Skip to content

Latest commit

 

History

History
42 lines (29 loc) · 929 Bytes

README.md

File metadata and controls

42 lines (29 loc) · 929 Bytes

basic-auth-connect

Connect's Basic Auth middleware in its own module. You should consider to create your own middleware with basic-auth.

API

var basicAuth = require('basic-auth-connect');

Simple username and password

connect()
.use(basicAuth('username', 'password'));

Callback verification

connect()
.use(basicAuth(function(user, pass){
  return 'tj' == user && 'wahoo' == pass;
}))

Async callback verification, accepting fn(err, user).

connect()
.use(basicAuth(function(user, pass, fn){
  User.authenticate({ user: user, pass: pass }, fn);
}))

Security Considerations

Important: When using the callback method, it is recommended to use a time-safe comparison function like crypto.timingSafeEqual to prevent timing attacks.

License

MIT