WIP

Author: Snawoot

auth/auth.go

@@ -36,6 +36,8 @@ func NewAuth(paramstr string, logger *clog.CondLogger) (Auth, error) {
 		return NewRedisAuth(url, true, logger)
 	case "none":
 		return NoAuth{}, nil
+	case "reject-http", "reject-https":
+		return NewRejectHTTPAuth(url, logger)
 	default:
 		return nil, errors.New("Unknown auth scheme")
 	}

auth/reject.go

@@ -0,0 +1,43 @@
+package auth
+
+import (
+	"context"
+	"net/http"
+	"net/http/httputil"
+	"net/url"
+	"strings"
+
+	clog "github.com/SenseUnit/dumbproxy/log"
+)
+
+type RejectHTTPAuth struct {
+	proxy *httputil.ReverseProxy
+}
+
+func NewRejectHTTPAuth(u *url.URL, logger *clog.CondLogger) (*RejectHTTPAuth, error) {
+	target := *u
+	scheme, _ := strings.CutPrefix(strings.ToLower(u.Scheme), "reject-")
+	target.Scheme = scheme
+	return &RejectHTTPAuth{
+		proxy: &httputil.ReverseProxy{
+			Rewrite: func(r *httputil.ProxyRequest) {
+				// r.SetURL(&target)
+				// r.Out.Host = r.In.Host // if desired
+				r.Out.URL = &target
+				r.Out.Host = ""
+			},
+		},
+	}, nil
+}
+
+func (a *RejectHTTPAuth) Validate(ctx context.Context, w http.ResponseWriter, r *http.Request) (string, bool) {
+	r = r.Clone(ctx)
+	a.proxy.ServeHTTP(w, r)
+	return "", false
+}
+
+func (_ *RejectHTTPAuth) Valid(_, _, _ string) bool {
+	return false
+}
+
+func (_ *RejectHTTPAuth) Stop() {}