mirror of
https://github.com/navidrome/navidrome.git
synced 2025-05-18 19:16:36 +03:00
92 lines
2.5 KiB
Go
92 lines
2.5 KiB
Go
package subsonic
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
"net/http"
|
|
"net/url"
|
|
"strings"
|
|
|
|
"github.com/deluan/navidrome/engine"
|
|
"github.com/deluan/navidrome/log"
|
|
"github.com/deluan/navidrome/model"
|
|
"github.com/deluan/navidrome/server/subsonic/responses"
|
|
"github.com/deluan/navidrome/utils"
|
|
)
|
|
|
|
func postFormToQueryParams(next http.Handler) http.Handler {
|
|
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
|
err := r.ParseForm()
|
|
if err != nil {
|
|
SendError(w, r, NewError(responses.ErrorGeneric, err.Error()))
|
|
}
|
|
var parts []string
|
|
for key, values := range r.Form {
|
|
for _, v := range values {
|
|
parts = append(parts, url.QueryEscape(key)+"="+url.QueryEscape(v))
|
|
}
|
|
}
|
|
r.URL.RawQuery = strings.Join(parts, "&")
|
|
|
|
next.ServeHTTP(w, r)
|
|
})
|
|
}
|
|
|
|
func checkRequiredParameters(next http.Handler) http.Handler {
|
|
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
|
requiredParameters := []string{"u", "v", "c"}
|
|
|
|
for _, p := range requiredParameters {
|
|
if utils.ParamString(r, p) == "" {
|
|
msg := fmt.Sprintf(`Missing required parameter "%s"`, p)
|
|
log.Warn(r, msg)
|
|
SendError(w, r, NewError(responses.ErrorMissingParameter, msg))
|
|
return
|
|
}
|
|
}
|
|
|
|
user := utils.ParamString(r, "u")
|
|
client := utils.ParamString(r, "c")
|
|
version := utils.ParamString(r, "v")
|
|
ctx := r.Context()
|
|
ctx = context.WithValue(ctx, "username", user)
|
|
ctx = context.WithValue(ctx, "client", client)
|
|
ctx = context.WithValue(ctx, "version", version)
|
|
log.Info(ctx, "API: New request "+r.URL.Path, "username", user, "client", client, "version", version)
|
|
|
|
r = r.WithContext(ctx)
|
|
next.ServeHTTP(w, r)
|
|
})
|
|
}
|
|
|
|
func authenticate(users engine.Users) func(next http.Handler) http.Handler {
|
|
return func(next http.Handler) http.Handler {
|
|
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
|
username := utils.ParamString(r, "u")
|
|
pass := utils.ParamString(r, "p")
|
|
token := utils.ParamString(r, "t")
|
|
salt := utils.ParamString(r, "s")
|
|
jwt := utils.ParamString(r, "jwt")
|
|
|
|
usr, err := users.Authenticate(r.Context(), username, pass, token, salt, jwt)
|
|
if err == model.ErrInvalidAuth {
|
|
log.Warn(r, "Invalid login", "username", username, err)
|
|
} else if err != nil {
|
|
log.Error(r, "Error authenticating username", "username", username, err)
|
|
}
|
|
|
|
if err != nil {
|
|
log.Warn(r, "Invalid login", "username", username)
|
|
SendError(w, r, NewError(responses.ErrorAuthenticationFail))
|
|
return
|
|
}
|
|
|
|
ctx := r.Context()
|
|
ctx = context.WithValue(ctx, "user", usr)
|
|
r = r.WithContext(ctx)
|
|
|
|
next.ServeHTTP(w, r)
|
|
})
|
|
}
|
|
}
|