[DRAFT] http basic auth acl policy

[austenLacy]

What

Adds a custom shopify basic auth http ACL policy. It works by checking for a basic username and password.

Manual testing

Set env vars with username and password for testing

~/src/github.com/Shopify/vitess$ export SHOPIFY_BASIC_AUTH_USERNAME=user
~/src/github.com/Shopify/vitess$ export SHOPIFY_BASIC_AUTH_PASSWORD=pass

Verify it denies access if no basic auth creds

~/src/github.com/Shopify/vitess$ curl localhost:15100/debug/env
Access denied: not allowed: shopify_basic_auth security_policy enforced

Verify it works with a valid basic auth creds

~/src/github.com/Shopify/vitess$ curl -u "user:pass" localhost:15100/debug/env
<!DOCTYPE html>
        <style type="text/css">
                        table.gridtable {
                                font-family: verdana,arial,sans-serif;
                                font-size: 11px;
                                border-width: 1px;
                                border-collapse: collapse; table-layout:fixed; overflow: hidden;
                        }
                        table.gridtable th {
                                border-width: 1px;
                                padding: 8px;
                                border-style: solid;
                                background-color: #dedede;
                                white-space: nowrap;
                        }
                        table.gridtable td {
                                border-width: 1px;
                                padding: 5px;
                                border-style: solid;
                        }
                        table.gridtable th {
                                padding-left: 2em;
                                padding-right: 2em;
                        }
        </style>
        <h3>Internal Variables</h3>
... # cut off for brevity

Verify that bad creds are rejected

~/src/github.com/Shopify/vitess$ curl -u "not:valid" localhost:15100/debug/env
Access denied: not allowed: shopify_basic_auth security_policy enforced

[github-actions]

This PR is being marked as stale because it has been open for 30 days with no activity. To rectify, you may do any of the following:

• Push additional commits to the associated branch.
• Remove the stale label.
• Add a comment indicating why it is not stale.

If no action is taken within 7 days, this PR will be closed.

[github-actions]

This PR was closed because it has been stale for 7 days with no activity.

[github-actions]

This PR is being marked as stale because it has been open for 30 days with no activity. To rectify, you may do any of the following:

• Push additional commits to the associated branch.
• Remove the stale label.
• Add a comment indicating why it is not stale.

If no action is taken within 7 days, this PR will be closed.

[github-actions]

This PR was closed because it has been stale for 7 days with no activity.