1 files changed, 53 insertions, 0 deletions

diff --git a/weed/admin/dash/auth_middleware.go b/weed/admin/dash/auth_middleware.go
new file mode 100644
index 000000000..986a30290
--- /dev/null
+++ b/weed/admin/dash/auth_middleware.go
@@ -0,0 +1,53 @@
+package dash
+
+import (
+	"net/http"
+
+	"github.com/gin-contrib/sessions"
+	"github.com/gin-gonic/gin"
+)
+
+// ShowLogin displays the login page
+func (s *AdminServer) ShowLogin(c *gin.Context) {
+	// If authentication is not required, redirect to admin
+	session := sessions.Default(c)
+	if session.Get("authenticated") == true {
+		c.Redirect(http.StatusSeeOther, "/admin")
+		return
+	}
+
+	// For now, return a simple login form as JSON
+	c.HTML(http.StatusOK, "login.html", gin.H{
+		"title": "SeaweedFS Admin Login",
+		"error": c.Query("error"),
+	})
+}
+
+// HandleLogin handles login form submission
+func (s *AdminServer) HandleLogin(username, password string) gin.HandlerFunc {
+	return func(c *gin.Context) {
+		loginUsername := c.PostForm("username")
+		loginPassword := c.PostForm("password")
+
+		if loginUsername == username && loginPassword == password {
+			session := sessions.Default(c)
+			session.Set("authenticated", true)
+			session.Set("username", loginUsername)
+			session.Save()
+
+			c.Redirect(http.StatusSeeOther, "/admin")
+			return
+		}
+
+		// Authentication failed
+		c.Redirect(http.StatusSeeOther, "/login?error=Invalid credentials")
+	}
+}
+
+// HandleLogout handles user logout
+func (s *AdminServer) HandleLogout(c *gin.Context) {
+	session := sessions.Default(c)
+	session.Clear()
+	session.Save()
+	c.Redirect(http.StatusSeeOther, "/login")
+}