rckrdmrd/michangarrito
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
928eb795e6
michangarrito/apps/mcp-server/node_modules/hono/dist/middleware/basic-auth/index.js
rckrdmrd 48dea7a5d0 feat: Initial commit - michangarrito 
Marketplace móvil para negocios locales mexicanos.

Estructura inicial:
- apps/backend (NestJS API)
- apps/frontend (React Web)
- apps/mobile (Expo/React Native)
- apps/mcp-server (Claude MCP Server)
- apps/whatsapp-service (WhatsApp Business API)
- database/ (PostgreSQL DDL)
- docs/ (Documentación)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-07 04:41:02 -06:00

61 lines
2.1 KiB
JavaScript
Raw Blame History

// src/middleware/basic-auth/index.ts
import { HTTPException } from "../../http-exception.js";
import { auth } from "../../utils/basic-auth.js";
import { timingSafeEqual } from "../../utils/buffer.js";
var basicAuth = (options, ...users) => {
const usernamePasswordInOptions = "username" in options && "password" in options;
const verifyUserInOptions = "verifyUser" in options;
if (!(usernamePasswordInOptions || verifyUserInOptions)) {
throw new Error(
'basic auth middleware requires options for "username and password" or "verifyUser"'
);
}
if (!options.realm) {
options.realm = "Secure Area";
}
if (!options.invalidUserMessage) {
options.invalidUserMessage = "Unauthorized";
}
if (usernamePasswordInOptions) {
users.unshift({ username: options.username, password: options.password });
}
return async function basicAuth2(ctx, next) {
const requestUser = auth(ctx.req.raw);
if (requestUser) {
if (verifyUserInOptions) {
if (await options.verifyUser(requestUser.username, requestUser.password, ctx)) {
await next();
return;
}
} else {
for (const user of users) {
const [usernameEqual, passwordEqual] = await Promise.all([
timingSafeEqual(user.username, requestUser.username, options.hashFunction),
timingSafeEqual(user.password, requestUser.password, options.hashFunction)
]);
if (usernameEqual && passwordEqual) {
await next();
return;
}
}
}
}
const status = 401;
const headers = {
"WWW-Authenticate": 'Basic realm="' + options.realm?.replace(/"/g, '\\"') + '"'
};
const responseMessage = typeof options.invalidUserMessage === "function" ? await options.invalidUserMessage(ctx) : options.invalidUserMessage;
const res = typeof responseMessage === "string" ? new Response(responseMessage, { status, headers }) : new Response(JSON.stringify(responseMessage), {
status,
headers: {
...headers,
"content-type": "application/json"
}
});
throw new HTTPException(status, { res });
};
};
export {
basicAuth
};
Reference in New Issue View Git Blame Copy Permalink