uptime-kuma/server/auth.js

const basicAuth = require("express-basic-auth");
const passwordHash = require("./password-hash");
const { R } = require("redbean-node");
const { setting } = require("./util-server");
const { debug } = require("../src/util");
const { loginRateLimiter } = require("./rate-limiter");

/**
 *
 * @param username : string
 * @param password : string
 * @returns {Promise<Bean|null>}
 */
exports.login = async function (username, password) {
    let user = await R.findOne("user", " username = ? AND active = 1 ", [
        username,
    ]);

    if (user && passwordHash.verify(password, user.password)) {
        // Upgrade the hash to bcrypt
        if (passwordHash.needRehash(user.password)) {
            await R.exec("UPDATE `user` SET password = ? WHERE id = ? ", [
                passwordHash.generate(password),
                user.id,
            ]);
        }
        return user;
    }

    return null;
};

function myAuthorizer(username, password, callback) {
    setting("disableAuth").then((result) => {
        if (result) {
            callback(null, true);
        } else {
            // Login Rate Limit
            loginRateLimiter.pass(null, 0).then((pass) => {
                if (pass) {
                    exports.login(username, password).then((user) => {
                        callback(null, user != null);

                        if (user == null) {
                            loginRateLimiter.removeTokens(1);
                        }
                    });
                } else {
                    callback(null, false);
                }
            });

        }
    });
}

exports.basicAuth = basicAuth({
    authorizer: myAuthorizer,
    authorizeAsync: true,
    challenge: true,
});
add login rate limiter 2021-10-23 08:35:13 +00:00			`const basicAuth = require("express-basic-auth");`
Autofix on save 2021-07-27 17:47:13 +00:00			`const passwordHash = require("./password-hash");`
			`const { R } = require("redbean-node");`
requires empty username/password if set disableAuth for basic auth 2021-08-02 16:08:46 +00:00			`const { setting } = require("./util-server");`
			`const { debug } = require("../src/util");`
add login rate limiter 2021-10-23 08:35:13 +00:00			`const { loginRateLimiter } = require("./rate-limiter");`
Add Basic Auth for /metrics 2021-07-27 16:52:31 +00:00
			`/**`
			`*`
			`* @param username : string`
			`* @param password : string`
			`* @returns {Promise<Bean\|null>}`
			`*/`
			`exports.login = async function (username, password) {`
			`let user = await R.findOne("user", " username = ? AND active = 1 ", [`
Autofix on save 2021-07-27 17:47:13 +00:00			`username,`
add login rate limiter 2021-10-23 08:35:13 +00:00			`]);`
Add Basic Auth for /metrics 2021-07-27 16:52:31 +00:00
			`if (user && passwordHash.verify(password, user.password)) {`
			`// Upgrade the hash to bcrypt`
			`if (passwordHash.needRehash(user.password)) {`
			await R.exec("UPDATE `user` SET password = ? WHERE id = ? ", [
			`passwordHash.generate(password),`
Autofix on save 2021-07-27 17:47:13 +00:00			`user.id,`
Add Basic Auth for /metrics 2021-07-27 16:52:31 +00:00			`]);`
			`}`
			`return user;`
			`}`
Autofix on save 2021-07-27 17:47:13 +00:00
			`return null;`
add login rate limiter 2021-10-23 08:35:13 +00:00			`};`
Add Basic Auth for /metrics 2021-07-27 16:52:31 +00:00
			`function myAuthorizer(username, password, callback) {`
requires empty username/password if set disableAuth for basic auth 2021-08-02 16:08:46 +00:00			`setting("disableAuth").then((result) => {`
			`if (result) {`
add login rate limiter 2021-10-23 08:35:13 +00:00			`callback(null, true);`
requires empty username/password if set disableAuth for basic auth 2021-08-02 16:08:46 +00:00			`} else {`
add login rate limiter 2021-10-23 08:35:13 +00:00			`// Login Rate Limit`
			`loginRateLimiter.pass(null, 0).then((pass) => {`
			`if (pass) {`
			`exports.login(username, password).then((user) => {`
			`callback(null, user != null);`

			`if (user == null) {`
			`loginRateLimiter.removeTokens(1);`
			`}`
			`});`
			`} else {`
			`callback(null, false);`
			`}`
			`});`
requires empty username/password if set disableAuth for basic auth 2021-08-02 16:08:46 +00:00
add login rate limiter 2021-10-23 08:35:13 +00:00			`}`
			`});`
Add Basic Auth for /metrics 2021-07-27 16:52:31 +00:00			`}`

			`exports.basicAuth = basicAuth({`
			`authorizer: myAuthorizer,`
			`authorizeAsync: true,`
Autofix on save 2021-07-27 17:47:13 +00:00			`challenge: true,`
Add Basic Auth for /metrics 2021-07-27 16:52:31 +00:00			`});`