apitech
/
grafana
mirror of https://github.com/grafana/grafana
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many more.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
55721 Commits
5978 Branches
596 Tags
1.7 GiB
Tag: Branch: Tree: 0cce224adb
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '0cce224adb'
${ noResults }
grafana/pkg/util/encoding.go

102 lines
2.4 KiB
Raw Normal View History Unescape

Fixed hashing of passwords, Closes #3
11 years ago
package util
import (
"crypto/rand"
"crypto/sha256"
Added basic auth to data source edit/create, add support for basic auth in data source proxy code, Closes #1510
10 years ago
"encoding/base64"
Worked on login remember cookie, and redirect after login
10 years ago
"encoding/hex"
Auth: You can now authenicate against api with username / password using basic auth, Closes #2218
10 years ago
"errors"
Auth Proxy: encoding of non-ASCII headers (#44797) * Decode auth proxy headers using URL encoding * Header encoding configuration via settings file * Rename configuration setting to headers_encoded * Quoted-printable encoding * Tests for AuthProxy * Fix encoding name * Remove authproxy init
3 years ago
"io"
"mime/quotedprintable"
Auth: You can now authenicate against api with username / password using basic auth, Closes #2218
10 years ago
"strings"
Chore: Start harmonizing linting with plugin SDK (#25854) * Chore: Harmonize linting with plugin SDK Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com> * Chore: Fix linting issues Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com>
5 years ago
"golang.org/x/crypto/pbkdf2"
Fixed hashing of passwords, Closes #3
11 years ago
)
Utils: Reimplement util.GetRandomString to avoid modulo bias (#64481) * reimplement GetRandomString, add tests that results are unbiased
2 years ago
const alphanum = "0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz"
// GetRandomString generates a random alphanumeric string of the specified length,
// optionally using only specified characters
pkg/util: Check errors (#19832) * pkg/util: Check errors * pkg/services: DRY up code
6 years ago
func GetRandomString(n int, alphabets ...byte) (string, error) {
Utils: Reimplement util.GetRandomString to avoid modulo bias (#64481) * reimplement GetRandomString, add tests that results are unbiased
2 years ago
chars := alphanum
if len(alphabets) > 0 {
chars = string(alphabets)
pkg/util: Check errors (#19832) * pkg/util: Check errors * pkg/services: DRY up code
6 years ago
}
Utils: Reimplement util.GetRandomString to avoid modulo bias (#64481) * reimplement GetRandomString, add tests that results are unbiased
2 years ago
cnt := len(chars)
max := 255 / cnt * cnt
bytes := make([]byte, n)
pkg/util: Check errors (#19832) * pkg/util: Check errors * pkg/services: DRY up code
6 years ago
Utils: Reimplement util.GetRandomString to avoid modulo bias (#64481) * reimplement GetRandomString, add tests that results are unbiased
2 years ago
randread := n * 5 / 4
randbytes := make([]byte, randread)
for i := 0; i < n; {
if _, err := rand.Read(randbytes); err != nil {
return "", err
}
for j := 0; i < n && j < randread; j++ {
b := int(randbytes[j])
if b >= max {
continue
}
bytes[i] = chars[b%cnt]
i++
Fixed hashing of passwords, Closes #3
11 years ago
}
}
Utils: Reimplement util.GetRandomString to avoid modulo bias (#64481) * reimplement GetRandomString, add tests that results are unbiased
2 years ago
pkg/util: Check errors (#19832) * pkg/util: Check errors * pkg/services: DRY up code
6 years ago
return string(bytes), nil
Fixed hashing of passwords, Closes #3
11 years ago
}
pkg/util/*: Add missing function comments. See, $ gometalinter --vendor --deadline 10m --disable-all --enable=golint ./... encoding.go:15:1:warning: comment on exported function GetRandomString should be of the form "GetRandomString ..." (golint) encoding.go:30:1:warning: exported function EncodePassword should have comment or be unexported (golint) encoding.go:35:1:warning: comment on exported function EncodeMd5 should be of the form "EncodeMd5 ..." (golint) encoding.go:42:1:warning: comment on exported function PBKDF2 should be of the form "PBKDF2 ..." (golint) encoding.go:80:1:warning: exported function GetBasicAuthHeader should have comment or be unexported (golint) encoding.go:85:1:warning: exported function DecodeBasicAuthHeader should have comment or be unexported (golint) encoding.go:105:1:warning: exported function RandomHex should have comment or be unexported (golint) encryption.go:14:1:warning: exported function Decrypt should have comment or be unexported (golint) encryption.go:39:1:warning: exported function Encrypt should have comment or be unexported (golint) ip.go:7:1:warning: exported function SplitIpPort should have comment or be unexported (golint) json.go:3:6:warning: exported type DynMap should have comment or be unexported (golint) md5.go:22:1:warning: comment on exported function Md5SumString should be of the form "Md5SumString ..." (golint) strings.go:10:1:warning: exported function StringsFallback2 should have comment or be unexported (golint) strings.go:14:1:warning: exported function StringsFallback3 should have comment or be unexported (golint) strings.go:27:1:warning: exported function SplitString should have comment or be unexported (golint) strings.go:35:1:warning: exported function GetAgeString should have comment or be unexported (golint) url.go:8:6:warning: exported type UrlQueryReader should have comment or be unexported (golint) url.go:12:1:warning: exported function NewUrlQueryReader should have comment or be unexported (golint) url.go:23:1:warning: exported method UrlQueryReader.Get should have comment or be unexported (golint) url.go:32:1:warning: exported function JoinUrlFragments should have comment or be unexported (golint) validation.go:16:1:warning: exported function IsEmail should have comment or be unexported (golint)
6 years ago
// EncodePassword encodes a password using PBKDF2.
pkg/util: Check errors (#19832) * pkg/util: Check errors * pkg/services: DRY up code
6 years ago
func EncodePassword(password string, salt string) (string, error) {
pkg/util: Replace custom pbkdf2 implementation by maintained version (#19941)
6 years ago
newPasswd := pbkdf2.Key([]byte(password), []byte(salt), 10000, 50, sha256.New)
pkg/util: Check errors (#19832) * pkg/util: Check errors * pkg/services: DRY up code
6 years ago
return hex.EncodeToString(newPasswd), nil
Worked on login remember cookie, and redirect after login
10 years ago
}
pkg/util/*: Add missing function comments. See, $ gometalinter --vendor --deadline 10m --disable-all --enable=golint ./... encoding.go:15:1:warning: comment on exported function GetRandomString should be of the form "GetRandomString ..." (golint) encoding.go:30:1:warning: exported function EncodePassword should have comment or be unexported (golint) encoding.go:35:1:warning: comment on exported function EncodeMd5 should be of the form "EncodeMd5 ..." (golint) encoding.go:42:1:warning: comment on exported function PBKDF2 should be of the form "PBKDF2 ..." (golint) encoding.go:80:1:warning: exported function GetBasicAuthHeader should have comment or be unexported (golint) encoding.go:85:1:warning: exported function DecodeBasicAuthHeader should have comment or be unexported (golint) encoding.go:105:1:warning: exported function RandomHex should have comment or be unexported (golint) encryption.go:14:1:warning: exported function Decrypt should have comment or be unexported (golint) encryption.go:39:1:warning: exported function Encrypt should have comment or be unexported (golint) ip.go:7:1:warning: exported function SplitIpPort should have comment or be unexported (golint) json.go:3:6:warning: exported type DynMap should have comment or be unexported (golint) md5.go:22:1:warning: comment on exported function Md5SumString should be of the form "Md5SumString ..." (golint) strings.go:10:1:warning: exported function StringsFallback2 should have comment or be unexported (golint) strings.go:14:1:warning: exported function StringsFallback3 should have comment or be unexported (golint) strings.go:27:1:warning: exported function SplitString should have comment or be unexported (golint) strings.go:35:1:warning: exported function GetAgeString should have comment or be unexported (golint) url.go:8:6:warning: exported type UrlQueryReader should have comment or be unexported (golint) url.go:12:1:warning: exported function NewUrlQueryReader should have comment or be unexported (golint) url.go:23:1:warning: exported method UrlQueryReader.Get should have comment or be unexported (golint) url.go:32:1:warning: exported function JoinUrlFragments should have comment or be unexported (golint) validation.go:16:1:warning: exported function IsEmail should have comment or be unexported (golint)
6 years ago
// GetBasicAuthHeader returns a base64 encoded string from user and password.
Added basic auth to data source edit/create, add support for basic auth in data source proxy code, Closes #1510
10 years ago
func GetBasicAuthHeader(user string, password string) string {
var userAndPass = user + ":" + password
return "Basic " + base64.StdEncoding.EncodeToString([]byte(userAndPass))
}
Auth: You can now authenicate against api with username / password using basic auth, Closes #2218
10 years ago
pkg/util/*: Add missing function comments. See, $ gometalinter --vendor --deadline 10m --disable-all --enable=golint ./... encoding.go:15:1:warning: comment on exported function GetRandomString should be of the form "GetRandomString ..." (golint) encoding.go:30:1:warning: exported function EncodePassword should have comment or be unexported (golint) encoding.go:35:1:warning: comment on exported function EncodeMd5 should be of the form "EncodeMd5 ..." (golint) encoding.go:42:1:warning: comment on exported function PBKDF2 should be of the form "PBKDF2 ..." (golint) encoding.go:80:1:warning: exported function GetBasicAuthHeader should have comment or be unexported (golint) encoding.go:85:1:warning: exported function DecodeBasicAuthHeader should have comment or be unexported (golint) encoding.go:105:1:warning: exported function RandomHex should have comment or be unexported (golint) encryption.go:14:1:warning: exported function Decrypt should have comment or be unexported (golint) encryption.go:39:1:warning: exported function Encrypt should have comment or be unexported (golint) ip.go:7:1:warning: exported function SplitIpPort should have comment or be unexported (golint) json.go:3:6:warning: exported type DynMap should have comment or be unexported (golint) md5.go:22:1:warning: comment on exported function Md5SumString should be of the form "Md5SumString ..." (golint) strings.go:10:1:warning: exported function StringsFallback2 should have comment or be unexported (golint) strings.go:14:1:warning: exported function StringsFallback3 should have comment or be unexported (golint) strings.go:27:1:warning: exported function SplitString should have comment or be unexported (golint) strings.go:35:1:warning: exported function GetAgeString should have comment or be unexported (golint) url.go:8:6:warning: exported type UrlQueryReader should have comment or be unexported (golint) url.go:12:1:warning: exported function NewUrlQueryReader should have comment or be unexported (golint) url.go:23:1:warning: exported method UrlQueryReader.Get should have comment or be unexported (golint) url.go:32:1:warning: exported function JoinUrlFragments should have comment or be unexported (golint) validation.go:16:1:warning: exported function IsEmail should have comment or be unexported (golint)
6 years ago
// DecodeBasicAuthHeader decodes user and password from a basic auth header.
Auth: You can now authenicate against api with username / password using basic auth, Closes #2218
10 years ago
func DecodeBasicAuthHeader(header string) (string, string, error) {
var code string
parts := strings.SplitN(header, " ", 2)
if len(parts) == 2 && parts[0] == "Basic" {
code = parts[1]
}
decoded, err := base64.StdEncoding.DecodeString(code)
if err != nil {
return "", "", err
}
userAndPass := strings.SplitN(string(decoded), ":", 2)
if len(userAndPass) != 2 {
Chore: Fix issues found by staticcheck (#28802) * Fix linting issues Signed-off-by: Arve Knudsen <arve.knudsen@gmail.com>
5 years ago
return "", "", errors.New("invalid basic auth header")
Auth: You can now authenicate against api with username / password using basic auth, Closes #2218
10 years ago
}
return userAndPass[0], userAndPass[1], nil
}
utils
6 years ago
Update `RandomHex` code comment to reflect implementation (#63810)
2 years ago
// RandomHex returns a hex encoding of n random bytes.
utils
6 years ago
func RandomHex(n int) (string, error) {
bytes := make([]byte, n)
if _, err := rand.Read(bytes); err != nil {
return "", err
}
return hex.EncodeToString(bytes), nil
}
Auth Proxy: encoding of non-ASCII headers (#44797) * Decode auth proxy headers using URL encoding * Header encoding configuration via settings file * Rename configuration setting to headers_encoded * Quoted-printable encoding * Tests for AuthProxy * Fix encoding name * Remove authproxy init
3 years ago
// decodeQuotedPrintable decodes quoted-printable UTF-8 string
func DecodeQuotedPrintable(encodedValue string) string {
decodedBytes, err := io.ReadAll(quotedprintable.NewReader(strings.NewReader(encodedValue)))
if err != nil {
return encodedValue
}
return string(decodedBytes)
}