✨ Introduce auth header parsing method getTokenFromRequest

Author: Pl217

src/common-libs/auth/index.ts

@@ -1,14 +1,69 @@
-const AuthLib = {
-  async getRolesForAParticipant(participantId: number) {
-    return participantId; //TODO: add functionality
-  },
-
-  async getParticipantsForATarget(target: {
-    targetId: number;
-    target: string;
-  }) {
-    return target; //TODO: add functionality
-  },
+import { Request } from '@hapi/hapi';
+
+interface BasicAuth {
+  username: string | null;
+  password: string | null;
+}
+
+const parseBasic = (credentialsPart: string): BasicAuth => {
+  let pieces: (string | null)[];
+
+  const decoded = Buffer.from(credentialsPart, 'base64').toString('utf8');
+
+  if (!decoded) {
+    throw new Error('Invalid authorization header');
+  }
+
+  const index = decoded.indexOf(':');
+
+  if (index === -1) {
+    pieces = [decoded];
+  } else {
+    pieces = [decoded.slice(0, index), decoded.slice(index + 1)];
+  }
+
+  // Allows for usernameless authentication
+  if (!pieces[0]) {
+    pieces[0] = null;
+  }
+
+  // Allows for passwordless authentication
+  if (!pieces[1]) {
+    pieces[1] = null;
+  }
+
+  return {
+    username: pieces[0],
+    password: pieces[1],
+  };
 };
 
-export default AuthLib;
+export const getTokenFromRequest = (req: Request): string | null => {
+  if (!req.headers?.authorization) {
+    return null;
+  }
+
+  const pieces = req.headers.authorization.split(/\s+/);
+
+  if (!pieces || pieces.length !== 2) {
+    throw new Error('Bad HTTP authentication header format');
+  }
+
+  let credentials: string | null = null;
+  const schemePart = pieces[0];
+  const credentialsPart = pieces[1];
+
+  switch (schemePart.toLowerCase()) {
+    case 'basic':
+      credentials = parseBasic(credentialsPart).password;
+      break;
+    case 'bearer':
+      credentials = credentialsPart;
+      break;
+
+    default:
+      throw new Error('Unsupported authorization scheme');
+  }
+
+  return credentials;
+};

src/server.ts

@@ -13,6 +13,7 @@ import { Container } from 'typedi';
 import { CONFIG } from '../config';
 import { createDbConnetion } from './data-providers/postgres';
 import v4Models from '@unocha/hpc-api-core/src/db';
+import { getTokenFromRequest } from './common-libs/auth';
 
 declare module '@hapi/hapi' {
   interface ServerApplicationState {
@@ -46,10 +47,11 @@ async function startServer() {
 
   const apolloServer = new ApolloServer({
     schema,
-    context: () => ({
+    context: ({ request }: { request: Hapi.Request }) => ({
       connection: dbConnection,
       models: v4Models(dbConnection),
       config: CONFIG,
+      token: getTokenFromRequest(request),
     }),
     plugins: [
       ApolloServerPluginStopHapiServer({ hapiServer }),