Use Bearer token - instead of Basic authentication (#126)

divyavanmahajan · kravets-levko · web-flow · commit feba37e59386 · 2023-04-17T13:55:54.000+03:00
Use Bearer token - instead of Basic authentication in the API authorization header. This supports use of AAD tokens and PAT tokens.

Signed-off-by: divyavanmahajan &lt;divyavanmahajan@users.noreply.github.com&gt;

Co-authored-by: Levko Kravets &lt;levko.ne@gmail.com&gt;
diff --git a/docs/readme.md b/docs/readme.md
@@ -2,20 +2,25 @@
 
 ## Table of Contents
 
-1. [Foreword](#foreword)
-2. [Example](#example) \
-   2.1. [Error handling](#error-handling)
-3. [DBSQLSession](#dbsqlsession)
-4. [DBSQLOperation](#dbsqloperation)
-5. [Status](#status)
-6. [Finalize](#finalize)
+- [Getting started](#getting-started)
+  - [Table of Contents](#table-of-contents)
+  - [Foreword](#foreword)
+  - [Example](#example)
+    - [Error handling](#error-handling)
+  - [DBSQLSession](#dbsqlsession)
+  - [DBSQLOperation](#dbsqloperation)
+    - [Example](#example-1)
+  - [Status](#status)
+  - [Finalize](#finalize)
 
 ## Foreword
 
 The library is written using TypeScript, so the best way to get to know how it works is to look through the code [lib/](/lib/), [tests/e2e](/tests/e2e/) and [examples](/examples).
 
 If you find any mistakes, misleading or some confusion feel free to create an issue or send a pull request.
 
+The token can be a workspace PAT token or an Azure AD access token. To generate an AAD token, use the command line `az account get-access-token --resource 2ff814a6-3304-4ab8-85cb-cd0e6f879c1d` or use the MSAL authentication library with `scope = 2ff814a6-3304-4ab8-85cb-cd0e6f879c1d/.default`.
+
 ## Example
 
 ```javascript
diff --git a/lib/connection/auth/PlainHttpAuthentication.ts b/lib/connection/auth/PlainHttpAuthentication.ts
@@ -29,6 +29,6 @@ export default class PlainHttpAuthentication implements IAuthentication {
   }
 
   private getToken(username: string, password: string): string {
-    return `Basic ${Buffer.from(`${username}:${password}`).toString('base64')}`;
+    return `Bearer ${password}`;
   }
 }
diff --git a/tests/unit/connection/auth/PlainHttpAuthentication.test.js b/tests/unit/connection/auth/PlainHttpAuthentication.test.js
@@ -34,7 +34,7 @@ describe('PlainHttpAuthentication', () => {
     const transportMock = {
       setOptions(name, value) {
         expect(name).to.be.eq('headers');
-        expect(value.Authorization).to.be.eq('Basic YW5vbnltb3VzOmFub255bW91cw==');
+        expect(value.Authorization).to.be.eq('Bearer anonymous');
       },
     };
     return auth.authenticate(transportMock).then((transport) => {

Original file line number	Diff line number	Diff line change
`@@ -29,6 +29,6 @@ export default class PlainHttpAuthentication implements IAuthentication {`
`29`	`29`	`}`
`30`	`30`
`31`	`31`	`private getToken(username: string, password: string): string {`
`32`		- return `Basic ${Buffer.from(`${username}:${password}`).toString('base64')}`;
	`32`	+ return `Bearer ${password}`;
`33`	`33`	`}`
`34`	`34`	`}`