UNPKG

litejs/server.js

Version:
19.5 kBJavaScriptView Raw
1
2var defaultOpts = {
maxBodySize:  1e6,
maxNameSize:  100,
maxFields:    1000,
maxFieldSize: 1000,
maxFiles:     1000,
maxFileSize:  Infinity,
maxURILength: 2000,
log: console,
exitTime: 5000,
accept: {
"application/json;filename=;select=;space=": function(data, negod) {
	return JSON.stringify(
		data,
		negod.select ? negod.select.split(",") : null,
		+negod.space || negod.space
	// Line and Paragraph separator needing to be escaped in JavaScript but not in JSON,
	// escape those so the JSON can be evaluated or directly utilized within JSONP.
	).replace(/\u2028/g, "\\u2028").replace(/\u2029/g, "\\u2029")
},
// RFC 4180 optional parameters: charset, header
"text/csv;br=\"\r\n\";delimiter=\",\";fields=;filename=;header=;NULL=;select=": require("./csv.js").encode,
"application/sql;fields=;filename=;NULL=NULL;select=;table=table": function(data, negod) {
	negod.re = /\D/
	negod.br = "),\n("
	negod.prefix = "INSERT INTO " +
	negod.table + (negod.fields ? " (" + negod.fields + ")" : "") + " VALUES ("
	negod.postfix = ");"
	return require("./csv.js").encode(data, negod)
}
},
bodyRe: /^(?:PATCH|POST|PUT)$/i,
catch: sendError,
charset: "UTF-8",
compress: false,
encoding: {
"deflate;q=0.1": "createDeflate",
"gzip;q=0.2": "createGzip",
"br": "createBrotliCompress"
},
error: {
"URIError": { code: 400 }
},
method: {
"DELETE": "del",
"GET": "get",
"PATCH": "patch",
"POST": "post",
"PUT": "put"
},
mime: {
"asf": "video/x-ms-asf",
"asx": "video/x-ms-asx",
"avi": "video/x-msvideo",
"css": "text/css",
"csv": "text/csv",
"cur": "image/vnd.microsoft.icon",
"doc": "application/msword",
"drw": "application/drafting",
"dvi": "application/x-dvi",
"dwg": "application/acad",
"dxf": "application/dxf",
"gif": "image/gif",
"gz": "application/x-gzip",
"htm": "text/html",
"html": "text/html",
"ico": "image/x-icon",
"jar": "application/java-archive",
"jpeg": "image/jpeg",
"jpg": "image/jpeg",
"js": "text/javascript",
"json": "application/json",
"m3u": "audio/x-mpegurl",
"manifest": "text/cache-manifest",
"midi": "audio/midi",
"mjs": "text/javascript",
"mp3": "audio/mpeg",
"mp4": "video/mp4",
"mpeg": "video/mpeg",
"mpg": "video/mpeg",
"mpga": "audio/mpeg",
"pdf": "application/pdf",
"pgp": "application/pgp",
"png": "image/png",
"ppz": "application/vnd.ms-powerpoint",
"ps": "application/postscript",
"qt": "video/quicktime",
"ra": "audio/x-realaudio",
"rar": "application/x-rar-compressed",
"rm": "audio/x-pn-realaudio",
"rtf": "text/rtf",
"rtx": "text/richtext",
"sgml": "text/sgml",
"sh": "application/x-sh",
"snd": "audio/basic",
"sql": "application/sql",
"svg": "image/svg+xml",
"tex": "application/x-tex",
"tgz": "application/x-tar-gz",
"tiff": "image/tiff",
"tsv": "text/tab-separated-values",
"txt": "text/plain",
"wav": "audio/x-wav",
"wma": "audio/x-ms-wma",
"wmv": "video/x-ms-wmv",
"xls": "application/vnd.ms-excel",
"xlw": "application/vnd.ms-excel",
"xml": "text/xml",
"zip": "application/zip"
},
rangeSize: 500 * 1024,
status: {
200: "OK",
201: "Created",
202: "Accepted",
203: "Non-Authoritative Information",
204: "No Content",
205: "Reset Content",
206: "Partial Content",
207: "Multi-Status",
208: "Already Reported",
226: "IM Used",
300: "Multiple Choices",
301: "Moved Permanently",
302: "Found",
303: "See Other",
304: "Not Modified",
305: "Use Proxy",
307: "Temporary Redirect",
308: "Permanent Redirect",
400: "Bad Request",
401: "Unauthorized",
402: "Payment Required",
403: "Forbidden",
404: "Not Found",
405: "Method Not Allowed",
406: "Not Acceptable",
407: "Proxy Authentication Required",
408: "Request Timeout",
409: "Conflict",
410: "Gone",
411: "Length Required",
412: "Precondition Failed",
413: "Payload Too Large",
414: "URI Too Long",
415: "Unsupported Media Type",
416: "Range Not Satisfiable",
417: "Expectation Failed",
421: "Misdirected Request",
422: "Unprocessable Entity",
423: "Locked",
424: "Failed Dependency",
425: "Too Early",
426: "Upgrade Required",
428: "Precondition Required",
429: "Too Many Requests",
451: "Unavailable For Legal Reasons",
500: "Internal Server Error",
501: "Not Implemented",
502: "Bad Gateway",
503: "Service Unavailable",
504: "Gateway Timeout",
505: "HTTP Version Not Supported",
506: "Variant Also Negotiates",
507: "Insufficient Storage",
508: "Loop Detected",
509: "Bandwidth Limit Exceeded",
510: "Not Extended",
511: "Network Authentication Required"
},
tmp: (
process.env.TMPDIR ||
process.env.TEMP ||
process.env.TMP ||
(
	process.platform === "win32"
	/* istanbul ignore next */
	? (process.env.SystemRoot || process.env.windir) + "\\temp"
	: "/tmp"
)
).replace(/([^:])[/\\]+$/, "$1") + "/up-" + process.pid + "-",
http: {
port: 8080
}
186}
187, fs = require("fs")
188, content = require("./content")
189, event = require("./event")
190, path = require("./path")
191, util = require("./util")
192, hasOwn = defaultOpts.hasOwnProperty
193, cookieRe = /[^!#-~]|[%,;\\]/g
194, rangeRe = /^bytes=(\d*)-(\d*)^/
195, tmpDate = new Date()
196
197module.exports = createApp
198createApp.getCookie = getCookie
199createApp.setCookie = setCookie
200createApp.static = createStatic
201
202function createApp(opts_) {
var uses = []
, opts = util.deepAssign(app.opts = {defaults: defaultOpts}, defaultOpts, opts_)
205
event.asEmitter(app)
if (!opts._accept) opts._accept = require("./accept").accept(opts.accept)
if (!opts._encoding) opts._encoding = require("./accept").accept(opts.encoding)
209
Object.keys(opts.method).forEach(function(method) {
app[opts.method[method]] = function() {
	var arr = uses.slice.call(arguments)
	if (typeof arr[0] === "function") {
		arr.unshift(null)
	}
	arr.unshift(method)
	return use.apply(app, arr)
}
})
220
app.listen = listen
app.readBody = readBody
// TODO:2021-08-24:lauri:Remove on next major
app.static = createStatic
app.use = use
226
return app
228
function app(req, res, _next) {
var oldPath, oldUrl
, tryCatch = true
, usePos = 0
, forwarded = req.headers[opts.ipHeader || "x-forwarded-for"]
234
if (!res.send) {
	req.date = new Date()
	req.ip = forwarded ? forwarded.split(/[\s,]+/)[0] : req.socket && req.socket.remoteAddress
	req.opts = res.opts = opts
	req.res = res
	res.req = req
	res.send = send
	res.sendStatus = sendStatus
243
	// IE8-10 accept 2083 chars in URL
	// Sitemaps protocol has a limit of 2048 characters in a URL
	// Google SERP tool wouldn't cope with URLs longer than 1855 chars
	if (req.url.length > opts.maxURILength) {
		return opts.catch("URI Too Long", req, res, opts)
	}
250
	req.content = content
	req.cookie = getCookie
	req.originalUrl = req.url
254
	res.cookie = setCookie
	res.link = setLink
	res.sendFile = sendFile
}
259
next()
261
function next(err) {
	if (err) {
		return opts.catch(err, req, res, opts)
	}
	var method = uses[usePos]
	, path = uses[usePos + 1]
	, pos = usePos += 3
269
	if (method && method !== req.method || path && path !== req.url.slice(0, path.length)) {
		next()
	} else if (uses[pos - 1] === void 0) {
		if (typeof _next === "function") {
			_next()
		} else {
			opts.catch(404, req, res, opts)
		}
	} else {
		method = uses[pos - 1]
		if (path) {
			oldPath = req.baseUrl
			oldUrl = req.url
			req.baseUrl = path
			req.url = req.url === path ? "/" : req.url.slice(path.slice(-1) === "/" ? path.length - 1 : path.length)
		}
		if (tryCatch === true) {
			tryCatch = false
			try {
				method.call(app, req, res, path ? nextPath : next, opts)
			} catch(e) {
				return opts.catch(e, req, res, opts)
			}
		} else {
			method.call(app, req, res, path ? nextPath : next, opts)
		}
		if (pos === usePos) {
			tryCatch = true
		}
	}
}
function nextPath(e) {
	req.baseUrl = oldPath
	req.url = oldUrl
	next(e)
}
}
307
function use(method, path) {
var arr = Array.from(arguments)
, len = arr.length
, i = 2
if (typeof method === "function") {
	method = path = null
	i = 0
} else if (typeof path === "function") {
	path = method
	method = null
	i = 1
}
for (; i < len; ) {
	if (typeof arr[i] !== "function") throw Error("Not a function")
	uses.push(method, path, arr[i++])
}
return app
}
326}
327
328function createStatic(root, opts) {
root = path.resolve(root)
opts = util.deepAssign({
fallthrough: true,
index: "index.html",
maxAge: "1 year",
cache: {
	"cache.manifest": 0,
	"worker.js": 0
}
}, opts)
339
resolveFile("cache", util.num)
resolveFile("headers")
342
return function(req, res, next) {
var file
345
if (req.method !== "GET" && req.method !== "HEAD") {
	if (opts.fallthrough !== true) res.setHeader("Allow", "GET, HEAD")
	return fall(405) // Method not allowed
}
350
if (req.url === "/") {
	if (!opts.index) return fall(404)
	if (typeof opts.index === "function") return opts.index(req, res, next, opts)
	file = path.resolve(root, opts.index)
} else try {
	file = path.resolve(root, "." + decodeURIComponent(req.url.split("?")[0].replace(/\+/g, " ")))
} catch (e) {
	return fall(400)
}
360
if (file.slice(0, root.length) !== root) {
	return fall(404)
}
sendFile.call(res, file, opts, fall)
function fall(err) {
	next(opts.fallthrough === true ? null : err)
}
}
369
function resolveFile(name, util) {
if (!opts[name]) return
var file
, map = opts[name]
opts[name] = {}
for (file in map) if (hasOwn.call(map, file)) {
	opts[name][file === "*" ? file : path.resolve(root, file)] = util ? util(map[file]) : map[file]
}
}
379}
380
381function readBody(req, res, next, opts) {
if (req.body === void 0 && opts.bodyRe.test(req.method)) {
req.content(next)
} else {
next()
}
387}
388
389function send(body, opts_) {
var tmp
, res = this
, reqHead = res.req.headers
, resHead = {}
, negod = res.opts._accept(reqHead.accept || reqHead["content-type"] || "*/*")
, opts = Object.assign({
statusCode: res.statusCode,
mimeType: negod.rule
}, res.opts, negod, opts_)
, outStream = opts.stream || res
400
if (!negod.match) {
return res.sendStatus(406) // Not Acceptable
}
404
tmp = util.num(opts.cache && opts.filename && opts.cache[opts.filename], opts.maxAge)
if (typeof tmp === "number") {
// max-age=N is relative to the time of the request
resHead["Cache-Control"] = tmp > 0 ? "public, max-age=" + (0|(tmp/1000)) : "no-cache, max-age=0"
}
410
if (opts.mtime && opts.mtime > Date.parse(reqHead["if-modified-since"])) {
return res.sendStatus(304)
}
414
if (typeof body !== "string") {
negod.select = opts && opts.select || res.req.url.split("$select")[1] || ""
body = negod.o(body, negod)
}
419
resHead["Content-Type"] = opts.mimeType + (
opts.charset && opts.mimeType.slice(0, 5) === "text/" ? "; charset=" + opts.charset : ""
)
423
if (opts.size >= 0) {
resHead["Content-Length"] = opts.size
if (opts.size > opts.rangeSize) {
	resHead["Accept-Ranges"] = "bytes"
	resHead["Content-Length"] = opts.size
429
	if ((tmp = reqHead.range && !reqHead["if-range"] && rangeRe.exec(reqHead.range))) {
		opts.start = tmp[1] ? +tmp[1] : tmp[2] ? opts.size - tmp[2] - 1 : 0
		opts.end = tmp[1] && tmp[2] ? +tmp[2] : opts.size - 1
433
		if (opts.start > opts.end || opts.end >= opts.size) {
			opts.start = 0
			opts.end = opts.size - 1
		} else {
			opts.statusCode = 206
			resHead["Content-Length"] = opts.end - opts.start
			resHead["Content-Range"] = "bytes " + opts.start + "-" + opts.end + "/" + opts.size
		}
	}
}
}
445
if (opts.filename) {
resHead["Content-Disposition"] = "attachment; filename=" + (
	typeof opts.filename === "function" ? opts.filename() : opts.filename
)
}
451
negod = opts.compress && opts._encoding(reqHead["accept-encoding"])
if (negod.match) {
// Server may choose not to compress the body, if:
//  - data is already compressed (some image format)
//  - server is overloaded and cannot afford the computational overhead.
//    Microsoft recommends not to compress if a server uses more than 80% of its computational power.
delete resHead["Content-Length"]
resHead["Content-Encoding"] = negod.match
resHead.Vary = "Accept-Encoding"
outStream = typeof negod.o === "string" ? require("zlib")[negod.o]() : negod.o()
outStream.pipe(res)
}
464
if (opts.headers) Object.assign(resHead, opts.headers["*"], opts.headers[opts.sendfile || res.req.url])
res.writeHead(opts.statusCode || 200, resHead)
467
if (res.req.method === "HEAD") {
return res.end()
}
471
if (opts.sendfile) {
fs.createReadStream(opts.sendfile, {start: opts.start, end: opts.end}).pipe(outStream)
} else {
outStream.end(body)
}
477}
478
479function sendFile(file, opts_, next_) {
var res = this
, opts = typeof opts_ === "function" ? (next_ = opts_) && {} : opts_ || {}
, next = typeof next_ === "function" ? next_ : function(code) {
sendStatus.call(res, code)
}
485
fs.stat(file, function(err, stat) {
if (err) return next(404)
if (stat.isDirectory()) return next(403)
489
opts.mtime = stat.mtime
opts.size = stat.size
opts.filename = opts.download === true ? file.split("/").pop() : opts.download
opts.mimeType = res.opts.mime[ file.split(".").pop() ] || "application/octet-stream"
opts.sendfile = file
495
send.call(res, file, opts)
})
498}
499
500function sendStatus(code, message) {
var res = this
res.statusCode = code
if (code === 204 || code === 205 || code === 304) {
res.setHeader("Content-Length", 0)
} else if (code > 199) {
message = (message || res.opts.status[code] || code) + "\n"
res.setHeader("Content-Length", message.length)
res.setHeader("Content-Type", "text/plain")
if ("HEAD" !== res.req.method) {
	res.write(message)
}
}
res.end()
514}
515
516function sendError(e, req, res, opts) {
var message = typeof e === "string" ? e : e.message
, map = opts.error && (opts.error[message] || opts.error[e.name]) || {}
, error = {
id: Math.random().toString(36).slice(2, 10),
time: req.date,
code: map.code || e.code || 500,
message: map.message || message
}
res.statusCode = error.code
res.statusMessage = opts.status[error.code] || message
527
res.send(error)
529
opts.log.error(
(Array.isArray(e.stack) ? e.stack.join("\n") : e.stack || (e.name || "Error") + ": " + error.message).replace("Error:", "Error:" + error.id)
)
533}
534
535function setLink(url, rel) {
var res = this
, existing = res.getHeader("link") || []
538
if (!Array.isArray(existing)) {
existing = [ existing ]
}
542
existing.push("<" + encodeURI(url) + ">; rel=\"" + rel + "\"")
544
res.setHeader("Link", existing)
546}
547
548function listen() {
var exiting
, server = this
, opts = server.opts
552
process.on("uncaughtException", function(e) {
if (opts.log) opts.log.error(
	"\nUNCAUGHT EXCEPTION!\n" +
	(Array.isArray(e.stack) ? e.message + "\n" + e.stack.join("\n") : e.stack || (e.name || "Error") + ": " + (e.message || e))
)
else throw e
;(opts.exit || exit).call(server, 1)
})
561
process.on("SIGINT", function() {
if (exiting) {
	opts.log.info("\nKilling from SIGINT (got Ctrl-C twice)")
	return process.exit()
}
exiting = true
opts.log.info("\nGracefully shutting down from SIGINT (Ctrl-C)")
;(opts.exit || exit).call(server, 0)
})
571
process.on("SIGTERM", function() {
opts.log.info("Gracefully shutting down from SIGTERM (kill)")
;(opts.exit || exit).call(server, 0)
})
576
process.on("SIGHUP", function() {
opts.log.info("Reloading configuration from SIGHUP")
server.listen(true)
server.emit("reload")
})
582
server.listen = opts.listen || function() {
["http", "https", "http2"].forEach(createNet)
}
586
server.listen()
588
return server
590
function createNet(proto) {
var map = opts[proto]
, net = server["_" + proto] && !server["_" + proto].close()
if (!map || !map.port) return
net = server["_" + proto] = (
	proto === "http" ?
	require(proto).createServer(map.redirect ? forceHttps : server) :
	require(proto).createSecureServer(map, map.redirect ? forceHttps : server)
)
.listen(map.port, map.host || "0.0.0.0", function() {
	var addr = this.address()
	opts.log.info("Listening %s at %s:%s", proto, addr.address, addr.port)
	this.on("close", function() {
		opts.log.info("Stop listening %s at %s:%s", proto, addr.address, addr.port)
	})
	if (map.noDelay) this.on("connection", setNoDelay)
})
if (map.sessionReuse) {
	var sessionStore = {}
610
	net
	.on("newSession", function(id, data, cb) {
		sessionStore[id] = data
		cb()
	})
	.on("resumeSession", function(id, cb) {
		cb(null, sessionStore[id] || null)
	})
}
}
621
function setNoDelay(socket) {
if (socket.setNoDelay) socket.setNoDelay(true)
}
625
function forceHttps(req, res) {
// Safari 5 and IE9 drop the original URI's fragment if a HTTP/3xx redirect occurs.
// If the Location header on the response specifies a fragment, it is used.
// IE10+, Chrome 11+, Firefox 4+, and Opera will all "reattach" the original URI's fragment after following a 3xx redirection.
var port = opts.https && opts.https.port || 8443
, host = (req.headers.host || "localhost").split(":")[0]
, url = "https://" + (port === 443 ? host : host + ":" + port) + req.url
633
res.writeHead(301, {"Content-Type": "text/html", "Location": url})
res.end("Redirecting to <a href=\"" + url + "\">" + url + "</a>")
}
637
function exit(code) {
var softKill = util.wait(function() {
	opts.log.info("Everything closed cleanly")
	process.exit(code)
}, 1)
643
server.emit("beforeExit", softKill)
645
try {
	if (server._http) server._http.close(softKill.wait()).unref()
	if (server._https) server._https.close(softKill.wait()).unref()
	if (server._http2) server._http2.close(softKill.wait()).unref()
} catch(e) {}
651
setTimeout(function() {
	opts.log.warn("Kill (timeout)")
	process.exit(code)
}, opts.exitTime).unref()
656
softKill()
}
659}
660
661function setCookie(opts, value) {
var res = this
, existing = res.getHeader("set-cookie")
, cookie = (typeof opts === "string" ? (opts = { name: opts }) : opts).name +
("=" + value).replace(cookieRe, encodeURIComponent) +
(opts.maxAge   ? "; Expires=" + (tmpDate.setTime(opts.maxAge < 1 ? 0 : Date.now() + util.num(opts.maxAge)), tmpDate).toUTCString() : "") +
(opts.path     ? "; Path=" + opts.path : "") +
(opts.domain   ? "; Domain=" + opts.domain : "") +
(opts.secure   ? "; Secure" : "") +
(opts.httpOnly ? "; HttpOnly" : "") +
(opts.sameSite ? "; SameSite=" + opts.sameSite : "")
672
if (Array.isArray(existing)) {
existing.push(cookie)
} else {
res.setHeader("Set-Cookie", existing ? [existing, cookie] : cookie)
}
678}
679
680function getCookie(opts) {
var req = this
, name = (typeof opts === "string" ? (opts = { name: opts }) : opts).name
, junks = ("; " + req.headers.cookie).split("; " + name + "=")
684
if (junks.length > 2) {
(opts.path || "").split("/").map(function(val, key, arr) {
	var map = {
		name: name,
		maxAge: -1,
		path: arr.slice(0, key + 1).join("/")
	}
	, domain = opts.domain
	req.res.cookie(map, "")
	if (domain) {
		map.domain = domain
		req.res.cookie(map, "")
697
		if (domain !== (domain = domain.replace(/^[^.]+(?=\.(?=.+\.))/, "*"))) {
			map.domain = domain
			req.res.cookie(map, "")
		}
	}
})
req.opts.log.warn("Cookie fixation detected: %s", req.headers.cookie)
} else try {
return decodeURIComponent((junks[1] || "").split(";")[0])
} catch(e) {
req.opts.log.warn("Invalid cookie '%s' in: %s", name, req.headers.cookie)
}
return ""
711}
712
713
1
2	`var defaultOpts = {`
3	`maxBodySize: 1e6,`
4	`maxNameSize: 100,`
5	`maxFields: 1000,`
6	`maxFieldSize: 1000,`
7	`maxFiles: 1000,`
8	`maxFileSize: Infinity,`
9	`maxURILength: 2000,`
10	`log: console,`
11	`exitTime: 5000,`
12	`accept: {`
13	`"application/json;filename=;select=;space=": function(data, negod) {`
14	`return JSON.stringify(`
15	`data,`
16	`negod.select ? negod.select.split(",") : null,`
17	`+negod.space \|\| negod.space`
18	`// Line and Paragraph separator needing to be escaped in JavaScript but not in JSON,`
19	`// escape those so the JSON can be evaluated or directly utilized within JSONP.`
20	`).replace(/\u2028/g, "\\u2028").replace(/\u2029/g, "\\u2029")`
21	`},`
22	`// RFC 4180 optional parameters: charset, header`
23	`"text/csv;br=\"\r\n\";delimiter=\",\";fields=;filename=;header=;NULL=;select=": require("./csv.js").encode,`
24	`"application/sql;fields=;filename=;NULL=NULL;select=;table=table": function(data, negod) {`
25	`negod.re = /\D/`
26	`negod.br = "),\n("`
27	`negod.prefix = "INSERT INTO " +`
28	`negod.table + (negod.fields ? " (" + negod.fields + ")" : "") + " VALUES ("`
29	`negod.postfix = ");"`
30	`return require("./csv.js").encode(data, negod)`
31	`}`
32	`},`
33	`bodyRe: /^(?:PATCH\|POST\|PUT)$/i,`
34	`catch: sendError,`
35	`charset: "UTF-8",`
36	`compress: false,`
37	`encoding: {`
38	`"deflate;q=0.1": "createDeflate",`
39	`"gzip;q=0.2": "createGzip",`
40	`"br": "createBrotliCompress"`