From 02e207347b437bb4127ef0d1c16aa43a29a42a59 Mon Sep 17 00:00:00 2001
From: Devaev Maxim <mdevaev@gmail.com>
Date: Sun, 30 Aug 2020 21:12:13 +0300
Subject: [PATCH] supported Authorization header

---
 kvmd/apps/kvmd/api/auth.py | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/kvmd/apps/kvmd/api/auth.py b/kvmd/apps/kvmd/api/auth.py
index 93d20ffe..cdbeb0a6 100644
--- a/kvmd/apps/kvmd/api/auth.py
+++ b/kvmd/apps/kvmd/api/auth.py
@@ -20,6 +20,8 @@
 # ========================================================================== #
 
 
+import base64
+
 from aiohttp.web import Request
 from aiohttp.web import Response
 
@@ -59,6 +61,18 @@ async def check_request_auth(auth_manager: AuthManager, exposed: HttpExposed, re
             set_request_auth_info(request, f"{user} (token)")
             return
 
+        elif (basic_auth := request.headers.get("Authorization", "")):
+            if basic_auth[:6].lower() == "basic ":
+                try:
+                    (user, passwd) = base64.b64decode(basic_auth[6:]).decode("utf-8").split(":")
+                except Exception:
+                    raise UnauthorizedError()
+                user = valid_user(user)
+                set_request_auth_info(request, f"{user} (basic)")
+                if not (await auth_manager.authorize(user, valid_passwd(passwd))):
+                    raise ForbiddenError()
+                return
+
         raise UnauthorizedError()