56af60ad24
challenges with the upstream until any proxied data is found not to be local. Implement auth challenges behind an interface and add to unit tests. Also, remove a non-sensical unit test. Signed-off-by: Richard Scothern <richard.scothern@docker.com>
51 lines
985 B
Go
51 lines
985 B
Go
package proxy
|
|
|
|
import (
|
|
"net/http"
|
|
"net/url"
|
|
|
|
"github.com/docker/distribution/registry/client/auth"
|
|
)
|
|
|
|
const tokenURL = "https://auth.docker.io/token"
|
|
const challengeHeader = "Docker-Distribution-Api-Version"
|
|
|
|
type userpass struct {
|
|
username string
|
|
password string
|
|
}
|
|
|
|
type credentials struct {
|
|
creds map[string]userpass
|
|
}
|
|
|
|
func (c credentials) Basic(u *url.URL) (string, string) {
|
|
up := c.creds[u.String()]
|
|
|
|
return up.username, up.password
|
|
}
|
|
|
|
// ConfigureAuth stores credentials for challenge responses
|
|
func configureAuth(username, password string) (auth.CredentialStore, error) {
|
|
creds := map[string]userpass{
|
|
tokenURL: {
|
|
username: username,
|
|
password: password,
|
|
},
|
|
}
|
|
return credentials{creds: creds}, nil
|
|
}
|
|
|
|
func ping(manager auth.ChallengeManager, endpoint, versionHeader string) error {
|
|
resp, err := http.Get(endpoint)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
if err := manager.AddResponse(resp); err != nil {
|
|
return err
|
|
}
|
|
|
|
return nil
|
|
}
|