DEV Community: Alex C V The latest articles on DEV Community by Alex C V (@alexcassol). https://dev.to/alexcassol https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F351147%2F5187ef30-c91f-4351-b23d-ecd92aaaa638.jpg DEV Community: Alex C V https://dev.to/alexcassol en Add Basic Auth to Elixir Phoenix + Daily password Alex C V Mon, 04 Jul 2022 17:08:00 +0000 https://dev.to/alexcassol/add-basic-auth-to-elixir-phoenix-daily-password-4hk4 https://dev.to/alexcassol/add-basic-auth-to-elixir-phoenix-daily-password-4hk4 <p>In this article we’ll learn how to add a basic auth to Elixir Phoenix Framework and how to use a password that changes every day.</p> <p>This method isn’t the most secure, but it’s a good trick.</p> <h2> Daily password </h2> <p>First of all we’ll create the function to generate the daily password.</p> <p>It’s something like this.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight elixir"><code> <span class="k">defmodule</span> <span class="no">MyApp</span><span class="o">.</span><span class="no">Helpers</span><span class="o">.</span><span class="no">DailyPassword</span> <span class="k">do</span> <span class="nv">@doc</span> <span class="sd">""" Generate a daily password. """</span> <span class="k">def</span> <span class="n">today_password</span> <span class="k">do</span> <span class="p">{</span><span class="n">year</span><span class="p">,</span> <span class="n">month</span><span class="p">,</span> <span class="n">day</span><span class="p">}</span> <span class="o">=</span> <span class="n">today</span><span class="p">()</span> <span class="no">Timex</span><span class="o">.</span><span class="n">format!</span><span class="p">({</span><span class="n">year</span><span class="p">,</span> <span class="n">month</span><span class="p">,</span> <span class="n">day</span><span class="p">},</span> <span class="s2">"{0D}{0M}{YY}"</span><span class="p">)</span> <span class="o">|&gt;</span> <span class="no">String</span><span class="o">.</span><span class="n">to_integer</span><span class="p">()</span> <span class="o">|&gt;</span> <span class="no">Kernel</span><span class="o">.+</span><span class="p">(</span><span class="n">day</span> <span class="o">*</span> <span class="mi">17</span> <span class="o">-</span> <span class="mi">5</span><span class="p">)</span> <span class="o">|&gt;</span> <span class="no">Kernel</span><span class="o">.+</span><span class="p">(</span><span class="n">month</span> <span class="o">*</span> <span class="mi">13</span><span class="p">)</span> <span class="o">|&gt;</span> <span class="no">Kernel</span><span class="o">.+</span><span class="p">(</span><span class="n">year</span> <span class="o">*</span> <span class="mi">17</span><span class="p">)</span> <span class="k">end</span> <span class="k">defp</span> <span class="n">today</span><span class="p">,</span> <span class="k">do</span><span class="p">:</span> <span class="ss">:calendar</span><span class="o">.</span><span class="n">local_time</span> <span class="o">|&gt;</span> <span class="n">elem</span><span class="p">(</span><span class="mi">0</span><span class="p">)</span> <span class="k">end</span> </code></pre> </div> <h2> Basic Auth Plug </h2> <div class="highlight js-code-highlight"> <pre class="highlight elixir"><code> <span class="k">defmodule</span> <span class="no">MyAppWeb</span><span class="o">.</span><span class="no">BasicAuth</span> <span class="k">do</span> <span class="kn">import</span> <span class="no">Plug</span><span class="o">.</span><span class="no">Conn</span> <span class="nv">@realm</span> <span class="s2">"Basic realm=</span><span class="se">\"</span><span class="s2">Staging</span><span class="se">\"</span><span class="s2">"</span> <span class="k">def</span> <span class="n">init</span><span class="p">(</span><span class="n">opts</span><span class="p">),</span> <span class="k">do</span><span class="p">:</span> <span class="n">opts</span> <span class="o">++</span> <span class="p">[</span><span class="ss">password:</span> <span class="no">MyApp</span><span class="o">.</span><span class="no">Helpers</span><span class="o">.</span><span class="no">DailyPassword</span><span class="o">.</span><span class="n">today_password</span><span class="p">()</span> <span class="o">|&gt;</span> <span class="n">to_string</span><span class="p">()]</span> <span class="k">def</span> <span class="n">call</span><span class="p">(</span><span class="n">conn</span><span class="p">,</span> <span class="n">correct_auth</span><span class="p">)</span> <span class="k">do</span> <span class="k">case</span> <span class="n">get_req_header</span><span class="p">(</span><span class="n">conn</span><span class="p">,</span> <span class="s2">"authorization"</span><span class="p">)</span> <span class="k">do</span> <span class="p">[</span><span class="s2">"Basic "</span> <span class="o">&lt;&gt;</span> <span class="n">attempted_auth</span><span class="p">]</span> <span class="o">-&gt;</span> <span class="n">verify</span><span class="p">(</span><span class="n">conn</span><span class="p">,</span> <span class="n">attempted_auth</span><span class="p">,</span> <span class="n">correct_auth</span><span class="p">)</span> <span class="n">_</span> <span class="o">-&gt;</span> <span class="n">unauthorized</span><span class="p">(</span><span class="n">conn</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> <span class="k">defp</span> <span class="n">verify</span><span class="p">(</span><span class="n">conn</span><span class="p">,</span> <span class="n">attempted_auth</span><span class="p">,</span> <span class="ss">username:</span> <span class="n">username</span><span class="p">,</span> <span class="ss">password:</span> <span class="n">password</span><span class="p">)</span> <span class="k">do</span> <span class="n">with</span> <span class="o">^</span><span class="n">attempted_auth</span> <span class="o">&lt;-</span> <span class="n">encode</span><span class="p">(</span><span class="n">username</span><span class="p">,</span> <span class="n">password</span><span class="p">)</span> <span class="k">do</span> <span class="n">conn</span> <span class="k">else</span> <span class="n">_</span> <span class="o">-&gt;</span> <span class="n">unauthorized</span><span class="p">(</span><span class="n">conn</span><span class="p">)</span> <span class="k">end</span> <span class="k">end</span> <span class="k">defp</span> <span class="n">encode</span><span class="p">(</span><span class="n">username</span><span class="p">,</span> <span class="n">password</span><span class="p">),</span> <span class="k">do</span><span class="p">:</span> <span class="no">Base</span><span class="o">.</span><span class="n">encode64</span><span class="p">(</span><span class="n">username</span> <span class="o">&lt;&gt;</span> <span class="s2">":"</span> <span class="o">&lt;&gt;</span> <span class="n">password</span><span class="p">)</span> <span class="k">defp</span> <span class="n">unauthorized</span><span class="p">(</span><span class="n">conn</span><span class="p">)</span> <span class="k">do</span> <span class="n">conn</span> <span class="o">|&gt;</span> <span class="n">put_resp_header</span><span class="p">(</span><span class="s2">"www-authenticate"</span><span class="p">,</span> <span class="nv">@realm</span><span class="p">)</span> <span class="o">|&gt;</span> <span class="n">send_resp</span><span class="p">(</span><span class="mi">401</span><span class="p">,</span> <span class="s2">"unauthorized"</span><span class="p">)</span> <span class="o">|&gt;</span> <span class="n">halt</span><span class="p">()</span> <span class="k">end</span> <span class="k">end</span> </code></pre> </div> <h2> Router </h2> <p>Now we need to configure the basic auth in router.ex.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight elixir"><code><span class="n">pipeline</span> <span class="ss">:auth</span> <span class="k">do</span> <span class="n">plug</span> <span class="no">MyAppWeb</span><span class="o">.</span><span class="no">BasicAuth</span><span class="p">,</span> <span class="p">[</span><span class="ss">username:</span> <span class="s2">"admin"</span><span class="p">]</span> <span class="k">end</span> </code></pre> </div> <p>And use auth wherever we want.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight elixir"><code><span class="n">scope</span> <span class="s2">"/"</span><span class="p">,</span> <span class="no">MyAppWeb</span> <span class="k">do</span> <span class="n">pipe_through</span> <span class="ss">:auth</span> <span class="o">...</span> <span class="k">end</span> </code></pre> </div> <h2> Conclusion </h2> <p>Phoenix provides a basic auth that you can use, <a href="https://hexdocs.pm/plug/Plug.BasicAuth.html">here the docs</a>, but it's cool to see how we can configure our own.</p> elixir auth phoenix