UNPKG

@httpc/kit

Version:

httpc toolbox for building function-based API with minimal code and end-to-end type safety

httpc.dev

giuseppelt/httpc

47 lines (46 loc) 1.95 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.BasicAuthenticationMiddleware = void 0; const server_1 = require("@httpc/server"); const di_1 = require("../di"); const context_1 = require("./context"); const services_1 = require("../services"); const logging_1 = require("../logging"); function BasicAuthenticationMiddleware(options) { const authenticate = options?.onAuthenticate || onAuthenticate; function hashToCredentials(hash) { let value; try { value = Buffer.from(hash, "base64").toString("utf8"); } catch (ex) { (0, logging_1.useLogger)().error("BasicAuthenticationMiddleware: Cannot parse authorization header", ex); return; } const [username, password] = value.split(":"); return { username, password, }; } return (0, server_1.PassthroughMiddleware)(async () => { const { request, user } = (0, server_1.useContext)(); if (!user) { const [schema, hash] = request.headers.authorization?.split(" ") || []; if (schema?.toUpperCase() === "BASIC") { const credentials = hashToCredentials(hash); if (!credentials || !credentials.username || !credentials.password) { throw new server_1.UnauthorizedError(); } (0, context_1.useAuthentication)(await authenticate(credentials) .catch((0, services_1.catchLogAndThrowUnauthorized)("BasicAuthenticationMiddleware"))); } } }); } exports.BasicAuthenticationMiddleware = BasicAuthenticationMiddleware; async function onAuthenticate(credentials) { const container = (0, di_1.useContainer)(); const auth = (0, di_1.RESOLVE)(container, "BasicAuthentication"); return await auth.authenticate(credentials); }