bin/Invoke-VerifyBasicAuth.ps1

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
function Invoke-VerifyBasicAuth
{
    # Basic Authentication
    . $RestPSLocalRoot\bin\Get-RestUserAuth.ps1
    $RestUserAuth = (Get-RestUserAuth).UserData

    if ($null -ne $RestUserAuth)
    {
        # Get the System AuthString for the Client Request
        $UserToCheck = $script:Subject
        $SystemAuthString = ($RestUserAuth | Where-Object { $_.UserName -eq "$UserToCheck" }).SystemAuthString

        # Get the AuthString from Client Headers
        $ClientHeaders = $script:Request.Headers
        $ClientHeadersAuth = $ClientHeaders.GetValues("Authorization")
        $AuthType, $AuthString = $ClientHeadersAuth.split(" ")
        Write-Output "Auth type is: $AuthType, AuthString is: $AuthString"

        if ($null -ne $AuthString)
        {
            if ($SystemAuthString -eq $AuthString)
            {
                Write-Output "Client Authorization type: $AuthType is Verified."
                $script:VerifyStatus = $true
            }
            else
            {
                Write-Output "Client did not pass Authorization type: $AuthType."
                $script:VerifyStatus = $false
            }
        }
        else
        {
            Write-Output "No Authorization String found."
            $script:VerifyStatus = $false
        }
    }
    else
    {
        Write-Output "No Authorization data available."
        $script:VerifyStatus = $false
    }
    $script:VerifyStatus
}