2020-10-12 22:34:52 +02:00
|
|
|
// +build ignore
|
2020-09-27 23:39:44 +02:00
|
|
|
|
|
|
|
package main
|
|
|
|
|
|
|
|
import (
|
2021-02-21 00:30:49 +01:00
|
|
|
"context"
|
2020-11-25 20:24:49 +01:00
|
|
|
"crypto/sha512"
|
2020-09-27 23:39:44 +02:00
|
|
|
"crypto/x509"
|
|
|
|
"fmt"
|
|
|
|
"log"
|
2020-11-01 22:25:59 +01:00
|
|
|
"time"
|
2020-09-27 23:39:44 +02:00
|
|
|
|
2020-10-28 04:35:22 +01:00
|
|
|
"git.sr.ht/~adnano/go-gemini"
|
2021-01-15 03:23:13 +01:00
|
|
|
"git.sr.ht/~adnano/go-gemini/certificate"
|
2020-09-27 23:39:44 +02:00
|
|
|
)
|
|
|
|
|
2020-11-25 20:24:49 +01:00
|
|
|
type User struct {
|
|
|
|
Name string
|
2020-09-27 23:39:44 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
var (
|
2020-11-25 20:24:49 +01:00
|
|
|
// Map of certificate hashes to users
|
|
|
|
users = map[string]*User{}
|
2020-09-27 23:39:44 +02:00
|
|
|
)
|
|
|
|
|
|
|
|
func main() {
|
2021-02-21 00:30:49 +01:00
|
|
|
certificates := &certificate.Store{}
|
|
|
|
certificates.Register("localhost")
|
|
|
|
if err := certificates.Load("/var/lib/gemini/certs"); err != nil {
|
|
|
|
log.Fatal(err)
|
|
|
|
}
|
|
|
|
|
2021-03-15 20:44:35 +01:00
|
|
|
mux := &gemini.Mux{}
|
2020-11-25 20:24:49 +01:00
|
|
|
mux.HandleFunc("/", profile)
|
|
|
|
mux.HandleFunc("/username", changeUsername)
|
2020-10-21 23:47:34 +02:00
|
|
|
|
2021-02-21 00:30:49 +01:00
|
|
|
server := &gemini.Server{
|
|
|
|
Handler: mux,
|
|
|
|
ReadTimeout: 30 * time.Second,
|
|
|
|
WriteTimeout: 1 * time.Minute,
|
2021-02-23 14:43:41 +01:00
|
|
|
GetCertificate: certificates.Get,
|
2020-11-01 22:25:59 +01:00
|
|
|
}
|
2020-09-27 23:39:44 +02:00
|
|
|
|
2021-02-21 06:26:30 +01:00
|
|
|
if err := server.ListenAndServe(context.Background()); err != nil {
|
2020-09-27 23:39:44 +02:00
|
|
|
log.Fatal(err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-11-25 20:24:49 +01:00
|
|
|
func fingerprint(cert *x509.Certificate) string {
|
|
|
|
b := sha512.Sum512(cert.Raw)
|
|
|
|
return string(b[:])
|
2020-09-27 23:39:44 +02:00
|
|
|
}
|
|
|
|
|
2021-02-21 00:30:49 +01:00
|
|
|
func profile(ctx context.Context, w gemini.ResponseWriter, r *gemini.Request) {
|
2021-02-24 15:22:01 +01:00
|
|
|
tls := r.TLS()
|
|
|
|
if len(tls.PeerCertificates) == 0 {
|
2021-02-17 19:39:18 +01:00
|
|
|
w.WriteHeader(gemini.StatusCertificateRequired, "Certificate required")
|
2020-10-21 23:47:34 +02:00
|
|
|
return
|
|
|
|
}
|
2021-02-24 15:22:01 +01:00
|
|
|
fingerprint := fingerprint(tls.PeerCertificates[0])
|
2020-11-25 20:24:49 +01:00
|
|
|
user, ok := users[fingerprint]
|
2020-10-21 23:47:34 +02:00
|
|
|
if !ok {
|
2020-11-25 20:24:49 +01:00
|
|
|
user = &User{}
|
|
|
|
users[fingerprint] = user
|
2020-10-21 23:47:34 +02:00
|
|
|
}
|
2020-11-25 20:24:49 +01:00
|
|
|
fmt.Fprintln(w, "Username:", user.Name)
|
|
|
|
fmt.Fprintln(w, "=> /username Change username")
|
2020-09-27 23:39:44 +02:00
|
|
|
}
|
|
|
|
|
2021-02-21 00:30:49 +01:00
|
|
|
func changeUsername(ctx context.Context, w gemini.ResponseWriter, r *gemini.Request) {
|
2021-02-24 15:22:01 +01:00
|
|
|
tls := r.TLS()
|
|
|
|
if len(tls.PeerCertificates) == 0 {
|
2021-02-17 19:39:18 +01:00
|
|
|
w.WriteHeader(gemini.StatusCertificateRequired, "Certificate required")
|
2020-10-21 23:47:34 +02:00
|
|
|
return
|
|
|
|
}
|
2020-09-27 23:39:44 +02:00
|
|
|
|
2020-12-18 06:25:06 +01:00
|
|
|
username, err := gemini.QueryUnescape(r.URL.RawQuery)
|
|
|
|
if err != nil || username == "" {
|
2021-02-17 19:39:18 +01:00
|
|
|
w.WriteHeader(gemini.StatusInput, "Username")
|
2020-10-21 23:47:34 +02:00
|
|
|
return
|
|
|
|
}
|
2021-02-24 15:22:01 +01:00
|
|
|
fingerprint := fingerprint(tls.PeerCertificates[0])
|
2020-12-18 03:10:53 +01:00
|
|
|
user, ok := users[fingerprint]
|
|
|
|
if !ok {
|
|
|
|
user = &User{}
|
|
|
|
users[fingerprint] = user
|
|
|
|
}
|
|
|
|
user.Name = username
|
2021-02-17 19:39:18 +01:00
|
|
|
w.WriteHeader(gemini.StatusRedirect, "/")
|
2020-09-27 23:39:44 +02:00
|
|
|
}
|