go-gemini/examples/auth.go

// +build ignore

package main

import (
	"crypto/sha512"
	"crypto/tls"
	"crypto/x509"
	"crypto/x509/pkix"
	"fmt"
	"log"
	"time"

	"git.sr.ht/~adnano/go-gemini"
)

type User struct {
	Name string
}

var (
	// Map of certificate hashes to users
	users = map[string]*User{}
)

func main() {
	var mux gemini.ServeMux
	mux.HandleFunc("/", profile)
	mux.HandleFunc("/username", changeUsername)
	mux.HandleFunc("/delete", deleteAccount)

	var server gemini.Server
	if err := server.Certificates.Load("/var/lib/gemini/certs"); err != nil {
		log.Fatal(err)
	}
	server.CreateCertificate = func(hostname string) (tls.Certificate, error) {
		return gemini.CreateCertificate(gemini.CertificateOptions{
			Subject: pkix.Name{
				CommonName: hostname,
			},
			DNSNames: []string{hostname},
			Duration: time.Hour,
		})
	}
	server.Register("localhost", &mux)

	if err := server.ListenAndServe(); err != nil {
		log.Fatal(err)
	}
}

func fingerprint(cert *x509.Certificate) string {
	b := sha512.Sum512(cert.Raw)
	return string(b[:])
}

func profile(w *gemini.ResponseWriter, r *gemini.Request) {
	if r.Certificate == nil {
		w.WriteStatus(gemini.StatusCertificateRequired)
		return
	}
	fingerprint := fingerprint(r.Certificate.Leaf)
	user, ok := users[fingerprint]
	if !ok {
		user = &User{}
		users[fingerprint] = user
	}
	fmt.Fprintln(w, "Username:", user.Name)
	fmt.Fprintln(w, "=> /username Change username")
	fmt.Fprintln(w, "=> /delete Delete account")
}

func changeUsername(w *gemini.ResponseWriter, r *gemini.Request) {
	if r.Certificate == nil {
		w.WriteStatus(gemini.StatusCertificateRequired)
		return
	}

	username, ok := gemini.Input(r)
	if !ok {
		w.WriteHeader(gemini.StatusInput, "Username")
		return
	}
	users[fingerprint(r.Certificate.Leaf)].Name = username
	fmt.Fprintln(w, "Successfully changed username")
}

func deleteAccount(w *gemini.ResponseWriter, r *gemini.Request) {
	if r.Certificate != nil {
		delete(users, fingerprint(r.Certificate.Leaf))
	}
	fmt.Fprintln(w, "Account deleted")
}
Update documentation 2020-10-12 14:34:52 -06:00			`// +build ignore`
Add client authorization example 2020-09-27 15:39:44 -06:00
			`package main`

			`import (`
Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`"crypto/sha512"`
server: Populate (*Request).Certificate field 2020-11-01 14:25:59 -07:00			`"crypto/tls"`
Add client authorization example 2020-09-27 15:39:44 -06:00			`"crypto/x509"`
Add Subject option in CertificateOptions 2020-11-02 21:11:46 -07:00			`"crypto/x509/pkix"`
Add client authorization example 2020-09-27 15:39:44 -06:00			`"fmt"`
			`"log"`
server: Populate (*Request).Certificate field 2020-11-01 14:25:59 -07:00			`"time"`
Add client authorization example 2020-09-27 15:39:44 -06:00
Add Client.GetInput field 2020-10-27 21:35:22 -06:00			`"git.sr.ht/~adnano/go-gemini"`
Add client authorization example 2020-09-27 15:39:44 -06:00			`)`

Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`type User struct {`
			`Name string`
Add client authorization example 2020-09-27 15:39:44 -06:00			`}`

			`var (`
Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`// Map of certificate hashes to users`
			`users = map[string]*User{}`
Add client authorization example 2020-09-27 15:39:44 -06:00			`)`

			`func main() {`
Add Client.GetInput field 2020-10-27 21:35:22 -06:00			`var mux gemini.ServeMux`
Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`mux.HandleFunc("/", profile)`
			`mux.HandleFunc("/username", changeUsername)`
			`mux.HandleFunc("/delete", deleteAccount)`
Add Certificate helper function 2020-10-21 15:47:34 -06:00
Add Client.GetInput field 2020-10-27 21:35:22 -06:00			`var server gemini.Server`
Refactor server certificates 2020-10-28 12:59:45 -06:00			`if err := server.Certificates.Load("/var/lib/gemini/certs"); err != nil {`
Update examples 2020-10-11 22:13:24 -06:00			`log.Fatal(err)`
			`}`
server: Populate (*Request).Certificate field 2020-11-01 14:25:59 -07:00			`server.CreateCertificate = func(hostname string) (tls.Certificate, error) {`
			`return gemini.CreateCertificate(gemini.CertificateOptions{`
Add Subject option in CertificateOptions 2020-11-02 21:11:46 -07:00			`Subject: pkix.Name{`
			`CommonName: hostname,`
			`},`
server: Populate (*Request).Certificate field 2020-11-01 14:25:59 -07:00			`DNSNames: []string{hostname},`
			`Duration: time.Hour,`
			`})`
			`}`
Add Certificate helper function 2020-10-21 15:47:34 -06:00			`server.Register("localhost", &mux)`
Add client authorization example 2020-09-27 15:39:44 -06:00
			`if err := server.ListenAndServe(); err != nil {`
			`log.Fatal(err)`
			`}`
			`}`

Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`func fingerprint(cert *x509.Certificate) string {`
			`b := sha512.Sum512(cert.Raw)`
			`return string(b[:])`
Add client authorization example 2020-09-27 15:39:44 -06:00			`}`

Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`func profile(w gemini.ResponseWriter, r gemini.Request) {`
server: Populate (*Request).Certificate field 2020-11-01 14:25:59 -07:00			`if r.Certificate == nil {`
Update examples/auth.go 2020-11-01 12:47:26 -07:00			`w.WriteStatus(gemini.StatusCertificateRequired)`
Add Certificate helper function 2020-10-21 15:47:34 -06:00			`return`
			`}`
Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`fingerprint := fingerprint(r.Certificate.Leaf)`
			`user, ok := users[fingerprint]`
Add Certificate helper function 2020-10-21 15:47:34 -06:00			`if !ok {`
Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`user = &User{}`
			`users[fingerprint] = user`
Add Certificate helper function 2020-10-21 15:47:34 -06:00			`}`
Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`fmt.Fprintln(w, "Username:", user.Name)`
			`fmt.Fprintln(w, "=> /username Change username")`
			`fmt.Fprintln(w, "=> /delete Delete account")`
Add client authorization example 2020-09-27 15:39:44 -06:00			`}`

Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`func changeUsername(w gemini.ResponseWriter, r gemini.Request) {`
server: Populate (*Request).Certificate field 2020-11-01 14:25:59 -07:00			`if r.Certificate == nil {`
Update examples/auth.go 2020-11-01 12:47:26 -07:00			`w.WriteStatus(gemini.StatusCertificateRequired)`
Add Certificate helper function 2020-10-21 15:47:34 -06:00			`return`
			`}`
Add client authorization example 2020-09-27 15:39:44 -06:00
Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`username, ok := gemini.Input(r)`
Add Certificate helper function 2020-10-21 15:47:34 -06:00			`if !ok {`
Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`w.WriteHeader(gemini.StatusInput, "Username")`
Add Certificate helper function 2020-10-21 15:47:34 -06:00			`return`
			`}`
Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`users[fingerprint(r.Certificate.Leaf)].Name = username`
			`fmt.Fprintln(w, "Successfully changed username")`
Add client authorization example 2020-09-27 15:39:44 -06:00			`}`

Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`func deleteAccount(w gemini.ResponseWriter, r gemini.Request) {`
			`if r.Certificate != nil {`
			`delete(users, fingerprint(r.Certificate.Leaf))`
Add Certificate helper function 2020-10-21 15:47:34 -06:00			`}`
Fix known hosts expiration timestamps 2020-11-25 12:24:49 -07:00			`fmt.Fprintln(w, "Account deleted")`
Add client authorization example 2020-09-27 15:39:44 -06:00			`}`