24w06b

2026-02-03 08:11:11 +08:00 · 2024-09-27 15:18:47 +08:00 · 2024-09-27 15:18:47 +08:00 · 178d5f14c2
commit 178d5f14c2
parent bb4e2d8ae7
3 changed files with 27 additions and 13 deletions
--- a/auth/auth.go
+++ b/auth/auth.go
@ -7,26 +7,28 @@ import (
 	"github.com/gin-gonic/gin"
 )

-var (
-	cfg *config.Config
-	log = logger.Logw
-)
+var logw = logger.Logw

-func AuthHandler(c *gin.Context) bool {
+func AuthHandler(c *gin.Context, cfg *config.Config) bool {
 	// 如果身份验证未启用，直接返回 true
 	if !cfg.Auth {
-		log("auth PASS")
+		logw("auth PASS")
 		return true
 	}

 	// 获取 auth_token 参数
 	authToken := c.Query("auth_token")
-	log("auth_token: ", authToken)
+	log("auth_token received: %s", authToken)

 	// 验证 token
+	if authToken == "" {
+		logw("auth FAIL: no auth_token provided")
+		return false
+	}
+
 	isValid := authToken == cfg.AuthToken
 	if !isValid {
-		log("auth FAIL")
+		logw("auth FAIL: invalid auth_token")
 	}

 	return isValid
--- a/main.go
+++ b/main.go
@ -97,11 +97,23 @@ func api(c *gin.Context) {
 }

 func AuthHandler(c *gin.Context) bool {
-	if cfg.Auth {
-		authToken := c.Query("auth_token")
-		return authToken == cfg.AuthToken
+	// 如果身份验证未启用，直接返回 true
+	if !cfg.Auth {
+		logw("auth PASS")
+		return true
 	}
-	return true
+
+	// 获取 auth_token 参数
+	authToken := c.Query("auth_token")
+	logw("auth_token: ", authToken)
+
+	// 验证 token
+	isValid := authToken == cfg.AuthToken
+	if !isValid {
+		logw("auth FAIL")
+	}
+
+	return isValid
 }

 func noRouteHandler(config *config.Config) gin.HandlerFunc {
--- a/proxy/.proxy.go
+++ b/proxy/.proxy.go
@ -45,7 +45,7 @@ func NoRouteHandler(cfg *config.Config) gin.HandlerFunc {
 			rawPath = strings.Replace(rawPath, "/blob/", "/raw/", 1)
 		}

-		if !auth.AuthHandler(c) {
+		if !auth.AuthHandler(c, cfg) {
 			c.AbortWithStatusJSON(401, gin.H{"error": "Unauthorized"})
 			logw("Unauthorized request: %s", rawPath)
 			return