feat: add token authentication (#16)

aauren · Sep 29, 2024 · 381b6e3 · 381b6e3
1 parent b829b5b
commit 381b6e3
Show file tree

Hide file tree

Showing 3 changed files with 21 additions and 3 deletions.
diff --git a/config/ntopng-exporter.yaml b/config/ntopng-exporter.yaml
@@ -3,7 +3,7 @@ ntopng:
   allowUnsafeTLS: false # set to true to accept self-signed or otherwise unverifiable certs from ntopng (default: false)
   user: admin
   password: admin
-  authMethod: cookie # cookie, basic, or none are accepted values
+  authMethod: cookie # cookie, basic, token or none are accepted values
   scrapeInterval: 15s # scrape from the ntopng API every x period of time (should be synced with your prometheus scrapes) (default: 1 minute)
   scrapeTargets: # you can also specify "all" as a single list item to scrape all available endpoints (default: all)
   - hosts

diff --git a/internal/config/config.go b/internal/config/config.go
@@ -4,6 +4,7 @@ import (
 	"fmt"
 	"github.com/spf13/viper"
 	"net"
+	"os"
 	"strings"
 	"time"
 )
@@ -27,6 +28,7 @@ type ntopng struct {
 	EndPoint       string
 	User           string
 	Password       string
+	Token	       string
 	AuthMethod     string
 	ScrapeInterval string
 	ScrapeTargets  []string
@@ -81,13 +83,27 @@ func ParseConfig() (Config, error) {
 	if err != nil {
 		return config, err
 	}
+    	// Check if environment variable NTOPNG_TOKEN is set
+    	if tokenEnv, exists := os.LookupEnv("NTOPNG_TOKEN"); exists {
+        	config.Ntopng.Token = tokenEnv
+    	}	
 	err = config.validate()
 	return config, err
 }
 
 func (c *Config) validate() error {
-	if c.Ntopng.AuthMethod != "cookie" && c.Ntopng.AuthMethod != "basic" && c.Ntopng.AuthMethod != "none" {
-		return fmt.Errorf("ntopng authMethod must be either cookie, basic, or none")
+	if c.Ntopng.AuthMethod != "cookie" && c.Ntopng.AuthMethod != "basic" && c.Ntopng.AuthMethod != "token" && c.Ntopng.AuthMethod != "none" {
+		return fmt.Errorf("ntopng authMethod must be either cookie, basic, token or none")
+	}
+	if c.Ntopng.AuthMethod == "cookie" || c.Ntopng.AuthMethod == "basic" {
+		if c.Ntopng.User == "" || c.Ntopng.Password == "" {
+			return fmt.Errorf("ntopng user and password must be set when using cookie or basic auth")
+		}
+	}
+	if c.Ntopng.AuthMethod == "token" {
+		if c.Ntopng.Token == "" {
+			return fmt.Errorf("ntopng token must be set when using token auth")
+		}
 	}
 	if c.Host.InterfacesToMonitor == nil || len(c.Host.InterfacesToMonitor) < 1 {
 		return fmt.Errorf("must specify at least one interface to monitor")

diff --git a/internal/ntopng/controller.go b/internal/ntopng/controller.go
@@ -253,6 +253,8 @@ func (c *Controller) setCommonOptions(req *http.Request, isJsonRequest bool) {
 				c.config.Ntopng.User, c.config.Ntopng.Password))
 	} else if c.config.Ntopng.AuthMethod == "basic" {
 		req.SetBasicAuth(c.config.Ntopng.User, c.config.Ntopng.Password)
+	} else if c.config.Ntopng.AuthMethod == "token" {
+		req.Header.Add("Authorization", fmt.Sprintf("Token %s", c.config.Ntopng.Token))
 	}
 }