mirrored/vaultwarden
1
0
Fork 1
Spiegel von https://github.com/dani-garcia/vaultwarden.git synchronisiert 2024-11-06 02:38:00 +01:00
Code Issues Releases Aktivität

get domain and origin with single extractor

Quellcode durchsuchen
Dieser Commit ist enthalten in:
BlockListed 2023-09-09 13:50:56 +02:00
Ursprung 5462b97c26
Commit f82a142cee
Es konnte kein GPG-Schlüssel zu dieser Signatur gefunden werden
GPG-Schlüssel-ID: 2D204777C477B588
2 geänderte Dateien mit 23 neuen und 17 gelöschten Zeilen
Statistiken anzeigen Patch-Datei herunterladen Diff-Datei herunterladen Alle Dateien ausklappen Alle Dateien einklappen

34
src/auth.rs
Datei anzeigen

@ -10,6 +10,7 @@ use serde::de::DeserializeOwned;
use serde::ser::Serialize; use serde::ser::Serialize;
use crate::{error::Error, CONFIG}; use crate::{error::Error, CONFIG};
use crate::config::extract_url_origin;
const JWT_ALGORITHM: Algorithm = Algorithm::RS256; const JWT_ALGORITHM: Algorithm = Algorithm::RS256;
@ -360,12 +361,13 @@ use crate::db::{
DbConn, DbConn,
}; };
pub struct BaseURL { pub struct HostInfo {
pub base_url: String, pub base_url: String,
pub origin: String,
} }
#[rocket::async_trait] #[rocket::async_trait]
impl<'r> FromRequest<'r> for BaseURL { impl<'r> FromRequest<'r> for HostInfo {
type Error = &'static str; type Error = &'static str;
async fn from_request(request: &'r Request<'_>) -> Outcome<Self, Self::Error> { async fn from_request(request: &'r Request<'_>) -> Outcome<Self, Self::Error> {
@ -373,7 +375,7 @@ impl<'r> FromRequest<'r> for BaseURL {
// Get host // Get host
// TODO: UPDATE THIS SECTION // TODO: UPDATE THIS SECTION
let base_url = if CONFIG.domain_set() { if CONFIG.domain_set() {
let host = if let Some(host) = headers.get_one("X-Forwarded-Host") { let host = if let Some(host) = headers.get_one("X-Forwarded-Host") {
host host
} else if let Some(host) = headers.get_one("Host") { } else if let Some(host) = headers.get_one("Host") {
@ -385,15 +387,18 @@ impl<'r> FromRequest<'r> for BaseURL {
todo!() todo!()
}; };
let Some(base_url) = CONFIG.host_to_base_url(host) else {
// TODO fix error handling // TODO fix error handling
// This is probably a 421 misdirected request. // This is probably a 421 misdirected request
todo!() let (base_url, origin) = CONFIG.host_to_domain(host).and_then(|base_url| {
}; Some((base_url, CONFIG.domain_origin(host)?))
}).expect("This should not be merged like this!!!");
base_url return Outcome::Success(HostInfo { base_url, origin });
} else if let Some(referer) = headers.get_one("Referer") { } else if let Some(referer) = headers.get_one("Referer") {
referer.to_string() return Outcome::Success(HostInfo {
base_url: referer.to_string(),
origin: extract_url_origin(referer),
});
} else { } else {
// Try to guess from the headers // Try to guess from the headers
use std::env; use std::env;
@ -414,12 +419,13 @@ impl<'r> FromRequest<'r> for BaseURL {
"" ""
}; };
format!("{protocol}://{host}") let base_url_origin = format!("{protocol}://{host}");
};
Outcome::Success(BaseURL { return Outcome::Success(HostInfo {
base_url, base_url: base_url_origin,
}) origin: base_url_origin,
});
}
} }
} }

2
src/config.rs
Datei anzeigen

@ -1003,7 +1003,7 @@ fn validate_config(cfg: &ConfigItems) -> Result<(), Error> {
} }
/// Extracts an RFC 6454 web origin from a URL. /// Extracts an RFC 6454 web origin from a URL.
fn extract_url_origin(url: &str) -> String { pub fn extract_url_origin(url: &str) -> String {
match Url::parse(url) { match Url::parse(url) {
Ok(u) => u.origin().ascii_serialization(), Ok(u) => u.origin().ascii_serialization(),
Err(e) => { Err(e) => {