2020-10-12 14:34:52 -06:00
|
|
|
// +build ignore
|
2020-09-27 15:39:44 -06:00
|
|
|
|
|
|
|
package main
|
|
|
|
|
|
|
|
import (
|
2020-11-25 12:24:49 -07:00
|
|
|
"crypto/sha512"
|
2020-11-01 14:25:59 -07:00
|
|
|
"crypto/tls"
|
2020-09-27 15:39:44 -06:00
|
|
|
"crypto/x509"
|
2020-11-02 21:11:46 -07:00
|
|
|
"crypto/x509/pkix"
|
2020-09-27 15:39:44 -06:00
|
|
|
"fmt"
|
|
|
|
"log"
|
2020-11-01 14:25:59 -07:00
|
|
|
"time"
|
2020-09-27 15:39:44 -06:00
|
|
|
|
2020-10-27 21:35:22 -06:00
|
|
|
"git.sr.ht/~adnano/go-gemini"
|
2021-01-14 19:23:13 -07:00
|
|
|
"git.sr.ht/~adnano/go-gemini/certificate"
|
2020-09-27 15:39:44 -06:00
|
|
|
)
|
|
|
|
|
2020-11-25 12:24:49 -07:00
|
|
|
type User struct {
|
|
|
|
Name string
|
2020-09-27 15:39:44 -06:00
|
|
|
}
|
|
|
|
|
|
|
|
var (
|
2020-11-25 12:24:49 -07:00
|
|
|
// Map of certificate hashes to users
|
|
|
|
users = map[string]*User{}
|
2020-09-27 15:39:44 -06:00
|
|
|
)
|
|
|
|
|
|
|
|
func main() {
|
2020-10-27 21:35:22 -06:00
|
|
|
var mux gemini.ServeMux
|
2020-11-25 12:24:49 -07:00
|
|
|
mux.HandleFunc("/", profile)
|
|
|
|
mux.HandleFunc("/username", changeUsername)
|
2020-10-21 15:47:34 -06:00
|
|
|
|
2020-10-27 21:35:22 -06:00
|
|
|
var server gemini.Server
|
2020-10-28 12:59:45 -06:00
|
|
|
if err := server.Certificates.Load("/var/lib/gemini/certs"); err != nil {
|
2020-10-11 22:13:24 -06:00
|
|
|
log.Fatal(err)
|
|
|
|
}
|
2021-01-25 08:59:50 -07:00
|
|
|
server.GetCertificate = func(hostname string) (tls.Certificate, error) {
|
2021-01-14 19:23:13 -07:00
|
|
|
return certificate.Create(certificate.CreateOptions{
|
2020-11-02 21:11:46 -07:00
|
|
|
Subject: pkix.Name{
|
|
|
|
CommonName: hostname,
|
|
|
|
},
|
2020-11-01 14:25:59 -07:00
|
|
|
DNSNames: []string{hostname},
|
|
|
|
Duration: time.Hour,
|
|
|
|
})
|
|
|
|
}
|
2021-02-17 18:35:27 -07:00
|
|
|
server.Handler = &mux
|
2020-09-27 15:39:44 -06:00
|
|
|
|
|
|
|
if err := server.ListenAndServe(); err != nil {
|
|
|
|
log.Fatal(err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-11-25 12:24:49 -07:00
|
|
|
func fingerprint(cert *x509.Certificate) string {
|
|
|
|
b := sha512.Sum512(cert.Raw)
|
|
|
|
return string(b[:])
|
2020-09-27 15:39:44 -06:00
|
|
|
}
|
|
|
|
|
2021-02-09 07:45:10 -07:00
|
|
|
func profile(w gemini.ResponseWriter, r *gemini.Request) {
|
2021-02-16 09:26:09 -07:00
|
|
|
if len(r.TLS.PeerCertificates) == 0 {
|
2021-02-17 11:39:18 -07:00
|
|
|
w.WriteHeader(gemini.StatusCertificateRequired, "Certificate required")
|
2020-10-21 15:47:34 -06:00
|
|
|
return
|
|
|
|
}
|
2021-02-16 09:26:09 -07:00
|
|
|
fingerprint := fingerprint(r.TLS.PeerCertificates[0])
|
2020-11-25 12:24:49 -07:00
|
|
|
user, ok := users[fingerprint]
|
2020-10-21 15:47:34 -06:00
|
|
|
if !ok {
|
2020-11-25 12:24:49 -07:00
|
|
|
user = &User{}
|
|
|
|
users[fingerprint] = user
|
2020-10-21 15:47:34 -06:00
|
|
|
}
|
2020-11-25 12:24:49 -07:00
|
|
|
fmt.Fprintln(w, "Username:", user.Name)
|
|
|
|
fmt.Fprintln(w, "=> /username Change username")
|
2020-09-27 15:39:44 -06:00
|
|
|
}
|
|
|
|
|
2021-02-09 07:45:10 -07:00
|
|
|
func changeUsername(w gemini.ResponseWriter, r *gemini.Request) {
|
2021-02-16 09:26:09 -07:00
|
|
|
if len(r.TLS.PeerCertificates) == 0 {
|
2021-02-17 11:39:18 -07:00
|
|
|
w.WriteHeader(gemini.StatusCertificateRequired, "Certificate required")
|
2020-10-21 15:47:34 -06:00
|
|
|
return
|
|
|
|
}
|
2020-09-27 15:39:44 -06:00
|
|
|
|
2020-12-17 22:25:06 -07:00
|
|
|
username, err := gemini.QueryUnescape(r.URL.RawQuery)
|
|
|
|
if err != nil || username == "" {
|
2021-02-17 11:39:18 -07:00
|
|
|
w.WriteHeader(gemini.StatusInput, "Username")
|
2020-10-21 15:47:34 -06:00
|
|
|
return
|
|
|
|
}
|
2021-02-16 09:26:09 -07:00
|
|
|
fingerprint := fingerprint(r.TLS.PeerCertificates[0])
|
2020-12-17 19:10:53 -07:00
|
|
|
user, ok := users[fingerprint]
|
|
|
|
if !ok {
|
|
|
|
user = &User{}
|
|
|
|
users[fingerprint] = user
|
|
|
|
}
|
|
|
|
user.Name = username
|
2021-02-17 11:39:18 -07:00
|
|
|
w.WriteHeader(gemini.StatusRedirect, "/")
|
2020-09-27 15:39:44 -06:00
|
|
|
}
|