requires empty username/password if set disableAuth for basic auth

server/auth.js

@@ -1,6 +1,8 @@
 const basicAuth = require("express-basic-auth")
 const passwordHash = require("./password-hash");
 const { R } = require("redbean-node");
+const { setting } = require("./util-server");
+const { debug } = require("../src/util");
 
 /**
  *
@@ -28,9 +30,18 @@ exports.login = async function (username, password) {
 }
 
 function myAuthorizer(username, password, callback) {
-    exports.login(username, password).then((user) => {
+
-        callback(null, user != null)
+    setting("disableAuth").then((result) => {
+
+        if (result) {
+            callback(null, true)
+        } else {
+            exports.login(username, password).then((user) => {
+                callback(null, user != null)
+            })
+        }
     })
+
 }
 
 exports.basicAuth = basicAuth({

server/util-server.js

@@ -1,6 +1,7 @@
 const tcpp = require("tcp-ping");
 const Ping = require("./ping-lite");
 const { R } = require("redbean-node");
+const { debug } = require("../src/util");
 
 exports.tcping = function (hostname, port) {
     return new Promise((resolve, reject) => {
@@ -45,7 +46,9 @@ exports.setting = async function (key) {
     ]);
 
     try {
-        return JSON.parse(value);
+        const v = JSON.parse(value);
+        debug(`Get Setting: ${key}: ${v}`)
+        return v;
     } catch (e) {
         return value;
     }