UNPKG

smart-private-npm

Version:

An intelligent routing proxy for npm with support for: private, whitelisted, and blacklisted packaged

github.com/nodejitsu/smart-private-npm

nodejitsu/smart-private-npm

181 lines (161 loc) 5.28 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
/* * index.js: Top-level include for the smart-private-npm for serving all CouchDB traffic. * * (C) 2013, Nodejitsu Inc. * */ var createServers = require('create-servers'), director = require('director'); var patterns = { packageAnd: /\/([_\.\(\)!\\ %@&a-zA-Z0-9-]+)\/.*/, packageOnly: /\/([_\.\(\)!\\ %@&a-zA-Z0-9-]+)/, wildcard: /\*$/ }; // // Export the NpmProxy. // exports.Proxy = require('./npm-proxy'); // // ### function createServer (options, callback) // #### @options {Object} Options for creating the proxy server. // #### - http {Object|number} HTTP options. // #### - https {Object} HTTPS options. // #### - log {function} Logging function to use. // #### - proxy {NpmProxy} Options for the npm Proxy itself. // #### - rewrites {Array} **Optional** All known rewrites to the npm registry. // exports.createServer = function (options, callback) { var router = exports.createRouter({ rewrites: options.rewrites, proxy: new exports.Proxy(options.proxy), log: options.log }); createServers({ http: options.http, https: options.https, handler: router.dispatch.bind(router) }, callback); }; // // ### function routes (options, callback) // #### @options {Object} Options for starting the proxy // #### - log {function} Logging function to use. // #### - rewrites {Array} All known rewrites to the npm registry. // #### - proxy {NpmProxy} Proxy for npm requests. // exports.createRouter = function createRouter(options, callback) { var router = new director.http.Router(), log = options.log || console, proxy = options.proxy, rewrites, server; // // Get a default set of rewrites if we weren't provided // with a custom set. // options.rewrites = options.rewrites || require('../config/rewrites'); // // Configure director to always use async HTTP // stream based routing with a custom 404 handler. // router.configure({ async: true, stream: true, notfound: function () { // // Pass along the not found notification to the proxy. // proxy.notFound(this.req, this.res); } }); // // Remark: we will probably asynchronously load these things in some manner // but for now we just expect them // rewrites = { list: options.rewrites.filter(function (rr) { return /^_list/.test(rr.to) && !/.byUser./.test(rr.to) || /^\/-\/_view/.test(rr.from) || /^\/-\/_show/.test(rr.from); }), usersList: options.rewrites.filter(function (rr) { return /^_list/.test(rr.to) && /.byUser./.test(rr.to); }), user: options.rewrites.filter(function (rr) { return /_users/.test(rr.to); }) }; // // `/`, `favicon.ico` and `_session` are special cases. // TODO: Add route for _utils to make futon hiding more seamless. // router.get('/', function () { proxy.public(this.req, this.res); }); router.get('favicon.ico', function () { proxy.public(this.req, this.res); }); ['GET', 'PUT', 'POST', 'DELETE'] .forEach(function (method) { router[method.toLowerCase()]('_session', function () { proxy.private(this.req, this.res); }); }); // // All _list/* functions require a merger between // public and private npm database views. // Remark: This now defaults to private // rewrites.list.forEach(function (rr) { var wc = patterns.wildcard, method = rr.method.toLowerCase(), from = wc.test(rr.from) ? new RegExp(rr.from.replace(wc, '.*')) : rr.from; log.info('[route]', '%s - %s %s', 'private', method, rr.from); router[method](from, function () { proxy.private(this.req, this.res); }); }); // // These are list functions specifically relating to // users that will stay public // rewrites.usersList.forEach(function (rr) { var wc = patterns.wildcard, method = rr.method.toLowerCase(), from = wc.test(rr.from) ? new RegExp(rr.from.replace(wc, '.*')) : rr.from; log.info('[route]', '%s - %s %s', 'public', method, rr.from); router[method](from, function () { proxy.public(this.req, this.res); }); }); // // Your private npm must manually sync whatever passwords you want // since the public npm _user database is the authority for all that // is Open Source. // // Optimizing for ONE PASSWORD EVERYWHERE, ONE .npmrc EVERYWHERE. // rewrites.user.forEach(function (rr) { var method = rr.method.toLowerCase(), from = rr.from; log.info('[route]', '%s - %s %s', 'public', method, from); router[method](from, function () { proxy.public(this.req, this.res); }); }); // // For core `/:pkg` and `/:pkg/*` routes use the more complex, higher-level // proxy logic. // [patterns.packageOnly, patterns.packageAnd].forEach(function (re) { ['GET', 'PUT', 'DELETE'].forEach(function (method) { method = method.toLowerCase(); log.info('[route]', '%s - %s %s', 'decide', method, re.source); router[method](re, function () { proxy.decide(this.req, this.res); }); }); }); router.proxy = proxy; return router; };