blob: 50bf7fff5b8b4e5d8c31844059939d742070a105 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
|
package secret
import (
"net/http"
)
const (
// This header carries the JWT token for gitlab-rails
RequestHeader = "Gitlab-Workhorse-Api-Request"
)
type roundTripper struct {
next http.RoundTripper
version string
}
// NewRoundTripper creates a RoundTripper that adds the JWT token header to a
// request. This is used to verify that a request came from workhorse
func NewRoundTripper(next http.RoundTripper, version string) http.RoundTripper {
return &roundTripper{next: next, version: version}
}
func (r *roundTripper) RoundTrip(req *http.Request) (*http.Response, error) {
tokenString, err := JWTTokenString(DefaultClaims)
if err != nil {
return nil, err
}
// Set a custom header for the request. This can be used in some
// configurations (Passenger) to solve auth request routing problems.
req.Header.Set("Gitlab-Workhorse", r.version)
req.Header.Set(RequestHeader, tokenString)
return r.next.RoundTrip(req)
}
|
