const express           =require('express');
const app = express();

const configJson = {
    servePort:4000,
    username:'admin',
    password:'admin',
};

app.all("*",function(req,res,next){
    //設(shè)置允許跨域的域名，*代表允許任意域名跨域
    res.header("Access-Control-Allow-Origin",'*');
    //允許的header類型
    res.header("Access-Control-Allow-Headers","content-type,x-requested-with,x-csrf-token,x-token");
    //跨域允許的請(qǐng)求方式
    res.header("Access-Control-Allow-Methods","DEvarE,PUT,POST,GET,OPTIONS");
    if (req.method.toLowerCase() == 'options')
        res.send(200);  //讓options嘗試請(qǐng)求快速結(jié)束
    else
        next();
});
function authentication(req, res, next) {
    var authheader = req.headers.authorization;
    if (!authheader) {
        var err = new Error('身份未認(rèn)證');
        res.setHeader('WWW-Authenticate', 'Basic');
        err.status = 401;
        return next(err)
    }
    var auth = new Buffer.from(authheader.split(' ')[1],
    'base64').toString().split(':');
    var user = auth[0];
    var pass = auth[1];
    if (user == configJson.username && pass == configJson.password) {
        console.log('身份認(rèn)證成功');
        // If Authorized user
        next();
    } else {
        var err = new Error('身份未認(rèn)證');
        res.setHeader('WWW-Authenticate', 'Basic');
        err.status = 401;
        return next(err);
    }
 
}
app.use(authentication);
app.get("/index",(req,res)=>{
    res.sendFile(__dirname+"/"+"flv.html"); 
})

let server = app.listen(configJson.servePort, function () {
    let host = server.address().address;
    let port = server.address().port;
    console.log("啟動(dòng) config web 服務(wù): http://%s:%s", host, port);
});

參考：https://www.geeksforgeeks.org/basic-authentication-in-node-js-using-http-header/