gavin/main.go

package main

import (
	"encoding/csv"
	"flag"
	"fmt"
	"log"
	"net"
	"net/http"
	"os"
	"path/filepath"
	"time"

	"golang.org/x/crypto/bcrypt"
	"golang.org/x/net/webdav"
	"suah.dev/protect"
)

var (
	davDir    string
	listen    string
	passPath  string
	davPath   string
	staticDir string
	users     map[string]string
)

func init() {
	users = make(map[string]string)
	dir, err := filepath.Abs(filepath.Dir(os.Args[0]))
	if err != nil {
		log.Fatalln(err)
	}

	flag.StringVar(&davDir, "davdir", dir, "Directory to serve over WebDAV.")
	flag.StringVar(&listen, "http", ":8080", "Listen on")
	flag.StringVar(&passPath, "htpass", fmt.Sprintf("%s/.htpasswd", dir), "Path to .htpasswd file..")
	flag.StringVar(&davPath, "davpath", "/dav/", "Directory containing files to serve over WebDAV.")
	flag.StringVar(&staticDir, "static", dir, "Directory to serve static resources from. Served at '/'.")
	flag.Parse()

	// These are OpenBSD specific protections used to prevent un-necesary file access.
	protect.Unveil(staticDir, "r")
	protect.Unveil(passPath, "r")
	protect.Unveil(davDir, "rwc")
	err = protect.UnveilBlock()
	if err != nil {
		log.Fatal(err)
	}

	p, err := os.Open(passPath)
	if err != nil {
		log.Fatal(err)
	}
	defer p.Close()

	ht := csv.NewReader(p)
	ht.Comma = ':'
	ht.Comment = '#'
	ht.TrimLeadingSpace = true

	entries, err := ht.ReadAll()
	if err != nil {
		log.Fatal(err)
	}

	for _, parts := range entries {
		users[parts[0]] = parts[1]
	}
}

func validate(user string, pass string) bool {
	htpass, exists := users[user]

	if !exists {
		return false
	}

	err := bcrypt.CompareHashAndPassword([]byte(htpass), []byte(pass))
	return err == nil
}

func main() {
	wdav := &webdav.Handler{
		Prefix:     davPath,
		LockSystem: webdav.NewMemLS(),
		FileSystem: webdav.Dir(davDir),
		Logger: func(r *http.Request, err error) {
			n := time.Now()
			fmt.Printf("%s [%s] \"%s %s %s\" %03d\n",
				r.RemoteAddr,
				n.Format(time.RFC822Z),
				r.Method,
				r.URL.Path,
				r.Proto,
				r.ContentLength,
			)
		},
	}

	mux := http.NewServeMux()
	mux.Handle("/", http.FileServer(http.Dir(staticDir)))
	mux.HandleFunc(davPath, http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		user, pass, ok := r.BasicAuth()
		if !(ok && validate(user, pass)) {
			w.Header().Set("WWW-Authenticate", `Basic realm="davfs"`)
			http.Error(w, "Unauthorized", http.StatusUnauthorized)
			return
		}
		wdav.ServeHTTP(w, r)
	}))

	lis, err := net.Listen("tcp", listen)
	if err != nil {
		log.Panic(err)
	}

	s := http.Server{Handler: mux}

	log.Printf("Listening on '%s'", listen)
	log.Panic(s.Serve(lis))
}
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`package main`

			`import (`
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00			`"encoding/csv"`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`"flag"`
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00			`"fmt"`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`"log"`
			`"net"`
			`"net/http"`
			`"os"`
			`"path/filepath"`
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00			`"time"`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00			`"golang.org/x/crypto/bcrypt"`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`"golang.org/x/net/webdav"`
switch to suah.dev/protect 2020-05-08 16:47:44 -06:00			`"suah.dev/protect"`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`)`

Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00			`var (`
			`davDir string`
			`listen string`
			`passPath string`
Change prefix to davpath - fill out unveil function names - switch to suah.dev for module - pu: stop warning on non-openbsd systems 2020-05-08 07:04:02 -06:00			`davPath string`
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00			`staticDir string`
			`users map[string]string`
			`)`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00
			`func init() {`
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00			`users = make(map[string]string)`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`dir, err := filepath.Abs(filepath.Dir(os.Args[0]))`
			`if err != nil {`
Change prefix to davpath - fill out unveil function names - switch to suah.dev for module - pu: stop warning on non-openbsd systems 2020-05-08 07:04:02 -06:00			`log.Fatalln(err)`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`}`

Add readme, change description on some of the flags. 2020-05-07 21:54:39 -06:00			`flag.StringVar(&davDir, "davdir", dir, "Directory to serve over WebDAV.")`
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00			`flag.StringVar(&listen, "http", ":8080", "Listen on")`
			`flag.StringVar(&passPath, "htpass", fmt.Sprintf("%s/.htpasswd", dir), "Path to .htpasswd file..")`
Change prefix to davpath - fill out unveil function names - switch to suah.dev for module - pu: stop warning on non-openbsd systems 2020-05-08 07:04:02 -06:00			`flag.StringVar(&davPath, "davpath", "/dav/", "Directory containing files to serve over WebDAV.")`
			`flag.StringVar(&staticDir, "static", dir, "Directory to serve static resources from. Served at '/'.")`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`flag.Parse()`

Change prefix to davpath - fill out unveil function names - switch to suah.dev for module - pu: stop warning on non-openbsd systems 2020-05-08 07:04:02 -06:00			`// These are OpenBSD specific protections used to prevent un-necesary file access.`
switch to suah.dev/protect 2020-05-08 16:47:44 -06:00			`protect.Unveil(staticDir, "r")`
			`protect.Unveil(passPath, "r")`
			`protect.Unveil(davDir, "rwc")`
			`err = protect.UnveilBlock()`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`if err != nil {`
			`log.Fatal(err)`
			`}`
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00
			`p, err := os.Open(passPath)`
			`if err != nil {`
			`log.Fatal(err)`
			`}`
staticcheck 2020-03-24 07:09:08 -06:00			`defer p.Close()`
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00
			`ht := csv.NewReader(p)`
			`ht.Comma = ':'`
			`ht.Comment = '#'`
			`ht.TrimLeadingSpace = true`

			`entries, err := ht.ReadAll()`
			`if err != nil {`
			`log.Fatal(err)`
			`}`

			`for _, parts := range entries {`
			`users[parts[0]] = parts[1]`
			`}`
			`}`

			`func validate(user string, pass string) bool {`
			`htpass, exists := users[user]`

			`if !exists {`
			`return false`
			`}`

			`err := bcrypt.CompareHashAndPassword([]byte(htpass), []byte(pass))`
staticcheck 2020-03-24 07:09:08 -06:00			`return err == nil`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`}`

			`func main() {`
			`wdav := &webdav.Handler{`
Change prefix to davpath - fill out unveil function names - switch to suah.dev for module - pu: stop warning on non-openbsd systems 2020-05-08 07:04:02 -06:00			`Prefix: davPath,`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`LockSystem: webdav.NewMemLS(),`
			`FileSystem: webdav.Dir(davDir),`
			`Logger: func(r *http.Request, err error) {`
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00			`n := time.Now()`
			`fmt.Printf("%s [%s] \"%s %s %s\" %03d\n",`
			`r.RemoteAddr,`
			`n.Format(time.RFC822Z),`
			`r.Method,`
			`r.URL.Path,`
			`r.Proto,`
			`r.ContentLength,`
			`)`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`},`
			`}`

			`mux := http.NewServeMux()`
			`mux.Handle("/", http.FileServer(http.Dir(staticDir)))`
Change prefix to davpath - fill out unveil function names - switch to suah.dev for module - pu: stop warning on non-openbsd systems 2020-05-08 07:04:02 -06:00			`mux.HandleFunc(davPath, http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00			`user, pass, ok := r.BasicAuth()`
staticcheck 2020-03-24 07:09:08 -06:00			`if !(ok && validate(user, pass)) {`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			w.Header().Set("WWW-Authenticate", `Basic realm="davfs"`)
			`http.Error(w, "Unauthorized", http.StatusUnauthorized)`
			`return`
			`}`
			`wdav.ServeHTTP(w, r)`
			`}))`

			`lis, err := net.Listen("tcp", listen)`
			`if err != nil {`
			`log.Panic(err)`
			`}`

			`s := http.Server{Handler: mux}`
Add support for .htpasswd files. - Improve logging - Variableize dav prefix 2019-11-07 18:00:07 -07:00
			`log.Printf("Listening on '%s'", listen)`
initial bits for gavin - a no bs webdav server 2019-11-07 08:05:34 -07:00			`log.Panic(s.Serve(lis))`
			`}`