Forem: PhHitachi

Highlight Your Terminal: a tools design to highlight information on output of terminal

PhHitachi — Sun, 16 Jun 2024 18:11:01 +0000

highlight is a script to detect and highlight patterns such as URLs, domains, IPv4 addresses, IPv6 addresses, subnets, ports, categories, HTML tags, and more.

Introduction

In the world of system administration, network management, and development, analyzing log files and text streams is a daily routine. Manually sifting through plain text can be tedious and error-prone. What if you could make important information pop out with color? Enter highlight—a powerful, customizable script that uses awk to highlight specific patterns in your text files.

In this guide, we’ll explore practical use cases of the highlight command to supercharge your terminal experience.

Why Use highlight?

highlight can highlight:

IPv4 and IPv6 addresses
Subnet masks
URLs
Domains with ports
Common network ports (e.g., 80/tcp)
Important script details
Text inside parentheses
HTML tags and attributes
With these capabilities, highlight makes it easier to identify and analyze crucial information in logs and other text streams.

Usage Examples

Here are some practical use cases to demonstrate how highlight can be used with common tools.

1.Highlighting Patterns in Log Files
Logs are essential for troubleshooting and monitoring systems. highlight can make critical information in logs stand out.

highlight < /var/log/apt/history.log

Example:

In this example, it highlight keys, and other important patterns will be highlighted, making it easier to spot issues or important events in your system logs.

2.Highlighting Output from nmap
nmap is a powerful network scanning tool. Highlighting its output can help quickly identify open ports, IP addresses, and more.

sudo nmap -sV -sC -Pn hackerone.com | highlight

Example:

With highlight, the output from nmap scans will be more readable, allowing you to easily see open ports, service details, and potential vulnerabilities.

3.Highlighting Output from ifconfig
The ifconfig command displays network interface configuration. Highlighting IP addresses and netmasks can make the output more readable.

ifconfig | highlight

Example:

4.Highlighting Output from curl
curl is used for transferring data with URLs. Highlighting URLs and other critical parts of the output can be very helpful.

curl -i -s https://www.hackerone.com | highlight

Example:

This example makes HTTP headers, HTML tags and other important parts of the curl output stand out, which is useful for debugging web requests or inspecting server responses.

Conclusion

highlight is a versatile tool that can greatly improve the readability of your terminal output by highlighting important patterns. Whether you are analyzing logs, network configurations, or HTTP responses, highlight can help you quickly spot the information you need.

Give it a try and transform the way you interact with text in your terminal!

Checkout here: Github

Your’re Welcome!

Laravel 10 REST API Authentication with JWT

PhHitachi — Sun, 13 Aug 2023 15:44:53 +0000

This project is a starter template for building a Laravel 10 REST API with JWT (JSON Web Token) authentication. It provides endpoints for user login, retrieving user information, refreshing tokens, and logging out. The project is intended to serve as a boilerplate and has been uploaded to GitHub as a public repository.

Installation
Endpoints
Error Handling
Security
License

Installation

Clone the repository:

git clone https://github.com/ph-hitachi/laravel-api-jwt-starter.git

Navigate to the project directory:

cd laravel-api-jwt-starter

Install the required dependencies using Composer::

composer install

Set up your environment variables by copying the .env.example file:

cp .env.example .env

Generate a new application key:

php artisan key:generate

Configure your database connection in the .env file.
Run the migrations:

php artisan migrate

Generate a JWT secret key:

php artisan jwt:secret

Endpoints

Method	Endpoint	Description
POST	/api/login	User login and token generation
GET	/api/me	Get current user information
POST	/api/refresh	Refresh access token
POST	/api/logout	Invalidate the current token and log out

User Login

Use this endpoint to authenticate a user and generate an access token. Provide the user's email and password in the request body. If the credentials are valid, the API will respond with the user's information along with an access token that can be used for subsequent requests.

Request Body:

POST /api/login HTTP/1.1
Host: localhost:8000
Content-Type: application/json

{
    "email": "johndoe@example.com",
    "password": "password@123"
}

Response:

{
    "user": {
        "id": 1,
        "name": "john doe",
        "email": "johndoe@example.com",
        "email_verified_at": null,
        "created_at": "2023-07-24T05:10:20.000000Z",
        "updated_at": "2023-07-24T05:10:20.000000Z"
    },
    "authorization": {
        "access_token": "{{ token }}",
        "token_type": "bearer",
        "expires_in": 3600
    }
}

Get Current Authenticated User Information

Use this endpoint to fetch information about the currently authenticated user. Include the access token in the request headers. The API will respond with the user's details.

Request Body:

GET /api/me HTTP/1.1
Host: localhost:8000
Content-Type: application/json
Authorization: Bearer <token>

Response:

{
    "id": 1,
    "name": "john doe",
    "email": "johndoe@example.com",
    "email_verified_at": null,
    "created_at": "2023-07-24T05:10:20.000000Z",
    "updated_at": "2023-07-24T05:10:20.000000Z"
}

Generate Refresh token

Use this endpoint to refresh an expired access token. Include the current access token in the request headers. The API will respond with a new access token that can be used for authentication. Token refresh is useful to maintain a user's session without requiring frequent logins.

Request Body:

POST /api/refresh HTTP/1.1
Host: localhost:8000
Content-Type: application/json
Authorization: Bearer <token>

Response:

{
    "user": {
        "id": 1,
        "name": "john doe",
        "email": "johndoe@example.com",
        "email_verified_at": null,
        "created_at": "2023-07-24T05:10:20.000000Z",
        "updated_at": "2023-07-24T05:10:20.000000Z"
    },
    "authorization": {
        "access_token": "{{ token }}",
        "token_type": "bearer",
        "expires_in": 3600
    }
}

Logout

Use this endpoint to invalidate the current access token and log out the user. Include the access token in the request headers. After logging out, the token will no longer be valid for making authenticated requests.

Request Body:

POST /api/logout HTTP/1.1
Host: localhost:8000
Content-Type: application/json
Authorization: Bearer <token>

Response:

{
    "success": true
}

Error Handling

In case of errors, the API will return responses in JSON format. The following table lists the fields you might encounter in error responses along with their descriptions:

Field	Description
error	The top-level container for error information
error.message	A human-readable description of the error
error.type	A categorization of the error type
error.code	A specific code or identifier for the error
error.trace_id	A unique identifier for tracing the error
error.validation	An object containing field-specific errors

Field Descriptions

error.message: This field provides a human-readable description of the error that occurred. It can help you identify the nature of the problem quickly.
error.type: This field categorizes the type of error that occurred. It can be helpful for programmatically handling different types of errors, such as authentication, validation, or server errors.
error.code: An error-specific code or identifier that can be used for easier identification and handling of errors in your codebase.
error.trace_id: A unique identifier associated with the error. This trace ID can be helpful for diagnosing issues and troubleshooting, as it can be used to locate relevant logs and traces.
error.validation: If the error is related to input validation, this object may contain detailed information about which fields failed validation and why. It helps pinpoint the exact issues with the submitted data.

It's important to parse and handle these error responses appropriately in your application to provide meaningful feedback to users and to aid in debugging and improving the system.

Here's an example of an error response:

{
    "error": {
        "message": "The provided token is invalid, has expired, or has been blacklisted.",
        "type": "OAuthException",
        "code": "token_could_not_verified",
        "trace_id": "qOoyG0cl3R8B4x9j"
    }
}

Remember that the specific field names and structures of error responses might vary based on the API implementation.

Feel free to adjust the descriptions and add any other relevant information to suit your project's requirements.

Security

JWT Security Mechanisms

JSON Web Tokens (JWTs) are a secure way to authenticate users in stateless environments. Here's how the security is maintained:

Token Expiration: JWT tokens have an expiration time (expiry). After a token expires, it's no longer valid for authentication. This ensures that if a token is intercepted, it can only be used for a limited time.
Token Refresh: When an access token expires, the user can use the refresh token to obtain a new access token without having to re-enter their credentials. The refresh token is typically long-lived and is used to generate new access tokens.
Token Blacklisting: While expired tokens can't be used for authentication, they can be blacklisted to ensure that even if an attacker gets hold of a valid token, it won't work after being blacklisted. Laravel has a built-in blacklist mechanism for this purpose.
Statelessness: JWTs are self-contained and do not require server-side storage. This makes JWT-based authentication suitable for scalable and distributed systems.

Handling Expired Tokens and Refreshing

When an access token expires, the user can use the refresh token to request a new access token. This is done by making a request to the /api/refresh endpoint, providing the expired token in the authorization header. The API then responds with a new access token, extending the user's session.

Blacklisting Tokens

If a token is compromised or a user logs out, their tokens can be blacklisted. Blacklisting means that even if an expired token is used for refresh, the new access token won't be generated. Laravel's built-in mechanism takes care of blacklisting tokens to enhance security.

It's important to implement proper token handling and security practices to protect user data and maintain system integrity.

You can find the repositories on GitHub:

Laravel JWT REST API

Forem: PhHitachi

Highlight Your Terminal: a tools design to highlight information on output of terminal

Introduction

Why Use highlight?

Usage Examples

Conclusion

Laravel 10 REST API Authentication with JWT

Table of Contents

Installation

Endpoints

User Login

Request Body:

Response:

Get Current Authenticated User Information

Request Body:

Response:

Generate Refresh token

Request Body:

Response:

Logout

Request Body:

Response:

Error Handling

Field Descriptions

Security

JWT Security Mechanisms

Handling Expired Tokens and Refreshing

Blacklisting Tokens