dizda
commented
1 year ago Thanks for your PR, hoping to review it when I get some spare time.
Closed nemosupremo closed 1 year ago
dizda
commented
1 year ago Thanks for your PR, hoping to review it when I get some spare time.
dizda
commented
1 year ago Hey @nemosupremo, rather than having an authenticate function that simply returns a boolean.. would that makes sense to return an Option<T> (which T is a generator)?
So if the authentication succeed, I could simply return the User's info, because at the moment we loose the user's data, which is a pity.
Wdyt?
dizda
commented
1 year ago So the signature should look like:
pub trait Authentication<T>: Send + Sync {
type Item<'a>: Future<Output = T> + 'a
where
Self: 'a;
fn authenticate<'a>(&'a self, username: &str, password: &str) -> Self::Item<'a>;
nemosupremo
commented
1 year ago type Item<'a>: Future
I think this would require GAT, and I'm not sure how flexible Rust's current implementation of that is. Last I remember there were a number of limitations that didn't make it particularly attractive.
dizda
commented
1 year ago Unless we use async_trait. How much of a downside would it be to use it you reckon?
dizda
commented
1 year ago At the moment I have to create a config file / TCP connection, in order to get the User that has authenticated successfully, eg:
pub struct Socks5Authentication {
// pub username: String,
// pub password: String,
proxy_accounts: ProxyAccounts,
headers: Headers,
account: Mutex<Option<Arc<RwLock<ProxyAccount>>>>,
}
impl Authentication for Socks5Authentication {
// type Item<'a> = futures::future::Ready<bool>;
type Item<'a> = Pin<Box<dyn Future<Output = bool> + Send + 'a>>;
fn authenticate<'a>(&'a self, username: &str, password: &str) -> Self::Item<'a> {
let basic_auth = BasicAuth::new(&username, &password);
let proxy_req = ProxyRequest::try_from(basic_auth);
async {
// move the lifetime inside the async function
let mut proxy_req = match proxy_req {
Ok(r) => r,
Err(err) => {
error!(%err, "Authentication failed");
return false;
}
};
let res = Auth::new(&self.proxy_accounts, &self.headers, &mut proxy_req)
.challenge()
.await;
match res {
Ok(proxy_account) => {
*self.account.lock() = Some(proxy_account);
true
}
Err(err) => {
false
}
}
}
.boxed()
}
}which is quite inefficient, the config file need to be created for every TCP connection.
nemosupremo
commented
1 year ago I don’t mind adding async_trait, the reason I opted against it was to avoid adding dependencies because every library owner has their own view on new dependencies.
dizda
commented
1 year ago Great, I don't mind it either ;) do you have time to implement it or you want me to do it?
dizda
commented
1 year ago maybe consider to change the futures deps with futures_lite
dizda
commented
1 year ago I'm working on it FYI.
dizda
commented
1 year ago I've added further commits, please see https://github.com/dizda/fast-socks5/pull/37
(#34)
This is a change I've worked on in a separate fork as I needed the authenticate function to be async. This is a breaking change, as it changes the signature of the
Authenticatetrait. This doesn't depend onasync_trait, at the cost of making the trait a bit more difficult to implement. However this allows the library user to implementAuthenticatewithout boxing.If one didn't want to use concrete types, they could box their implementation instead:
More advanced implementions can be implemented via polling. Secondly, now that
Authenticationis a associated trait, it can no longer by type erased (dyn Authentication) which means it is now a generic argument onConfig(and on all structs that carryConfig), which has led to changing some function signatures.