in src/JetBrains.Space.AspNetCore/Experimental/WebHooks/EndpointAuthentication/VerifyHttpBasicAuthenticationHandler.cs [29:71]
public Task<bool> AuthenticateRequestAsync(
SpaceWebHookOptions options,
HttpContext context,
string requestBody,
ApplicationPayload? payload)
{
var verificationOptions = options.VerifyHttpBasicAuthentication;
if (verificationOptions is not { IsEnabled: true })
{
return Task.FromResult(true);
}
if (string.IsNullOrEmpty(verificationOptions.Username) || string.IsNullOrEmpty(verificationOptions.Password))
{
_logger.LogError("Endpoint request validation failed. " + nameof(SpaceWebHookOptions.VerifyHttpBasicAuthentication) + " is enabled, but no " + nameof(VerifyHttpBasicAuthenticationOptions.Username) + " or " + nameof(VerifyHttpBasicAuthenticationOptions.Password) + " are configured");
return Task.FromResult(false);
}
// Verify header
#if NET6_0_OR_GREATER
foreach (var authorizationHeader in context.Request.Headers.Authorization)
#else
foreach (var authorizationHeader in context.Request.Headers["Authorization"])
#endif
{
var authorizationHeaderValue = AuthenticationHeaderValue.Parse(authorizationHeader);
if (authorizationHeaderValue.Scheme.Equals("Basic", StringComparison.OrdinalIgnoreCase) &&
authorizationHeaderValue.Parameter != null)
{
var credentialBytes = Convert.FromBase64String(authorizationHeaderValue.Parameter);
var credentials = Encoding.UTF8.GetString(credentialBytes).Split(new[] { ':' }, 2);
if (credentials.Length == 2 &&
credentials[0] == verificationOptions.Username &&
credentials[1] == verificationOptions.Password)
{
return Task.FromResult(true);
}
}
}
_logger.LogError("The HTTP request authentication header does not match the configured bearer token. Make sure the endpoint signing key is configured correctly in your Space organization, and the current application");
return Task.FromResult(false);
}