WIP

2026-01-06 12:19:37 -06:00 · 2020-11-30 17:19:03 +01:00
parent d856d5470e
commit 5cb359d877
6 changed files with 78 additions and 9 deletions
--- a/proxy/pkg/middleware/authentication.go
+++ b/proxy/pkg/middleware/authentication.go
@@ -0,0 +1,48 @@
+package middleware
+
+import (
+	"fmt"
+	"net/http"
+	"time"
+)
+
+// Authentication is a higher level authentication middleware.
+func Authentication(opts ...Option) func(next http.Handler) http.Handler {
+	options := newOptions(opts...)
+
+	oidc := OIDCAuth(
+		Logger(options.Logger),
+		OIDCProviderFunc(options.OIDCProviderFunc),
+		HTTPClient(options.HTTPClient),
+		OIDCIss(options.OIDCIss),
+		TokenCacheSize(options.UserinfoCacheSize),
+		TokenCacheTTL(time.Second*time.Duration(options.UserinfoCacheTTL)),
+	)
+
+	basic := BasicAuth(
+		Logger(options.Logger),
+		EnableBasicAuth(options.EnableBasicAuth),
+		AccountsClient(options.AccountsClient),
+		OIDCIss(options.OIDCIss),
+	)
+
+	return func(next http.Handler) http.Handler {
+		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			// here we multiplex depending on the use agent
+			userAgent := r.Header.Get("User-Agent")
+			fmt.Printf("\n\nUser-Agent:\t%s\n\n", userAgent)
+			switch userAgent {
+			case "a":
+				oidc(next).ServeHTTP(w, r)
+				return
+			case "b":
+				basic(next).ServeHTTP(w, r)
+				return
+			default:
+				oidc(next).ServeHTTP(w, r)
+				basic(next).ServeHTTP(w, r)
+				return
+			}
+		})
+	}
+}