Merge pull request #6 from Icehunter/master

Anthony Bouch · Anthony Bouch · commit e0bcefcc5a9d · 2015-07-10T05:12:13.000+07:00
uncaught issue would crash server on authorized route
diff --git a/lib/index.js b/lib/index.js
@@ -36,9 +36,13 @@ internals.implementation = function (server, options) {
         return reply(Boom.unauthorized(null, 'Signature'));
       }
 
-      var parsedSignature = HttpSignature.parseRequest(req);
-      if (!parsedSignature) {
-        return reply(Boom.unauthorized('HTTP authentication header missing signature', 'Signature'));
+      try {
+        var parsedSignature = HttpSignature.parseRequest(req);
+        if (!parsedSignature) {
+          return reply(Boom.unauthorized('HTTP authentication header missing signature'));
+        }
+      } catch (e) {
+          return reply(Boom.badRequest(e, 'Signature'));
       }
 
       settings.validateFunc(request, parsedSignature, function (err, isValid, credentials) {
@@ -82,4 +86,4 @@ internals.implementation = function (server, options) {
   };
 
   return scheme;
-};
+};
diff --git a/package.json b/package.json
@@ -1,7 +1,7 @@
 {
   "name": "hapi-auth-signature",
   "description": "Signature authentication plugin that wraps https://github.com/joyent/node-http-signature",
-  "version": "2.1.1",
+  "version": "2.1.2",
   "author": "Anthony Bouch <tony@58bits.com> (http://www.58bits.com)",
   "repository":
     {

Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "hapi-auth-signature",`
`3`	`3`	`"description": "Signature authentication plugin that wraps https://github.com/joyent/node-http-signature",`
`4`		`- "version": "2.1.1",`
	`4`	`+ "version": "2.1.2",`
`5`	`5`	`"author": "Anthony Bouch <tony@58bits.com> (http://www.58bits.com)",`
`6`	`6`	`"repository":`
`7`	`7`	`{`