UNPKG

@ajejoseph22/proxx

Version:

A lightweight HTTPS/HTTP proxy server with bandwidth tracking, basic auth and real-time analytics.

github.com/ajejoseph22/proxx

ajejoseph22/proxx

92 lines (91 loc) 3.93 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
"use strict"; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); } return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; var __importDefault = (this && this.__importDefault) || function (mod) { return (mod && mod.__esModule) ? mod : { "default": mod }; }; Object.defineProperty(exports, "__esModule", { value: true }); exports.AuthService = void 0; const bcrypt_1 = __importDefault(require("bcrypt")); class AuthService { constructor(dbService) { this.statusCode = { UNAUTHORIZED: 401, PROXY_AUTH_REQUIRED: 407, FORBIDDEN: 403, OK: 200, }; this.databaseService = dbService; } addUser(username, password) { return __awaiter(this, void 0, void 0, function* () { const salt = yield bcrypt_1.default.genSalt(10); const auth = this.databaseService.getData().auth; auth[username] = { passwordHash: yield bcrypt_1.default.hash(password, salt), }; yield this.databaseService.save({ auth }); }); } isAuthenticated(authHeader) { return __awaiter(this, void 0, void 0, function* () { var _a; const [method, credentials] = authHeader.split(" "); if (method !== "Basic") return false; const [username, password] = Buffer.from(credentials, "base64") .toString() .split(":"); const user = (_a = this.databaseService.getData().auth) === null || _a === void 0 ? void 0 : _a[username]; if (!user) return false; return bcrypt_1.default.compare(password, user.passwordHash); }); } handleAuth(authHeader, isProxyAuth) { return __awaiter(this, void 0, void 0, function* () { if (!authHeader) { return { isAuthenticated: false, code: isProxyAuth ? this.statusCode.PROXY_AUTH_REQUIRED : this.statusCode.UNAUTHORIZED, message: "Authentication Required\r\n\r\n", }; } const isAuthenticated = yield this.isAuthenticated(authHeader); return { isAuthenticated, code: isAuthenticated ? this.statusCode.OK : this.statusCode.FORBIDDEN, message: `${isAuthenticated ? "OK" : "Invalid credentials"}\r\n\r\n}`, }; }); } initialize() { return __awaiter(this, void 0, void 0, function* () { if (process.env.ADMIN_USERNAME && process.env.ADMIN_PASSWORD) { yield this.addUser(process.env.ADMIN_USERNAME, process.env.ADMIN_PASSWORD); } }); } proxyAuth(req, res) { return __awaiter(this, void 0, void 0, function* () { res === null || res === void 0 ? void 0 : res.setHeader("Proxy-Authenticate", "Basic"); return this.handleAuth(req.headers["proxy-authorization"], true); }); } endpointAuth(req, res) { return __awaiter(this, void 0, void 0, function* () { res.setHeader("WWW-Authenticate", "Basic"); return this.handleAuth(req.headers["authorization"], false); }); } } exports.AuthService = AuthService;