UNPKG

htpasswd

Version:

Node.js package for HTTP Basic Authentication password file utility.

github.com/gevorg/htpasswd

gevorg/htpasswd

69 lines (55 loc) 1.68 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
"use strict"; // Importing crypto module. const crypto = require("crypto"); // Importing apache-md5 module. const md5 = require("apache-md5"); // Importing apache-crypt module. const crypt = require("apache-crypt"); // Bcrypt. const bcrypt = require("bcryptjs"); // Export object. const utils = {}; // Generates sha1 hash of password. utils.sha1 = password => { let hash = crypto.createHash("sha1"); hash.update(password); return hash.digest("base64"); }; // Verifies if password is correct. utils.verify = (hash, password) => { if (hash.substr(0, 5) === "{SHA}") { hash = hash.substr(5); return utils.sha1(password) === hash; } else if (hash.substr(0, 6) === "$apr1$" || hash.substr(0, 3) === "$1$") { return md5(password, hash) === hash; } else if (hash.substr(0, 4) === "$2y$" || hash.substr(0, 4) === "$2a$") { return bcrypt.compareSync(password, hash); } else { return hash === password || crypt(password, hash) === hash; } }; // Encodes password hash for output. utils.encode = program => { if (!program.delete) { // Get username and password. let password = program.args[program.args.length - 1]; // Encode. if (!program.plaintext) { if (program.crypt) { password = crypt(password); } else if (program.sha) { password = "{SHA}" + utils.sha1(password); } else if (program.bcrypt) { let cost = program.cost ? program.cost : 5; let salt = bcrypt.genSaltSync(cost); password = bcrypt.hashSync(password, salt); } else { password = md5(password); } } // Return it. return password; } }; // Export. module.exports = utils;