preliminary web support for auth (#26)

Some caveats: * it doesn't record the peer IP yet, which makes it harder to verify sessions are valid. This is a little annoying to do in hyper now (see hyperium/hyper#1410). The direct peer might not be what we want right now anyway because there's no TLS support yet (see #27). In the meantime, the sane way to expose Moonfire NVR to the Internet is via a proxy server, and recording the proxy's IP is not useful. Maybe better to interpret a RFC 7239 Forwarded header (and/or the older X-Forwarded-{For,Proto} headers). * it doesn't ever use Secure (https-only) cookies, for a similar reason. It's not safe to use even with a tls proxy until this is fixed. * there's no "moonfire-nvr config" support for inspecting/invalidating sessions yet. * in debug builds, logging in is crazy slow. See libpasta/libpasta#9. Some notes: * I removed the Javascript "no-use-before-defined" lint, as some of the functions form a cycle. * Fixed #20 along the way. I needed to add support for properly returning non-OK HTTP statuses to signal unauthorized and such. * I removed the Access-Control-Allow-Origin header support, which was at odds with the "SameSite=lax" in the cookie header. The "yarn start" method for running a local proxy server accomplishes the same thing as the Access-Control-Allow-Origin support in a more secure manner.
scottlamb · Nov 27, 2018 · 422cd2a · 422cd2a
1 parent 679370c
commit 422cd2a
Show file tree

Hide file tree

Showing 21 changed files with 923 additions and 212 deletions.
diff --git a/.eslintrc.json b/.eslintrc.json
@@ -17,6 +17,5 @@
       "no-shadow-restricted-names": ["error"],
       "no-undef": ["error", {"typeof": true}],
       "no-unused-vars": ["error", { "vars": "all", "args": "after-used", "ignoreRestSiblings": false }],
-      "no-use-before-define": ["error", { "functions": true, "classes": true }]
     }
 }
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/Cargo.toml b/Cargo.toml
@@ -17,6 +17,7 @@ bundled = ["rusqlite/bundled"]
 members = ["base", "db", "ffmpeg"]
 
 [dependencies]
+base64 = "0.9.0"
 bytes = "0.4.6"
 byteorder = "1.0"
 docopt = "1.0"
@@ -30,6 +31,7 @@ hyper = "0.12.9"
 lazy_static = "1.0"
 libc = "0.2"
 log = { version = "0.4", features = ["release_max_level_info"] }
+memchr = "2.0.2"
 memmap = "0.7"
 moonfire-base = { path = "base" }
 moonfire-db = { path = "db" }
@@ -39,6 +41,7 @@ openssl = "0.10"
 parking_lot = { version = "0.6", features = [] }
 reffers = "0.5.1"
 regex = "1.0"
+ring = "0.12.1"
 rusqlite = "0.14"
 serde = "1.0"
 serde_derive = "1.0"

diff --git a/README.md b/README.md
@@ -12,8 +12,8 @@ less than 10% of the machine's total CPU.
 
 So far, the web interface is basic: a filterable list of video segments,
 with support for trimming them to arbitrary time ranges. No scrub bar yet.
-There's also no support for motion detection, no authentication, and no config
-UI.
+There's also no support for motion detection, no https/SSL/TLS support (you'll
+need a proxy server), and no config UI.
 
 ![screenshot](screenshot.png)
 

diff --git a/db/Cargo.toml b/db/Cargo.toml
@@ -11,12 +11,13 @@ nightly = []
 path = "lib.rs"
 
 [dependencies]
+base64 = "0.9.0"
 blake2-rfc = "0.2.18"
 failure = "0.1.1"
 fnv = "1.0"
 lazy_static = "1.0"
 libc = "0.2"
-libpasta = { git = "https://github.com/scottlamb/libpasta", branch = "pr-default-ring" }
+libpasta = "0.1.0-rc2"
 log = "0.4"
 lru-cache = "0.1"
 moonfire-base = { path = "../base" }