File Explorer

/var/lang/lib/node_modules/npm/lib/utils
This explorer reads the filesystem of the server it runs on, so /workspace/user isn't present here. Browsing and the terminal still work against this server's own disk from /.
0 dirs
35 files
auth.js3.2 KB · 110 lines
1const { webAuthOpener, adduserWeb, loginWeb, loginCouch, adduserCouch } = require('npm-profile')2const { log } = require('proc-log')3const { createOpener } = require('../utils/open-url.js')4const read = require('../utils/read-user-info.js')5 6const otplease = async (npm, opts, fn) => {7  try {8    return await fn(opts)9  } catch (err) {10    if (!process.stdin.isTTY || !process.stdout.isTTY) {11      throw err12    }13 14    // web otp15    if (err.code === 'EOTP' && err.body?.authUrl && err.body?.doneUrl) {16      const { token: otp } = await webAuthOpener(17        createOpener(npm, 'Authenticate your account at'),18        err.body.authUrl,19        err.body.doneUrl,20        opts21      )22      return await fn({ ...opts, otp })23    }24 25    // classic otp26    if (err.code === 'EOTP' || (err.code === 'E401' && /one-time pass/.test(err.body))) {27      const otp = await read.otp('This operation requires a one-time password.\nEnter OTP:')28      return await fn({ ...opts, otp })29    }30 31    throw err32  }33}34 35const adduser = async (npm, { creds, ...opts }) => {36  const authType = npm.config.get('auth-type')37  let res38  if (authType === 'web') {39    try {40      res = await adduserWeb(createOpener(npm, 'Create your account at'), opts)41    } catch (err) {42      if (err.code === 'ENYI') {43        log.verbose('web add user not supported, trying couch')44      } else {45        throw err46      }47    }48  }49 50  // auth type !== web or ENYI error w/ web adduser51  if (!res) {52    const username = await read.username('Username:', creds.username)53    const password = await read.password('Password:', creds.password)54    const email = await read.email('Email (this will be public):', creds.email)55    // npm registry quirk: If you "add" an existing user with their current56    // password, it's effectively a login, and if that account has otp you'll57    // be prompted for it.58    res = await otplease(npm, opts, (reqOpts) => adduserCouch(username, email, password, reqOpts))59  }60 61  // We don't know the username if it was a web login, all we can reliably log is scope and registry62  const message = `Logged in${opts.scope ? ` to scope ${opts.scope}` : ''} on ${opts.registry}.`63 64  log.info('adduser', message)65 66  return {67    message,68    newCreds: { token: res.token },69  }70}71 72const login = async (npm, { creds, ...opts }) => {73  const authType = npm.config.get('auth-type')74  let res75  if (authType === 'web') {76    try {77      res = await loginWeb(createOpener(npm, 'Login at'), opts)78    } catch (err) {79      if (err.code === 'ENYI') {80        log.verbose('web login not supported, trying couch')81      } else {82        throw err83      }84    }85  }86 87  // auth type !== web or ENYI error w/ web login88  if (!res) {89    const username = await read.username('Username:', creds.username)90    const password = await read.password('Password:', creds.password)91    res = await otplease(npm, opts, (reqOpts) => loginCouch(username, password, reqOpts))92  }93 94  // We don't know the username if it was a web login, all we can reliably log is scope and registry95  const message = `Logged in${opts.scope ? ` to scope ${opts.scope}` : ''} on ${opts.registry}.`96 97  log.info('login', message)98 99  return {100    message,101    newCreds: { token: res.token },102  }103}104 105module.exports = {106  adduser,107  login,108  otplease,109}110