UNPKG

hapi

Version:

HTTP Server framework

hapijs.com

spumko/hapi

87 lines (55 loc) 2.43 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
// Load modules var Utils = require('../utils'); var Boom = require('boom'); // Declare internals var internals = {}; exports = module.exports = internals.Scheme = function (server, options) { Utils.assert(this.constructor === internals.Scheme, 'Scheme must be instantiated using new'); Utils.assert(options, 'Invalid options'); Utils.assert(options.scheme === 'basic', 'Wrong scheme'); Utils.assert(options.validateFunc, 'Missing required validateFunc method in configuration'); Utils.assert(server, 'Server is required'); this.settings = Utils.clone(options); // Options can be reused return this; }; // Basic Authentication internals.Scheme.prototype.authenticate = function (request, callback) { var self = this; callback = Utils.nextTick(callback); var req = request.raw.req; var authorization = req.headers.authorization; if (!authorization) { return callback(Boom.unauthorized(null, 'Basic')); } var parts = authorization.split(/\s+/); if (parts[0] && parts[0].toLowerCase() !== 'basic') { return callback(Boom.unauthorized(null, 'Basic')); } if (parts.length !== 2) { return callback(Boom.badRequest('Bad HTTP authentication header format', 'Basic')); } var credentialsParts = new Buffer(parts[1], 'base64').toString().split(':'); if (credentialsParts.length !== 2) { return callback(Boom.badRequest('Bad header internal syntax', 'Basic')); } var username = credentialsParts[0]; var password = credentialsParts[1]; if (!username) { return callback(Boom.badRequest('HTTP authentication header missing username', 'Basic')); } this.settings.validateFunc(username, password, function (err, isValid, credentials) { credentials = credentials || null; if (err) { return callback(err, credentials, { log: { tags: ['auth', 'basic'], data: err } }); } if (!isValid) { return callback(Boom.unauthorized('Bad username or password', 'Basic'), credentials); } if (typeof credentials !== 'object') { return callback(Boom.internal('Bad credentials object received for Basic auth validation'), null, { log: { tags: 'credentials' } }); } // Authenticated return callback(null, credentials); }); };