Timo/auth-server-helper
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

allow autorization via body only
Some checks failed
continuous-integration/drone/push Build is failing
Details

Browse Source
This commit is contained in:
Timo Hocker 2021-01-12 21:19:56 +01:00
parent c5bc0855d7
commit e6039e78b1
3 changed files with 45 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
lib/AuthHandler.ts
View File

@ -188,10 +188,8 @@ export default function create_auth_handler (
const token = (/(?<type>\S+) (?<token>.+)/ui) const token = (/(?<type>\S+) (?<token>.+)/ui)
.exec (req.headers.authorization as string); .exec (req.headers.authorization as string);
if (token === null) { if (token === null)
request.invalid ('missing authorization header'); return default_handler (request);
return Promise.resolve ();
}
if ((/Basic/ui).test (token?.groups?.type as string)) { if ((/Basic/ui).test (token?.groups?.type as string)) {
request.is_basic = true; request.is_basic = true;

3
lib/index.ts
View File

@ -28,13 +28,14 @@ import create_gateway, {
Gateway, Gateway,
AnyFunc AnyFunc
} from './Gateway'; } from './Gateway';
import { KeyStore, KeyStoreData } from './KeyStore'; import keystore, { KeyStore, KeyStoreData } from './KeyStore';
export { export {
create_gateway, create_gateway,
create_auth_handler, create_auth_handler,
blacklist, blacklist,
authority, authority,
keystore,
AccessResponse, AccessResponse,
CreateHandlerOptions, CreateHandlerOptions,

42
test/spec/AuthHandler.ts
View File

@ -57,6 +57,22 @@ describe ('auth handler', () => {
const ah = create_auth_handler ((req) => { const ah = create_auth_handler ((req) => {
if (!req.is_basic && !req.is_bearer) { if (!req.is_basic && !req.is_bearer) {
let body_auth = false;
try {
const data = JSON.parse (req.body);
if (data.username === 'foo' && data.password === 'bar') {
req.allow_access ({
access_token_expires_in: expires_seconds,
include_refresh_token: true,
refresh_token_expires_in: refresh_expires_seconds
});
body_auth = true;
}
}
catch {
body_auth = false;
}
if (!body_auth)
req.invalid ('unknown authorization type'); req.invalid ('unknown authorization type');
} }
else if (req.is_bearer) { else if (req.is_bearer) {
@ -160,7 +176,6 @@ describe ('auth handler', () => {
}); });
it ('should allow base64 login', async () => { it ('should allow base64 login', async () => {
// get initial access and refresh tokens
const resp1 = await get ({ authorization: `Basic ${to_b64 ('foo:bar')}` }); const resp1 = await get ({ authorization: `Basic ${to_b64 ('foo:bar')}` });
expect (resp1.statusCode) expect (resp1.statusCode)
.toEqual (200); .toEqual (200);
@ -179,6 +194,29 @@ describe ('auth handler', () => {
.toEqual (refresh_expires_seconds); .toEqual (refresh_expires_seconds);
}); });
it ('should allow body login', async () => {
const resp1 = await get (
// eslint-disable-next-line @typescript-eslint/naming-convention
{ 'Content-Type': 'application/json' },
JSON.stringify ({ username: 'foo', password: 'bar' })
);
expect (resp1.statusCode)
.toEqual (200);
const res1 = check_headers (resp1);
expect (res1.data.token_type)
.toEqual ('bearer');
expect (resp1.headers['set-cookie'])
.toContain (`cookie_jar=${res1.at}`);
check_token (res1.at as string, 'access_token');
expect (res1.data.expires_in)
.toEqual (expires_seconds);
check_token (res1.rt as string, 'refresh_token');
expect (res1.data.refresh_expires_in)
.toEqual (refresh_expires_seconds);
});
it ('should reject invalid requests', async () => { it ('should reject invalid requests', async () => {
const resp1 = await get (); const resp1 = await get ();
expect (resp1.statusCode) expect (resp1.statusCode)
@ -187,7 +225,7 @@ describe ('auth handler', () => {
expect (res1.data) expect (res1.data)
.toEqual ({ .toEqual ({
error: 'invalid_request', error: 'invalid_request',
error_description: 'missing authorization header' error_description: 'unknown authorization type'
}); });
const resp2a = await get ({ authorization: 'Basic foo:bar' }); const resp2a = await get ({ authorization: 'Basic foo:bar' });