Merge 32e440bbff39422a15ae25627311a0efdf8b7a1c into d1b889456de3c98c22de24642b6f836a29da3140

2025-04-19 23:30:12 +08:00 · 2023-07-11 16:25:11 +07:00 · 2023-07-11 16:25:11 +07:00 · e1a2aec7df
commit e1a2aec7df
parent d1b889456d 32e440bbff
3 changed files with 89 additions and 1 deletions
--- a/README.md
+++ b/README.md
@ -253,6 +253,61 @@ func main() {
 }
 ```

+Example with Basic Auth Middleware in [gorilla/mux](https://pkg.go.dev/github.com/gorilla/mux):
+
+```go
+package main
+
+import (
+	"log"
+	"net/http"
+
+	"github.com/gorilla/mux"
+	"github.com/hibiken/asynq"
+	"github.com/hibiken/asynqmon"
+)
+
+func main() {
+	h := asynqmon.New(asynqmon.Options{
+		RootPath: "/monitoring", // RootPath specifies the root for asynqmon app
+		RedisConnOpt: asynq.RedisClientOpt{Addr: ":6379"},
+	})
+
+	r := mux.NewRouter()
+	r.PathPrefix(h.RootPath()).Handler(basicAuthMiddleware(u, p, h))
+
+	srv := &http.Server{
+		Handler: r,
+		Addr:    ":8080",
+	}
+
+	// Go to http://localhost:8080/monitoring to see asynqmon homepage.
+	log.Fatal(srv.ListenAndServe())
+}
+
+func basicAuthMiddleware(u, p string, next http.Handler) http.Handler {
+	var unauthorized = func(w http.ResponseWriter) {
+		w.Header().Set("WWW-Authenticate", `Basic realm="restricted", charset="UTF-8"`)
+		http.Error(w, http.StatusText(http.StatusUnauthorized), http.StatusUnauthorized)
+	}
+
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		username, password, ok := r.BasicAuth()
+		if !ok {
+			unauthorized(w)
+			return
+		}
+
+		if !(u == username && p == password) {
+			unauthorized(w)
+			return
+		}
+
+		next.ServeHTTP(w, r)
+	})
+}
+```
+
 Example with [labstack/echo](https://github.com/labstack/echo)):


--- a/example_test.go
+++ b/example_test.go
@ -17,3 +17,36 @@ func ExampleHTTPHandler() {
 	http.Handle(h.RootPath(), h)
 	log.Fatal(http.ListenAndServe(":8000", nil)) // visit localhost:8000/monitoring to see asynqmon homepage
 }
+
+func ExampleHTTPHandlerWithBasicAuthMidlleware() {
+
+	h := asynqmon.New(asynqmon.Options{
+		RootPath:     "/monitoring",
+		RedisConnOpt: asynq.RedisClientOpt{Addr: ":6379"},
+	})
+
+	http.Handle(h.RootPath(), basicAuthHandler("username", "password", h))
+	log.Fatal(http.ListenAndServe(":8000", nil)) // visit localhost:8000/monitoring to see asynqmon homepage
+}
+
+func basicAuthHandler(u, p string, next http.Handler) http.Handler {
+	var unauthorized = func(w http.ResponseWriter) {
+		w.Header().Set("WWW-Authenticate", `Basic realm="restricted", charset="UTF-8"`)
+		http.Error(w, http.StatusText(http.StatusUnauthorized), http.StatusUnauthorized)
+	}
+
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		username, password, ok := r.BasicAuth()
+		if !ok {
+			unauthorized(w)
+			return
+		}
+
+		if !(u == username && p == password) {
+			unauthorized(w)
+			return
+		}
+
+		next.ServeHTTP(w, r)
+	})
+}
--- a/ui/public/index.html
+++ b/ui/public/index.html
@ -31,7 +31,7 @@
      manifest.json provides metadata used when your web app is installed on a
      user's mobile device or desktop. See https://developers.google.com/web/fundamentals/web-app-manifest/
    -->
-    <link rel="manifest" href="%PUBLIC_URL%/manifest.json" />
+    <link rel="manifest" href="%PUBLIC_URL%/manifest.json" crossorigin="use-credentials" />
    <!--
      Notice the use of %PUBLIC_URL% in the tags above.
      It will be replaced with the URL of the `public` folder during the build.