2018-04-25 15:01:39 +00:00
|
|
|
package request
|
|
|
|
|
|
|
|
import (
|
2018-04-25 16:09:26 +00:00
|
|
|
"git.xdrm.io/gws/http/upgrade/response"
|
2018-04-25 15:01:39 +00:00
|
|
|
"git.xdrm.io/gws/internal/http/upgrade/request/parser/header"
|
|
|
|
"fmt"
|
|
|
|
"strconv"
|
|
|
|
"strings"
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// checkHost checks and extracts the Host header
|
|
|
|
func (r *T) extractHostPort(bb header.HeaderValue) error {
|
|
|
|
|
|
|
|
if len(bb) != 1 {
|
|
|
|
return fmt.Errorf("Host header must have a unique value")
|
|
|
|
}
|
|
|
|
|
|
|
|
split := strings.Split(string(bb[0]), ":")
|
|
|
|
|
|
|
|
r.host = split[0]
|
|
|
|
|
|
|
|
// no port
|
|
|
|
if len(split) < 2 {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// extract port
|
|
|
|
readPort, err := strconv.ParseUint(split[1], 10, 16)
|
|
|
|
if err != nil {
|
2018-04-25 16:09:26 +00:00
|
|
|
r.code = response.BAD_REQUEST
|
2018-04-25 15:01:39 +00:00
|
|
|
return fmt.Errorf("Cannot read port number '%s'", split[1])
|
|
|
|
}
|
|
|
|
|
|
|
|
r.port = uint16(readPort)
|
|
|
|
|
|
|
|
// if 'Origin' header is already read, check it
|
|
|
|
if len(r.origin) > 0 {
|
|
|
|
if err != nil {
|
2018-04-25 16:09:26 +00:00
|
|
|
err = r.checkOriginPolicy()
|
|
|
|
r.code = response.FORBIDDEN
|
2018-04-25 15:01:39 +00:00
|
|
|
return err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
// checkOrigin checks the Origin Header
|
|
|
|
func (r *T) extractOrigin(bb header.HeaderValue) error {
|
|
|
|
|
|
|
|
if len(bb) != 1 {
|
2018-04-25 16:09:26 +00:00
|
|
|
r.code = response.FORBIDDEN
|
2018-04-25 15:01:39 +00:00
|
|
|
return fmt.Errorf("Origin header must have a unique value")
|
|
|
|
}
|
|
|
|
|
|
|
|
r.origin = string(bb[0])
|
|
|
|
|
|
|
|
// if host already stored, check origin policy
|
|
|
|
if len(r.host) > 0 {
|
|
|
|
err := r.checkOriginPolicy()
|
|
|
|
if err != nil {
|
2018-04-25 16:09:26 +00:00
|
|
|
r.code = response.FORBIDDEN
|
2018-04-25 15:01:39 +00:00
|
|
|
return err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
// checkOriginPolicy origin policy based on 'host' value
|
2018-04-25 15:21:56 +00:00
|
|
|
func (r *T) checkOriginPolicy() error {
|
2018-04-25 15:01:39 +00:00
|
|
|
// TODO: Origin policy, for now BYPASS
|
2018-04-25 15:21:56 +00:00
|
|
|
r.validPolicy = true
|
2018-04-25 15:01:39 +00:00
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// checkConnection checks the 'Connection' header
|
|
|
|
// it MUST contain 'Upgrade'
|
2018-04-25 15:21:56 +00:00
|
|
|
func (r *T) checkConnection(bb header.HeaderValue) error {
|
2018-04-25 15:01:39 +00:00
|
|
|
|
|
|
|
for _, b := range bb {
|
|
|
|
|
|
|
|
if strings.ToLower( string(b) ) == "upgrade" {
|
2018-04-25 15:21:56 +00:00
|
|
|
r.hasConnection = true
|
2018-04-25 15:01:39 +00:00
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|
|
|
|
|
2018-04-25 16:09:26 +00:00
|
|
|
r.code = response.BAD_REQUEST
|
2018-04-25 15:01:39 +00:00
|
|
|
return fmt.Errorf("Connection header must be 'Upgrade'")
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
// checkUpgrade checks the 'Upgrade' header
|
|
|
|
// it MUST be 'websocket'
|
2018-04-25 15:21:56 +00:00
|
|
|
func (r *T) checkUpgrade(bb header.HeaderValue) error {
|
2018-04-25 15:01:39 +00:00
|
|
|
|
|
|
|
if len(bb) != 1 {
|
2018-04-25 16:09:26 +00:00
|
|
|
r.code = response.BAD_REQUEST
|
2018-04-25 15:01:39 +00:00
|
|
|
return fmt.Errorf("Upgrade header must have only 1 element")
|
|
|
|
}
|
|
|
|
|
|
|
|
if strings.ToLower( string(bb[0]) ) == "websocket" {
|
2018-04-25 15:21:56 +00:00
|
|
|
r.hasUpgrade = true
|
2018-04-25 15:01:39 +00:00
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2018-04-25 16:09:26 +00:00
|
|
|
r.code = response.BAD_REQUEST
|
2018-04-25 15:01:39 +00:00
|
|
|
return fmt.Errorf("Upgrade header must be 'websocket', got '%s'", bb[0])
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
// checkVersion checks the 'Sec-WebSocket-Version' header
|
|
|
|
// it MUST be '13'
|
2018-04-25 15:21:56 +00:00
|
|
|
func (r *T) checkVersion(bb header.HeaderValue) error {
|
2018-04-25 15:01:39 +00:00
|
|
|
|
|
|
|
if len(bb) != 1 || string(bb[0]) != "13" {
|
2018-04-25 16:09:26 +00:00
|
|
|
r.code = response.UPGRADE_REQUIRED
|
2018-04-25 15:01:39 +00:00
|
|
|
return fmt.Errorf("Sec-WebSocket-Version header must be '13'")
|
|
|
|
}
|
|
|
|
|
2018-04-25 15:21:56 +00:00
|
|
|
r.hasVersion = true
|
2018-04-25 15:01:39 +00:00
|
|
|
return nil
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
// extractKey extracts the 'Sec-WebSocket-Key' header
|
|
|
|
// it MUST be 24 bytes (base64)
|
|
|
|
func (r *T) extractKey(bb header.HeaderValue) error {
|
|
|
|
|
|
|
|
if len(bb) != 1 || len(bb[0]) != 24 {
|
2018-04-25 16:09:26 +00:00
|
|
|
r.code = response.BAD_REQUEST
|
2018-04-25 15:01:39 +00:00
|
|
|
return fmt.Errorf("Sec-WebSocket-Key header must be a unique 24 bytes base64 value, got %d bytes", len(bb[0]))
|
|
|
|
}
|
|
|
|
|
2018-04-25 15:21:56 +00:00
|
|
|
r.key = bb[0]
|
|
|
|
|
2018-04-25 15:01:39 +00:00
|
|
|
return nil
|
|
|
|
|
2018-04-25 15:21:56 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
// extractProtocols extracts the 'Sec-WebSocket-Protocol' header
|
|
|
|
// it can contain multiple values
|
|
|
|
func (r *T) extractProtocols(bb header.HeaderValue) error {
|
|
|
|
|
|
|
|
r.protocols = bb
|
|
|
|
|
|
|
|
return nil
|
2018-04-25 15:01:39 +00:00
|
|
|
}
|