openhim-core
Version:
The OpenHIM core application that provides logging and routing of http requests
306 lines (305 loc) • 10.8 kB
HTML
<html lang="en">
<head>
<title>Code coverage report for src/middleware/basicAuthentication.coffee</title>
<meta charset="utf-8" />
<link rel="stylesheet" href="../../prettify.css" />
<link rel="stylesheet" href="../../base.css" />
<meta name="viewport" content="width=device-width, initial-scale=1">
<style type='text/css'>
.coverage-summary .sorter {
background-image: url(../../sort-arrow-sprite.png);
}
</style>
</head>
<body>
<div class='wrapper'>
<div class='pad1'>
<h1>
<a href="../../index.html">All files</a> / <a href="index.html">src/middleware</a> basicAuthentication.coffee
</h1>
<div class='clearfix'>
<div class='fl pad1y space-right2'>
<span class="strong">48.72% </span>
<span class="quiet">Statements</span>
<span class='fraction'>19/39</span>
</div>
<div class='fl pad1y space-right2'>
<span class="strong">16.67% </span>
<span class="quiet">Branches</span>
<span class='fraction'>1/6</span>
</div>
<div class='fl pad1y space-right2'>
<span class="strong">0% </span>
<span class="quiet">Functions</span>
<span class='fraction'>0/8</span>
</div>
<div class='fl pad1y space-right2'>
<span class="strong">47.37% </span>
<span class="quiet">Lines</span>
<span class='fraction'>18/38</span>
</div>
</div>
</div>
<div class='status-line low'></div>
<pre><table class="coverage">
<tr><td class="line-count quiet">1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81</td><td class="line-coverage quiet"><span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-yes">1x</span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-no"> </span>
<span class="cline-any cline-neutral"> </span>
<span class="cline-any cline-neutral"> </span></td><td class="text"><pre class="prettyprint lang-js"><span class="fstat-no" title="function not covered" ><span class="branch-1 cbranch-no" title="branch not covered" >auth = require 'basic-auth'</span></span>
Q = require "q"
Client = require("../model/clients").Client
logger = require "winston"
crypto = require "crypto"
bcrypt = require 'bcryptjs'
config = require '../config/config'
statsdServer = config.get 'statsd'
application = config.get 'application'
SDC = require 'statsd-client'
os = require 'os'
domain = "#{os.hostname()}.#{application.name}.appMetrics"
sdc = new SDC statsdServer
bcryptCompare = <span class="fstat-no" title="function not covered" >(</span>pass, client, callback) -> bcrypt.compare pass, client.passwordHash, callback
cryptoCompare = <span class="fstat-no" title="function not covered" >(</span>pass, client, callback) ->
<span class="cstat-no" title="statement not covered" > hash = c</span>rypto.createHash client.passwordAlgorithm
<span class="cstat-no" title="statement not covered" > hash.update pass</span>
<span class="cstat-no" title="statement not covered" > hash.update client.passwordSalt</span>
if hash.digest('hex') == client.passwordHash
callback null, true
else
callback null, false
comparePasswordWithClientHash = <span class="fstat-no" title="function not covered" >(</span>pass, client, callback) ->
if client.passwordAlgorithm in crypto.getHashes()
cryptoCompare pass, client, callback
else
bcryptCompare pass, client, callback
exports.authenticateUser = <span class="fstat-no" title="function not covered" >(</span>ctx, done) ->
<span class="cstat-no" title="statement not covered" > user = a</span>uth ctx
if user
Client.findOne { clientID: user.name }, <span class="fstat-no" title="function not covered" >(</span>err, client) ->
<span class="cstat-no" title="statement not covered" ></span> return done err if err
if client
if not (client.passwordAlgorithm and client.passwordHash)
<span class="cstat-no" title="statement not covered" > logger.warn "#{user.name} does not have a basic auth password set"</span>
<span class="cstat-no" title="statement not covered" > return done null, null</span>
comparePasswordWithClientHash user.pass, client, <span class="fstat-no" title="function not covered" >(</span>err, res) ->
<span class="cstat-no" title="statement not covered" ></span> return done err if err
if res
<span class="cstat-no" title="statement not covered" > logger.info "#{user.name} is authenticated."</span>
<span class="cstat-no" title="statement not covered" > ctx.authenticated = c</span>lient
<span class="cstat-no" title="statement not covered" > ctx.authenticationType = '</span>basic'
done null, client
else
<span class="cstat-no" title="statement not covered" > logger.info "#{user.name} could NOT be authenticated, trying next auth mechanism if any..."</span>
done null, null
else
<span class="cstat-no" title="statement not covered" > logger.info "#{user.name} not found, trying next auth mechanism if any..."</span>
done null, null
else
<span class="cstat-no" title="statement not covered" > logger.info "No basic auth details supplied, trying next auth mechanism if any..."</span>
<span class="cstat-no" title="statement not covered" > ctx.authenticated = n</span>ull # Set to empty object rather than null
done null, null
###
# Koa middleware for authentication by basic auth
###
exports.koaMiddleware = <span class="fstat-no" title="function not covered" >(</span>next) ->
<span class="cstat-no" title="statement not covered" ></span> startTime = new Date() if statsdServer.enabled
if this.authenticated?
yield next
else
<span class="cstat-no" title="statement not covered" > authenticateUser = Q</span>.denodeify exports.authenticateUser
<span class="cstat-no" title="statement not covered" > yield authenticateUser this</span>
if this.authenticated?.clientID?
<span class="cstat-no" title="statement not covered" > this.header['X-OpenHIM-ClientID'] = this.authenticated.clientID</span>
<span class="cstat-no" title="statement not covered" ></span> sdc.timing "#{domain}.basicAuthMiddleware", startTime if statsdServer.enabled
yield next
</pre></td></tr>
</table></pre>
<div class='push'></div><!-- for sticky footer -->
</div><!-- /wrapper -->
<div class='footer quiet pad2 space-top1 center small'>
Code coverage
generated by <a href="http://istanbul-js.org/" target="_blank">istanbul</a> at Mon Oct 10 2016 13:39:22 GMT+0200 (SAST)
</div>
</div>
<script src="../../prettify.js"></script>
<script>
window.onload = function () {
if (typeof prettyPrint === 'function') {
prettyPrint();
}
};
</script>
<script src="../../sorter.js"></script>
</body>
</html>