UNPKG

hapi

Version:

HTTP Server framework

hapijs.com

spumko/hapi

74 lines (43 loc) 2.25 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
// Load modules var Hawk = require('hawk'); var Utils = require('../utils'); var Boom = require('boom'); // Declare internals var internals = {}; exports = module.exports = internals.Scheme = function (server, options) { Utils.assert(this.constructor === internals.Scheme, 'Scheme must be instantiated using new'); Utils.assert(options, 'Invalid options'); Utils.assert(options.scheme === 'hawk', 'Wrong scheme'); Utils.assert(options.getCredentialsFunc, 'Missing required getCredentialsFunc method in configuration'); Utils.assert(server, 'Server is required'); this.settings = Utils.clone(options); this.settings.hostHeaderName = this.settings.hostHeaderName || 'host'; return this; }; // Hawk Authentication internals.Scheme.prototype.authenticate = function (request, callback) { Hawk.server.authenticate(request.raw.req, this.settings.getCredentialsFunc, { hostHeaderName: this.settings.hostHeaderName }, function (err, credentials, artifacts) { return callback(err, credentials, { artifacts: artifacts }); }); }; internals.Scheme.prototype.authenticatePayload = function (request, callback) { callback = Utils.nextTick(callback); var isValid = Hawk.server.authenticatePayload(request.rawPayload, request.auth.credentials, request.auth.artifacts, request.raw.req.headers['content-type']); return callback(isValid ? null : Boom.unauthorized('Payload is invalid')); }; internals.Scheme.prototype.responseHeader = function (request, response, callback) { callback = Utils.nextTick(callback); var payloadHash = Hawk.crypto.initializePayloadHash(request.auth.credentials.algorithm, response._headers['Content-Type']); response.header('Trailer', 'Server-Authorization'); response.header('Transfer-Encoding', 'chunked'); response._preview.on('peek', function (chunk) { payloadHash.update(chunk); }); response._preview.on('finish', function () { var header = Hawk.server.header(request.auth.credentials, request.auth.artifacts, { hash: Hawk.crypto.finalizePayloadHash(payloadHash) }); if (header) { request.raw.res.addTrailers({ 'Server-Authorization': header }); } }); callback(); };