diff options
author | Unknwon <joe2010xtmf@163.com> | 2014-11-10 05:30:07 -0500 |
---|---|---|
committer | Unknwon <joe2010xtmf@163.com> | 2014-11-10 05:30:07 -0500 |
commit | e0de6cb5adf5a81a95840f648d8a388b566202bd (patch) | |
tree | 6407a7524675e00d2a942ffa2868074dbd17b96c /modules/auth/auth.go | |
parent | ff8578082eaa356637cc24a3a09548b37aad2371 (diff) | |
download | gitea-e0de6cb5adf5a81a95840f648d8a388b566202bd.tar.gz gitea-e0de6cb5adf5a81a95840f648d8a388b566202bd.zip |
work on #616 and update locales
Diffstat (limited to 'modules/auth/auth.go')
-rw-r--r-- | modules/auth/auth.go | 53 |
1 files changed, 39 insertions, 14 deletions
diff --git a/modules/auth/auth.go b/modules/auth/auth.go index 95e647f53a..b9266d6895 100644 --- a/modules/auth/auth.go +++ b/modules/auth/auth.go @@ -14,6 +14,7 @@ import ( "github.com/macaron-contrib/session" "github.com/gogits/gogs/models" + "github.com/gogits/gogs/modules/base" "github.com/gogits/gogs/modules/log" "github.com/gogits/gogs/modules/setting" ) @@ -24,20 +25,6 @@ func SignedInId(header http.Header, sess session.Store) int64 { return 0 } - if setting.Service.EnableReverseProxyAuth { - webAuthUser := header.Get(setting.ReverseProxyAuthUser) - if len(webAuthUser) > 0 { - u, err := models.GetUserByName(webAuthUser) - if err != nil { - if err != models.ErrUserNotExist { - log.Error(4, "GetUserByName: %v", err) - } - return 0 - } - return u.Id - } - } - uid := sess.Get("uid") if uid == nil { return 0 @@ -56,8 +43,46 @@ func SignedInId(header http.Header, sess session.Store) int64 { // SignedInUser returns the user object of signed user. func SignedInUser(header http.Header, sess session.Store) *models.User { + if !models.HasEngine { + return nil + } + uid := SignedInId(header, sess) + if uid <= 0 { + if setting.Service.EnableReverseProxyAuth { + webAuthUser := header.Get(setting.ReverseProxyAuthUser) + if len(webAuthUser) > 0 { + u, err := models.GetUserByName(webAuthUser) + if err != nil { + if err != models.ErrUserNotExist { + log.Error(4, "GetUserByName: %v", err) + } + return nil + } + return u + } + } + + // Check with basic auth. + baHead := header.Get("Authorization") + if len(baHead) > 0 { + auths := strings.Fields(baHead) + if len(auths) == 2 && auths[0] == "Basic" { + uname, passwd, _ := base.BasicAuthDecode(auths[1]) + u, err := models.GetUserByName(uname) + if err != nil { + if err != models.ErrUserNotExist { + log.Error(4, "GetUserByName: %v", err) + } + return nil + } + + if u.ValidtePassword(passwd) { + return u + } + } + } return nil } |