UNPKG

jsdav-ext

Version:

jsDAV allows you to easily add WebDAV support to a NodeJS application. jsDAV is meant to cover the entire standard, and attempts to allow integration using an easy to understand API.

github.com/SwadicalRag/jsDAV

SwadicalRag/jsDAV

88 lines (78 loc) 2.61 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
/* * @package jsDAV * @subpackage DAV * @copyright Copyright(c) 2011 Ajax.org B.V. <info AT ajax DOT org> * @author Mike de Boer <info AT mikedeboer DOT nl> * @license http://github.com/mikedeboer/jsDAV/blob/master/LICENSE MIT License */ "use strict"; var jsDAV_ServerPlugin = require("./../plugin"); var AsyncEventEmitter = require("./../../shared/asyncEvents").EventEmitter; /** * This plugin provides Authentication for a WebDAV server. * * It relies on a Backend object, which provides user information. * * Additionally, it provides support for: * * {DAV:}current-user-principal property from RFC5397 * * {DAV:}principal-collection-set property from RFC3744 */ var jsDAV_Auth_Plugin = module.exports = jsDAV_ServerPlugin.extend({ /** * Plugin name * * @var String */ name: "auth", /** * Authentication backend * * @var jsDAV_Auth_Backend_Abstract */ authBackend: null, /** * The authentication realm. * * @var string */ realm: null, initialize: function(handler) { this.handler = handler; this.authBackend = handler.server.options.authBackend || null; this.realm = handler.server.options.realm || "jsDAV"; handler.addEventListener("beforeMethod", this.beforeMethod.bind(this), AsyncEventEmitter.PRIO_HIGH); }, /** * Returns the current users' principal uri. * * If nobody is logged in, this will return null. * * @return string|null */ getCurrentUser: function(callback) { if (!this.authBackend) return callback(); this.authBackend.getCurrentUser(callback); }, /** * This method is called before any HTTP method and forces users to be authenticated * * @param {String} method * @throws Exc.NotAuthenticated * @return bool */ beforeMethod: function(e, method) { // CORS pre-flight HTTP requests use the OPTIONS method to get the // list of allowed origins, methods, headers, etc. We must allow // the OPTIONS method through without authentication. if (!this.authBackend || this.handler.httpRequest.method == "OPTIONS") return e.next(); this.authBackend.authenticate(this.handler, this.realm, function(err, res) { if (err || !res) { //do something with response here... return err ? e.next(err) : e.stop(); } e.next(); }); } });