Require Read permissions for authProxy.

Addresses read part of #595.

Author: RubenVerborgh

lib/handlers/allow.js

@@ -8,7 +8,7 @@ var debug = require('../debug.js').ACL
 
 function allow (mode) {
   return function allowHandler (req, res, next) {
-    var ldp = req.app.locals.ldp
+    var ldp = req.app.locals.ldp || {}
     if (!ldp.webid) {
       return next()
     }

lib/handlers/auth-proxy.js

@@ -4,6 +4,7 @@ module.exports = addAuthProxyHandlers
 
 const proxy = require('http-proxy-middleware')
 const debug = require('../debug')
+const allow = require('./allow')
 
 const PROXY_SETTINGS = {
   logLevel: 'silent',
@@ -32,7 +33,7 @@ function addAuthProxyHandler (app, sourcePath, target) {
   }, PROXY_SETTINGS)
 
   // Activate the proxy
-  app.use(`${sourcePath}*`, proxy(settings))
+  app.use(`${sourcePath}*`, allow('Read'), proxy(settings))
 }
 
 // Adds a headers with authentication information

test/integration/auth-proxy-test.js

@@ -18,7 +18,7 @@ describe('Auth Proxy', () => {
 
       // Set up Solid server
       server = ldnode({
-        root: path.join(__dirname, '../resources'),
+        root: path.join(__dirname, '../resources/auth-proxy'),
         authProxy: {
           '/server/a': 'http://server-a.org'
         },

test/resources/auth-proxy/.acl

@@ -0,0 +1,10 @@
+@prefix acl: <http://www.w3.org/ns/auth/acl#>.
+@prefix foaf: <http://xmlns.com/foaf/0.1/>.
+
+# All permissions on the root
+<#owner>
+    a acl:Authorization;
+    acl:agent <https://ruben.verborgh.org/profile/#me>;
+    acl:accessTo <./>;
+    acl:defaultForNew <./>;
+    acl:mode acl:Read, acl:Write, acl:Control.