MyFavMirrors/minio
1
0
Fork 0
mirror of https://github.com/minio/minio.git synced 2025-04-04 03:40:30 -04:00
Code Issues Packages Projects Releases Wiki Activity

browser: Handle proper login errors. (#3518)

Browse Source 
Also additionally log the remote address.

Fixes #3514
This commit is contained in:
Harshavardhana 2017-01-03 01:33:00 -08:00 committed by GitHub
parent 7bbb532b4b
commit cae62ce543
2 changed files with 23 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
cmd/web-handlers.go
View File

@ -294,6 +294,9 @@ type LoginRep struct {
func (web *webAPIHandlers) Login(r *http.Request, args *LoginArgs, reply *LoginRep) error { func (web *webAPIHandlers) Login(r *http.Request, args *LoginArgs, reply *LoginRep) error {
token, err := authenticateWeb(args.Username, args.Password) token, err := authenticateWeb(args.Username, args.Password)
if err != nil { if err != nil {
// Make sure to log errors related to browser login,
// for security and auditing reasons.
errorIf(err, "Unable to login request from %s", r.RemoteAddr)
return toJSONError(err) return toJSONError(err)
} }
@ -768,13 +771,30 @@ func toWebAPIError(err error) APIError {
HTTPStatusCode: http.StatusForbidden, HTTPStatusCode: http.StatusForbidden,
Description: err.Error(), Description: err.Error(),
} }
} } else if err == errServerNotInitialized {
if err == errServerNotInitialized {
return APIError{ return APIError{
Code: "XMinioServerNotInitialized", Code: "XMinioServerNotInitialized",
HTTPStatusCode: http.StatusServiceUnavailable, HTTPStatusCode: http.StatusServiceUnavailable,
Description: err.Error(), Description: err.Error(),
} }
} else if err == errInvalidAccessKeyLength {
return APIError{
Code: "AccessDenied",
HTTPStatusCode: http.StatusForbidden,
Description: err.Error(),
}
} else if err == errInvalidSecretKeyLength {
return APIError{
Code: "AccessDenied",
HTTPStatusCode: http.StatusForbidden,
Description: err.Error(),
}
} else if err == errInvalidAccessKeyID {
return APIError{
Code: "AccessDenied",
HTTPStatusCode: http.StatusForbidden,
Description: err.Error(),
}
} }
// Convert error type to api error code. // Convert error type to api error code.

1
cmd/web-handlers_test.go
View File

@ -149,6 +149,7 @@ func testLoginWebHandler(obj ObjectLayer, instanceType string, t TestErrHandler)
{"", "foo", false}, {"", "foo", false},
{"azerty", "", false}, {"azerty", "", false},
{"azerty", "foo", false}, {"azerty", "foo", false},
{"azerty", "azerty123", false},
{credentials.AccessKey, credentials.SecretKey, true}, {credentials.AccessKey, credentials.SecretKey, true},
} }