admin/gluetun
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(httpproxy): log credentials sent on mismatch

Browse Source
This commit is contained in:
Quentin McGaw
2022-10-02 09:31:03 +00:00
parent e5be20d719
commit cb804577a9
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
internal/httpproxy/auth.go
View File

@@ -2,6 +2,7 @@ package httpproxy
import ( import (
"encoding/base64" "encoding/base64"
"fmt"
"net/http" "net/http"
"strings" "strings"
) )
@@ -32,7 +33,8 @@ func (h *handler) isAuthorized(responseWriter http.ResponseWriter, request *http
return false return false
} }
if h.username != usernamePassword[0] || h.password != usernamePassword[1] { if h.username != usernamePassword[0] || h.password != usernamePassword[1] {
h.logger.Info("Username or password mismatch from " + request.RemoteAddr) h.logger.Info(fmt.Sprintf("Username (%q) or password (%q) mismatch from %s",
usernamePassword[0], usernamePassword[1], request.RemoteAddr))
h.logger.Debug("username provided \"" + usernamePassword[0] + h.logger.Debug("username provided \"" + usernamePassword[0] +
"\" and password provided \"" + usernamePassword[1] + "\"") "\" and password provided \"" + usernamePassword[1] + "\"")
responseWriter.WriteHeader(http.StatusUnauthorized) responseWriter.WriteHeader(http.StatusUnauthorized)