2017-06-26 17:34:42 +00:00
|
|
|
'use strict';
|
|
|
|
|
2017-09-14 21:26:19 +00:00
|
|
|
module.exports.create = function (deps, conf) {
|
2017-06-26 17:34:42 +00:00
|
|
|
var pending = {};
|
|
|
|
|
2017-10-18 19:48:08 +00:00
|
|
|
async function _checkPublicAddr(host) {
|
2017-09-26 00:06:48 +00:00
|
|
|
var result = await deps.request({
|
2017-06-27 00:12:00 +00:00
|
|
|
method: 'GET'
|
2017-09-27 20:53:18 +00:00
|
|
|
, url: deps.OAUTH3.url.normalize(host)+'/api/org.oauth3.tunnel/checkip'
|
2017-06-27 00:12:00 +00:00
|
|
|
, json: true
|
|
|
|
});
|
2017-09-19 19:18:22 +00:00
|
|
|
|
|
|
|
if (!result.body) {
|
|
|
|
throw new Error('No response body in request for public address');
|
|
|
|
}
|
|
|
|
if (result.body.error) {
|
|
|
|
// Note that the error on the body will probably have a message that overwrites the default
|
|
|
|
throw Object.assign(new Error('error in check IP response'), result.body.error);
|
|
|
|
}
|
2017-11-01 17:40:56 +00:00
|
|
|
if (!result.body.address) {
|
|
|
|
throw new Error("public address resonse doesn't contain address: "+JSON.stringify(result.body));
|
|
|
|
}
|
2017-09-19 19:18:22 +00:00
|
|
|
return result.body.address;
|
2017-06-27 00:12:00 +00:00
|
|
|
}
|
2017-10-18 19:48:08 +00:00
|
|
|
async function checkPublicAddr(provider) {
|
|
|
|
var directives = await deps.OAUTH3.discover(provider);
|
|
|
|
return _checkPublicAddr(directives.api);
|
|
|
|
}
|
2017-06-27 00:12:00 +00:00
|
|
|
|
2017-09-19 19:18:22 +00:00
|
|
|
async function checkSinglePort(host, address, port) {
|
2017-06-26 17:34:42 +00:00
|
|
|
var crypto = require('crypto');
|
|
|
|
var token = crypto.randomBytes(8).toString('hex');
|
|
|
|
var keyAuth = crypto.randomBytes(32).toString('hex');
|
|
|
|
pending[token] = keyAuth;
|
|
|
|
|
2017-09-19 19:18:22 +00:00
|
|
|
var reqObj = {
|
2017-06-26 17:34:42 +00:00
|
|
|
method: 'POST'
|
2017-09-27 20:53:18 +00:00
|
|
|
, url: deps.OAUTH3.url.normalize(host)+'/api/org.oauth3.tunnel/loopback'
|
2017-11-01 17:40:56 +00:00
|
|
|
, timeout: 20*1000
|
2017-09-19 19:18:22 +00:00
|
|
|
, json: {
|
|
|
|
address: address
|
|
|
|
, port: port
|
|
|
|
, token: token
|
|
|
|
, keyAuthorization: keyAuth
|
|
|
|
, iat: Date.now()
|
2017-11-01 17:40:56 +00:00
|
|
|
, timeout: 18*1000
|
2017-06-27 00:12:00 +00:00
|
|
|
}
|
2017-09-19 19:18:22 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
var result;
|
|
|
|
try {
|
2017-09-26 00:06:48 +00:00
|
|
|
result = await deps.request(reqObj);
|
2017-09-19 19:18:22 +00:00
|
|
|
} catch (err) {
|
2017-06-27 00:12:00 +00:00
|
|
|
delete pending[token];
|
2017-11-01 17:40:56 +00:00
|
|
|
if (conf.debug) {
|
|
|
|
console.log('error making loopback request for port ' + port + ' loopback', err.message);
|
|
|
|
}
|
|
|
|
return false;
|
2017-09-19 19:18:22 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
delete pending[token];
|
|
|
|
if (!result.body) {
|
2017-11-01 17:40:56 +00:00
|
|
|
if (conf.debug) {
|
|
|
|
console.log('No response body in loopback request for port '+port);
|
|
|
|
}
|
|
|
|
return false;
|
2017-09-19 19:18:22 +00:00
|
|
|
}
|
|
|
|
// If the loopback requests don't go to us then there are all kinds of ways it could
|
|
|
|
// error, but none of them really provide much extra information so we don't do
|
|
|
|
// anything that will break the PromiseA.all out and mask the other results.
|
|
|
|
if (conf.debug && result.body.error) {
|
|
|
|
console.log('error on remote side of port '+port+' loopback', result.body.error);
|
|
|
|
}
|
|
|
|
return !!result.body.success;
|
2017-06-27 00:12:00 +00:00
|
|
|
}
|
|
|
|
|
2017-09-19 19:18:22 +00:00
|
|
|
async function loopback(provider) {
|
|
|
|
var directives = await deps.OAUTH3.discover(provider);
|
2017-10-18 19:48:08 +00:00
|
|
|
var address = await _checkPublicAddr(directives.api);
|
2017-09-26 00:06:48 +00:00
|
|
|
if (conf.debug) {
|
|
|
|
console.log('checking to see if', address, 'gets back to us');
|
|
|
|
}
|
2017-09-19 19:18:22 +00:00
|
|
|
|
2017-09-26 00:06:48 +00:00
|
|
|
var ports = require('../servers').listeners.tcp.list();
|
|
|
|
var values = await deps.PromiseA.all(ports.map(function (port) {
|
2017-09-19 19:18:22 +00:00
|
|
|
return checkSinglePort(directives.api, address, port);
|
|
|
|
}));
|
|
|
|
|
2017-11-01 17:40:56 +00:00
|
|
|
if (conf.debug && Object.keys(pending).length) {
|
2017-09-19 19:18:22 +00:00
|
|
|
console.log('remaining loopback tokens', pending);
|
|
|
|
}
|
2017-09-14 21:26:19 +00:00
|
|
|
|
2017-09-27 20:53:18 +00:00
|
|
|
return {
|
|
|
|
address: address
|
|
|
|
, ports: ports.reduce(function (obj, port, ind) {
|
|
|
|
obj[port] = values[ind];
|
|
|
|
return obj;
|
|
|
|
}, {})
|
|
|
|
};
|
2017-06-26 17:34:42 +00:00
|
|
|
}
|
|
|
|
|
2017-09-14 21:26:19 +00:00
|
|
|
loopback.checkPublicAddr = checkPublicAddr;
|
2017-06-26 17:34:42 +00:00
|
|
|
loopback.server = require('http').createServer(function (req, res) {
|
|
|
|
var parsed = require('url').parse(req.url);
|
|
|
|
var token = parsed.pathname.replace('/.well-known/cloud-challenge/', '');
|
|
|
|
if (pending[token]) {
|
|
|
|
res.setHeader('Content-Type', 'text/plain');
|
|
|
|
res.end(pending[token]);
|
|
|
|
} else {
|
|
|
|
res.statusCode = 404;
|
|
|
|
res.end();
|
|
|
|
}
|
|
|
|
});
|
|
|
|
|
|
|
|
return loopback;
|
|
|
|
};
|