Fabio/webssh2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix: username/password in config file no longer honored #374

Browse source
This commit is contained in:
Bill Church 2024-11-21 16:24:57 +00:00
parent eb8f6203bb
commit 4185df77f6
No known key found for this signature in database
3 changed files with 94 additions and 64 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
.tool-versions
View file

@ -1 +1 @@
nodejs 6.9.1 nodejs 23.2.0

2
app/app.js
View file

@ -4,7 +4,7 @@
const express = require("express") const express = require("express")
const config = require("./config") const config = require("./config")
const socketHandler = require("./socket") const socketHandler = require("./socket")
const sshRoutes = require("./routes") const sshRoutes = require("./routes")(config)
const { applyMiddleware } = require("./middleware") const { applyMiddleware } = require("./middleware")
const { createServer, startServer } = require("./server") const { createServer, startServer } = require("./server")
const { configureSocketIO } = require("./io") const { configureSocketIO } = require("./io")

32
app/routes.js
View file

@ -16,10 +16,39 @@ const { ConfigError, handleError } = require("./errors")
const { HTTP } = require("./constants") const { HTTP } = require("./constants")
const debug = createNamespacedDebug("routes") const debug = createNamespacedDebug("routes")
module.exports = function(config) {
const router = express.Router() const router = express.Router()
/**
* Middleware function that handles HTTP Basic Authentication for the application.
*
* If the `config.user.name` and `config.user.password` are set, it will use those
* credentials to authenticate the request and set the `req.session.sshCredentials`
* object with the username and password.
*
* If the `config.user.name` and `config.user.password` are not set, it will attempt
* to use HTTP Basic Authentication to authenticate the request. It will validate and
* sanitize the credentials, and set the `req.session.sshCredentials` object with the
* username and password.
*
* The function will also set the `req.session.usedBasicAuth` flag to indicate that
* Basic Authentication was used.
*
* If the authentication fails, the function will send a 401 Unauthorized response
* with the appropriate WWW-Authenticate header.
*/
// eslint-disable-next-line consistent-return // eslint-disable-next-line consistent-return
function auth(req, res, next) { function auth(req, res, next) {
if (config.user.name && config.user.password) {
req.session.sshCredentials = {
username: config.user.name,
password: config.user.password
}
req.session.usedBasicAuth = true
return next()
}
// Scenario 2: Basic Auth
debug("auth: Basic Auth") debug("auth: Basic Auth")
const credentials = basicAuth(req) const credentials = basicAuth(req)
if (!credentials) { if (!credentials) {
@ -84,4 +113,5 @@ router.get("/force-reconnect", (req, res) => {
res.status(HTTP.UNAUTHORIZED).send(HTTP.AUTH_REQUIRED) res.status(HTTP.UNAUTHORIZED).send(HTTP.AUTH_REQUIRED)
}) })
module.exports = router return router
}