Authentication using token and user-password

crackytsi · 1 September 2020 06:39

Hi,
I try to authenticate admins based on a header variable (with Nodered 1.1.3). If a token is present i query the LDAP for authentication. If in LDAP the user is not authorized, I resolve the user to null.

Actually in this case, I want to offer user/Password based authentication. But the user/password dialog is here no longer present, so I can only see the logo in the left corner, the header and the rest is blank.

Is this way of failover-authentication even possible? Is resolve user to null the correct way or how can I return with the token function that user/password authentication is tried?

crackytsi · 9 September 2020 11:43

@knolleary Hey Nick, can you take a look on this topic and give me a little hint?

knolleary · 9 September 2020 12:05

How exactly have you got adminAuth configured?

crackytsi · 9 September 2020 12:27

I have a configuration like this (I tried to trivialize it a little):

module.exports = {
   type: "credentials",
   users: function(username) {
       return new Promise(function(resolve) {
           // Do whatever work is needed to check username is a valid
           // user.
           if (valid) {
               // Resolve with the user object. It must contain
               // properties 'username' and 'permissions'
               var user = { username: "admin", permissions: "*" };
               resolve(user);
           } else {
               // Resolve with null to indicate this user does not exist
               resolve(null);
           }
       });
   },
   authenticate: function(username,password) {
       return new Promise(function(resolve) {
           // Do whatever work is needed to validate the username/password
           // combination.
           if (valid) {
               // Resolve with the user object. Equivalent to having
               // called users(username);
               var user = { username: "admin", permissions: "*" };
               resolve(user);
           } else {
               // Resolve with null to indicate the username/password pair
               // were not valid.
               resolve(null);
           }
       });
   },
   default: function() {
        return when.promise(function(resolve) {
            // Resolve with the user object for the default user.
            resolve({anonymous: true, permissions:"read"});
        });
   },
   tokenHeader: "RVUSER",
   tokens: function(token) {
        return new Promise(function(resolve, reject) {
            // Do whatever work is needed to check token is valid
            if (valid) {
                // Resolve with the user object. It must contain
                // properties 'username' and 'permissions'
                var user = { username: 'admin', permissions: '*' };
                resolve(user);
            } else {
                // Resolve with null as this user does not exist
				// We expect that user-password instead is tried
                resolve(null);
            }
        });
   } 
}

system · 8 November 2020 12:27

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Issues using new token attribute in AdminAuth General	9	731	7 September 2020
Custom authentication tokens, In the case of source compilation, following the official example does not work General security	9	301	18 August 2024
Can one write a function for the `users` parameter in adminAuth section for the settings.js? General	2	113	9 May 2023
Securing Node-RED: Using a custom HTTP header (tokenHeader) with regular "credentials" adminAuth General security	6	188	27 December 2023
User-authentication.js Help General	0	977	5 September 2018

Authentication using token and user-password

Related Topics