upstream/webhookd
1
0
Fork 0
mirror of https://github.com/ncarlier/webhookd.git synced 2025-04-07 20:41:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
0e2f58012d
webhookd/pkg/middleware/signature.go
Nicolas Carlier 0e2f58012d feat(signature): multi entries for a PEM file
2020-03-15 23:10:51 +00:00

37 lines
929 B
Go
Raw Blame History

package middleware
import (
"net/http"
"github.com/go-fed/httpsig"
"github.com/ncarlier/webhookd/pkg/pubkey"
)
// HTTPSignature is a middleware to checks HTTP request signature
func HTTPSignature(trustStore pubkey.TrustStore) Middleware {
return func(next http.Handler) http.Handler {
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
verifier, err := httpsig.NewVerifier(r)
if err != nil {
w.WriteHeader(400)
w.Write([]byte("invalid HTTP signature: " + err.Error()))
return
}
pubKeyID := verifier.KeyId()
entry := trustStore.Get(pubKeyID)
if entry == nil {
w.WriteHeader(400)
w.Write([]byte("invalid HTTP signature: " + err.Error()))
return
}
err = verifier.Verify(entry.Pubkey, entry.Algorythm)
if err != nil {
w.WriteHeader(400)
w.Write([]byte("invalid HTTP signature: " + err.Error()))
return
}
next.ServeHTTP(w, r)
})
}
}
Reference in New Issue View Git Blame Copy Permalink