UNPKG

nest-digest-auth

Version:

Digest Authentication wrapper using Axios, compatible with NestJS

86 lines (73 loc) 2.42 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
import axios, { AxiosRequestHeaders, Method } from 'axios'; import * as crypto from 'crypto'; export class DigestAuthService { private md5(data: string): string { return crypto.createHash('md5').update(data).digest('hex'); } private parseAuthHeader(authHeader: string): Record<string, string> { const authParams: Record<string, string> = {}; const regex = /(\w+)=["]?([^",]+)["]?/g; let match: RegExpExecArray | null; while ((match = regex.exec(authHeader)) !== null) { authParams[match[1]] = match[2]; } return authParams; } async digestRequest( options: { method: Method; url: string; headers?: AxiosRequestHeaders; }, data: any, user: string, pass: string, ): Promise<any> { try { const initialRes = await axios({ method: options.method, url: options.url, headers: options.headers || {}, validateStatus: () => true, }); if ( initialRes.status !== 401 || !initialRes.headers['www-authenticate'] ) { throw new Error( `Expected 401 Unauthorized, got ${initialRes.status}`, ); } const authDetails = this.parseAuthHeader( initialRes.headers['www-authenticate'], ); const realm = authDetails.realm; const nonce = authDetails.nonce; const qop = authDetails.qop || 'auth'; const cnonce = this.md5(Date.now().toString()); const nc = '00000001'; const method = options.method.toUpperCase(); const urlObj = new URL(options.url); const path = urlObj.pathname + urlObj.search; const ha1 = this.md5(`${user}:${realm}:${pass}`); const ha2 = this.md5(`${method}:${path}`); const response = this.md5( `${ha1}:${nonce}:${nc}:${cnonce}:${qop}:${ha2}`, ); const authHeader = `Digest username="${user}", realm="${realm}", nonce="${nonce}", uri="${path}", algorithm=MD5, response="${response}", qop=${qop}, nc=${nc}, cnonce="${cnonce}"`; const finalRes = await axios({ method, url: options.url, headers: { ...(options.headers || {}), Authorization: authHeader, 'Content-Type': 'application/json', }, data, }); return finalRes.data; } catch (error: any) { throw new Error(error?.message || 'Digest request failed'); } } }