'use strict'; module.exports = function (opts) { var escapeHtml = require('escape-html'); if (!opts) { opts = {}; } if (isNaN(opts.port)) { opts.port = 443; } if (!('body' in opts)) { opts.body = ""; } opts.body = opts.body.replace(/{{\s+PORT\s+}}/i, opts.port); return function (req, res, next) { if (req.connection.encrypted || 'https' === req.protocol || (opts.trustProxy && 'https' === req.headers['x-forwarded-proto']) ) { next(); return; } var url = req.url; var host = req.headers.host || ''; var newLocation = 'https://' + host.replace(/:\d+/, ':' + opts.port) + url ; //var encodedLocation = encodeURI(newLocation); var escapedLocation = escapeHtml(newLocation); var body = opts.body .replace(/{{\s*HTML_URL\s*}}/ig, escapeHtml(decodeURIComponent(newLocation))) .replace(/{{\s*URL\s*}}/ig, escapedLocation) .replace(/{{\s*UNSAFE_URL\s*}}/ig, newLocation) ; var metaRedirect = '' + '\n' + '\n' //+ ' \n' + ' \n' + '\n' + '\n' + body + '\n\n' + '\n' ; res.setHeader('Content-Type', 'text/html; charset=utf-8'); res.end(metaRedirect); }; };