From 6379e1703c5c83faade857985ee93d307c7da697 Mon Sep 17 00:00:00 2001 From: Pooja Belaramani Date: Mon, 28 Apr 2025 12:52:52 +0530 Subject: [PATCH] feat: extend cli auth for inherit and request --- .../bruno-cli/src/runner/prepare-request.js | 57 ++++++++++++ .../tests/runner/prepare-request.spec.js | 86 +++++++++++++++++++ 2 files changed, 143 insertions(+) diff --git a/packages/bruno-cli/src/runner/prepare-request.js b/packages/bruno-cli/src/runner/prepare-request.js index 7e7f5d3ac..4b0a324ef 100644 --- a/packages/bruno-cli/src/runner/prepare-request.js +++ b/packages/bruno-cli/src/runner/prepare-request.js @@ -72,6 +72,45 @@ const prepareRequest = (item = {}, collection = {}) => { password: get(collectionAuth, 'digest.password') }; } + + if (collectionAuth.mode === 'awsv4') { + axiosRequest.awsv4config = { + accessKeyId: get(collectionAuth, 'awsv4.accessKeyId'), + secretAccessKey: get(collectionAuth, 'awsv4.secretAccessKey'), + sessionToken: get(collectionAuth, 'awsv4.sessionToken'), + service: get(collectionAuth, 'awsv4.service'), + region: get(collectionAuth, 'awsv4.region'), + profileName: get(collectionAuth, 'awsv4.profileName') + }; + } + + if (collectionAuth.mode === 'ntlm') { + axiosRequest.ntlmConfig = { + username: get(collectionAuth, 'ntlm.username'), + password: get(collectionAuth, 'ntlm.password'), + domain: get(collectionAuth, 'ntlm.domain') + }; + } + + if (collectionAuth.mode === 'wsse') { + const username = get(collectionAuth, 'wsse.username', ''); + const password = get(collectionAuth, 'wsse.password', ''); + + const ts = new Date().toISOString(); + const nonce = crypto.randomBytes(16).toString('hex'); + + // Create the password digest using SHA-1 as required for WSSE + const hash = crypto.createHash('sha1'); + hash.update(nonce + ts + password); + const digest = Buffer.from(hash.digest('hex').toString('utf8')).toString('base64'); + + // Construct the WSSE header + axiosRequest.headers[ + 'X-WSSE' + ] = `UsernameToken Username="${username}", PasswordDigest="${digest}", Nonce="${nonce}", Created="${ts}"`; + } + + console.log('axiosRequest', axiosRequest); } if (request.auth && request.auth.mode !== 'inherit') { @@ -129,6 +168,24 @@ const prepareRequest = (item = {}, collection = {}) => { password: get(request, 'auth.digest.password') }; } + + if (request.auth.mode === 'apikey') { + if (request.auth.apikey?.placement === 'header') { + axiosRequest.headers[request.auth.apikey?.key] = request.auth.apikey?.value; + } + + if (request.auth.apikey?.placement === 'queryparams') { + if (axiosRequest.url && request.auth.apikey?.key) { + try { + const urlObj = new URL(request.url); + urlObj.searchParams.set(request.auth.apikey?.key, request.auth.apikey?.value); + axiosRequest.url = urlObj.toString(); + } catch (error) { + console.error('Invalid URL:', request.url, error); + } + } + } + } } request.body = request.body || {}; diff --git a/packages/bruno-cli/tests/runner/prepare-request.spec.js b/packages/bruno-cli/tests/runner/prepare-request.spec.js index 39b79972f..6b47a3004 100644 --- a/packages/bruno-cli/tests/runner/prepare-request.spec.js +++ b/packages/bruno-cli/tests/runner/prepare-request.spec.js @@ -150,6 +150,92 @@ describe('prepare-request: prepareRequest', () => { }); }); + describe('AWS v4 Authentication', () => { + it('If collection auth is AWS v4', () => { + collection.root.request.auth = { + mode: 'awsv4', + awsv4: { + accessKeyId: 'AKIAIOSFODNN7EXAMPLE', + secretAccessKey: 'wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY', + sessionToken: 'session-token', + service: 's3', + region: 'us-west-2', + profileName: 'default' + } + }; + + const result = prepareRequest(item, collection); + const expected = { + accessKeyId: 'AKIAIOSFODNN7EXAMPLE', + secretAccessKey: 'wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY', + sessionToken: 'session-token', + service: 's3', + region: 'us-west-2', + profileName: 'default' + }; + expect(result.awsv4config).toEqual(expected); + }); + }); + + describe('NTLM Authentication', () => { + it('If collection auth is NTLM', () => { + collection.root.request.auth = { + mode: 'ntlm', + ntlm: { + username: 'testUser', + password: 'testPass123', + domain: 'testDomain' + } + }; + + const result = prepareRequest(item, collection); + const expected = { + username: 'testUser', + password: 'testPass123', + domain: 'testDomain' + }; + expect(result.ntlmConfig).toEqual(expected); + }); + }); + + describe('WSSE Authentication', () => { + it('If collection auth is WSSE', () => { + collection.root.request.auth = { + mode: 'wsse', + wsse: { + username: 'testUser', + password: 'testPass123' + } + }; + + const result = prepareRequest(item, collection); + expect(result.headers).toHaveProperty('X-WSSE'); + expect(result.headers['X-WSSE']).toContain('UsernameToken Username="testUser"'); + expect(result.headers['X-WSSE']).toContain('PasswordDigest="'); + expect(result.headers['X-WSSE']).toContain('Nonce="'); + expect(result.headers['X-WSSE']).toContain('Created="'); + }); + }); + + describe('Digest Authentication', () => { + it('If collection auth is digest auth', () => { + collection.root.request.auth = { + mode: 'digest', + digest: { + username: 'testUser', + password: 'testPass123' + } + }; + + const result = prepareRequest(item, collection); + const expected = { + username: 'testUser', + password: 'testPass123' + }; + expect(result.digestConfig).toEqual(expected); + }); + }); + describe('No Authentication', () => { it('If request does not have auth configured', () => { delete item.request.auth;