oyd
/
minio
6
1
Fork 0
Code Issues Pull Requests Releases Wiki Activity

use jwt instead of basicAuth for webEnv (#10246)

Browse Source
master
Harshavardhana 4 years ago committed by GitHub
parent 6914b2c99d
commit 900eebb9a4
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 14 additions and 2 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 16
      pkg/env/web_env.go

16
pkg/env/web_env.go vendored
Unescape View File

@ -30,6 +30,8 @@ import (
"os"
"regexp"
"time"
"github.com/dgrijalva/jwt-go"
)
const (
@ -96,10 +98,20 @@ func fetchEnvHTTP(envKey string, u *url.URL) (string, error) {
return "", err
}
if username != "" && password != "" {
req.SetBasicAuth(username, password)
claims := &jwt.StandardClaims{
ExpiresAt: int64(15 * time.Minute),
Issuer: username,
Subject: envKey,
}
token := jwt.NewWithClaims(jwt.SigningMethodHS512, claims)
ss, err := token.SignedString([]byte(password))
if err != nil {
return "", err
}
req.Header.Set("Authorization", "Bearer "+ss)
clnt := &http.Client{
Transport: &http.Transport{
Proxy: http.ProxyFromEnvironment,

Write Preview
Loading…
Cancel
Save