Skip to content

docs: update docs after default method removal #97

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
blakeembrey merged 1 commit into from
Apr 23, 2026
Merged

docs: update docs after default method removal #97

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
35 changes: 14 additions & 21 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,53 +23,46 @@ $ npm install basic-auth
<!-- eslint-disable no-unused-vars -->

```js
var auth = require('basic-auth');
const { parse } = require('basic-auth');
```

### auth(req)

Get the basic auth credentials from the given request. The `Authorization`
header is parsed and if the header is invalid, `undefined` is returned,
otherwise an object with `name` and `pass` properties.

### auth.parse(string)
### parse(string)

Parse a basic auth authorization header string. This will return an object
with `name` and `pass` properties, or `undefined` if the string is invalid.

## Example

Pass a Node.js request object to the module export. If parsing fails
Pass a Basic auth header to the `parse()` method. If parsing fails
`undefined` is returned, otherwise an object with `.name` and `.pass`.

<!-- eslint-disable no-unused-vars, no-undef -->

```js
var auth = require('basic-auth');
var user = auth(req);
const { parse } = require('basic-auth');
const user = parse(req.headers.authorization);
// => { name: 'something', pass: 'whatever' }
```

A header string from any other location can also be parsed with
`auth.parse`, for example a `Proxy-Authorization` header:
A header string from any other location can also be parsed for example a `Proxy-Authorization` header:

<!-- eslint-disable no-unused-vars, no-undef -->

```js
var auth = require('basic-auth');
var user = auth.parse(req.getHeader('Proxy-Authorization'));
const { parse } = require('basic-auth');
const user = parse(req.getHeader('Proxy-Authorization'));
```

### With vanilla node.js http server

```js
var http = require('http');
var auth = require('basic-auth');
var compare = require('tsscmp');
const http = require('node:http');
const { parse } = require('basic-auth');
const compare = require('tsscmp');

// Create server
var server = http.createServer(function (req, res) {
var credentials = auth(req);
const server = http.createServer(function (req, res) {
const credentials = parse(req.headers.authorization);

// Check credentials
// The "check" function will typically be against your user store
Expand All @@ -84,7 +77,7 @@ var server = http.createServer(function (req, res) {

// Basic function to validate credentials for example
function check(name, pass) {
var valid = true;
let valid = true;

// Simple method to prevent short-circuit and use timing-safe compare
valid = compare(name, 'john') && valid;
Expand Down
Loading