UNPKG

@mhoc/axios-digest-auth

Version:

axios-like http digest auth

github.com/mhoc/axios-digest-auth

67 lines (60 loc) 2.56 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
import * as crypto from "crypto"; import * as url from "url"; import * as axios from "axios"; /** * Options to configure the AxiosDigestAuth instance. */ export interface AxiosDigestAuthOpts { /** * optionally provide your own axios instance. if this is not provided, one will be created for * you with default settings. */ axios?: axios.AxiosInstance; /** the http digest auth password */ password: string; /** the http digest auth username */ username: string; } export default class AxiosDigestAuth { private readonly axios: axios.AxiosInstance; private count: number; private readonly password: string; private readonly username: string; constructor({ axios: axiosInst, password, username }: AxiosDigestAuthOpts) { this.axios = axiosInst ? axiosInst : axios.default; this.count = 0; this.password = password; this.username = username; } public async request(opts: axios.AxiosRequestConfig): Promise<axios.AxiosResponse> { try { return await this.axios.request(opts); } catch (resp1: any) { if (resp1.response === undefined || resp1.response.status !== 401 || !resp1.response.headers["www-authenticate"]?.includes('nonce') ) { throw resp1; } const authDetails = resp1.response.headers['www-authenticate'].split(',').map((v: string) => v.split('=')); ++this.count; const nonceCount = ('00000000' + this.count).slice(-8); const cnonce = crypto.randomBytes(24).toString('hex'); const realm = authDetails.find((el: any) => el[0].toLowerCase().indexOf("realm") > -1)[1].replace(/"/g, ''); const nonce = authDetails.find((el: any) => el[0].toLowerCase().indexOf("nonce") > -1)[1].replace(/"/g, ''); const ha1 = crypto.createHash('md5').update(`${this.username}:${realm}:${this.password}`).digest('hex'); const path = url.parse(opts.url!).pathname; const ha2 = crypto.createHash('md5').update(`${opts.method ?? "GET"}:${path}`).digest('hex'); const response = crypto.createHash('md5').update(`${ha1}:${nonce}:${nonceCount}:${cnonce}:auth:${ha2}`).digest('hex'); const authorization = `Digest username="${this.username}",realm="${realm}",` + `nonce="${nonce}",uri="${path}",qop="auth",algorithm="MD5",` + `response="${response}",nc="${nonceCount}",cnonce="${cnonce}"`; if (opts.headers) { opts.headers["authorization"] = authorization; } else { opts.headers = { authorization }; } return this.axios.request(opts); } } }