Packages
boruta
2.3.1
3.0.0-beta.4
3.0.0-beta.3
3.0.0-beta.2
3.0.0-beta.1
2.3.6
2.3.5
2.3.4
2.3.3
2.3.2
2.3.1
2.3.0
2.2.2
2.2.1
2.2.0
2.1.5
2.1.4
2.1.3
2.1.2
2.1.1
2.1.0
2.0.1
2.0.0
2.0.0-rc.1
2.0.0-rc.0
1.2.1
1.2.0
1.1.0
1.0.3
1.0.2
1.0.1
1.0.0
1.0.0-rc.3
1.0.0-rc.2
1.0.0-rc.1
1.0.0-rc.0
0.2.1
0.2.0
0.1.1
0.1.0
0.1.0-rc.5
0.1.0-rc.4
0.1.0-rc.3
0.1.0-rc.2
0.1.0-rc.1
Core of an OAuth/OpenID Connect provider enabling authorization in your applications.
Current section
Files
Jump to
Current section
Files
lib/boruta/utils/basic_auth.ex
defmodule Boruta.BasicAuth do
@moduledoc """
HTTP BasicAuth utilities
Provide utilities to decode Basic authorization header as stated in [RFC 7617 - The 'Basic' HTTP Authentication Scheme](https://tools.ietf.org/html/rfc7617)
"""
@doc """
Decode given authorization header and returns an array containing username and password.
## Examples
iex> Boruta.BasicAuth.decode("Basic dXNlcm5hbWU6cGFzc3dvcmQ=")
{:ok, ["username", "password"]}
iex> Boruta.BasicAuth.decode("bad_authorization_header")
{:error, "`bad_authorization_header` is not a valid Basic authorization header."}
"""
@spec decode(authorization_header :: String.t()) :: {:ok, list(String.t())} | {:error, String.t()}
def decode("Basic " <> encoded) do
with {:ok, decoded} <- Base.decode64(encoded),
[username, password] <- String.split(decoded, ":") do
{:ok, [username, password]}
else
_ -> {:error, "Given credentials are invalid."}
end
end
def decode(string) when is_binary(string), do: {:error, "`#{string}` is not a valid Basic authorization header."}
end