1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
|
package main
import (
"0xacab.org/leap/vpnweb/pkg/auth/creds"
"crypto/tls"
"encoding/json"
"flag"
"fmt"
"io/ioutil"
"log"
"net/http"
"strings"
)
const authURI string = "%s:%s/3/auth"
const certURI string = "%s:%s/3/cert"
func formatCredentials(user, pass string) (string, error) {
c := creds.Credentials{User: user, Password: pass}
credJson, err := json.Marshal(c)
if err != nil {
return "", err
}
return string(credJson), nil
}
func getToken(credJson, host, port string) string {
http.DefaultTransport.(*http.Transport).TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
resp, err := http.Post(fmt.Sprintf(authURI, host, port), "text/json", strings.NewReader(credJson))
if err != nil {
log.Fatal("Error on auth request: ", err)
}
defer resp.Body.Close()
if resp.StatusCode == 401 {
log.Println("401 UNAUTHORIZED")
} else if resp.StatusCode == 503 {
log.Println("503 SERVICE UNAVAILABLE")
}
body, err := ioutil.ReadAll(resp.Body)
if err != nil {
log.Fatal("Cannot read response body")
}
return string(body)
}
func getCert(token, host, port string) string {
req, err := http.NewRequest("POST", fmt.Sprintf(certURI, host, port), strings.NewReader(""))
req.Header.Add("Authorization", fmt.Sprintf("Bearer %s", token))
http.DefaultTransport.(*http.Transport).TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
resp, err := http.DefaultClient.Do(req)
if err != nil {
log.Fatal("cannot read response body")
}
defer resp.Body.Close()
if resp.StatusCode == 401 {
log.Println("401 UNAUTHORIZED")
}
body, err := ioutil.ReadAll(resp.Body)
if err != nil {
log.Fatal("Cannot read response body")
}
return string(body)
}
func doAuthenticate(user, pass, host, port string) {
credJson, err := formatCredentials(user, pass)
if err != nil {
log.Fatal("Cannot encode credentials: ", err)
}
token := getToken(credJson, host, port)
log.Println("token:", token)
cert := getCert(token, host, port)
log.Println(cert)
}
func main() {
var host, port, user, pass string
flag.StringVar(&host, "host", "localhost", "Server to connect")
flag.StringVar(&port, "port", "8000", "port to connect")
flag.StringVar(&user, "user", "", "sip user to authenticate")
flag.StringVar(&pass, "pass", "", "sip password to authenticate")
flag.Parse()
log.Println("connect to", host, port, "with credentials", user, ":", pass)
doAuthenticate(user, pass, host, port)
}
|
