code-server/src/node/app/proxy.ts

import * as http from "http"
import { HttpCode, HttpError } from "../../common/http"
import { HttpProvider, HttpProviderOptions, HttpProxyProvider, HttpResponse, Route } from "../http"

/**
 * Proxy HTTP provider.
 */
export class ProxyHttpProvider extends HttpProvider implements HttpProxyProvider {
  /**
   * Proxy domains are stored here without the leading `*.`
   */
  public readonly proxyDomains: string[]

  /**
   * Domains can be provided in the form `coder.com` or `*.coder.com`. Either
   * way, `<number>.coder.com` will be proxied to `number`.
   */
  public constructor(options: HttpProviderOptions, proxyDomains: string[] = []) {
    super(options)
    this.proxyDomains = proxyDomains.map((d) => d.replace(/^\*\./, "")).filter((d, i, arr) => arr.indexOf(d) === i)
  }

  public async handleRequest(route: Route, request: http.IncomingMessage): Promise<HttpResponse> {
    if (!this.authenticated(request)) {
      if (route.requestPath === "/index.html") {
        return { redirect: "/login", query: { to: route.fullPath } }
      }
      throw new HttpError("Unauthorized", HttpCode.Unauthorized)
    }

    const payload = this.proxy(route.base.replace(/^\//, ""))
    if (payload) {
      return payload
    }

    throw new HttpError("Not found", HttpCode.NotFound)
  }

  public getCookieDomain(host: string): string {
    let current: string | undefined
    this.proxyDomains.forEach((domain) => {
      if (host.endsWith(domain) && (!current || domain.length < current.length)) {
        current = domain
      }
    })
    return current || host
  }

  public maybeProxy(request: http.IncomingMessage): HttpResponse | undefined {
    // No proxy until we're authenticated. This will cause the login page to
    // show as well as let our assets keep loading normally.
    if (!this.authenticated(request)) {
      return undefined
    }

    // At minimum there needs to be sub.domain.tld.
    const host = request.headers.host
    const parts = host && host.split(".")
    if (!parts || parts.length < 3) {
      return undefined
    }

    // There must be an exact match.
    const port = parts.shift()
    const proxyDomain = parts.join(".")
    if (!port || !this.proxyDomains.includes(proxyDomain)) {
      return undefined
    }

    return this.proxy(port)
  }

  private proxy(portStr: string): HttpResponse {
    if (!portStr) {
      return {
        code: HttpCode.BadRequest,
        content: "Port must be provided",
      }
    }
    const port = parseInt(portStr, 10)
    if (isNaN(port)) {
      return {
        code: HttpCode.BadRequest,
        content: `"${portStr}" is not a valid number`,
      }
    }
    return {
      code: HttpCode.Ok,
      content: `will proxy this to ${port}`,
    }
  }
}
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`import * as http from "http"`
			`import { HttpCode, HttpError } from "../../common/http"`
Handle authentication with proxy The cookie will be set for the proxy domain so it'll work for all of its subdomains. 2020-03-24 02:26:47 +07:00			`import { HttpProvider, HttpProviderOptions, HttpProxyProvider, HttpResponse, Route } from "../http"`
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00
			`/**`
			`* Proxy HTTP provider.`
			`*/`
Handle authentication with proxy The cookie will be set for the proxy domain so it'll work for all of its subdomains. 2020-03-24 02:26:47 +07:00			`export class ProxyHttpProvider extends HttpProvider implements HttpProxyProvider {`
Only handle exact domain matches This simplifies the logic a bit. 2020-03-24 02:51:58 +07:00			`/**`
			* Proxy domains are stored here without the leading `*.`
			`*/`
Handle authentication with proxy The cookie will be set for the proxy domain so it'll work for all of its subdomains. 2020-03-24 02:26:47 +07:00			`public readonly proxyDomains: string[]`

Only handle exact domain matches This simplifies the logic a bit. 2020-03-24 02:51:58 +07:00			`/**`
			* Domains can be provided in the form `coder.com` or `*.coder.com`. Either
			* way, `<number>.coder.com` will be proxied to `number`.
			`*/`
Handle authentication with proxy The cookie will be set for the proxy domain so it'll work for all of its subdomains. 2020-03-24 02:26:47 +07:00			`public constructor(options: HttpProviderOptions, proxyDomains: string[] = []) {`
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`super(options)`
Handle authentication with proxy The cookie will be set for the proxy domain so it'll work for all of its subdomains. 2020-03-24 02:26:47 +07:00			`this.proxyDomains = proxyDomains.map((d) => d.replace(/^\*\./, "")).filter((d, i, arr) => arr.indexOf(d) === i)`
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`}`

Handle authentication with proxy The cookie will be set for the proxy domain so it'll work for all of its subdomains. 2020-03-24 02:26:47 +07:00			`public async handleRequest(route: Route, request: http.IncomingMessage): Promise<HttpResponse> {`
			`if (!this.authenticated(request)) {`
			`if (route.requestPath === "/index.html") {`
			`return { redirect: "/login", query: { to: route.fullPath } }`
			`}`
			`throw new HttpError("Unauthorized", HttpCode.Unauthorized)`
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`}`
Handle authentication with proxy The cookie will be set for the proxy domain so it'll work for all of its subdomains. 2020-03-24 02:26:47 +07:00
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`const payload = this.proxy(route.base.replace(/^\//, ""))`
Handle authentication with proxy The cookie will be set for the proxy domain so it'll work for all of its subdomains. 2020-03-24 02:26:47 +07:00			`if (payload) {`
			`return payload`
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`}`
Handle authentication with proxy The cookie will be set for the proxy domain so it'll work for all of its subdomains. 2020-03-24 02:26:47 +07:00
			`throw new HttpError("Not found", HttpCode.NotFound)`
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`}`

Only handle exact domain matches This simplifies the logic a bit. 2020-03-24 02:51:58 +07:00			`public getCookieDomain(host: string): string {`
			`let current: string \| undefined`
			`this.proxyDomains.forEach((domain) => {`
			`if (host.endsWith(domain) && (!current \|\| domain.length < current.length)) {`
			`current = domain`
			`}`
			`})`
			`return current \|\| host`
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`}`

			`public maybeProxy(request: http.IncomingMessage): HttpResponse \| undefined {`
Handle authentication with proxy The cookie will be set for the proxy domain so it'll work for all of its subdomains. 2020-03-24 02:26:47 +07:00			`// No proxy until we're authenticated. This will cause the login page to`
			`// show as well as let our assets keep loading normally.`
			`if (!this.authenticated(request)) {`
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`return undefined`
			`}`

Only handle exact domain matches This simplifies the logic a bit. 2020-03-24 02:51:58 +07:00			`// At minimum there needs to be sub.domain.tld.`
Handle authentication with proxy The cookie will be set for the proxy domain so it'll work for all of its subdomains. 2020-03-24 02:26:47 +07:00			`const host = request.headers.host`
Only handle exact domain matches This simplifies the logic a bit. 2020-03-24 02:51:58 +07:00			`const parts = host && host.split(".")`
			`if (!parts \|\| parts.length < 3) {`
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`return undefined`
			`}`

Only handle exact domain matches This simplifies the logic a bit. 2020-03-24 02:51:58 +07:00			`// There must be an exact match.`
			`const port = parts.shift()`
			`const proxyDomain = parts.join(".")`
			`if (!port \|\| !this.proxyDomains.includes(proxyDomain)) {`
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`return undefined`
			`}`

Only handle exact domain matches This simplifies the logic a bit. 2020-03-24 02:51:58 +07:00			`return this.proxy(port)`
Add proxy provider It'll be able to handle /proxy requests as well as subdomains. 2020-03-24 01:47:01 +07:00			`}`

			`private proxy(portStr: string): HttpResponse {`
			`if (!portStr) {`
			`return {`
			`code: HttpCode.BadRequest,`
			`content: "Port must be provided",`
			`}`
			`}`
			`const port = parseInt(portStr, 10)`
			`if (isNaN(port)) {`
			`return {`
			`code: HttpCode.BadRequest,`
			content: `"${portStr}" is not a valid number`,
			`}`
			`}`
			`return {`
			`code: HttpCode.Ok,`
			content: `will proxy this to ${port}`,
			`}`
			`}`
			`}`