add basic auth example

Author: gqcn

.ai-prompt.zh.md

@@ -3,7 +3,7 @@
 
 ## 新example模块生成README文档
 
-分析examples/httpserver/sse代码，并参考examples/httpserver/proxy的文档结构后完成以下工作：
+分析 examples/httpserver/basic-auth 代码，并参考examples/httpserver/proxy的文档结构后完成以下工作：
 - 增加README.MD和README.ZH.MD文件。
 - 文档中的关键词需要代码高亮。
 - 如果需要展示目录结构，目录结构的代码高亮语言类型使用text。

httpserver/basic-auth/README.MD

@@ -0,0 +1,104 @@
+---
+title: Basic Authentication
+slug: /examples/httpserver/basic-auth
+keywords: [http, server, basic auth, authentication, goframe]
+description: A Basic Authentication example using GoFrame framework
+hide_title: true
+---
+
+# HTTP Server Basic Authentication
+
+## Description
+
+This example demonstrates how to implement HTTP Basic Authentication using the `GoFrame` framework. Basic Authentication is a simple authentication mechanism that allows a server to request credentials from a client before granting access to protected resources.
+
+The example shows how to:
+- Set up a basic HTTP server with protected resources
+- Implement Basic Authentication using GoFrame's built-in `BasicAuth` method
+- Handle authentication success and failure cases
+- Customize the authentication realm message
+
+## Requirements
+
+- [Go](https://golang.org/dl/) `1.22` or higher
+- [Git](https://git-scm.com/downloads)
+- [GoFrame](https://goframe.org)
+
+## Structure
+
+```text
+basic-auth/
+├── README.MD     # English documentation
+├── README.ZH.MD  # Chinese documentation
+├── go.mod        # Go module file
+└── main.go       # Main application entry point
+```
+
+## Features
+
+- Simple and secure HTTP Basic Authentication
+- Automatic handling of authentication headers
+- Customizable authentication realm message
+- Clean separation of authentication logic
+
+## Setup
+
+1. Clone the repository:
+    ```bash
+    git clone https://github.com/gogf/examples.git
+    cd examples/httpserver/basic-auth
+    ```
+
+2. Install the dependencies:
+    ```bash
+    go mod tidy
+    ```
+
+3. Run the application:
+    ```bash
+    go run main.go
+    ```
+
+## Usage
+
+1. Start the server:
+   ```bash
+   go run main.go
+   ```
+
+2. The server will start on port 8000.
+
+3. Access the protected resource:
+   - URL: http://127.0.0.1:8000/
+   - When prompted, enter the following credentials:
+     - Username: `user`
+     - Password: `pass`
+
+4. After successful authentication, you will see the message: "Authentication successful!"
+
+## Implementation Details
+
+The server uses GoFrame's `BasicAuth` method to implement HTTP Basic Authentication. This method:
+
+1. Checks if the request contains valid Basic Authentication credentials
+2. If credentials are missing or invalid, it automatically:
+   - Sets the `WWW-Authenticate` header with the specified realm
+   - Returns a 401 Unauthorized status code
+   - Causes the browser to display an authentication dialog
+3. If authentication succeeds, it returns `true` and allows the handler to proceed with the protected content
+
+The implementation is clean and requires minimal code:
+
+```go
+if r.BasicAuth("user", "pass", "Please enter username and password") {
+    // Process after successful authentication
+    r.Response.Write("Authentication successful!")
+}
+// If authentication fails, the BasicAuth method handles the response automatically
+```
+
+## Notes
+
+- Basic Authentication transmits credentials in base64 encoding, which is not secure over plain HTTP
+- For production use, always combine Basic Authentication with HTTPS
+- The credentials in this example are hardcoded for demonstration purposes; in a real application, you should use a secure credential store

httpserver/basic-auth/README.ZH.MD

@@ -0,0 +1,104 @@
+---
+title: 基本认证
+slug: /examples/httpserver/basic-auth
+keywords: [http, 服务器, 基本认证, 身份验证, goframe]
+description: 使用 GoFrame 框架实现 HTTP 基本认证
+hide_title: true
+---
+
+# HTTP 服务器基本认证
+
+## 介绍
+
+本示例展示了如何使用 `GoFrame` 框架实现 `HTTP` 基本认证（`Basic Authentication`）。基本认证是一种简单的认证机制，允许服务器在授予对受保护资源的访问权限之前请求客户端提供凭据。
+
+示例展示了如何：
+- 设置带有受保护资源的基本 HTTP 服务器
+- 使用 `GoFrame` 内置的 `BasicAuth` 方法实现基本认证
+- 处理认证成功和失败的情况
+- 自定义认证领域（`realm`）消息
+
+## 环境要求
+
+- [Go](https://golang.org/dl/) `1.22` 或更高版本
+- [Git](https://git-scm.com/downloads)
+- [GoFrame](https://goframe.org)
+
+## 目录结构
+
+```text
+basic-auth/
+├── README.MD     # 英文文档
+├── README.ZH.MD  # 中文文档
+├── go.mod        # Go 模块文件
+└── main.go       # 主程序入口
+```
+
+## 功能特点
+
+- 简单且安全的 `HTTP` 基本认证
+- 自动处理认证头部
+- 可自定义认证领域消息
+- 清晰分离认证逻辑
+
+## 安装设置
+
+1. 克隆仓库：
+    ```bash
+    git clone https://github.com/gogf/examples.git
+    cd examples/httpserver/basic-auth
+    ```
+
+2. 安装依赖：
+    ```bash
+    go mod tidy
+    ```
+
+3. 运行应用：
+    ```bash
+    go run main.go
+    ```
+
+## 使用方法
+
+1. 启动服务器：
+   ```bash
+   go run main.go
+   ```
+
+2. 服务器将在 `8000` 端口启动。
+
+3. 访问受保护的资源：
+   - 网址：http://127.0.0.1:8000/
+   - 当提示时，输入以下凭据：
+     - 用户：`user`
+     - 密码：`pass`
+
+4. 认证成功后，您将看到消息："`Authentication successful!`"
+
+## 实现细节
+
+服务器使用 `GoFrame` 的 `BasicAuth` 方法实现 `HTTP` 基本认证。该方法：
+
+1. 检查请求是否包含有效的基本认证凭据
+2. 如果凭据缺失或无效，它会自动：
+   - 设置带有指定领域的 `WWW-Authenticate` 头部
+   - 返回 `401` 未授权状态码
+   - 使浏览器显示认证对话框
+3. 如果认证成功，它返回 `true` 并允许处理程序继续处理受保护的内容
+
+实现非常简洁，只需要很少的代码：
+
+```go
+if r.BasicAuth("user", "pass", "Please enter username and password") {
+    // 认证成功后的处理
+    r.Response.Write("Authentication successful!")
+}
+// 如果认证失败，BasicAuth 方法会自动处理响应
+```
+
+## 注意事项
+
+- 基本认证以 `base64` 编码传输凭据，在纯 `HTTP` 上不安全
+- 在生产环境中，始终将基本认证与 `HTTPS` 结合使用
+- 本示例中的凭据是硬编码的，仅用于演示目的；在实际应用中，应使用安全的凭据存储

httpserver/basic-auth/go.mod

@@ -0,0 +1,31 @@
+module main
+
+go 1.20
+
+require github.com/gogf/gf/v2 v2.8.3
+
+require (
+	github.com/BurntSushi/toml v1.4.0 // indirect
+	github.com/clbanning/mxj/v2 v2.7.0 // indirect
+	github.com/emirpasic/gods v1.18.1 // indirect
+	github.com/fatih/color v1.18.0 // indirect
+	github.com/fsnotify/fsnotify v1.7.0 // indirect
+	github.com/go-logr/logr v1.4.2 // indirect
+	github.com/go-logr/stdr v1.2.2 // indirect
+	github.com/gorilla/websocket v1.5.3 // indirect
+	github.com/grokify/html-strip-tags-go v0.1.0 // indirect
+	github.com/magiconair/properties v1.8.9 // indirect
+	github.com/mattn/go-colorable v0.1.13 // indirect
+	github.com/mattn/go-isatty v0.0.20 // indirect
+	github.com/mattn/go-runewidth v0.0.16 // indirect
+	github.com/olekukonko/tablewriter v0.0.5 // indirect
+	github.com/rivo/uniseg v0.4.7 // indirect
+	go.opentelemetry.io/otel v1.24.0 // indirect
+	go.opentelemetry.io/otel/metric v1.24.0 // indirect
+	go.opentelemetry.io/otel/sdk v1.24.0 // indirect
+	go.opentelemetry.io/otel/trace v1.24.0 // indirect
+	golang.org/x/net v0.32.0 // indirect
+	golang.org/x/sys v0.28.0 // indirect
+	golang.org/x/text v0.21.0 // indirect
+	gopkg.in/yaml.v3 v3.0.1 // indirect
+)

httpserver/basic-auth/go.sum

@@ -0,0 +1,60 @@
+github.com/BurntSushi/toml v1.4.0 h1:kuoIxZQy2WRRk1pttg9asf+WVv6tWQuBNVmK8+nqPr0=
+github.com/BurntSushi/toml v1.4.0/go.mod h1:ukJfTF/6rtPPRCnwkur4qwRxa8vTRFBF0uk2lLoLwho=
+github.com/clbanning/mxj/v2 v2.7.0 h1:WA/La7UGCanFe5NpHF0Q3DNtnCsVoxbPKuyBNHWRyME=
+github.com/clbanning/mxj/v2 v2.7.0/go.mod h1:hNiWqW14h+kc+MdF9C6/YoRfjEJoR3ou6tn/Qo+ve2s=
+github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
+github.com/emirpasic/gods v1.18.1 h1:FXtiHYKDGKCW2KzwZKx0iC0PQmdlorYgdFG9jPXJ1Bc=
+github.com/emirpasic/gods v1.18.1/go.mod h1:8tpGGwCnJ5H4r6BWwaV6OrWmMoPhUl5jm/FMNAnJvWQ=
+github.com/fatih/color v1.18.0 h1:S8gINlzdQ840/4pfAwic/ZE0djQEH3wM94VfqLTZcOM=
+github.com/fatih/color v1.18.0/go.mod h1:4FelSpRwEGDpQ12mAdzqdOukCy4u8WUtOY6lkT/6HfU=
+github.com/fsnotify/fsnotify v1.7.0 h1:8JEhPFa5W2WU7YfeZzPNqzMP6Lwt7L2715Ggo0nosvA=
+github.com/fsnotify/fsnotify v1.7.0/go.mod h1:40Bi/Hjc2AVfZrqy+aj+yEI+/bRxZnMJyTJwOpGvigM=
+github.com/go-logr/logr v1.2.2/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
+github.com/go-logr/logr v1.4.2 h1:6pFjapn8bFcIbiKo3XT4j/BhANplGihG6tvd+8rYgrY=
+github.com/go-logr/logr v1.4.2/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
+github.com/go-logr/stdr v1.2.2 h1:hSWxHoqTgW2S2qGc0LTAI563KZ5YKYRhT3MFKZMbjag=
+github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE=
+github.com/gogf/gf/v2 v2.8.3 h1:h9Px3lqJnnH6It0AqHRz4/1hx0JmvaSf1IvUir5x1rA=
+github.com/gogf/gf/v2 v2.8.3/go.mod h1:n++xPYGUUMadw6IygLEgGZqc6y6DRLrJKg5kqCrPLWY=
+github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
+github.com/gorilla/websocket v1.5.3 h1:saDtZ6Pbx/0u+bgYQ3q96pZgCzfhKXGPqt7kZ72aNNg=
+github.com/gorilla/websocket v1.5.3/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
+github.com/grokify/html-strip-tags-go v0.1.0 h1:03UrQLjAny8xci+R+qjCce/MYnpNXCtgzltlQbOBae4=
+github.com/grokify/html-strip-tags-go v0.1.0/go.mod h1:ZdzgfHEzAfz9X6Xe5eBLVblWIxXfYSQ40S/VKrAOGpc=
+github.com/magiconair/properties v1.8.9 h1:nWcCbLq1N2v/cpNsy5WvQ37Fb+YElfq20WJ/a8RkpQM=
+github.com/magiconair/properties v1.8.9/go.mod h1:Dhd985XPs7jluiymwWYZ0G4Z61jb3vdS329zhj2hYo0=
+github.com/mattn/go-colorable v0.1.13 h1:fFA4WZxdEF4tXPZVKMLwD8oUnCTTo08duU7wxecdEvA=
+github.com/mattn/go-colorable v0.1.13/go.mod h1:7S9/ev0klgBDR4GtXTXX8a3vIGJpMovkB8vQcUbaXHg=
+github.com/mattn/go-isatty v0.0.16/go.mod h1:kYGgaQfpe5nmfYZH+SKPsOc2e4SrIfOl2e/yFXSvRLM=
+github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY=
+github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y=
+github.com/mattn/go-runewidth v0.0.9/go.mod h1:H031xJmbD/WCDINGzjvQ9THkh0rPKHF+m2gUSrubnMI=
+github.com/mattn/go-runewidth v0.0.16 h1:E5ScNMtiwvlvB5paMFdw9p4kSQzbXFikJ5SQO6TULQc=
+github.com/mattn/go-runewidth v0.0.16/go.mod h1:Jdepj2loyihRzMpdS35Xk/zdY8IAYHsh153qUoGf23w=
+github.com/olekukonko/tablewriter v0.0.5 h1:P2Ga83D34wi1o9J6Wh1mRuqd4mF/x/lgBS7N7AbDhec=
+github.com/olekukonko/tablewriter v0.0.5/go.mod h1:hPp6KlRPjbx+hW8ykQs1w3UBbZlj6HuIJcUGPhkA7kY=
+github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
+github.com/rivo/uniseg v0.2.0/go.mod h1:J6wj4VEh+S6ZtnVlnTBMWIodfgj8LQOQFoIToxlJtxc=
+github.com/rivo/uniseg v0.4.7 h1:WUdvkW8uEhrYfLC4ZzdpI2ztxP1I582+49Oc5Mq64VQ=
+github.com/rivo/uniseg v0.4.7/go.mod h1:FN3SvrM+Zdj16jyLfmOkMNblXMcoc8DfTHruCPUcx88=
+github.com/stretchr/testify v1.8.4 h1:CcVxjf3Q8PM0mHUKJCdn+eZZtm5yQwehR5yeSVQQcUk=
+go.opentelemetry.io/otel v1.24.0 h1:0LAOdjNmQeSTzGBzduGe/rU4tZhMwL5rWgtp9Ku5Jfo=
+go.opentelemetry.io/otel v1.24.0/go.mod h1:W7b9Ozg4nkF5tWI5zsXkaKKDjdVjpD4oAt9Qi/MArHo=
+go.opentelemetry.io/otel/metric v1.24.0 h1:6EhoGWWK28x1fbpA4tYTOWBkPefTDQnb8WSGXlc88kI=
+go.opentelemetry.io/otel/metric v1.24.0/go.mod h1:VYhLe1rFfxuTXLgj4CBiyz+9WYBA8pNGJgDcSFRKBco=
+go.opentelemetry.io/otel/sdk v1.24.0 h1:YMPPDNymmQN3ZgczicBY3B6sf9n62Dlj9pWD3ucgoDw=
+go.opentelemetry.io/otel/sdk v1.24.0/go.mod h1:KVrIYw6tEubO9E96HQpcmpTKDVn9gdv35HoYiQWGDFg=
+go.opentelemetry.io/otel/trace v1.24.0 h1:CsKnnL4dUAr/0llH9FKuc698G04IrpWV0MQA/Y1YELI=
+go.opentelemetry.io/otel/trace v1.24.0/go.mod h1:HPc3Xr/cOApsBI154IU0OI0HJexz+aw5uPdbs3UCjNU=
+golang.org/x/net v0.32.0 h1:ZqPmj8Kzc+Y6e0+skZsuACbx+wzMgo5MQsJh9Qd6aYI=
+golang.org/x/net v0.32.0/go.mod h1:CwU0IoeOlnQQWJ6ioyFrfRuomB8GKF6KbYXZVyeXNfs=
+golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/sys v0.28.0 h1:Fksou7UEQUWlKvIdsqzJmUmCX3cZuD2+P3XyyzwMhlA=
+golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
+golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405 h1:yhCVgyC4o1eVCa2tZl7eS0r+SDo693bJlVdllGtEeKM=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=

httpserver/basic-auth/main.go

@@ -0,0 +1,34 @@
+// examples/httpserver/basic-auth/main.go
+package main
+
+import (
+	"github.com/gogf/gf/v2/frame/g"
+	"github.com/gogf/gf/v2/net/ghttp"
+)
+
+// main is the entry point of the application.
+// It sets up an HTTP server with Basic Authentication protection.
+func main() {
+	// Create a new server instance
+	s := g.Server()
+
+	// Bind handler for the root path with Basic Authentication
+	s.BindHandler("/", func(r *ghttp.Request) {
+		// Check authentication credentials using BasicAuth method
+		// If authentication succeeds, it returns true
+		// If authentication fails, it automatically sends a 401 status code with WWW-Authenticate header
+		// The third parameter is the realm message shown in the browser's authentication dialog
+		if r.BasicAuth("user", "pass", "Please enter username and password") {
+			// Process after successful authentication
+			r.Response.Write("Authentication successful!")
+		}
+		// If authentication fails, the BasicAuth method handles the response automatically
+		// No additional code is needed for the failure case
+	})
+
+	// Set the server port
+	s.SetPort(8000)
+
+	// Start the server
+	s.Run()
+}