31 lines
1 KiB
Lua
31 lines
1 KiB
Lua
-- httpserver-basicauth.lua
|
|
-- Part of nodemcu-httpserver, authenticates a user using http basic auth.
|
|
-- Author: Sam Dieck
|
|
|
|
basicAuth = {}
|
|
|
|
-- Parse basic auth http header.
|
|
-- Returns the username if header contains valid credentials,
|
|
-- nil otherwise.
|
|
function basicAuth.authenticate(header)
|
|
local conf = dofile("httpserver-conf.lc")
|
|
local credentials_enc = header:match("Authorization: Basic ([A-Za-z0-9+/=]+)")
|
|
if not credentials_enc then
|
|
return nil
|
|
end
|
|
local credentials = dofile("httpserver-b64decode.lc")(credentials_enc)
|
|
local user, pwd = credentials:match("^(.*):(.*)$")
|
|
if user ~= conf.auth.user or pwd ~= conf.auth.password then
|
|
print("httpserver-basicauth: User \"" .. user .. "\": Access denied.")
|
|
return nil
|
|
end
|
|
print("httpserver-basicauth: User \"" .. user .. "\": Authenticated.")
|
|
return user
|
|
end
|
|
|
|
function basicAuth.authErrorHeader()
|
|
local conf = dofile("httpserver-conf.lc")
|
|
return "WWW-Authenticate: Basic realm=\"" .. conf.auth.realm .. "\""
|
|
end
|
|
|
|
return basicAuth
|