UNPKG

@tomphttp/bare-server-node

Version:

The Bare Server implementation in NodeJS.

github.com/tomphttp

tomphttp/bare-server-node

141 lines (140 loc) 4.8 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
/// <reference types="node" /> /// <reference types="node" /> /// <reference types="node" /> /// <reference types="node" /> /// <reference types="node" /> /// <reference types="node" /> /// <reference types="node" /> /// <reference types="node" /> import type { LookupOneOptions } from 'node:dns'; import EventEmitter from 'node:events'; import type { Agent as HttpAgent, IncomingMessage, ServerResponse } from 'node:http'; import type { Agent as HttpsAgent } from 'node:https'; import { type Duplex } from 'node:stream'; import type WebSocket from 'ws'; import { type RateLimiterRes } from 'rate-limiter-flexible'; export interface BareRequest extends Request { native: IncomingMessage; } export interface BareErrorBody { code: string; id: string; message?: string; stack?: string; } /** * Result of a rate limiting check. */ export interface RateLimitResult { /** Whether the request is allowed. */ allowed: boolean; /** Rate limiter response containing timing and quota information. */ rateLimiterRes?: RateLimiterRes; } /** * Connection limiting options to prevent resource exhaustion attacks. */ export interface ConnectionLimiterOptions { /** * Maximum number of keep-alive connections per IP address. * @default 10 */ maxConnectionsPerIP?: number; /** * Duration in seconds for the rate limit cooldown time window. * @default 60 */ windowDuration?: number; /** * Block duration in seconds for during rate limit cooldown. * @default 60 */ blockDuration?: number; } export declare class BareError extends Error { status: number; body: BareErrorBody; constructor(status: number, body: BareErrorBody); } export declare const pkg: { version: string; }; export declare function json<T>(status: number, json: T): globalThis.Response; export type BareMaintainer = { email?: string; website?: string; }; export type BareProject = { name?: string; description?: string; email?: string; website?: string; repository?: string; version?: string; }; export type BareLanguage = 'NodeJS' | 'ServiceWorker' | 'Deno' | 'Java' | 'PHP' | 'Rust' | 'C' | 'C++' | 'C#' | 'Ruby' | 'Go' | 'Crystal' | 'Shell' | string; export type BareManifest = { maintainer?: BareMaintainer; project?: BareProject; versions: string[]; language: BareLanguage; memoryUsage?: number; }; export interface Options { logErrors: boolean; /** * Callback for filtering the remote URL. * @returns Nothing * @throws An error if the remote is bad. */ filterRemote?: (remote: Readonly<URL>) => Promise<void> | void; /** * DNS lookup * May not get called when remote.host is an IP * Use in combination with filterRemote to block IPs */ lookup: (hostname: string, options: LookupOneOptions, callback: (err: NodeJS.ErrnoException | null, address: string, family: number) => void) => void; localAddress?: string; family?: number; maintainer?: BareMaintainer; httpAgent: HttpAgent; httpsAgent: HttpsAgent; database: JSONDatabaseAdapter; wss: WebSocket.Server; /** * Connection limiting options to prevent resource exhaustion attacks. */ connectionLimiter?: ConnectionLimiterOptions; } export type RouteCallback = (request: BareRequest, response: ServerResponse<IncomingMessage>, options: Options) => Promise<Response> | Response; export type SocketRouteCallback = (request: BareRequest, socket: Duplex, head: Buffer, options: Options) => Promise<void> | void; export default class Server extends EventEmitter { directory: string; routes: Map<string, RouteCallback>; socketRoutes: Map<string, SocketRouteCallback>; versions: string[]; private closed; private options; private rateLimiter?; /** * Extracts client IP address from incoming request. * Checks headers in order of preference: `x-forwarded-for`, `x-real-ip`, then socket address. * @param req HTTP request to extract IP from. * @return Client IP address as string, or `'unknown'` if not determinable. */ private getClientIP; /** * Checks if request should be rate limited based on connection type and IP to prevent resource exhaustion. * @param req HTTP request to check. * @return Promise resolving to rate limit result with allowed status and limiter response. */ private checkRateLimit; /** * Remove all timers and listeners */ close(): void; shouldRoute(request: IncomingMessage): boolean; get instanceInfo(): BareManifest; routeUpgrade(req: IncomingMessage, socket: Duplex, head: Buffer): Promise<void>; routeRequest(req: IncomingMessage, res: ServerResponse): Promise<void>; }