mirrors/git-pages
1
0
Fork 0
mirror of https://codeberg.org/git-pages/git-pages.git synced 2026-05-14 11:11:35 +00:00
Code Issues Packages Projects Releases Wiki Activity

Process IDNA host names.

Browse Source
This commit is contained in:
Catherine
2025-12-07 19:28:05 +00:00
parent 8d574e5e7d
commit 8fa986015d
1 changed files with 10 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
src/auth.go
View File

@@ -12,6 +12,8 @@ import (
"slices"
"strings"
"time"
"golang.org/x/net/idna"
)
type AuthError struct {
@@ -42,13 +44,19 @@ func authorizeInsecure(r *http.Request) *Authorization {
return nil
}
var idnaProfile = idna.New(idna.MapForLookup(), idna.BidiRule())
func GetHost(r *http.Request) (string, error) {
// FIXME: handle IDNA
host, _, err := net.SplitHostPort(r.Host)
if err != nil {
// dirty but the go stdlib doesn't have a "split port if present" function
host = r.Host
}
// this also rejects invalid characters and labels
host, err = idnaProfile.ToASCII(host)
if err != nil {
return "", AuthError{http.StatusBadRequest,
fmt.Sprintf("malformed host name %q", host)}
}
if strings.HasPrefix(host, ".") {
return "", AuthError{http.StatusBadRequest,
fmt.Sprintf("host name %q is reserved", host)}