Home Explore Help
Register Sign In
StephanFuchs
/
glife
forked from Kevin_Smarts/glife
4
1
Fork 3
Files Pull Requests 0
Tree: 0f2eef04fa
Branches Tags
glife
/
node_modules
/
needle
/
lib
/
auth.js

auth.js 2.4 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111 
  1. var createHash = require('crypto').createHash;
    2. 

  2. 

  3. function get_header(header, credentials, opts) {
    4. 

  4.   var type = header.split(' ')[0],
    5. 

  5.       user = credentials[0],
    6. 

  6.       pass = credentials[1];
    7. 

  7. 

  8.   if (type == 'Digest') {
    9. 

  9.     return digest.generate(header, user, pass, opts.method, opts.path);
    10. 

  10.   } else if (type == 'Basic') {
    11. 

  11.     return basic(user, pass);
    12. 

  12.   }
    13. 

  13. }
    14. 

  14. 

  15. ////////////////////
    16. 

  16. // basic
    17. 

  17. 

  18. function md5(string) {
    19. 

  19.   return createHash('md5').update(string).digest('hex');
    20. 

  20. }
    21. 

  21. 

  22. function basic(user, pass) {
    23. 

  23.   var str  = typeof pass == 'undefined' ? user : [user, pass].join(':');
    24. 

  24.   return 'Basic ' + Buffer.from(str).toString('base64');
    25. 

  25. }
    26. 

  26. 

  27. ////////////////////
    28. 

  28. // digest
    29. 

  29. // logic inspired from https://github.com/simme/node-http-digest-client
    30. 

  30. 

  31. var digest = {};
    32. 

  32. 

  33. digest.parse_header = function(header) {
    34. 

  34.   var challenge = {},
    35. 

  35.       matches   = header.match(/([a-z0-9_-]+)="?([a-z0-9_=\/\.@\s-\+:)()]+)"?/gi);
    36. 

  36. 

  37.   for (var i = 0, l = matches.length; i < l; i++) {
    38. 

  38.     var parts = matches[i].split('='),
    39. 

  39.         key   = parts.shift(),
    40. 

  40.         val   = parts.join('=').replace(/^"/, '').replace(/"$/, '');
    41. 

  41. 

  42.     challenge[key] = val;
    43. 

  43.   }
    44. 

  44. 

  45.   return challenge;
    46. 

  46. }
    47. 

  47. 

  48. digest.update_nc = function(nc) {
    49. 

  49.   var max = 99999999;
    50. 

  50.   nc++;
    51. 

  51. 

  52.   if (nc > max)
    53. 

  53.     nc = 1;
    54. 

  54. 

  55.   var padding = new Array(8).join('0') + '';
    56. 

  56.   nc = nc + '';
    57. 

  57.   return padding.substr(0, 8 - nc.length) + nc;
    58. 

  58. }
    59. 

  59. 

  60. digest.generate = function(header, user, pass, method, path) {
    61. 

  61. 

  62.   var nc        = 1,
    63. 

  63.       cnonce    = null,
    64. 

  64.       challenge = digest.parse_header(header);
    65. 

  65. 

  66.   var ha1  = md5(user + ':' + challenge.realm + ':' + pass),
    67. 

  67.       ha2  = md5(method.toUpperCase() + ':' + path),
    68. 

  68.       resp = [ha1, challenge.nonce];
    69. 

  69. 

  70.   if (typeof challenge.qop === 'string') {
    71. 

  71.     cnonce = md5(Math.random().toString(36)).substr(0, 8);
    72. 

  72.     nc     = digest.update_nc(nc);
    73. 

  73.     resp   = resp.concat(nc, cnonce);
    74. 

  74.     resp   = resp.concat(challenge.qop, ha2);
    75. 

  75.   } else {
    76. 

  76.     resp   = resp.concat(ha2);
    77. 

  77.   }
    78. 

  78. 

  79.   var params = {
    80. 

  80.     uri      : path,
    81. 

  81.     realm    : challenge.realm,
    82. 

  82.     nonce    : challenge.nonce,
    83. 

  83.     username : user,
    84. 

  84.     response : md5(resp.join(':'))
    85. 

  85.   }
    86. 

  86. 

  87.   if (challenge.qop) {
    88. 

  88.     params.qop = challenge.qop;
    89. 

  89.   }
    90. 

  90. 

  91.   if (challenge.opaque) {
    92. 

  92.     params.opaque = challenge.opaque;
    93. 

  93.   }
    94. 

  94. 

  95.   if (cnonce) {
    96. 

  96.     params.nc = nc;
    97. 

  97.     params.cnonce = cnonce;
    98. 

  98.   }
    99. 

  99. 

  100.   header = []
    101. 

  101.   for (var k in params)
    102. 

  102.     header.push(k + '="' + params[k] + '"')
    103. 

  103. 

  104.   return 'Digest ' + header.join(', ');
    105. 

  105. }
    106. 

  106. 

  107. module.exports = {
    108. 

  108.   header : get_header,
    109. 

  109.   basic  : basic,
    110. 

  110.   digest : digest.generate
    111. 

  111. }
    112.