1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
|
package main
import (
"flag"
"fmt"
"log"
"net/http"
"github.com/casbin/casbin/v2"
"git.ofmax.li/go-git-server/internal/authz"
"git.ofmax.li/go-git-server/internal/git"
)
var (
reposDir = flag.String("r", "./repos", "Directory containing git repositories")
backendCommand = flag.String("c", "git http-backend", "CGI binary to execute")
addr = flag.String("l", ":8080", "Address/port to listen on")
newToken = flag.Bool("t", false, "make a new token")
)
func main() {
// TODO this should be configurable
enf, err := casbin.NewEnforcer("./auth_model.ini", "./policy.csv")
if err != nil {
log.Fatalf("Couldn't load the enforcer encountered the following error: %s", err)
}
flag.Parse()
if *newToken {
token, hash, err := authz.GenerateNewToken()
if err != nil {
log.Fatal(err)
}
fmt.Printf("token: %s\nhash: %s\n", token, hash)
return
}
tokens := authz.NewTokenMap()
err = tokens.LoadTokensFromFile("./tokens.csv")
if err != nil {
log.Fatal(err)
}
router := http.NewServeMux()
// TODO we don't want to use a global
// de-reference args
router.Handle("/", git.GitHttpBackendHandler(*reposDir, *backendCommand))
mux := authz.Authentication(tokens, authz.Authorization(enf, router))
log.Fatal(http.ListenAndServe(":8080", mux))
}
|
