UNPKG

happy-dom

Version:

Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. It includes many web standards from WHATWG DOM and HTML.

github.com/capricorn86/happy-dom

capricorn86/happy-dom

107 lines 3.95 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
import * as PropertySymbol from '../../PropertySymbol.js'; import CookieStringUtility from '../../cookie/urilities/CookieStringUtility.js'; import Headers from '../Headers.js'; import FetchCORSUtility from './FetchCORSUtility.js'; import { URL } from 'url'; const FORBIDDEN_HEADER_NAMES = [ 'accept-charset', 'accept-encoding', 'access-control-request-headers', 'access-control-request-method', 'connection', 'content-length', 'content-transfer-encoding', 'cookie', 'cookie2', 'date', 'dnt', 'expect', 'host', 'keep-alive', 'origin', 'referer', 'te', 'trailer', 'transfer-encoding', 'upgrade', 'via' ]; /** * Fetch request header utility. */ export default class FetchRequestHeaderUtility { /** * Validates request headers. * * @param headers Headers. */ static removeForbiddenHeaders(headers) { for (const key of Object.keys(headers[PropertySymbol.entries])) { if (FORBIDDEN_HEADER_NAMES.includes(key) || key.startsWith('proxy-') || key.startsWith('sec-')) { delete headers[PropertySymbol.entries][key]; } } } /** * Returns "true" if the header is forbidden. * * @param name Header name. * @returns "true" if the header is forbidden. */ static isHeaderForbidden(name) { return FORBIDDEN_HEADER_NAMES.includes(name.toLowerCase()); } /** * Returns request headers. * * @param options Options. * @param options.browserFrame Browser frame. * @param options.window Window. * @param options.request Request. * @returns Headers. */ static getRequestHeaders(options) { const headers = new Headers(options.request.headers); const originURL = new URL(options.window.location.href); const isCORS = FetchCORSUtility.isCORS(originURL, options.request[PropertySymbol.url]); // TODO: Maybe we need to add support for OPTIONS request with 'Access-Control-Allow-*' headers? if (options.request.credentials === 'omit' || (options.request.credentials === 'same-origin' && isCORS)) { headers.delete('authorization'); headers.delete('www-authenticate'); } headers.set('Accept-Encoding', 'gzip, deflate, br'); headers.set('Connection', 'close'); if (!headers.has('User-Agent')) { headers.set('User-Agent', options.window.navigator.userAgent); } if (options.request[PropertySymbol.referrer] instanceof URL) { headers.set('Referer', options.request[PropertySymbol.referrer].href); } if (options.request.credentials === 'include' || (options.request.credentials === 'same-origin' && !isCORS)) { const cookies = options.browserFrame.page.context.cookieContainer.getCookies(originURL, false); if (cookies.length > 0) { headers.set('Cookie', CookieStringUtility.cookiesToString(cookies)); } } if (!headers.has('Accept')) { headers.set('Accept', '*/*'); } if (!headers.has('Content-Length') && options.request[PropertySymbol.contentLength] !== null) { headers.set('Content-Length', String(options.request[PropertySymbol.contentLength])); } if (!headers.has('Content-Type') && options.request[PropertySymbol.contentType]) { headers.set('Content-Type', options.request[PropertySymbol.contentType]); } // We need to convert the headers to Node request headers. const httpRequestHeaders = {}; for (const header of Object.values(headers[PropertySymbol.entries])) { httpRequestHeaders[header.name] = header.value.join(', '); } return httpRequestHeaders; } } //# sourceMappingURL=FetchRequestHeaderUtility.js.map