Add MutualTlsUser request guard

rwf2 · Jun 25, 2018 · 3a2bd4b · 3a2bd4b
1 parent df77594
commit 3a2bd4b
Show file tree

Hide file tree

Showing 3 changed files with 31 additions and 0 deletions.
diff --git a/core/http/src/lib.rs b/core/http/src/lib.rs
@@ -27,6 +27,9 @@ pub mod uri;
 #[cfg(feature = "tls")]
 pub mod tls;
 
+#[cfg(feature = "tls")]
+pub mod mtls;
+
 #[macro_use]
 mod docify;
 #[macro_use]

diff --git a/core/http/src/mtls.rs b/core/http/src/mtls.rs
@@ -0,0 +1,13 @@
+use tls::Certificate;
+
+#[derive(Debug)]
+pub struct MutualTlsUser {
+    peer_certs: Vec<Certificate>,
+}
+
+impl MutualTlsUser {
+    /// Get the common name
+    pub fn name(&self) -> String {
+        unimplemented!();
+    }
+}
diff --git a/core/lib/src/request/from_request.rs b/core/lib/src/request/from_request.rs
@@ -8,6 +8,8 @@ use outcome::Outcome::*;
 
 use http::{Status, ContentType, Accept, Method, Cookies};
 use http::uri::Uri;
+#[cfg(feature = "tls")]
+use http::mtls::MutualTlsUser;
 
 /// Type alias for the `Outcome` of a `FromRequest` conversion.
 pub type Outcome<S, E> = outcome::Outcome<S, (Status, E), ()>;
@@ -312,3 +314,16 @@ impl<'a, 'r, T: FromRequest<'a, 'r>> FromRequest<'a, 'r> for Option<T> {
     }
 }
 
+#[cfg(feature = "tls")]
+impl <'a, 'r> FromRequest<'a, 'r> for MutualTlsUser {
+    type Error = ();
+
+    fn from_request(request: &'a Request<'r>) -> Outcome<Self, Self::Error> {
+        match request.get_peer_certificates() {
+            Some(certs) => Success(MutualTlsUser {
+                peer_certs: certs
+            }),
+            None => Forward(())
+        }
+    }
+}