vscode/src/vs/server/node/serverConnectionToken.ts at main · https-clone/vscode

History

155 lines (124 loc) · 5.58 KB

Raw

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

/*---------------------------------------------------------------------------------------------

* Licensed under the MIT License. See License.txt in the project root for license information.

*--------------------------------------------------------------------------------------------*/

import * as cookie from 'cookie';

import * as fs from 'fs';

import * as http from 'http';

import * as url from 'url';

import * as path from 'vs/base/common/path';

import { generateUuid } from 'vs/base/common/uuid';

import { connectionTokenCookieName, connectionTokenQueryName } from 'vs/base/common/network';

import { ServerParsedArgs } from 'vs/server/node/serverEnvironmentService';

import { Promises } from 'vs/base/node/pfs';

const connectionTokenRegex = /^[0-9A-Za-z_-]+$/;

export const enum ServerConnectionTokenType {

None,

Optional,// TODO: Remove this soon

Mandatory

}

export class NoneServerConnectionToken {

public readonly type = ServerConnectionTokenType.None;

public validate(connectionToken: any): boolean {

return true;

}

export class OptionalServerConnectionToken {

public readonly type = ServerConnectionTokenType.Optional;

constructor(public readonly value: string) {

}

public validate(connectionToken: any): boolean {

return (connectionToken === this.value);

}

export class MandatoryServerConnectionToken {

public readonly type = ServerConnectionTokenType.Mandatory;

constructor(public readonly value: string) {

}

public validate(connectionToken: any): boolean {

return (connectionToken === this.value);

}

export type ServerConnectionToken = NoneServerConnectionToken | OptionalServerConnectionToken | MandatoryServerConnectionToken;

export class ServerConnectionTokenParseError {

constructor(

public readonly message: string

) { }

}

export async function parseServerConnectionToken(args: ServerParsedArgs, defaultValue: () => Promise<string>): Promise<ServerConnectionToken | ServerConnectionTokenParseError> {

const withoutConnectionToken = args['without-connection-token'];

const connectionToken = args['connection-token'];

const connectionTokenFile = args['connection-token-file'];

const compatibility = (args['compatibility'] === '1.63');

if (withoutConnectionToken) {

if (typeof connectionToken !== 'undefined' || typeof connectionTokenFile !== 'undefined') {

return new ServerConnectionTokenParseError(`Please do not use the argument '--connection-token' or '--connection-token-file' at the same time as '--without-connection-token'.`);

}

return new NoneServerConnectionToken();

}

if (typeof connectionTokenFile !== 'undefined') {

if (typeof connectionToken !== 'undefined') {

return new ServerConnectionTokenParseError(`Please do not use the argument '--connection-token' at the same time as '--connection-token-file'.`);

}

let rawConnectionToken: string;

try {

rawConnectionToken = fs.readFileSync(connectionTokenFile).toString().replace(/\r?\n$/, '');

} catch (e) {

return new ServerConnectionTokenParseError(`Unable to read the connection token file at '${connectionTokenFile}'.`);

}

if (!connectionTokenRegex.test(rawConnectionToken)) {

return new ServerConnectionTokenParseError(`The connection token defined in '${connectionTokenFile} does not adhere to the characters 0-9, a-z, A-Z or -.`);

}

return new MandatoryServerConnectionToken(rawConnectionToken);

}

if (typeof connectionToken !== 'undefined') {

if (!connectionTokenRegex.test(connectionToken)) {

return new ServerConnectionTokenParseError(`The connection token '${connectionToken} does not adhere to the characters 0-9, a-z, A-Z or -.`);

}

if (compatibility) {

// TODO: Remove this case soon

return new OptionalServerConnectionToken(connectionToken);

}

return new MandatoryServerConnectionToken(connectionToken);

}

if (compatibility) {

// TODO: Remove this case soon

console.log(`Breaking change in the next release: Please use one of the following arguments: '--connection-token', '--connection-token-file' or '--without-connection-token'.`);

return new OptionalServerConnectionToken(await defaultValue());

}

return new MandatoryServerConnectionToken(await defaultValue());

}

export async function determineServerConnectionToken(args: ServerParsedArgs): Promise<ServerConnectionToken | ServerConnectionTokenParseError> {

const readOrGenerateConnectionToken = async () => {

if (!args['user-data-dir']) {

// No place to store it!

return generateUuid();

}

const storageLocation = path.join(args['user-data-dir'], 'token');

// First try to find a connection token

try {

const fileContents = await Promises.readFile(storageLocation);

const connectionToken = fileContents.toString().replace(/\r?\n$/, '');

if (connectionTokenRegex.test(connectionToken)) {

return connectionToken;

}

} catch (err) { }

// No connection token found, generate one

const connectionToken = generateUuid();

try {

// Try to store it

await Promises.writeFile(storageLocation, connectionToken, { mode: 0o600 });

} catch (err) { }

return connectionToken;

};

return parseServerConnectionToken(args, readOrGenerateConnectionToken);

}

export function requestHasValidConnectionToken(connectionToken: ServerConnectionToken, req: http.IncomingMessage, parsedUrl: url.UrlWithParsedQuery) {

// First check if there is a valid query parameter

if (connectionToken.validate(parsedUrl.query[connectionTokenQueryName])) {

return true;

}

// Otherwise, check if there is a valid cookie

const cookies = cookie.parse(req.headers.cookie || '');

return connectionToken.validate(cookies[connectionTokenCookieName]);

}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

FilesExpand file tree

serverConnectionToken.ts

Latest commit

History

serverConnectionToken.ts

File metadata and controls