FuelLabs · nedsalk · Sep 3, 2024 · Sep 2, 2024 · Sep 2, 2024 · Sep 2, 2024
@@ -0,0 +1,5 @@
+---
+"@fuel-ts/account": patch
+---
+
+feat: support basic auth
@@ -60,6 +60,49 @@ const getCustomFetch =
  * @group node
  */
 describe('Provider', () => {
+  it('supports basic auth', async () => {
+    using launched = await setupTestProviderAndWallets();
+    const {
+      provider: { url },
+    } = launched;
+
+    const usernameAndPassword = 'securest:ofpasswords';
+    const parsedUrl = new URL(url);
+    const hostAndPath = `${parsedUrl.host}${parsedUrl.pathname}`;
+    const authUrl = `http://${usernameAndPassword}@${hostAndPath}`;
+    const provider = await Provider.create(authUrl);
+
+    const fetchSpy = vi.spyOn(global, 'fetch');
+
+    await provider.operations.getChain();
+
+    const expectedAuthToken = `Basic ${btoa(usernameAndPassword)}`;
+    const [requestUrl, request] = fetchSpy.mock.calls[0];
+    expect(requestUrl).toEqual(url);
+    expect(request?.headers).toMatchObject({
+      Authorization: expectedAuthToken,
+    });
+  });
+
+  it('custom requestMiddleware is not overwritten by basic auth', async () => {
+    using launched = await setupTestProviderAndWallets();
+    const {
+      provider: { url },
+    } = launched;
+
+    const usernameAndPassword = 'securest:ofpasswords';
+    const parsedUrl = new URL(url);
+    const hostAndPath = `${parsedUrl.host}${parsedUrl.pathname}`;
+    const authUrl = `http://${usernameAndPassword}@${hostAndPath}`;
+
+    const requestMiddleware = vi.fn();
+    await Provider.create(authUrl, {
+      requestMiddleware,
+    });
+
+    expect(requestMiddleware).toHaveBeenCalled();
+  });
+
   it('should throw an error when retrieving a transaction with an unknown transaction type', async () => {
     using launched = await setupTestProviderAndWallets();
     const { provider } = launched;

@@ -451,6 +451,20 @@ export default class Provider {
     }
   }
 
+  private static extractBasicAuth(url: string): { url: string; auth: string | undefined } {
+    const parsedUrl = new URL(url);
+
+    const username = parsedUrl.username;
+    const password = parsedUrl.password;
+    const urlNoBasicAuth = `${parsedUrl.origin}${parsedUrl.pathname}`;
+    if (!(username && password)) {
+      return { url, auth: undefined };
+    }
+
+    const auth = `Basic ${btoa(`${username}:${password}`)}`;
+    return { url: urlNoBasicAuth, auth };
+  }
+
   /**
    * Creates a new instance of the Provider class. This is the recommended way to initialize a Provider.
    *
@@ -460,8 +474,20 @@ export default class Provider {
    * @returns A promise that resolves to a Provider instance.
    */
   static async create(url: string, options: ProviderOptions = {}): Promise<Provider> {
-    const provider = new Provider(url, options);
+    const { url: urlToUse, auth } = this.extractBasicAuth(url);
+    const provider = new Provider(urlToUse, {
+      ...options,
+      requestMiddleware: async (request) => {
+        if (auth) {
+          request.headers ??= {};
+          (request.headers as Record<string, string>).Authorization = auth;
+        }
+        return options.requestMiddleware?.(request) ?? request;
+      },
+    });
+
     await provider.fetchChainAndNodeInfo();
+
     return provider;
   }