1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
|
using System;
using Microsoft.AspNetCore.Mvc;
using Microsoft.Extensions.Logging;
using RabbitMqAuthBackendHttp.Requests;
namespace RabbitMqAuthBackendHttp.Controllers
{
[Route("[controller]")]
[ApiController]
public class AuthController : ControllerBase
{
private readonly ILogger<AuthController> _logger;
public AuthController(ILogger<AuthController> logger)
{
_logger = logger;
}
[HttpGet]
public ActionResult<string> Get()
{
return "AuthController";
}
[Route("user")]
[HttpPost]
public IActionResult CheckUser([FromForm]UserAuthRequest request)
{
var tags = new [] {"administrator", "management"};
try
{
var userlog = string.Format("user : {0}, password : {1}", request.UserName, request.Password);
_logger.LogInformation(userlog);
if (request.UserName == "authuser") //Sample check you can put your custom logic over here
return AuthResult.Deny();
}
catch (Exception ex)
{
//check or log error
}
return AuthResult.Allow(tags);
}
[Route("vhost")]
[HttpPost]
public IActionResult CheckVhost([FromForm]VhostAuthRequest request)
{
try
{
var userlog = string.Format("user : {0}, ip : {1}", request.UserName, request.Ip);
_logger.LogInformation(userlog);
if (request.UserName == "authuser") //Sample checks you can put your custom logic over here
return AuthResult.Deny();
}
catch (Exception ex)
{
//check or log error
}
return AuthResult.Allow();
}
[Route("resource")]
[HttpPost]
public IActionResult CheckResource([FromForm]ResourceAuthRequest request)
{
try
{
var userlog = $"user : {request.UserName}, vhost : {request.Vhost}, resource : {request.Resource}, " +
$"name : {request.Name}, permission : {request.Permission}";
_logger.LogInformation(userlog);
if (request.UserName == "authuser") //Sample checks you can put your custom logic over here
return AuthResult.Deny();
}
catch (Exception ex)
{
//check or log error
}
return AuthResult.Allow();
}
[Route("topic")]
[HttpPost]
public IActionResult CheckTopic([FromForm]TopicAuthRequest request)
{
try
{
var userlog = $"user : {request.UserName}, vhost : {request.Vhost}, resource : {request.Resource}, " +
$"name : {request.Name}, routing key: {request.RoutingKey}, permission : {request.Permission}";
_logger.LogInformation(userlog);
if (request.UserName == "authuser") //Sample checks you can put your custom logic over here
return AuthResult.Deny();
}
catch (Exception ex)
{
//check or log error
}
return AuthResult.Allow();
}
}
}
|