| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 |
- package auth
- import (
- "errors"
- "github.com/grafana/grafana/pkg/bus"
- m "github.com/grafana/grafana/pkg/models"
- "github.com/grafana/grafana/pkg/setting"
- "github.com/grafana/grafana/pkg/util"
- )
- var (
- ErrInvalidCredentials = errors.New("Invalid Username or Password")
- )
- type AuthenticateUserQuery struct {
- Username string
- Password string
- User *m.User
- }
- func init() {
- bus.AddHandler("auth", AuthenticateUser)
- }
- func AuthenticateUser(query *AuthenticateUserQuery) error {
- err := loginUsingGrafanaDB(query)
- if err == nil || err != ErrInvalidCredentials {
- return err
- }
- if setting.LdapEnabled {
- for _, server := range ldapServers {
- auther := NewLdapAuthenticator(server)
- err = auther.login(query)
- if err == nil || err != ErrInvalidCredentials {
- return err
- }
- }
- }
- return err
- }
- func loginUsingGrafanaDB(query *AuthenticateUserQuery) error {
- userQuery := m.GetUserByLoginQuery{LoginOrEmail: query.Username}
- if err := bus.Dispatch(&userQuery); err != nil {
- if err == m.ErrUserNotFound {
- return ErrInvalidCredentials
- }
- return err
- }
- user := userQuery.Result
- passwordHashed := util.EncodePassword(query.Password, user.Salt)
- if passwordHashed != user.Password {
- return ErrInvalidCredentials
- }
- query.User = user
- return nil
- }
|
