bitinflow/server
1
0
Fork 0
mirror of https://github.com/bitinflow/server.git synced 2026-03-13 13:35:53 +00:00
Code Issues Packages Projects Releases Wiki Activity

allow subdomains up to 20 characters

Browse Source 
- error out of subdomain outside of acceptable range
- don't check ranges in client id regex capture. If there is no client,
  just give a no client message instead of redirecting to service
  landing page

fixes #40
This commit is contained in:
Roman Shtylman
2014-04-16 22:46:21 -04:00
parent bee0115b26
commit 873bafc1f6
1 changed files with 17 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

24
server.js
View File

@@ -16,7 +16,7 @@ var rand_id = require('./lib/rand_id');
var kProduction = process.env.NODE_ENV === 'production'; var kProduction = process.env.NODE_ENV === 'production';
// id -> client http server // id -> client http server
var clients = {}; var clients = Object.create(null);
// proxy statistics // proxy statistics
var stats = { var stats = {
@@ -32,7 +32,8 @@ function maybe_bounce(req, res, bounce) {
return false; return false;
} }
var match = hostname.match(/^([a-z0-9]{4,10})[.].*/); // extract the subdomain, which is the client id
var match = hostname.match(/^([a-z0-9]+)[.].*/);
// not for a specific client // not for a specific client
// pass on to regular server // pass on to regular server
@@ -169,7 +170,7 @@ module.exports = function(opt) {
var url = schema + '://' + req_id + '.' + req.headers.host; var url = schema + '://' + req_id + '.' + req.headers.host;
info.url = url; info.url = url;
res.end(JSON.stringify(info)); res.json(info);
}); });
}); });
@@ -180,8 +181,11 @@ module.exports = function(opt) {
app.get('/:req_id', function(req, res, next) { app.get('/:req_id', function(req, res, next) {
var req_id = req.param('req_id'); var req_id = req.param('req_id');
if (! /[A-Za-z0-9]{4,10}/.test(req_id)) { // limit requested hostnames to 20 characters
return next(); if (! /^[A-Za-z0-9]{4,20}$/.test(req_id)) {
var err = new Error('');
err.statusCode = 403;
return next(err);
} }
debug('making new client with id %s', req_id); debug('making new client with id %s', req_id);
@@ -193,11 +197,18 @@ module.exports = function(opt) {
var url = schema + '://' + req_id + '.' + req.headers.host; var url = schema + '://' + req_id + '.' + req.headers.host;
info.url = url; info.url = url;
res.end(JSON.stringify(info)); res.json(info);
}); });
}); });
app.use(function(err, req, res, next) {
var status = err.statusCode || err.status || 500;
res.status(status).json({
message: err.message
});
});
var app_port = 0; var app_port = 0;
var app_server = app.listen(app_port, function() { var app_server = app.listen(app_port, function() {
app_port = app_server.address().port; app_port = app_server.address().port;
@@ -233,7 +244,6 @@ module.exports = function(opt) {
}); });
}); });
var server = bouncy(function(req, res, bounce) { var server = bouncy(function(req, res, bounce) {
debug('request %s', req.url); debug('request %s', req.url);