2020-10-12 22:34:52 +02:00
|
|
|
// +build ignore
|
2020-09-27 23:39:44 +02:00
|
|
|
|
|
|
|
package main
|
|
|
|
|
|
|
|
import (
|
2020-11-25 20:24:49 +01:00
|
|
|
"crypto/sha512"
|
2020-11-01 22:25:59 +01:00
|
|
|
"crypto/tls"
|
2020-09-27 23:39:44 +02:00
|
|
|
"crypto/x509"
|
2020-11-03 05:11:46 +01:00
|
|
|
"crypto/x509/pkix"
|
2020-09-27 23:39:44 +02:00
|
|
|
"fmt"
|
|
|
|
"log"
|
2020-11-01 22:25:59 +01:00
|
|
|
"time"
|
2020-09-27 23:39:44 +02:00
|
|
|
|
2020-10-28 04:35:22 +01:00
|
|
|
"git.sr.ht/~adnano/go-gemini"
|
2021-01-15 03:23:13 +01:00
|
|
|
"git.sr.ht/~adnano/go-gemini/certificate"
|
2020-09-27 23:39:44 +02:00
|
|
|
)
|
|
|
|
|
2020-11-25 20:24:49 +01:00
|
|
|
type User struct {
|
|
|
|
Name string
|
2020-09-27 23:39:44 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
var (
|
2020-11-25 20:24:49 +01:00
|
|
|
// Map of certificate hashes to users
|
|
|
|
users = map[string]*User{}
|
2020-09-27 23:39:44 +02:00
|
|
|
)
|
|
|
|
|
|
|
|
func main() {
|
2020-10-28 04:35:22 +01:00
|
|
|
var mux gemini.ServeMux
|
2020-11-25 20:24:49 +01:00
|
|
|
mux.HandleFunc("/", profile)
|
|
|
|
mux.HandleFunc("/username", changeUsername)
|
2020-10-21 23:47:34 +02:00
|
|
|
|
2020-10-28 04:35:22 +01:00
|
|
|
var server gemini.Server
|
2020-10-28 19:59:45 +01:00
|
|
|
if err := server.Certificates.Load("/var/lib/gemini/certs"); err != nil {
|
2020-10-12 06:13:24 +02:00
|
|
|
log.Fatal(err)
|
|
|
|
}
|
2021-01-25 16:59:50 +01:00
|
|
|
server.GetCertificate = func(hostname string) (tls.Certificate, error) {
|
2021-01-15 03:23:13 +01:00
|
|
|
return certificate.Create(certificate.CreateOptions{
|
2020-11-03 05:11:46 +01:00
|
|
|
Subject: pkix.Name{
|
|
|
|
CommonName: hostname,
|
|
|
|
},
|
2020-11-01 22:25:59 +01:00
|
|
|
DNSNames: []string{hostname},
|
|
|
|
Duration: time.Hour,
|
|
|
|
})
|
|
|
|
}
|
2021-02-18 02:35:27 +01:00
|
|
|
server.Handler = &mux
|
2020-09-27 23:39:44 +02:00
|
|
|
|
|
|
|
if err := server.ListenAndServe(); err != nil {
|
|
|
|
log.Fatal(err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-11-25 20:24:49 +01:00
|
|
|
func fingerprint(cert *x509.Certificate) string {
|
|
|
|
b := sha512.Sum512(cert.Raw)
|
|
|
|
return string(b[:])
|
2020-09-27 23:39:44 +02:00
|
|
|
}
|
|
|
|
|
2021-02-09 15:45:10 +01:00
|
|
|
func profile(w gemini.ResponseWriter, r *gemini.Request) {
|
2021-02-16 17:26:09 +01:00
|
|
|
if len(r.TLS.PeerCertificates) == 0 {
|
2021-02-17 19:39:18 +01:00
|
|
|
w.WriteHeader(gemini.StatusCertificateRequired, "Certificate required")
|
2020-10-21 23:47:34 +02:00
|
|
|
return
|
|
|
|
}
|
2021-02-16 17:26:09 +01:00
|
|
|
fingerprint := fingerprint(r.TLS.PeerCertificates[0])
|
2020-11-25 20:24:49 +01:00
|
|
|
user, ok := users[fingerprint]
|
2020-10-21 23:47:34 +02:00
|
|
|
if !ok {
|
2020-11-25 20:24:49 +01:00
|
|
|
user = &User{}
|
|
|
|
users[fingerprint] = user
|
2020-10-21 23:47:34 +02:00
|
|
|
}
|
2020-11-25 20:24:49 +01:00
|
|
|
fmt.Fprintln(w, "Username:", user.Name)
|
|
|
|
fmt.Fprintln(w, "=> /username Change username")
|
2020-09-27 23:39:44 +02:00
|
|
|
}
|
|
|
|
|
2021-02-09 15:45:10 +01:00
|
|
|
func changeUsername(w gemini.ResponseWriter, r *gemini.Request) {
|
2021-02-16 17:26:09 +01:00
|
|
|
if len(r.TLS.PeerCertificates) == 0 {
|
2021-02-17 19:39:18 +01:00
|
|
|
w.WriteHeader(gemini.StatusCertificateRequired, "Certificate required")
|
2020-10-21 23:47:34 +02:00
|
|
|
return
|
|
|
|
}
|
2020-09-27 23:39:44 +02:00
|
|
|
|
2020-12-18 06:25:06 +01:00
|
|
|
username, err := gemini.QueryUnescape(r.URL.RawQuery)
|
|
|
|
if err != nil || username == "" {
|
2021-02-17 19:39:18 +01:00
|
|
|
w.WriteHeader(gemini.StatusInput, "Username")
|
2020-10-21 23:47:34 +02:00
|
|
|
return
|
|
|
|
}
|
2021-02-16 17:26:09 +01:00
|
|
|
fingerprint := fingerprint(r.TLS.PeerCertificates[0])
|
2020-12-18 03:10:53 +01:00
|
|
|
user, ok := users[fingerprint]
|
|
|
|
if !ok {
|
|
|
|
user = &User{}
|
|
|
|
users[fingerprint] = user
|
|
|
|
}
|
|
|
|
user.Name = username
|
2021-02-17 19:39:18 +01:00
|
|
|
w.WriteHeader(gemini.StatusRedirect, "/")
|
2020-09-27 23:39:44 +02:00
|
|
|
}
|