UNPKG

@buger/probe-chat

Version:

CLI and web interface for Probe code search (formerly @buger/probe-web and @buger/probe-chat)

github.com/buger/probe

buger/probe

76 lines (67 loc) 2.34 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
import 'dotenv/config'; /** * Basic authentication middleware * Checks for valid username and password in the Authorization header * Can be enabled/disabled via environment variables */ export function authMiddleware(req, res, next) { // Check if authentication is enabled const AUTH_ENABLED = process.env.AUTH_ENABLED === '1'; // If authentication is not enabled, skip authentication check if (!AUTH_ENABLED) { return next(req, res); } // Get configured username and password from environment variables const AUTH_USERNAME = process.env.AUTH_USERNAME || 'admin'; const AUTH_PASSWORD = process.env.AUTH_PASSWORD || 'password'; // Check if request has Authorization header const authHeader = req.headers.authorization; if (!authHeader) { // No Authorization header, return 401 Unauthorized res.writeHead(401, { 'Content-Type': 'text/plain', 'WWW-Authenticate': 'Basic realm="Probe Code Search"' }); res.end('Authentication required'); return; } // Parse Authorization header try { // Basic auth format: "Basic base64(username:password)" const authParts = authHeader.split(' '); if (authParts.length !== 2 || authParts[0] !== 'Basic') { throw new Error('Invalid Authorization header format'); } // Decode base64 credentials const credentials = Buffer.from(authParts[1], 'base64').toString('utf-8'); const [username, password] = credentials.split(':'); // Check if credentials match if (username === AUTH_USERNAME && password === AUTH_PASSWORD) { // Authentication successful, proceed to next middleware return next(req, res); } else { // Invalid credentials, return 401 Unauthorized res.writeHead(401, { 'Content-Type': 'text/plain', 'WWW-Authenticate': 'Basic realm="Probe Code Search"' }); res.end('Invalid credentials'); return; } } catch (error) { // Error parsing Authorization header, return 400 Bad Request res.writeHead(400, { 'Content-Type': 'text/plain' }); res.end('Invalid Authorization header'); return; } } /** * Apply authentication middleware to a request handler * @param {Function} handler - The request handler function * @returns {Function} - A new handler function with authentication */ export function withAuth(handler) { return (req, res) => { authMiddleware(req, res, () => handler(req, res)); }; }