Skip to content

K
koko
Commit 643df6d2 authored by Eric's avatar Eric
Browse files
Options

[update] update auth code

parent 0e98e8f5
Show whitespace changes
Inline Side-by-side
Showing with 22 additions and 23 deletions
pkg/common/client.go
View file @ 643df6d2
...@@ -165,7 +165,7 @@ func (c *Client) Do(method, url string, data, res interface{}, params ...map[str ...@@ -165,7 +165,7 @@ func (c *Client) Do(method, url string, data, res interface{}, params ...map[str
} }
defer resp.Body.Close() defer resp.Body.Close()
body, err := ioutil.ReadAll(resp.Body) body, err := ioutil.ReadAll(resp.Body)
if resp.StatusCode >= 500 { if resp.StatusCode >= 400 {
msg := fmt.Sprintf("%s %s failed, get code: %d, %s", req.Method, req.URL, resp.StatusCode, body) msg := fmt.Sprintf("%s %s failed, get code: %d, %s", req.Method, req.URL, resp.StatusCode, body)
err = errors.New(msg) err = errors.New(msg)
return return
...@@ -177,7 +177,9 @@ func (c *Client) Do(method, url string, data, res interface{}, params ...map[str ...@@ -177,7 +177,9 @@ func (c *Client) Do(method, url string, data, res interface{}, params ...map[str
return return
} }
// Unmarshal response body to result struct // Unmarshal response body to result struct
if res != nil && strings.Contains(resp.Header.Get("Content-Type"), "application/json") { if res != nil {
switch {
case strings.Contains(resp.Header.Get("Content-Type"), "application/json"):
err = json.Unmarshal(body, res) err = json.Unmarshal(body, res)
if err != nil { if err != nil {
msg := fmt.Sprintf("%s %s failed, unmarshal '%s' response failed: %s", req.Method, req.URL, body[:12], err) msg := fmt.Sprintf("%s %s failed, unmarshal '%s' response failed: %s", req.Method, req.URL, body[:12], err)
...@@ -185,6 +187,7 @@ func (c *Client) Do(method, url string, data, res interface{}, params ...map[str ...@@ -185,6 +187,7 @@ func (c *Client) Do(method, url string, data, res interface{}, params ...map[str
return return
} }
} }
}
return return
} }
......
pkg/handler/session.go
View file @ 643df6d2
...@@ -21,7 +21,7 @@ import ( ...@@ -21,7 +21,7 @@ import (
func SessionHandler(sess ssh.Session) { func SessionHandler(sess ssh.Session) {
user, ok := sess.Context().Value(model.ContextKeyUser).(*model.User) user, ok := sess.Context().Value(model.ContextKeyUser).(*model.User)
if !ok && user == nil { if !ok || user.ID == "" {
logger.Errorf("SSH User %s not found, exit.", sess.User()) logger.Errorf("SSH User %s not found, exit.", sess.User())
return return
} }
......
pkg/service/urls.go
View file @ 643df6d2
...@@ -42,5 +42,5 @@ const ( ...@@ -42,5 +42,5 @@ const (
// 1.5.5 // 1.5.5
const ( const (
UserTokenAuthURL = "/api/v1/authentication/tokens/" // 用户登录验证 UserTokenAuthURL = "/api/v1/authentication/tokens/" // 用户登录验证
UserConfirmAuthURL = "/api/v1/authentication/order/auth/" UserConfirmAuthURL = "/api/v1/authentication/login-confirm-ticket/status/"
) )
pkg/service/users.go
View file @ 643df6d2
...@@ -70,24 +70,15 @@ func (u *SessionClient) Authenticate(ctx context.Context) (user model.User, auth ...@@ -70,24 +70,15 @@ func (u *SessionClient) Authenticate(ctx context.Context) (user model.User, auth
logger.Errorf("User %s Authenticate err: %s", u.option.Username, err) logger.Errorf("User %s Authenticate err: %s", u.option.Username, err)
return return
} }
fmt.Printf("%v\n", resp)
if resp.Err != "" { if resp.Err != "" {
switch resp.Err { switch resp.Err {
case ErrLoginConfirmRequired: case ErrLoginConfirmWait:
if !u.checkConfirm(ctx) { if !u.checkConfirm(ctx) {
logger.Errorf("User %s login confirm required err", u.option.Username) logger.Errorf("User %s login confirm required err", u.option.Username)
return return
} }
logger.Infof("User %s login confirm required success", u.option.Username) logger.Infof("User %s login confirm required success", u.option.Username)
authStatus = AuthSuccess return u.Authenticate(ctx)
case ErrLoginConfirmWait:
if !u.checkConfirm(ctx) {
logger.Errorf("User %s login confirm Wait check err", u.option.Username)
return
}
logger.Infof("User %s login confirm wait check success", u.option.Username)
authStatus = AuthSuccess
case ErrMFARequired: case ErrMFARequired:
for _, item := range resp.Data.Choices { for _, item := range resp.Data.Choices {
u.authOptions[item] = AuthOptions{ u.authOptions[item] = AuthOptions{
...@@ -97,6 +88,8 @@ func (u *SessionClient) Authenticate(ctx context.Context) (user model.User, auth ...@@ -97,6 +88,8 @@ func (u *SessionClient) Authenticate(ctx context.Context) (user model.User, auth
} }
logger.Infof("User %s login need MFA", u.option.Username) logger.Infof("User %s login need MFA", u.option.Username)
authStatus = AuthMFARequired authStatus = AuthMFARequired
default:
logger.Errorf("User %s login err: %s", u.option.Username, resp.Err)
} }
return return
} }
...@@ -138,11 +131,14 @@ func (u *SessionClient) CheckUserOTP(ctx context.Context, code string) (user mod ...@@ -138,11 +131,14 @@ func (u *SessionClient) CheckUserOTP(ctx context.Context, code string) (user mod
func (u *SessionClient) checkConfirm(ctx context.Context) (ok bool) { func (u *SessionClient) checkConfirm(ctx context.Context) (ok bool) {
var err error var err error
for {
select { select {
case <-ctx.Done(): case <-ctx.Done():
logger.Errorf("User %s cancel confirm request", u.option.Username) _, err = u.client.Delete(UserConfirmAuthURL, nil)
return ok if err != nil {
logger.Errorf("User %s cancel confirmation err: %s", u.option.Username, err)
return
}
logger.Infof("User %s cancel confirm request", u.option.Username)
case <-time.After(5 * time.Second): case <-time.After(5 * time.Second):
var resp authResponse var resp authResponse
_, err = u.client.Get(UserConfirmAuthURL, &resp) _, err = u.client.Get(UserConfirmAuthURL, &resp)
...@@ -154,20 +150,20 @@ func (u *SessionClient) checkConfirm(ctx context.Context) (ok bool) { ...@@ -154,20 +150,20 @@ func (u *SessionClient) checkConfirm(ctx context.Context) (ok bool) {
switch resp.Err { switch resp.Err {
case ErrLoginConfirmWait: case ErrLoginConfirmWait:
logger.Infof("User %s still wait confirm", u.option.Username) logger.Infof("User %s still wait confirm", u.option.Username)
continue return u.checkConfirm(ctx)
case ErrLoginConfirmRejected: case ErrLoginConfirmRejected:
logger.Infof("User %s confirmation was rejected by admin", u.option.Username)
default: default:
logger.Infof("User %s confirmation was rejected by err: %s", u.option.Username, resp.Err)
} }
logger.Infof("User %s confirm rejected %s", u.option.Username, resp.Err)
return return
} }
if resp.Msg == "ok" { if resp.Msg == "ok" {
logger.Infof("User %s confirm accepted", u.option.Username) logger.Infof("User %s confirmation was accepted", u.option.Username)
return true return true
} }
}
} }
return
} }
func GetUserDetail(userID string) (user *model.User) { func GetUserDetail(userID string) (user *model.User) {
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment