2016-05-01 04:02:01 -05:00
|
|
|
var crypto = require('crypto')
|
|
|
|
var crypt3 = require('./crypt3')
|
2017-01-19 10:14:53 -05:00
|
|
|
var md5 = require('apache-md5')
|
2016-05-01 04:02:01 -05:00
|
|
|
var locker = require('../../file-locking')
|
|
|
|
|
|
|
|
// this function neither unlocks file nor closes it
|
|
|
|
// it'll have to be done manually later
|
|
|
|
function lock_and_read(name, cb) {
|
|
|
|
locker.readFile(name, {lock: true}, function (err, res) {
|
|
|
|
if (err) {
|
|
|
|
return cb(err)
|
|
|
|
}
|
|
|
|
return cb(null, res)
|
|
|
|
})
|
|
|
|
}
|
|
|
|
|
|
|
|
// close and unlock file
|
|
|
|
function unlock_file(name, cb) {
|
|
|
|
locker.unlockFile(name, cb)
|
|
|
|
}
|
|
|
|
|
|
|
|
function parse_htpasswd(input) {
|
|
|
|
var result = {}
|
|
|
|
input.split('\n').forEach(function(line) {
|
|
|
|
var args = line.split(':', 3)
|
|
|
|
if (args.length > 1) result[args[0]] = args[1]
|
|
|
|
})
|
|
|
|
return result
|
|
|
|
}
|
|
|
|
|
|
|
|
function verify_password(user, passwd, hash) {
|
|
|
|
if (hash.indexOf('{PLAIN}') === 0) {
|
|
|
|
return passwd === hash.substr(7)
|
|
|
|
} else if (hash.indexOf('{SHA}') === 0) {
|
|
|
|
return crypto.createHash('sha1').update(passwd, 'binary').digest('base64') === hash.substr(5)
|
|
|
|
} else {
|
2017-01-19 10:14:53 -05:00
|
|
|
return (
|
|
|
|
// for backwards compatibility, first check md5 then check crypt3
|
|
|
|
md5(passwd, hash) === hash ||
|
|
|
|
crypt3(passwd, hash) === hash
|
|
|
|
)
|
2016-05-01 04:02:01 -05:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
function add_user_to_htpasswd(body, user, passwd) {
|
|
|
|
if (user !== encodeURIComponent(user)) {
|
|
|
|
var err = Error('username should not contain non-uri-safe characters')
|
|
|
|
err.status = 409
|
|
|
|
throw err
|
|
|
|
}
|
|
|
|
|
|
|
|
if (crypt3) {
|
|
|
|
passwd = crypt3(passwd)
|
|
|
|
} else {
|
|
|
|
passwd = '{SHA}' + crypto.createHash('sha1').update(passwd, 'binary').digest('base64')
|
|
|
|
}
|
|
|
|
var comment = 'autocreated ' + (new Date()).toJSON()
|
|
|
|
|
|
|
|
var newline = user + ':' + passwd + ':' + comment + '\n'
|
|
|
|
if (body.length && body[body.length-1] !== '\n') newline = '\n' + newline
|
|
|
|
return body + newline
|
|
|
|
}
|
|
|
|
|
|
|
|
module.exports.parse_htpasswd = parse_htpasswd
|
|
|
|
module.exports.verify_password = verify_password
|
|
|
|
module.exports.add_user_to_htpasswd = add_user_to_htpasswd
|
|
|
|
module.exports.lock_and_read = lock_and_read
|
|
|
|
module.exports.unlock_file = unlock_file
|