UNPKG

express-dom

Version:

Prepare, render web pages - express middleware

github.com/kapouer/express-dom

kapouer/express-dom

74 lines (67 loc) 1.6 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
module.exports = class Phase { static SrcPolicies = new Set([ 'child', 'connect', 'default', 'fenced-frame', 'font', 'frame', 'img', 'manifest', 'media', 'object', 'script', 'style', 'worker' ]); constructor(handler, req) { this.handler = handler; this.location = this.#absoluteURL(req); const headerVal = req.get(handler.constructor.header); this.online = headerVal == handler.online.header; this.offline = headerVal == handler.offline.header; this.visible = !this.online && !this.offline; const { visible, online, offline } = this.handler; let polset; this.settings = {}; if (this.visible) { polset = visible; if (online.enabled && online.plugins.size) { this.settings = online; } else if (offline.enabled && offline.plugins.size) { this.settings = offline; } } else if (this.online) { polset = online; if (offline.enabled && offline.plugins.size) { this.settings = offline; } } else if (this.offline) { polset = offline; } this.policies = polset.policies; } #absoluteURL({ protocol, headers, url }) { if (protocol == "about:") { return new URL(`about:${url}`); } else { return new URL(`${protocol}://${headers.host}${url}`); } } #cspHeader(csp) { return Object.entries(csp).map(([key, val]) => { if (Phase.SrcPolicies.has(key)) { key += '-src'; } return `${key} ${val}`; }).join('; '); } headers() { const obj = {}; if (this.policies) { const csp = this.#cspHeader(this.policies); if (csp) obj["Content-Security-Policy"] = csp; } return obj; } };