@awsless/awsless 0.0.651 → 0.0.652

package/dist/bin.js

@@ -1576,10 +1576,13 @@ var RouterDefaultSchema = z23.record(
       origins: z23.string().array().default(["*"]),
       methods: z23.enum(["GET", "DELETE", "HEAD", "OPTIONS", "PATCH", "POST", "PUT", "ALL"]).array().default(["ALL"])
     }).optional().describe("Specify the cors headers."),
+    passwordAuth: z23.object({
+      password: z23.string().describe("Password.")
+    }).optional().describe("Enable password authentication for the router."),
     basicAuth: z23.object({
       username: z23.string().describe("Basic auth username."),
       password: z23.string().describe("Basic auth password.")
-    }).optional().describe("Enable basic authentication for the site."),
+    }).optional().describe("Enable basic authentication for the router."),
     // security: z
     // 	.object({
     // 		contentSecurityPolicy: z.object({
@@ -7388,7 +7391,13 @@ import { camelCase as camelCase8, constantCase as constantCase14 } from "change-
 var getViewerRequestFunctionCode = (props) => {
   return CODE([
     props.blockDirectAccess ? BLOCK_DIRECT_ACCESS_TO_CLOUDFRONT : "",
-    props.basicAuth ? BASIC_AUTH_CHECK(props.basicAuth.username, props.basicAuth.password) : ""
+    props.passwordAuth ?? props.basicAuth ? AUTH_WRAPPER(
+      [
+        //
+        props.basicAuth ? BASIC_AUTH_CHECK(props.basicAuth.username, props.basicAuth.password) : "",
+        props.passwordAuth ? PASSWORD_AUTH_CHECK(props.passwordAuth.password) : ""
+      ].join("\n")
+    ) : ""
   ]);
 };
 var BLOCK_DIRECT_ACCESS_TO_CLOUDFRONT = `
@@ -7399,13 +7408,36 @@ if (headers.host && headers.host.value.includes('cloudfront.net')) {
 	};
 }`;
 var BASIC_AUTH_CHECK = (username, password) => `
-const auth = headers.authorization && headers.authorization.value;
-if (!auth || !auth.startsWith('Basic ') || auth.slice(6) !== '${Buffer.from(`${username}:${password}`).toString("base64")}') {
+authMethods.push('Basic realm="Protected"');
+
+if(!isAuthorized) {
+	if(authHeader && authHeader.startsWith('Basic ') && authHeader.slice(6) === '${Buffer.from(`${username}:${password}`).toString("base64")}') {
+		isAuthorized = true;
+	}
+}
+`;
+var PASSWORD_AUTH_CHECK = (password) => `
+authMethods.push('Password realm="Protected"');
+
+if(!isAuthorized) {
+	if(authHeader && authHeader.startsWith('Password ') && authHeader.slice(9) === '${password}') {
+		isAuthorized = true;
+	}
+}
+`;
+var AUTH_WRAPPER = (code) => `
+const authHeader = headers.authorization && headers.authorization.value;
+const authMethods = [];
+let isAuthorized = false;
+
+${code}
+
+if (!isAuthorized) {
 	return {
 		statusCode: 401,
 		headers: {
 			'www-authenticate': {
-				value: 'Basic realm="Protected"'
+				value: authMethods.join(', ')
 			}
 		}
 	};
@@ -7724,7 +7756,8 @@ var routerFeature = defineFeature({
         keyValueStoreAssociations: [routeStore.arn],
         code: getViewerRequestFunctionCode({
           blockDirectAccess: !!props.domain,
-          basicAuth: props.basicAuth
+          basicAuth: props.basicAuth,
+          passwordAuth: props.passwordAuth
         })
       });
       const wafSettingsConfig = props.waf;

package/dist/build-json-schema.js

@@ -638,10 +638,13 @@ var RouterDefaultSchema = z19.record(
       origins: z19.string().array().default(["*"]),
       methods: z19.enum(["GET", "DELETE", "HEAD", "OPTIONS", "PATCH", "POST", "PUT", "ALL"]).array().default(["ALL"])
     }).optional().describe("Specify the cors headers."),
+    passwordAuth: z19.object({
+      password: z19.string().describe("Password.")
+    }).optional().describe("Enable password authentication for the router."),
     basicAuth: z19.object({
       username: z19.string().describe("Basic auth username."),
       password: z19.string().describe("Basic auth password.")
-    }).optional().describe("Enable basic authentication for the site."),
+    }).optional().describe("Enable basic authentication for the router."),
     // security: z
     // 	.object({
     // 		contentSecurityPolicy: z.object({

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@awsless/awsless",
-  "version": "0.0.651",
+  "version": "0.0.652",
   "license": "MIT",
   "type": "module",
   "sideEffects": false,
@@ -33,23 +33,23 @@
     ]
   },
   "peerDependencies": {
-    "@awsless/big-float": "^0.1.6",
     "@awsless/clui": "^0.0.8",
-    "@awsless/cloudwatch": "^0.0.1",
     "@awsless/duration": "^0.0.4",
-    "@awsless/json": "^0.0.11",
+    "@awsless/cloudwatch": "^0.0.1",
     "@awsless/dynamodb": "^0.3.19",
     "@awsless/iot": "^0.0.3",
+    "@awsless/json": "^0.0.11",
+    "@awsless/lambda": "^0.0.41",
+    "@awsless/big-float": "^0.1.6",
     "@awsless/mqtt": "^0.0.2",
-    "@awsless/open-search": "^0.0.21",
-    "@awsless/redis": "^0.0.14",
+    "@awsless/s3": "^0.0.21",
     "@awsless/sns": "^0.0.10",
-    "@awsless/lambda": "^0.0.41",
+    "@awsless/redis": "^0.0.14",
+    "@awsless/open-search": "^0.0.21",
+    "@awsless/sqs": "^0.0.16",
     "@awsless/validate": "^0.1.6",
-    "@awsless/s3": "^0.0.21",
-    "@awsless/weak-cache": "^0.0.1",
     "@awsless/ssm": "^0.0.7",
-    "@awsless/sqs": "^0.0.16"
+    "@awsless/weak-cache": "^0.0.1"
   },
   "dependencies": {
     "@aws-sdk/client-cloudformation": "^3.369.0",
@@ -120,9 +120,9 @@
     "@awsless/duration": "^0.0.4",
     "@awsless/json": "^0.0.11",
     "@awsless/scheduler": "^0.0.4",
-    "@awsless/size": "^0.0.2",
     "@awsless/ts-file-cache": "^0.0.12",
-    "@awsless/validate": "^0.1.6"
+    "@awsless/validate": "^0.1.6",
+    "@awsless/size": "^0.0.2"
   },
   "devDependencies": {
     "@hono/node-server": "1.19.9",