refactor: use formal username rather than client's input

Author: marjune163

src/serverHandler/auth.go

@@ -27,8 +27,10 @@ func (h *aliasHandler) notifyAuth(w http.ResponseWriter, r *http.Request) {
 func (h *aliasHandler) verifyAuth(r *http.Request, needAuth bool) (username string, success bool, err error) {
 	user, pass, hasAuthReq := r.BasicAuth()
 
-	if hasAuthReq && h.users.Auth(user, pass) {
-		return user, true, nil
+	if hasAuthReq {
+		if username, success = h.users.Auth(user, pass); success {
+			return
+		}
 	}
 
 	if !needAuth {

src/serverHandler/responseData.go

@@ -330,13 +330,11 @@ func (h *aliasHandler) getResponseData(r *http.Request) (data *responseData, fsP
 
 	needAuth, requestAuth := h.needAuth(rawQuery, rawReqPath, reqFsPath)
 	authUserName, authSuccess, _authErr := h.verifyAuth(r, needAuth)
-	if needAuth {
-		if _authErr != nil {
-			errs = append(errs, _authErr)
-		}
-		if !authSuccess {
-			status = http.StatusUnauthorized
-		}
+	if needAuth && _authErr != nil {
+		errs = append(errs, _authErr)
+	}
+	if !authSuccess {
+		status = http.StatusUnauthorized
 	}
 
 	headers := h.getHeaders(rawReqPath, reqFsPath, authSuccess)

src/user/list.go

@@ -85,13 +85,14 @@ func (list *List) AddSha512(username, password string) error {
 	return err
 }
 
-func (list *List) Auth(username, password string) bool {
+func (list *List) Auth(username, password string) (string, bool) {
 	index := list.FindIndex(username)
 	if index < 0 {
-		return false
+		return "", false
 	}
 
-	return list.users[index].auth(password)
+	u := list.users[index]
+	return u.getName(), u.auth(password)
 }
 
 func NewList() *List {

src/user/list_test.go

@@ -7,81 +7,121 @@ import (
 var list = NewList()
 
 func TestUserPlain(t *testing.T) {
-	list.AddPlain("plain_user", "123")
-	if !list.Auth("plain_user", "123") {
+	var u string
+	var ok bool
+
+	username := "plain_user"
+	list.AddPlain(username, "123")
+	if u, ok = list.Auth("plain_user", "123"); u != username || !ok {
+		t.Error()
+	}
+	if u, ok = list.Auth("Plain_User", "123"); u != username || !ok {
 		t.Error()
 	}
-	if !list.Auth("Plain_User", "123") {
+	if u, ok = list.Auth("plain_user", "12"); u != username || ok {
 		t.Error()
 	}
-	if list.Auth("plain_user", "12") {
+	if u, ok = list.Auth("fake_user", "123"); u != "" || ok {
 		t.Error()
 	}
 }
 
 func TestUserBase64(t *testing.T) {
-	list.AddBase64("base64_user", "MjM0")
-	if !list.Auth("base64_user", "234") {
+	var u string
+	var ok bool
+
+	username := "base64_user"
+	list.AddBase64(username, "MjM0")
+	if u, ok = list.Auth("base64_user", "234"); u != username || !ok {
 		t.Error()
 	}
-	if !list.Auth("Base64_user", "234") {
+	if u, ok = list.Auth("Base64_user", "234"); u != username || !ok {
 		t.Error()
 	}
-	if list.Auth("base64_user", "23") {
+	if u, ok = list.Auth("base64_user", "23"); u != username || ok {
+		t.Error()
+	}
+	if u, ok = list.Auth("fake_user", "MjM0"); u != "" || ok {
 		t.Error()
 	}
-
 }
 
 func TestUserMd5(t *testing.T) {
-	list.AddMd5("md5_user", "d81f9c1be2e08964bf9f24b15f0e4900")
-	if !list.Auth("md5_user", "345") {
+	var u string
+	var ok bool
+
+	username := "md5_user"
+	list.AddMd5(username, "d81f9c1be2e08964bf9f24b15f0e4900")
+	if u, ok = list.Auth("md5_user", "345"); u != username || !ok {
 		t.Error()
 	}
-	if !list.Auth("Md5_user", "345") {
+	if u, ok = list.Auth("Md5_user", "345"); u != username || !ok {
 		t.Error()
 	}
-	if list.Auth("md5_user", "34") {
+	if u, ok = list.Auth("md5_user", "34"); u != username || ok {
+		t.Error()
+	}
+	if u, ok = list.Auth("fake_user", "d81f9c1be2e08964bf9f24b15f0e4900"); u != "" || ok {
 		t.Error()
 	}
-
 }
 
 func TestUserSha1(t *testing.T) {
-	list.AddSha1("sha1_user", "51eac6b471a284d3341d8c0c63d0f1a286262a18")
-	if !list.Auth("sha1_user", "456") {
+	var u string
+	var ok bool
+
+	username := "sha1_user"
+	list.AddSha1(username, "51eac6b471a284d3341d8c0c63d0f1a286262a18")
+	if u, ok = list.Auth("sha1_user", "456"); u != username || !ok {
 		t.Error()
 	}
-	if !list.Auth("Sha1_user", "456") {
+	if u, ok = list.Auth("Sha1_user", "456"); u != username || !ok {
 		t.Error()
 	}
-	if list.Auth("sha1_user", "45") {
+	if u, ok = list.Auth("sha1_user", "45"); u != username || ok {
+		t.Error()
+	}
+	if u, ok = list.Auth("fake_user", "51eac6b471a284d3341d8c0c63d0f1a286262a18"); u != "" || ok {
 		t.Error()
 	}
 }
 
 func TestUserSha256(t *testing.T) {
-	list.AddSha256("sha256_user", "97a6d21df7c51e8289ac1a8c026aaac143e15aa1957f54f42e30d8f8a85c3a55")
-	if !list.Auth("sha256_user", "567") {
+	var u string
+	var ok bool
+
+	username := "sha256_user"
+	list.AddSha256(username, "97a6d21df7c51e8289ac1a8c026aaac143e15aa1957f54f42e30d8f8a85c3a55")
+	if u, ok = list.Auth("sha256_user", "567"); u != username || !ok {
 		t.Error()
 	}
-	if !list.Auth("Sha256_user", "567") {
+	if u, ok = list.Auth("Sha256_user", "567"); u != username || !ok {
 		t.Error()
 	}
-	if list.Auth("sha256_user", "56") {
+	if u, ok = list.Auth("sha256_user", "56"); u != username || ok {
+		t.Error()
+	}
+	if u, ok = list.Auth("fake_user", "97a6d21df7c51e8289ac1a8c026aaac143e15aa1957f54f42e30d8f8a85c3a55"); u != "" || ok {
 		t.Error()
 	}
 }
 
 func TestUserSha512(t *testing.T) {
-	list.AddSha512("sha512_user", "c7d57e5c0b0792b154d573089792d80f5b64d2bc0cf4d7d1f551a9e4a4966e925d06b253cc9662c01df76623fdfecb812a2a0604119cb1ac37c47e8027e94cb5")
-	if !list.Auth("sha512_user", "678") {
+	var u string
+	var ok bool
+
+	username := "sha512_user"
+	list.AddSha512(username, "c7d57e5c0b0792b154d573089792d80f5b64d2bc0cf4d7d1f551a9e4a4966e925d06b253cc9662c01df76623fdfecb812a2a0604119cb1ac37c47e8027e94cb5")
+	if u, ok = list.Auth("sha512_user", "678"); u != username || !ok {
+		t.Error()
+	}
+	if u, ok = list.Auth("Sha512_user", "678"); u != username || !ok {
 		t.Error()
 	}
-	if !list.Auth("Sha512_user", "678") {
+	if u, ok = list.Auth("sha512_user", "67"); u != username || ok {
 		t.Error()
 	}
-	if list.Auth("sha512_user", "67") {
+	if u, ok = list.Auth("fake_user", "c7d57e5c0b0792b154d573089792d80f5b64d2bc0cf4d7d1f551a9e4a4966e925d06b253cc9662c01df76623fdfecb812a2a0604119cb1ac37c47e8027e94cb5"); u != "" || ok {
 		t.Error()
 	}
 }

test/case/007.auth.bash

@@ -5,22 +5,25 @@ source "$root"/lib.bash
 "$ghfs" -l 3003 -r "$fs"/vhost1 --auth /hello --user alice:AliceSecret -E '' &
 sleep 0.05 # wait server ready
 
-yesstatus=$(curl_get_status http://127.0.0.1:3003/yes/)
-assert "$yesstatus" '200'
+status=$(curl_get_status http://127.0.0.1:3003/yes/)
+assert "$status" '200'
 
-hellostatus=$(curl_get_status http://127.0.0.1:3003/hello/)
-assert "$hellostatus" '401'
+status=$(curl_get_status http://127.0.0.1:3003/hello/)
+assert "$status" '401'
 
-userhellostatus=$(curl_get_status http://alice:AliceSecret@127.0.0.1:3003/hello/)
-assert "$userhellostatus" '200'
+status=$(curl_get_status http://alice:AliceSecret@127.0.0.1:3003/hello/)
+assert "$status" '200'
 
-userhelloheadstatus=$(curl_head_status http://alice:AliceSecret@127.0.0.1:3003/hello/)
-assert "$userhelloheadstatus" '200'
+status=$(curl_head_status http://alice:AliceSecret@127.0.0.1:3003/hello/)
+assert "$status" '200'
 
-hellostatus=$(curl_get_status http://127.0.0.1:3003/yes/?auth)
-assert "$hellostatus" '401'
+status=$(curl_get_status http://127.0.0.1:3003/yes/?auth)
+assert "$status" '401'
 
-hellostatus=$(curl_get_status http://alice:AliceSecret@127.0.0.1:3003/yes/?auth)
-assert "$hellostatus" '302'
+status=$(curl_get_status http://bob:BobSecret@127.0.0.1:3003/yes/)
+assert "$status" '200'
+
+status=$(curl_get_status http://alice:AliceSecret@127.0.0.1:3003/yes/?auth)
+assert "$status" '302'
 
 jobs -p | xargs kill &> /dev/null