xhiveframework
/
xhiveframework15
1
0
Fork 0
Code Issues 0 Pull-Requests 0 Releases 0 Wiki Aktivität
Du kannst nicht mehr als 25 Themen auswählen Themen müssen entweder mit einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
3 Commits
1 Branch
16 MiB
 
 
 
 
 
 
Branch: master
Branches Tags
${ item.name }
Erstelle Branch ${ searchTerm }
von „master“
${ noResults }
xhiveframework15/realtime/middlewares/authenticate.js

82 Zeilen
2.3 KiB
Originalformat Permalink Blame Verlauf 

  1. const cookie = require("cookie");

  2. const request = require("superagent");

  3. const { get_url } = require("../utils");

  4. 

  5. const { get_conf } = require("../../node_utils");

  6. const conf = get_conf();

  7. 

  8. function authenticate_with_xhiveframework(socket, next) {

  9. 	let namespace = socket.nsp.name;

  10. 	namespace = namespace.slice(1, namespace.length); // remove leading `/`

  11. 

  12. 	if (namespace != get_site_name(socket)) {

  13. 		next(new Error("Invalid namespace"));

  14. 	}

  15. 

  16. 	if (get_hostname(socket.request.headers.host) != get_hostname(socket.request.headers.origin)) {

  17. 		next(new Error("Invalid origin"));

  18. 		return;

  19. 	}

  20. 

  21. 	if (!socket.request.headers.cookie) {

  22. 		next(new Error("No cookie transmitted."));

  23. 		return;

  24. 	}

  25. 

  26. 	let cookies = cookie.parse(socket.request.headers.cookie || "");

  27. 	let authorization_header = socket.request.headers.authorization;

  28. 

  29. 	if (!cookies.sid && !authorization_header) {

  30. 		next(new Error("No authentication method used. Use cookie or authorization header."));

  31. 		return;

  32. 	}

  33. 

  34. 	let auth_req = request.get(get_url(socket, "/api/method/xhiveframework.realtime.get_user_info"));

  35. 	if (cookies.sid) {

  36. 		auth_req = auth_req.query({ sid: cookies.sid });

  37. 	} else {

  38. 		auth_req = auth_req.set("Authorization", authorization_header);

  39. 	}

  40. 

  41. 	auth_req

  42. 		.type("form")

  43. 		.then((res) => {

  44. 			socket.user = res.body.message.user;

  45. 			socket.user_type = res.body.message.user_type;

  46. 			socket.sid = cookies.sid;

  47. 			socket.authorization_header = authorization_header;

  48. 			next();

  49. 		})

  50. 		.catch((e) => {

  51. 			next(new Error(`Unauthorized: ${e}`));

  52. 		});

  53. }

  54. 

  55. function get_site_name(socket) {

  56. 	if (socket.site_name) {

  57. 		return socket.site_name;

  58. 	} else if (socket.request.headers["x-xhiveframework-site-name"]) {

  59. 		socket.site_name = get_hostname(socket.request.headers["x-xhiveframework-site-name"]);

  60. 	} else if (

  61. 		conf.default_site &&

  62. 		["localhost", "127.0.0.1"].indexOf(get_hostname(socket.request.headers.host)) !== -1

  63. 	) {

  64. 		socket.site_name = conf.default_site;

  65. 	} else if (socket.request.headers.origin) {

  66. 		socket.site_name = get_hostname(socket.request.headers.origin);

  67. 	} else {

  68. 		socket.site_name = get_hostname(socket.request.headers.host);

  69. 	}

  70. 	return socket.site_name;

  71. }

  72. 

  73. function get_hostname(url) {

  74. 	if (!url) return undefined;

  75. 	if (url.indexOf("://") > -1) {

  76. 		url = url.split("/")[2];

  77. 	}

  78. 	return url.match(/:/g) ? url.slice(0, url.indexOf(":")) : url;

  79. }

  80. 

  81. module.exports = authenticate_with_xhiveframework;