michael/scrypted
1
0
Fork 0
mirror of https://github.com/koush/scrypted.git synced 2026-02-17 04:02:14 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

server: basic auth. object stats.

Browse Source
This commit is contained in:
Koushik Dutta
2021-09-18 20:55:53 -07:00
parent 4c963260ff
commit 2ce5812ff5
5 changed files with 179 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
server/src/component/plugin.ts
View File

@@ -67,9 +67,14 @@ export class PluginComponent {
async getPluginInfo(pluginId: string) {
const plugin = await this.scrypted.datastore.tryGet(Plugin, pluginId);
const host = this.scrypted.plugins[pluginId];
let rpcObjects = 0;
if (host.peer) {
rpcObjects = host.peer.localProxied.size + Object.keys(host.peer.remoteWeakProxies).length;
}
return {
pid: host?.worker?.process.pid,
stats: host?.stats,
rpcObjects,
packageJson: plugin.packageJson,
id: this.scrypted.findPluginDevice(pluginId),
}

1
server/src/db-types.ts
View File

@@ -18,6 +18,7 @@ export class Plugin extends ScryptedDocument {
export class ScryptedUser extends ScryptedDocument {
passwordDate: number;
passwordHash: string;
token: string;
salt: string;
}

55
server/src/scrypted-main.ts
View File

@@ -18,11 +18,11 @@ import cookieParser from 'cookie-parser';
import axios from 'axios';
import qs from 'query-string';
import { RPCResultError } from './rpc';
import child_process from 'child_process';
import os from 'os';
import fs from 'fs';
import mkdirp from 'mkdirp';
import { install as installSourceMapSupport } from 'source-map-support';
import httpAuth from 'http-auth';
installSourceMapSupport();
@@ -106,6 +106,24 @@ else {
certSetting = await db.upsert(certSetting);
}
const basicAuth = httpAuth.basic({
realm: 'Scrypted',
}, async (username, password, callback) => {
const user = await db.tryGet(ScryptedUser, username);
if (!user) {
callback(false);
return;
}
const salted = user.salt + password;
const hash = crypto.createHash('sha256');
hash.update(salted);
const sha = hash.digest().toString('hex');
callback(sha === user.passwordHash || password === user.token);
});
const keys = certSetting.value;
const secure = https.createServer({ key: keys.serviceKey, cert: keys.certificate }, app).listen(SCRYPTED_SECURE_PORT);
const insecure = http.createServer(app).listen(SCRYPTED_INSECURE_PORT);
@@ -134,6 +152,16 @@ else {
res.locals.username = username;
}
else if (req.protocol === 'https' && req.headers.authorization) {
const basicChecker = basicAuth.check((req) => {
res.locals.username = req.user;
next();
});
// this automatically handles unauthorized.
basicChecker(req, res);
return;
}
next();
});
@@ -253,6 +281,7 @@ else {
const timestamp = Date.now();
if (hasLogin) {
const user = await db.tryGet(ScryptedUser, username);
if (!user) {
res.send({
@@ -319,6 +348,28 @@ else {
});
app.get('/login', async (req, res) => {
if (req.protocol === 'https' && req.headers.authorization) {
const username = await new Promise(resolve => {
const basicChecker = basicAuth.check((req) => {
resolve(req.user);
});
// this automatically handles unauthorized.
basicChecker(req, res);
});
const user = await db.tryGet(ScryptedUser, username);
if (!user.token) {
user.token = crypto.randomBytes(16).toString('hex');
await db.upsert(user);
}
res.send({
username,
token: user.token,
});
return;
}
const hasLogin = await db.getCount(ScryptedUser) > 0;
const { login_user_token } = req.signedCookies;
if (!login_user_token) {