|
|
|
|
module WEBrick
|
|
module HTTPAuth
|
|
module Authenticator
|
|
RequestField = "Authorization"
|
|
ResponseField = "WWW-Authenticate"
|
|
ResponseInfoField = "Authentication-Info"
|
|
AuthException = HTTPStatus::Unauthorized
|
|
AuthScheme = nil # must override by the derived class
|
|
|
|
attr_reader :realm, :userdb, :logger
|
|
|
|
private
|
|
|
|
def check_init(config)
|
|
[:UserDB, :Realm].each{|sym|
|
|
unless config[sym]
|
|
raise ArgumentError, "Argument #{sym.inspect} missing."
|
|
end
|
|
}
|
|
@realm = config[:Realm]
|
|
@userdb = config[:UserDB]
|
|
@logger = config[:Logger] || Log::new($stderr)
|
|
@reload_db = config[:AutoReloadUserDB]
|
|
@request_field = self::class::RequestField
|
|
@response_field = self::class::ResponseField
|
|
@resp_info_field = self::class::ResponseInfoField
|
|
@auth_exception = self::class::AuthException
|
|
@auth_scheme = self::class::AuthScheme
|
|
end
|
|
|
|
def check_scheme(req)
|
|
unless credentials = req[@request_field]
|
|
error("no credentials in the request.")
|
|
return nil
|
|
end
|
|
unless match = /^#{@auth_scheme}\s+/i.match(credentials)
|
|
error("invalid scheme in %s.", credentials)
|
|
info("%s: %s", @request_field, credentials) if $DEBUG
|
|
return nil
|
|
end
|
|
return match.post_match
|
|
end
|
|
|
|
def log(meth, fmt, *args)
|
|
msg = format("%s %s: ", @auth_scheme, @realm)
|
|
msg << fmt % args
|
|
@logger.send(meth, msg)
|
|
end
|
|
|
|
def error(fmt, *args)
|
|
if @logger.error?
|
|
log(:error, fmt, *args)
|
|
end
|
|
end
|
|
|
|
def info(fmt, *args)
|
|
if @logger.info?
|
|
log(:info, fmt, *args)
|
|
end
|
|
end
|
|
end
|
|
|
|
module ProxyAuthenticator
|
|
RequestField = "Proxy-Authorization"
|
|
ResponseField = "Proxy-Authenticate"
|
|
InfoField = "Proxy-Authentication-Info"
|
|
AuthException = HTTPStatus::ProxyAuthenticationRequired
|
|
end
|
|
end
|
|
end
|