digest-header
Advanced tools
Comparing version 0.0.0 to 0.0.1
92
index.js
@@ -1,1 +0,91 @@ | ||
| module.exports = require('./lib/digest-header'); | ||
| /**! | ||
| * digest-header - index.js | ||
| * | ||
| * Copyright(c) fengmk2 and other contributors. | ||
| * MIT Licensed | ||
| * | ||
| * Authors: | ||
| * fengmk2 <fengmk2@gmail.com> (http://fengmk2.github.com) | ||
| */ | ||
| 'use strict'; | ||
| /** | ||
| * Module dependencies. | ||
| */ | ||
| var crypto = require('crypto'); | ||
| var utility = require('utility'); | ||
| var AUTH_KEY_VALUE_RE = /(\w+)=["']?([^'"]+)["']?/; | ||
| var NC = 0; | ||
| var NC_PAD = '00000000'; | ||
| function digestAuthHeader(method, uri, wwwAuthenticate, userpass) { | ||
| var parts = wwwAuthenticate.split(','); | ||
| var opts = {}; | ||
| for (var i = 0; i < parts.length; i++) { | ||
| var m = parts[i].match(AUTH_KEY_VALUE_RE); | ||
| if (m) { | ||
| opts[m[1]] = m[2].replace(/["']/g, ''); | ||
| } | ||
| } | ||
| if (!opts.realm || !opts.nonce) { | ||
| return ''; | ||
| } | ||
| var qop = opts.qop || ''; | ||
| // WWW-Authenticate: Digest realm="testrealm@host.com", | ||
| // qop="auth,auth-int", | ||
| // nonce="dcd98b7102dd2f0e8b11d0f600bfb0c093", | ||
| // opaque="5ccc069c403ebaf9f0171e9517f40e41" | ||
| // Authorization: Digest username="Mufasa", | ||
| // realm="testrealm@host.com", | ||
| // nonce="dcd98b7102dd2f0e8b11d0f600bfb0c093", | ||
| // uri="/dir/index.html", | ||
| // qop=auth, | ||
| // nc=00000001, | ||
| // cnonce="0a4f113b", | ||
| // response="6629fae49393a05397450978507c4ef1", | ||
| // opaque="5ccc069c403ebaf9f0171e9517f40e41" | ||
| // HA1 = MD5( "Mufasa:testrealm@host.com:Circle Of Life" ) | ||
| // = 939e7578ed9e3c518a452acee763bce9 | ||
| // | ||
| // HA2 = MD5( "GET:/dir/index.html" ) | ||
| // = 39aff3a2bab6126f332b942af96d3366 | ||
| // | ||
| // Response = MD5( "939e7578ed9e3c518a452acee763bce9:\ | ||
| // dcd98b7102dd2f0e8b11d0f600bfb0c093:\ | ||
| // 00000001:0a4f113b:auth:\ | ||
| // 39aff3a2bab6126f332b942af96d3366" ) | ||
| // = 6629fae49393a05397450978507c4ef1 | ||
| userpass = userpass.split(':'); | ||
| var nc = String(++NC); | ||
| nc = NC_PAD.substring(nc.length) + nc; | ||
| var cnonce = crypto.randomBytes(8).toString('hex'); | ||
| var ha1 = utility.md5(userpass[0] + ':' + opts.realm + ':' + userpass[1]); | ||
| var ha2 = utility.md5(method.toUpperCase() + ':' + uri); | ||
| var s = ha1 + ':' + opts.nonce; | ||
| if (qop) { | ||
| qop = qop.split(',')[0]; | ||
| s += ':' + nc + ':' + cnonce + ':' + qop; | ||
| } | ||
| s += ':' + ha2; | ||
| var response = utility.md5(s); | ||
| var authstring = 'Digest username="' + userpass[0] + '", realm="' + opts.realm | ||
| + '", nonce="' + opts.nonce + '", uri="' + uri | ||
| + '", response="' + response + '"'; | ||
| if (opts.opaque) { | ||
| authstring += ', opaque="' + opts.opaque + '"'; | ||
| } | ||
| if (qop) { | ||
| authstring +=', qop=' + qop + ', nc=' + nc + ', cnonce="' + cnonce + '"'; | ||
| } | ||
| return authstring; | ||
| } | ||
| module.exports = digestAuthHeader; |
| { | ||
| "name": "digest-header", | ||
| "version": "0.0.0", | ||
| "description": "digest-header", | ||
| "version": "0.0.1", | ||
| "description": "Digest access authentication header helper", | ||
| "main": "index.js", | ||
@@ -15,3 +15,3 @@ "scripts": { | ||
| "dependencies": { | ||
| "utility": "0.1.11" | ||
| }, | ||
@@ -21,7 +21,7 @@ "devDependencies": { | ||
| "contributors": "*", | ||
| "should": "*", | ||
| "jshint": "*", | ||
| "cov": "*", | ||
| "istanbul-harmony": "*", | ||
| "mocha": "*" | ||
| "jshint": "*", | ||
| "mocha": "*", | ||
| "should": "3.2.0" | ||
| }, | ||
@@ -39,3 +39,6 @@ "homepage": "https://github.com/fengmk2/digest-header", | ||
| "keywords": [ | ||
| "digest-header" | ||
| "digest", "http-digest", "baseauth", | ||
| "www-authenticate", "authentication", | ||
| "http-authentication", | ||
| "digestauth", "digest-auth", "digest-header" | ||
| ], | ||
@@ -42,0 +45,0 @@ "engines": { |
@@ -10,4 +10,6 @@ digest-header | ||
| digest-header desc | ||
| Digest access authentication header helper. | ||
| Coverage [100%](http://qtestbucket.qiniudn.com/cov/html/node-v0.11.12/digest-header/0.0.0/index.html) | ||
| ## Install | ||
@@ -22,7 +24,9 @@ | ||
| ```js | ||
| var digest-header = require('digest-header'); | ||
| var digest = require('digest-header'); | ||
| digest-header.foo(function (err) { | ||
| }); | ||
| var method = 'GET'; | ||
| var uri = '/admin'; | ||
| var wwwAuthenticate = res.headers['WWW-Authenticate']; | ||
| var userpass = 'user:pass'; | ||
| var auth = digest(method, uri, wwwAuthenticate, userpass); | ||
| ``` | ||
@@ -29,0 +33,0 @@ |
Sorry, the diff of this file is not supported yet
Fixed alerts
Debug access
Supply chain riskUses debug, reflection and dynamic code execution features.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by75.79%
7450
- Lines of code
- increased by471.43%
80
- Number of lines in readme file
- increased by7.69%
56
- Number of low supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Dependency count
- increased byInfinity%
1
Dependency changes
+ Addedutility@0.1.11
+ Addedaddress@2.0.2(transitive)
+ Addedutility@0.1.11(transitive)