add HTTP plugin

2023-09-20 22:56:43 +08:00
parent afddd2d29e
commit 1760151500
29 changed files with 1032 additions and 147 deletions
--- a/handler/forward/local/handler.go
+++ b/handler/forward/local/handler.go
@ -209,7 +209,7 @@ func (h *forwardHandler) handleHTTP(ctx context.Context, rw io.ReadWriter, log l

 			if auther := target.Options().Auther; auther != nil {
 				username, password, _ := req.BasicAuth()
-				ok, id := auther.Authenticate(ctx, username, password)
+				id, ok := auther.Authenticate(ctx, username, password)
 				if !ok {
 					resp.StatusCode = http.StatusUnauthorized
 					resp.Header.Set("WWW-Authenticate", "Basic")
--- a/handler/forward/remote/handler.go
+++ b/handler/forward/remote/handler.go
@ -206,7 +206,7 @@ func (h *forwardHandler) handleHTTP(ctx context.Context, rw io.ReadWriter, log l

 			if auther := target.Options().Auther; auther != nil {
 				username, password, _ := req.BasicAuth()
-				ok, id := auther.Authenticate(ctx, username, password)
+				id, ok := auther.Authenticate(ctx, username, password)
 				if !ok {
 					resp.StatusCode = http.StatusUnauthorized
 					resp.Header.Set("WWW-Authenticate", "Basic")
--- a/handler/http/handler.go
+++ b/handler/http/handler.go
@ -146,7 +146,7 @@ func (h *httpHandler) handleRequest(ctx context.Context, conn net.Conn, req *htt
 		resp.Header = http.Header{}
 	}

-	ok, id := h.authenticate(ctx, conn, req, resp, log)
+	id, ok := h.authenticate(ctx, conn, req, resp, log)
 	if !ok {
 		return nil
 	}
@ -269,12 +269,12 @@ func (h *httpHandler) basicProxyAuth(proxyAuth string, log logger.Logger) (usern
 	return cs[:s], cs[s+1:], true
 }

-func (h *httpHandler) authenticate(ctx context.Context, conn net.Conn, req *http.Request, resp *http.Response, log logger.Logger) (ok bool, token string) {
+func (h *httpHandler) authenticate(ctx context.Context, conn net.Conn, req *http.Request, resp *http.Response, log logger.Logger) (id string, ok bool) {
 	u, p, _ := h.basicProxyAuth(req.Header.Get("Proxy-Authorization"), log)
 	if h.options.Auther == nil {
-		return true, ""
+		return "", true
 	}
-	if ok, token = h.options.Auther.Authenticate(ctx, u, p); ok {
+	if id, ok = h.options.Auther.Authenticate(ctx, u, p); ok {
 		return
 	}

--- a/handler/http2/handler.go
+++ b/handler/http2/handler.go
@ -146,7 +146,7 @@ func (h *http2Handler) roundTrip(ctx context.Context, w http.ResponseWriter, req
 		Body:       io.NopCloser(bytes.NewReader([]byte{})),
 	}

-	ok, id := h.authenticate(ctx, w, req, resp, log)
+	id, ok := h.authenticate(ctx, w, req, resp, log)
 	if !ok {
 		return nil
 	}
@ -254,12 +254,12 @@ func (h *http2Handler) basicProxyAuth(proxyAuth string) (username, password stri
 	return cs[:s], cs[s+1:], true
 }

-func (h *http2Handler) authenticate(ctx context.Context, w http.ResponseWriter, r *http.Request, resp *http.Response, log logger.Logger) (ok bool, token string) {
+func (h *http2Handler) authenticate(ctx context.Context, w http.ResponseWriter, r *http.Request, resp *http.Response, log logger.Logger) (id string, ok bool) {
 	u, p, _ := h.basicProxyAuth(r.Header.Get("Proxy-Authorization"))
 	if h.options.Auther == nil {
-		return true, ""
+		return "", true
 	}
-	if ok, token = h.options.Auther.Authenticate(ctx, u, p); ok {
+	if id, ok = h.options.Auther.Authenticate(ctx, u, p); ok {
 		return
 	}

--- a/handler/relay/handler.go
+++ b/handler/relay/handler.go
@ -202,7 +202,7 @@ func (h *relayHandler) Handle(ctx context.Context, conn net.Conn, opts ...handle
 	}

 	if h.options.Auther != nil {
-		ok, id := h.options.Auther.Authenticate(ctx, user, pass)
+		id, ok := h.options.Auther.Authenticate(ctx, user, pass)
 		if !ok {
 			resp.Status = relay.StatusUnauthorized
 			resp.WriteTo(conn)
--- a/handler/socks/v4/handler.go
+++ b/handler/socks/v4/handler.go
@ -92,7 +92,7 @@ func (h *socks4Handler) Handle(ctx context.Context, conn net.Conn, opts ...handl
 	conn.SetReadDeadline(time.Time{})

 	if h.options.Auther != nil {
-		ok, id := h.options.Auther.Authenticate(ctx, string(req.Userid), "")
+		id, ok := h.options.Auther.Authenticate(ctx, string(req.Userid), "")
 		if !ok {
 			resp := gosocks4.NewReply(gosocks4.RejectedUserid, nil)
 			log.Trace(resp)
--- a/handler/socks/v5/selector.go
+++ b/handler/socks/v5/selector.go
@ -68,7 +68,7 @@ func (s *serverSelector) OnSelected(method uint8, conn net.Conn) (string, net.Co
 		var id string
 		if s.Authenticator != nil {
 			var ok bool
-			ok, id = s.Authenticator.Authenticate(context.Background(), req.Username, req.Password)
+			id, ok = s.Authenticator.Authenticate(context.Background(), req.Username, req.Password)
 			if !ok {
 				resp := gosocks5.NewUserPassResponse(gosocks5.UserPassVer, gosocks5.Failure)
 				if err := resp.Write(conn); err != nil {
--- a/handler/tun/server.go
+++ b/handler/tun/server.go
@ -135,7 +135,7 @@ func (h *tunHandler) transportServer(ctx context.Context, tun io.ReadWriter, con
 						ok := true
 						key := bytes.TrimRight((*b)[4:20], "\x00")
 						for _, ip := range peerIPs {
-							if ok, _ = auther.Authenticate(ctx, ip.String(), string(key)); !ok {
+							if _, ok = auther.Authenticate(ctx, ip.String(), string(key)); !ok {
 								break
 							}
 						}