feat: add basic auth

cunkz · cunkz · commit 1dba53854461 · 2024-02-06T18:07:23.000+07:00
diff --git a/.env.example b/.env.example
@@ -3,3 +3,5 @@ APP_ENV=dev
 STORAGE_LOCATION=files
 SYSTEM_SHUTDOWN_DELAY=0
 MONGODB_URL='mongodb://localhost:27017/example?maxPoolSize=10&socketTimeoutMS=10000&connectTimeoutMS=10000&useUnifiedTopology=true'
+AUTH_BASIC_USERNAME=
+AUTH_BASIC_PASSWORD=
diff --git a/bin/app/server.js b/bin/app/server.js
@@ -7,6 +7,8 @@ const upload = multer({ dest: configs.get("/storage").location });
 const express = require('express');
 const bodyParser = require('body-parser');
 
+const basicAuthHelper = require('../helpers/auth/basic_auth');
+
 const userHandler = require('../modules/user/handlers/api_handler');
 
 class AppServer {
@@ -16,14 +18,15 @@ class AppServer {
     this.app.use(bodyParser.json());
     this.app.use(bodyParser.urlencoded({ extended: false }));
     this.app.use(upload.any());
+    this.app.use(basicAuthHelper.init());
 
     this.init();
 
     this.app.get('/', (_, res) => {
       res.json({ status: true, data: null, message: 'server is running...', code: 200 })
     });
 
-    this.app.post('/api/users/v1/register', userHandler.registerUser);
+    this.app.post('/api/users/v1/register', basicAuthHelper.authenticate, userHandler.registerUser);
     this.app.post('/api/users/v1/auth', userHandler.authUser);
   }
 
diff --git a/bin/helpers/auth/basic_auth.js b/bin/helpers/auth/basic_auth.js
@@ -0,0 +1,25 @@
+
+const configs = require('../configs/global_config');
+const validate = require('validate.js');
+const passport = require('passport');
+const { BasicStrategy } = require('passport-http');
+
+
+passport.use(new BasicStrategy((username, password, done) => {
+  const basic = configs.get('/auth/basic');
+  if(
+    validate.isEmpty(basic)
+    || (basic.username == username && basic.password == password)
+  ) {
+    return done(null, {});
+  }
+  return done(null, false);
+}));
+
+const authenticate = passport.authenticate('basic', { session: false });
+const init = () => passport.initialize();
+
+module.exports = {
+  authenticate,
+  init,
+};
diff --git a/bin/helpers/configs/global_config.js b/bin/helpers/configs/global_config.js
@@ -7,6 +7,12 @@ const config = {
   system: {
     shutdownDelay: parseInt(process.env.SYSTEM_SHUTDOWN_DELAY) || 500,
   },
+  auth: {
+    basic: {
+      username: process.env.AUTH_BASIC_USERNAME,
+      password: process.env.AUTH_BASIC_PASSWORD,
+    }
+  },
   storage: {
     location: process.env.STORAGE_LOCATION,
   },
diff --git a/package.json b/package.json
@@ -23,6 +23,8 @@
     "mongodb": "5.9.2",
     "multer": "^1.4.5-lts.1",
     "nodemon": "^3.0.3",
+    "passport": "^0.7.0",
+    "passport-http": "^0.3.0",
     "uuid": "^9.0.1",
     "validate.js": "^0.13.1",
     "winston": "^3.11.0"
