NotAShelf/mpvrc
1
0
Fork 0
mirror of https://github.com/NotAShelf/mpvrc.git synced 2026-04-16 16:03:48 +00:00
Code Issues Projects Releases Packages Wiki Activity

read authentication token from the environment

Browse source
This commit is contained in:
raf 2024-12-22 19:24:41 +03:00
commit ea085ba5fa
No known key found for this signature in database
GPG key ID: EED98D11B85A2819
2 changed files with 19 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

1
src/cli.rs
View file

@ -216,7 +216,6 @@ async fn main() -> io::Result<()> {
break;
}
// I don't like this either, but it looks cleaner than a multi-line
// print macro just cramped in here.
let commands = vec![

25
src/server.rs
View file

@ -5,11 +5,9 @@ use native_tls::{Identity, TlsAcceptor as NativeTlsAcceptor};
use serde_json::json;
use tokio::io::{AsyncReadExt, AsyncWriteExt};
use tokio_native_tls::TlsAcceptor;
use tracing::{info, debug, error};
use tracing::{debug, error, info};
use mrc::{set_property, get_property, playlist_clear, playlist_next, playlist_prev, quit, seek};
const AUTH_TOKEN: &str = "your_secure_token";
use mrc::{get_property, playlist_clear, playlist_next, playlist_prev, quit, seek, set_property};
async fn handle_connection(
stream: tokio::net::TcpStream,
@ -24,13 +22,28 @@ async fn handle_connection(
debug!("Received request:\n{}", request);
let headers = request.split("\r\n").collect::<Vec<&str>>();
let token_line = headers.iter().find(|&&line| line.starts_with("Authorization:"));
let token_line = headers
.iter()
.find(|&&line| line.starts_with("Authorization:"));
let token = match token_line {
Some(line) => line.split(" ").nth(1).unwrap_or_default(),
None => "",
};
if token != AUTH_TOKEN {
let auth_token = match env::var("AUTH_TOKEN") {
Ok(token) => token,
Err(_) => {
error!("Authentication token is not set. Connection cannot be accepted.");
stream.write_all(b"Authentication token not set\n").await?;
// You know what? I do not care to panic when the token is missing.
// Sure, start the server and hell even accept the connection. Auth
// will be refused if token is incorrect, so we can just continue here.
return Ok(());
}
};
if token != auth_token {
stream.write_all(b"Authentication failed\n").await?;
return Ok(());
}