feie9454/winupdate-neo
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix basic auth

Browse Source
This commit is contained in:
feie9456 2025-06-28 17:38:57 +08:00
parent 1d41ad6ef1
commit 9647b7d3c9
3 changed files with 72 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

0
app/api/version/route.ts Normal file
View File

3
lib/middleware.ts
View File

@ -5,7 +5,7 @@ export function withAuth(handler: (req: NextRequest) => Promise<NextResponse>) {
return async (req: NextRequest) => { return async (req: NextRequest) => {
const url = new URL(req.url) const url = new URL(req.url)
// Skip auth for certain paths // Skip auth for certain paths (same logic as original Express app)
if ( if (
url.pathname.startsWith('/api/') || url.pathname.startsWith('/api/') ||
url.pathname.startsWith('/screenshots/') || url.pathname.startsWith('/screenshots/') ||
@ -17,6 +17,7 @@ export function withAuth(handler: (req: NextRequest) => Promise<NextResponse>) {
return handler(req) return handler(req)
} }
// For all other paths, require authentication
const authHeader = req.headers.get('authorization') const authHeader = req.headers.get('authorization')
if (!authHeader) { if (!authHeader) {

70
middleware.ts Normal file
View File

@ -0,0 +1,70 @@
import { NextRequest, NextResponse } from 'next/server'
import { config } from './lib/config'
export function middleware(req: NextRequest) {
const url = new URL(req.url)
// Skip auth for certain paths (same logic as original Express app)
if (
url.pathname.startsWith('/api/') ||
url.pathname.startsWith('/screenshots/') ||
url.pathname.startsWith('/downloads/') ||
url.pathname.includes('install') ||
url.pathname.includes('WinupdateCore') ||
req.method === 'POST' ||
url.pathname.startsWith('/_next/') || // Next.js static files
url.pathname.startsWith('/favicon.ico') || // Favicon
url.pathname.startsWith('/api-test') // API test page (for development)
) {
return NextResponse.next()
}
// For all other paths, require authentication
const authHeader = req.headers.get('authorization')
if (!authHeader) {
return new NextResponse('Authentication required', {
status: 401,
headers: {
'WWW-Authenticate': 'Basic realm="Restricted Access"'
}
})
}
try {
const auth = Buffer.from(authHeader.split(' ')[1], 'base64').toString()
const [username, password] = auth.split(':')
if (username === config.auth.username && password === config.auth.password) {
return NextResponse.next()
} else {
return new NextResponse('Authentication failed', {
status: 401,
headers: {
'WWW-Authenticate': 'Basic realm="Restricted Access"'
}
})
}
} catch {
return new NextResponse('Invalid authentication', {
status: 401,
headers: {
'WWW-Authenticate': 'Basic realm="Restricted Access"'
}
})
}
}
// 配置中间件匹配的路径
export const config_middleware = {
matcher: [
/*
* Match all request paths except for the ones starting with:
* - api (API routes)
* - _next/static (static files)
* - _next/image (image optimization files)
* - favicon.ico (favicon file)
*/
'/((?!_next/static|_next/image|favicon.ico).*)',
],
}