From 4f8020a94cad8f9cb2b3c4d74bcceb6c78ad4d62 Mon Sep 17 00:00:00 2001
From: Toby Allen <tobyallen@toflidium.com>
Date: Mon, 4 Mar 2019 19:02:24 +0000
Subject: [PATCH] basicauth: Simplify user replacement on auth failure (#2470)

* Can simply add user to replacer before Replace call.  user is then also added to logs

* use fmt.Errorf

* fix how fmt.Errorf is called.
---
 caddyhttp/basicauth/basicauth.go | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/caddyhttp/basicauth/basicauth.go b/caddyhttp/basicauth/basicauth.go
index 9f9d4fc6..747851d1 100644
--- a/caddyhttp/basicauth/basicauth.go
+++ b/caddyhttp/basicauth/basicauth.go
@@ -106,10 +106,9 @@ func (a BasicAuth) ServeHTTP(w http.ResponseWriter, r *http.Request) (int, error
 
 		// Get a replacer so we can provide basic info for the authentication error.
 		repl := httpserver.NewReplacer(r, nil, "-")
-		errstr := repl.Replace("BasicAuth: user \"%s\" was not found or password was incorrect. {remote} {host} {uri} {proto}")
-
-		// Username will not exist in Replacer so provide here.
-		err := fmt.Errorf(errstr, username)
+		repl.Set("user", username)
+		errstr := repl.Replace("BasicAuth: user \"{user}\" was not found or password was incorrect. {remote} {host} {uri} {proto}")
+		err := fmt.Errorf("%s", errstr)
 		return http.StatusUnauthorized, err
 	}