![Introducing Enhanced Alert Actions and Triage Functionality](https://cdn.sanity.io/images/cgdhsj6q/production/fe71306d515f85de6139b46745ea7180362324f0-2530x946.png?w=800&fit=max&auto=format)
Product
Introducing Enhanced Alert Actions and Triage Functionality
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.
http-auth
Advanced tools
Readme
Node.js package for HTTP basic and digest access authentication.
Via git (or downloaded tarball):
$ git clone git://github.com/http-auth/http-auth.git
Via npm:
$ npm install http-auth
// Authentication module.
const auth = require('http-auth');
const basic = auth.basic({
realm: "Simon Area.",
file: __dirname + "/../data/users.htpasswd"
});
// Creating new HTTP server.
http.createServer(basic.check((req, res) => {
res.end(`Welcome to private area - ${req.user}!`);
})).listen(1337);
// Authentication module.
const auth = require('http-auth');
const basic = auth.basic({
realm: "Simon Area."
}, (username, password, callback) => {
// Custom authentication
// Use callback(error) if you want to throw async error.
callback(username === "Tina" && password === "Bullock");
}
);
// Creating new HTTP server.
http.createServer(basic.check((req, res) => {
res.end(`Welcome to private area - ${req.user}!`);
})).listen(1337);
// HTTP proxy module.
const http = require('http'),
httpProxy = require('http-proxy');
// Authentication module.
const auth = require('http-auth');
const basic = auth.basic({
realm: "Simon Area.",
file: __dirname + "/../data/users.htpasswd", // gevorg:gpass, Sarah:testpass
proxy: true
});
// Create your proxy server.
const proxy = httpProxy.createProxyServer({});
http.createServer(basic.check((req, res) => {
proxy.web(req, res, { target: 'http://127.0.0.1:1338' });
})).listen(1337);
// Create your target server.
http.createServer((req, res) => {
res.end("Request successfully proxied!");
}).listen(1338, () => {
// Log URL.
console.log("Server running at http://127.0.0.1:1338/");
});
// You can test proxy authentication using curl.
// $ curl -x 127.0.0.1:1337 127.0.0.1:1337 -U gevorg
The auth middleware emits three types of events: error, fail and success. Each event passes the result object (the error in case of fail
) and the http request req
to the listener function.
// Authentication module.
const auth = require('http-auth');
const basic = auth.basic({
realm: "Simon Area.",
file: __dirname + "/../data/users.htpasswd"
});
basic.on('success', (result, req) => {
console.log(`User authenticated: ${result.user}`);
});
basic.on('fail', (result, req) => {
console.log(`User authentication failed: ${result.user}`);
});
basic.on('error', (error, req) => {
console.log(`Authentication error: ${error.code + " - " + error.message}`);
});
realm
- Authentication realm, by default it is Users.file
- File where user details are stored.
algorithm
- Algorithm that will be used only for digest access authentication.
qop
- Quality of protection that is used only for digest access authentication.
msg401
- Message for failed authentication 401 page.msg407
- Message for failed authentication 407 page.contentType
- Content type for failed authentication page.skipUser
- Set this to true, if you don't want req.user to be filled with authentication info.proxy
- Set this to true, if you want to use it with http-proxy.It uses mocha, so just run following command in package directory:
$ npm test
You can find list of issues using this link.
You can also use stackoverflow to ask questions using http-auth tag.
The MIT License (MIT)
Copyright (c) Gevorg Harutyunyan
Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:
The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software.
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
FAQs
Node.js package for HTTP basic and digest access authentication.
The npm package http-auth receives a total of 327,429 weekly downloads. As such, http-auth popularity was classified as popular.
We found that http-auth demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Product
Socket now supports four distinct alert actions instead of the previous two, and alert triaging allows users to override the actions taken for all individual alerts.
Security News
Polyfill.io has been serving malware for months via its CDN, after the project's open source maintainer sold the service to a company based in China.
Security News
OpenSSF is warning open source maintainers to stay vigilant against reputation farming on GitHub, where users artificially inflate their status by manipulating interactions on closed issues and PRs.