UNPKG

astro

Version:

Astro is a modern site builder with web best practices, performance, and DX front-of-mind.

astro.build

withastro/astro

130 lines (129 loc) 4.32 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
import { readFileSync } from "node:fs"; import { fileURLToPath } from "node:url"; import astroIslandPrebuilt from "../../runtime/server/astro-island.prebuilt.js"; import astroIslandPrebuiltDev from "../../runtime/server/astro-island.prebuilt-dev.js"; import { ISLAND_STYLES } from "../../runtime/server/astro-island-styles.js"; import { generateCspDigest } from "../encryption.js"; function shouldTrackCspHashes(csp) { return csp === true || typeof csp === "object"; } function getAlgorithm(csp) { if (csp === true) { return "SHA-256"; } return csp.algorithm; } function getScriptHashes(csp) { if (csp === true) { return []; } else { return csp.scriptDirective?.hashes ?? []; } } function getScriptResources(csp) { if (csp === true) { return []; } return csp.scriptDirective?.resources ?? []; } function getStyleHashes(csp) { if (csp === true) { return []; } return csp.styleDirective?.hashes ?? []; } function getStyleResources(csp) { if (csp === true) { return []; } return csp.styleDirective?.resources ?? []; } function getDirectives(settings) { const { csp } = settings.config.experimental; if (!shouldTrackCspHashes(csp)) { return []; } const userDirectives = csp === true ? [] : [...csp.directives ?? []]; const fontResources = Array.from(settings.injectedCsp.fontResources.values()); if (fontResources.length === 0) { return userDirectives; } const fontSrcIndex = userDirectives.findIndex((e) => e.startsWith("font-src")); if (fontSrcIndex === -1) { return [...userDirectives, `font-src ${fontResources.join(" ")}`]; } const existing = userDirectives[fontSrcIndex].split(/\s+/).slice(1).filter(Boolean); const merged = Array.from(/* @__PURE__ */ new Set([...existing, ...fontResources])); userDirectives[fontSrcIndex] = `font-src ${merged.join(" ")}`; return userDirectives; } function getStrictDynamic(csp) { if (csp === true) { return false; } return csp.scriptDirective?.strictDynamic ?? false; } async function trackStyleHashes(internals, settings, algorithm) { const clientStyleHashes = []; for (const [_, page] of internals.pagesByViteID.entries()) { for (const style of page.styles) { if (style.sheet.type === "inline") { clientStyleHashes.push(await generateCspDigest(style.sheet.content, algorithm)); } } } for (const clientAsset in internals.clientChunksAndAssets) { const contents = readFileSync( fileURLToPath(new URL(clientAsset, settings.config.build.client)), "utf-8" ); if (clientAsset.endsWith(".css") || clientAsset.endsWith(".css")) { clientStyleHashes.push(await generateCspDigest(contents, algorithm)); } } if (settings.renderers.length > 0) { clientStyleHashes.push(await generateCspDigest(ISLAND_STYLES, algorithm)); } return clientStyleHashes; } async function trackScriptHashes(internals, settings, algorithm) { const clientScriptHashes = []; for (const script of internals.inlinedScripts.values()) { clientScriptHashes.push(await generateCspDigest(script, algorithm)); } for (const directiveContent of Array.from(settings.clientDirectives.values())) { clientScriptHashes.push(await generateCspDigest(directiveContent, algorithm)); } for (const clientAsset in internals.clientChunksAndAssets) { const contents = readFileSync( fileURLToPath(new URL(clientAsset, settings.config.build.client)), "utf-8" ); if (clientAsset.endsWith(".js") || clientAsset.endsWith(".mjs")) { clientScriptHashes.push(await generateCspDigest(contents, algorithm)); } } for (const script of settings.scripts) { const { content, stage } = script; if (stage === "head-inline" || stage === "before-hydration") { clientScriptHashes.push(await generateCspDigest(content, algorithm)); } } if (settings.renderers.length > 0) { clientScriptHashes.push(await generateCspDigest(astroIslandPrebuilt, algorithm)); clientScriptHashes.push(await generateCspDigest(astroIslandPrebuiltDev, algorithm)); } return clientScriptHashes; } export { getAlgorithm, getDirectives, getScriptHashes, getScriptResources, getStrictDynamic, getStyleHashes, getStyleResources, shouldTrackCspHashes, trackScriptHashes, trackStyleHashes };