UNPKG

koa-safe-redirect

Version:

safe redirect middleware for koa 2.x

github.com/forthedamn/koa-safe-redirect

forthedamn/koa-safe-redirect

142 lines (102 loc) 2.64 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
# koa-safe-redirect [![NPM version][npm-image]][npm-url] [![build status][travis-image]][travis-url] [![Test coverage][codecov-image]][codecov-url] [![npm download][download-image]][download-url] [![npm download month][download-month-image]][download-url] [npm-image]: https://img.shields.io/npm/v/koa-safe-redirect.svg?style=flat-square [npm-url]: https://npmjs.org/package/koa-safe-redirect [travis-image]: https://img.shields.io/travis/forthedamn/koa-safe-redirect.svg?style=flat-square [travis-url]: https://travis-ci.org/forthedamn/koa-safe-redirect [codecov-image]: https://codecov.io/gh/forthedamn/koa-safe-redirect/branch/master/graph/badge.svg [codecov-url]: https://codecov.io/gh/forthedamn/koa-safe-redirect [download-image]: https://img.shields.io/npm/dt/koa-safe-redirect.svg [download-url]: https://npmjs.org/package/koa-safe-redirect [download-month-image]: https://img.shields.io/npm/dm/koa-safe-redirect.svg [download-url]: https://npmjs.org/package/koa-safe-redirect safe redirect middleware for koa 2.x --- ## how to use ### 1. install ``` npm install koa-safe-redirect --save ``` ### 2. config url white list ``` // ./config/default.js module.exports = { urlWhiteList: [ /** * allow the hostname end with 'github.com' * like 'https://github.com/**' */ /github\.com$/ ] } ``` ### 3. use as middleware ``` const Koa = require('koa'); const safeRedirect = require('koa-safe-redirect')('urlWhiteList'); const app = new Koa(); app .use(safeRedirect) .use(async function (ctx, next) { // will get 403 ctx.redirect('https://www.test.com'); return await next(); }); ``` --- ## API ### white url strategy Safe redirect get white list from ./config/{NODE_ENV}.js,same strategy with [node-config](https://github.com/lorenwest/node-config) If config whitelist is empty or not an array,safe redirect will do nothing #### RegExp ``` module.exports = { urlWhiteList: [ /** * allow the hostname end with 'github.com' * like 'https://xxx.github.com/**' */ /github\.com$/ ] } ``` #### String ``` module.exports = { urlWhiteList: [ /** * only allow the hostname equal 'github.com' * like 'https://github.com/**' */ 'github.com' ] } ``` ### config name #### use default Default config name is 'whiteList' ``` // 1. config module.exports = { 'whiteList': [ ... ] } // 2. init middleware const safeRedirect = require('koa-safe-redirect')(); ``` #### custom ``` // 1. config module.exports = { 'xxx': [ ... ] } // 2. init middleware const safeRedirect = require('koa-safe-redirect')('xxx'); ```