MyFavMirrors/minio
1
0
Fork 0
mirror of https://github.com/minio/minio.git synced 2025-05-21 17:43:48 -04:00
Code Issues Packages Projects Releases Wiki Activity

use jwt instead of basicAuth for webEnv (#10246)

Browse Source
This commit is contained in:
Harshavardhana 2020-08-11 16:09:34 -07:00 committed by GitHub
parent 6914b2c99d
commit 900eebb9a4
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 14 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
pkg/env/web_env.go vendored
View File

@ -30,6 +30,8 @@ import (
"os" "os"
"regexp" "regexp"
"time" "time"
"github.com/dgrijalva/jwt-go"
) )
const ( const (
@ -96,10 +98,20 @@ func fetchEnvHTTP(envKey string, u *url.URL) (string, error) {
return "", err return "", err
} }
if username != "" && password != "" { claims := &jwt.StandardClaims{
req.SetBasicAuth(username, password) ExpiresAt: int64(15 * time.Minute),
Issuer: username,
Subject: envKey,
} }
token := jwt.NewWithClaims(jwt.SigningMethodHS512, claims)
ss, err := token.SignedString([]byte(password))
if err != nil {
return "", err
}
req.Header.Set("Authorization", "Bearer "+ss)
clnt := &http.Client{ clnt := &http.Client{
Transport: &http.Transport{ Transport: &http.Transport{
Proxy: http.ProxyFromEnvironment, Proxy: http.ProxyFromEnvironment,