mirror of
https://github.com/BobbyWibowo/lolisafe.git
synced 2025-01-07 12:21:33 +00:00
414afc7ae6
when used on non-root paths
193 lines
4.3 KiB
JavaScript
193 lines
4.3 KiB
JavaScript
const fresh = require('fresh')
|
|
const parseRange = require('range-parser')
|
|
|
|
const self = {
|
|
BYTES_RANGE_REGEXP: /^ *bytes=/
|
|
}
|
|
|
|
self.isFresh = (req, res) => {
|
|
return fresh(req.headers, {
|
|
etag: res.get('ETag'),
|
|
'last-modified': res.get('Last-Modified')
|
|
})
|
|
}
|
|
|
|
self.forwardSlashes = path => {
|
|
return path.split('\\').join('/')
|
|
}
|
|
|
|
self.relativePath = (root, path) => {
|
|
return self.forwardSlashes(path).replace(root, '')
|
|
}
|
|
|
|
/*
|
|
* Based on https://github.com/pillarjs/send/blob/0.18.0/index.js
|
|
* Copyright(c) 2012 TJ Holowaychuk
|
|
* Copyright(c) 2014-2022 Douglas Christopher Wilson
|
|
* MIT License
|
|
*/
|
|
|
|
self.isRangeFresh = (req, res) => {
|
|
const ifRange = req.headers['if-range']
|
|
|
|
if (!ifRange) {
|
|
return true
|
|
}
|
|
|
|
// if-range as etag
|
|
if (ifRange.indexOf('"') !== -1) {
|
|
const etag = res.get('ETag')
|
|
return Boolean(etag && ifRange.indexOf(etag) !== -1)
|
|
}
|
|
|
|
// if-range as modified date
|
|
const lastModified = res.get('Last-Modified')
|
|
return self.parseHttpDate(lastModified) <= self.parseHttpDate(ifRange)
|
|
}
|
|
|
|
self.isConditionalGET = req => {
|
|
return req.headers['if-match'] ||
|
|
req.headers['if-unmodified-since'] ||
|
|
req.headers['if-none-match'] ||
|
|
req.headers['if-modified-since']
|
|
}
|
|
|
|
self.isPreconditionFailure = (req, res) => {
|
|
// if-match
|
|
const match = req.headers['if-match']
|
|
if (match) {
|
|
const etag = res.get('ETag')
|
|
return !etag || (match !== '*' && self.parseTokenList(match).every(match => {
|
|
return match !== etag && match !== 'W/' + etag && 'W/' + match !== etag
|
|
}))
|
|
}
|
|
|
|
// if-unmodified-since
|
|
const unmodifiedSince = self.parseHttpDate(req.headers['if-unmodified-since'])
|
|
if (!isNaN(unmodifiedSince)) {
|
|
const lastModified = self.parseHttpDate(res.get('Last-Modified'))
|
|
return isNaN(lastModified) || lastModified > unmodifiedSince
|
|
}
|
|
|
|
return false
|
|
}
|
|
|
|
self.contentRange = (type, size, range) => {
|
|
return type + ' ' + (range ? range.start + '-' + range.end : '*') + '/' + size
|
|
}
|
|
|
|
self.parseHttpDate = date => {
|
|
const timestamp = date && Date.parse(date)
|
|
|
|
return typeof timestamp === 'number'
|
|
? timestamp
|
|
: NaN
|
|
}
|
|
|
|
self.parseTokenList = str => {
|
|
let end = 0
|
|
const list = []
|
|
let start = 0
|
|
|
|
// gather tokens
|
|
for (let i = 0, len = str.length; i < len; i++) {
|
|
switch (str.charCodeAt(i)) {
|
|
case 0x20: /* */
|
|
if (start === end) {
|
|
start = end = i + 1
|
|
}
|
|
break
|
|
case 0x2c: /* , */
|
|
if (start !== end) {
|
|
list.push(str.substring(start, end))
|
|
}
|
|
start = end = i + 1
|
|
break
|
|
default:
|
|
end = i + 1
|
|
break
|
|
}
|
|
}
|
|
|
|
// final token
|
|
if (start !== end) {
|
|
list.push(str.substring(start, end))
|
|
}
|
|
|
|
return list
|
|
}
|
|
|
|
self.assertConditionalGET = (req, res) => {
|
|
if (self.isConditionalGET(req)) {
|
|
if (self.isPreconditionFailure(req, res)) {
|
|
res.status(412)
|
|
return true
|
|
}
|
|
|
|
if (self.isFresh(req, res)) {
|
|
res.status(304)
|
|
return true
|
|
}
|
|
}
|
|
}
|
|
|
|
self.buildReadStreamOptions = (req, res, stat, acceptRanges) => {
|
|
// ReadStream options
|
|
let length = stat.size
|
|
const options = {}
|
|
let ranges = req.headers.range
|
|
let offset = 0
|
|
|
|
// Adjust len to start/end options
|
|
length = Math.max(0, length - offset)
|
|
if (options.end !== undefined) {
|
|
const bytes = options.end - offset + 1
|
|
if (length > bytes) {
|
|
length = bytes
|
|
}
|
|
}
|
|
|
|
// Range support
|
|
if (acceptRanges && self.BYTES_RANGE_REGEXP.test(ranges)) {
|
|
// Parse
|
|
ranges = parseRange(length, ranges, {
|
|
combine: true
|
|
})
|
|
|
|
// If-Range support
|
|
if (!self.isRangeFresh(req, res)) {
|
|
// Stale
|
|
ranges = -2
|
|
}
|
|
|
|
// Unsatisfiable
|
|
if (ranges === -1) {
|
|
// Content-Range
|
|
res.header('Content-Range', self.contentRange('bytes', length))
|
|
|
|
// 416 Requested Range Not Satisfiable
|
|
res.status(416)
|
|
return false
|
|
}
|
|
|
|
// Valid (syntactically invalid/multiple ranges are treated as a regular response)
|
|
if (ranges !== -2 && ranges.length === 1) {
|
|
// Content-Range
|
|
res.status(206)
|
|
res.header('Content-Range', self.contentRange('bytes', length, ranges[0]))
|
|
|
|
// Adjust for requested range
|
|
offset += ranges[0].start
|
|
length = ranges[0].end - ranges[0].start + 1
|
|
}
|
|
}
|
|
|
|
// Set read options
|
|
options.start = offset
|
|
options.end = Math.max(offset, offset + length - 1)
|
|
|
|
return { options, length }
|
|
}
|
|
|
|
module.exports = self
|