24w06b

auth/auth.go

@@ -7,26 +7,28 @@ import (
 	"github.com/gin-gonic/gin"
 )
 
-var (
-	cfg *config.Config
-	log = logger.Logw
-)
+var logw = logger.Logw
 
-func AuthHandler(c *gin.Context) bool {
+func AuthHandler(c *gin.Context, cfg *config.Config) bool {
 	// 如果身份验证未启用，直接返回 true
 	if !cfg.Auth {
-		log("auth PASS")
+		logw("auth PASS")
 		return true
 	}
 
 	// 获取 auth_token 参数
 	authToken := c.Query("auth_token")
-	log("auth_token: ", authToken)
+	log("auth_token received: %s", authToken)
 
 	// 验证 token
+	if authToken == "" {
+		logw("auth FAIL: no auth_token provided")
+		return false
+	}
+
 	isValid := authToken == cfg.AuthToken
 	if !isValid {
-		log("auth FAIL")
+		logw("auth FAIL: invalid auth_token")
 	}
 
 	return isValid

main.go

@@ -97,13 +97,25 @@ func api(c *gin.Context) {
 }
 
 func AuthHandler(c *gin.Context) bool {
-	if cfg.Auth {
-		authToken := c.Query("auth_token")
-		return authToken == cfg.AuthToken
-	}
+	// 如果身份验证未启用，直接返回 true
+	if !cfg.Auth {
+		logw("auth PASS")
 		return true
 	}
 
+	// 获取 auth_token 参数
+	authToken := c.Query("auth_token")
+	logw("auth_token: ", authToken)
+
+	// 验证 token
+	isValid := authToken == cfg.AuthToken
+	if !isValid {
+		logw("auth FAIL")
+	}
+
+	return isValid
+}
+
 func noRouteHandler(config *config.Config) gin.HandlerFunc {
 	return func(c *gin.Context) {
 		rawPath := strings.TrimPrefix(c.Request.URL.RequestURI(), "/")

proxy/.proxy.go

@@ -45,7 +45,7 @@ func NoRouteHandler(cfg *config.Config) gin.HandlerFunc {
 			rawPath = strings.Replace(rawPath, "/blob/", "/raw/", 1)
 		}
 
-		if !auth.AuthHandler(c) {
+		if !auth.AuthHandler(c, cfg) {
 			c.AbortWithStatusJSON(401, gin.H{"error": "Unauthorized"})
 			logw("Unauthorized request: %s", rawPath)
 			return