diff options
| author | Yves Fischer <yvesf-git@xapek.org> | 2018-11-26 12:33:37 +0100 |
|---|---|---|
| committer | Yves Fischer <yvesf-git@xapek.org> | 2018-11-26 12:36:07 +0100 |
| commit | 63636d00ca56ee37f9cb9db3fece81d615e21a1a (patch) | |
| tree | 970f86c8ed2abd32d6af964b0f7cfb34f9bd8d45 /src/auth_handler/handler_login.rs | |
| parent | 20242a8d3cc2e9a70812f34fcc50c170a654f6c6 (diff) | |
| download | nginx-auth-totp-63636d00ca56ee37f9cb9db3fece81d615e21a1a.tar.gz nginx-auth-totp-63636d00ca56ee37f9cb9db3fece81d615e21a1a.zip | |
Refactor html views
Diffstat (limited to 'src/auth_handler/handler_login.rs')
| -rw-r--r-- | src/auth_handler/handler_login.rs | 142 |
1 files changed, 0 insertions, 142 deletions
diff --git a/src/auth_handler/handler_login.rs b/src/auth_handler/handler_login.rs deleted file mode 100644 index 83d5214..0000000 --- a/src/auth_handler/handler_login.rs +++ /dev/null @@ -1,142 +0,0 @@ -use std::io; -use std::borrow::Cow; - -use tokio::prelude::*; - -use http::{Request, Response, StatusCode, Method}; -use http::header::{SET_COOKIE, COOKIE}; -use url::form_urlencoded; - -use ::ApplicationState; -use ::totp; -use super::*; - - -pub(in super) fn GET<'a>(header_infos: &HeaderExtract, state: &ApplicationState, path_rest: &'a str) - -> Response<String> { - let body = if is_logged_in(&header_infos.cookies, &state.cookie_store) { - format!("{}", html! { - : horrorshow::helper::doctype::HTML; - html { - head { - title: "TOTP Login"; - } - body { - h1(id = "heading") { - : "Currently logged in" - } - } - } - }) - } else { - format!("{}", html! { - : horrorshow::helper::doctype::HTML; - html { - head { - title: "TOTP Login"; - } - body { - h1(id = "heading") { - : "Login" - } - form(method="POST") { - label(for="token") { - : "Enter TOTP token" - } - input(name="token",id="token",type="text"); - input(name="redirect", type="hidden", value=path_rest); - input(name="send",type="submit",value="Submit"); - } - } - } - }) - }; - make_response(StatusCode::OK, format!("{}", body)) -} - -fn test_secrets(secrets: &Vec<&str>, token: &String) -> bool { - secrets.iter() - .any(|secret| { - match totp::verify(secret, token) { - Ok(true) => true, - Ok(false) => false, - Err(e) => { - error!("Error from totp::verify: {}", e); - false - } - } - }) -} - -pub(in super) fn POST<'a>(header_infos: &HeaderExtract, state: &ApplicationState, req: &Request<Bytes>) - -> Response<String> { - let mut token = None; - let mut redirect = None; - for (key, val) in form_urlencoded::parse(req.body()) { - if key == "token" { - token = Some(val.into_owned()) - } else if key == "redirect" { - redirect = Some(val.into_owned()) - } - } - if token.is_none() { - return error_handler_internal("missing argument 'token'".to_string()); - } - let redirect = redirect.unwrap_or(Default::default()); - - if header_infos.totp_secrets.is_empty() { - return error_handler_internal("no secrets configured".to_string()) - } - - let mut ret = Response::builder(); - let body = if test_secrets(&header_infos.totp_secrets, &token.unwrap()) { - let cookie_value = state.cookie_store.create_authenticated_cookie(); - let cookie = CookieBuilder::new(COOKIE_NAME, cookie_value.to_string()) - .http_only(true) - .path("/") - .max_age(state.cookie_max_age) - .finish(); - ret.header(SET_COOKIE, cookie.to_string()); - warn!("Authenticated user with cookie {}", cookie); - format!("{}", html! { - : horrorshow::helper::doctype::HTML; - html { - head { - title: "TOTP Successful"; - meta(http-equiv="refresh", content=format!("3; URL={}", redirect)) - } - body { - h1(id = "heading") { - : "Login succesful" - } - a(href="login") { - : "Try again... redirecting to "; - } - span { - : format!("{}", redirect) - } - } - } - }) - } else { - format!("{}", html! { - : horrorshow::helper::doctype::HTML; - html { - head { - title: "TOTP Login failed"; - meta(http-equiv="refresh", content="1") - } - body { - h1(id = "heading") { - : "Login failed" - } - a(href="login") { - : "Try again... " - } - } - } - }) - }; - - ret.body(body).unwrap() -}
\ No newline at end of file |