Fabio/webssh2
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat: CORS support

Browse source 
Support setting origins for socket.io, fixes #240
This commit is contained in:
Bill Church 2021-05-11 14:55:38 -04:00
parent 043c03e2d0
commit b324f338ad
12 changed files with 13033 additions and 3684 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
README.md
View file

@ -99,6 +99,8 @@ docker run --name webssh2 -d -p 2222:2222 -v `pwd`/app/config.json:/usr/src/conf
* **listen.port** - _integer_ - Port node should listen on for client connections, defaults to `2222` * **listen.port** - _integer_ - Port node should listen on for client connections, defaults to `2222`
* **http.origins** - _array_ - COORS origins to allow connections from to socket.io server, defaults to `localhost:2222`. Changed in 0.3.1, to enable previous, less secure, default behavior of everything use `*:*` (not recommended). Check [#240](../../issues/240)
* **user.name** - _string_ - Specify user name to authenticate with. In normal cases this should be left to the default `null` setting. * **user.name** - _string_ - Specify user name to authenticate with. In normal cases this should be left to the default `null` setting.
* **user.password** - _string_ - Specify password to authenticate with. In normal cases this should be left to the default `null` setting. * **user.password** - _string_ - Specify password to authenticate with. In normal cases this should be left to the default `null` setting.

2
app/client/public/webssh2.bundle.js
View file

File diff suppressed because one or more lines are too long

12
app/client/public/webssh2.bundle.js.LICENSE.txt
View file

@ -1,8 +1,12 @@
/*! /*!
* The buffer module from node.js, for the browser. * Font Awesome Free 5.15.3 by @fontawesome - https://fontawesome.com
* * License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License)
* @author Feross Aboukhadijeh <http://feross.org> */
* @license MIT
/*!
* Socket.IO v2.2.0
* (c) 2014-2018 Guillermo Rauch
* Released under the MIT License.
*/ */
/*! https://mths.be/utf8js v2.1.2 by @mathias */ /*! https://mths.be/utf8js v2.1.2 by @mathias */

11
app/client/public/webssh2.css
View file

@ -36,7 +36,6 @@
*/ */
.xterm { .xterm {
font-feature-settings: "liga" 0;
position: relative; position: relative;
user-select: none; user-select: none;
-ms-user-select: none; -ms-user-select: none;
@ -59,10 +58,10 @@
} }
.xterm .xterm-helper-textarea { .xterm .xterm-helper-textarea {
/* padding: 0;
* HACK: to fix IE's blinking cursor border: 0;
* Move textarea out of the screen to the far left, so that the cursor is not visible. margin: 0;
*/ /* Move textarea out of the screen to the far left, so that the cursor is not visible */
position: absolute; position: absolute;
opacity: 0; opacity: 0;
left: -9999em; left: -9999em;
@ -169,6 +168,7 @@
.xterm-underline { .xterm-underline {
text-decoration: underline; text-decoration: underline;
} }
body, html { body, html {
font-family: helvetica, sans-serif, arial; font-family: helvetica, sans-serif, arial;
font-size: 1em; font-size: 1em;
@ -316,3 +316,4 @@ body, html {
.dropup:hover .dropbtn { .dropup:hover .dropbtn {
background-color: #3e8e41; background-color: #3e8e41;
} }

2
app/client/src/js/index.js
View file

@ -1,6 +1,6 @@
'use strict' 'use strict'
import * as io from 'socket.io-client' import * as io from 'socket.io-client/dist/socket.io.slim'
import { Terminal } from 'xterm' import { Terminal } from 'xterm'
import { FitAddon } from 'xterm-addon-fit' import { FitAddon } from 'xterm-addon-fit'
/* import * as fit from 'xterm/dist/addons/fit/fit' /* import * as fit from 'xterm/dist/addons/fit/fit'

3
app/config.json.sample
View file

@ -3,6 +3,9 @@
"ip": "0.0.0.0", "ip": "0.0.0.0",
"port": 2222 "port": 2222
}, },
"http": {
"origins": ["localhost:2222"]
},
"user": { "user": {
"name": null, "name": null,
"password": null, "password": null,

9561
app/package-lock-old.json Normal file
View file

File diff suppressed because it is too large Load diff

7022
app/package-lock.json generated
View file

File diff suppressed because it is too large Load diff

62
app/package.json
View file

@ -35,20 +35,20 @@
"basic-auth": "~2.0.1", "basic-auth": "~2.0.1",
"cidr-matcher": "2.1.1", "cidr-matcher": "2.1.1",
"colors": "~1.4.0", "colors": "~1.4.0",
"debug": "^4.1.1", "debug": "^4.3.1",
"express": "~4.17.1", "express": "~4.17.1",
"express-session": "~1.17.0", "express-session": "~1.17.1",
"morgan": "~1.9.1", "morgan": "~1.10.0",
"read-config-ng": "^3.0.1", "read-config-ng": "^3.0.2",
"serve-favicon": "^2.5.0", "serve-favicon": "^2.5.0",
"socket.io": "2.2.0", "socket.io": "^2.2.0",
"ssh2": "~0.8.8", "ssh2": "~0.8.9",
"validator": "^12.2.0" "validator": "^13.6.0"
}, },
"scripts": { "scripts": {
"start": "node index.js", "start": "node index.js",
"build": "webpack --progress --colors --config scripts/webpack.prod.js", "build": "webpack --progress --config scripts/webpack.prod.js",
"builddev": "webpack --progress --colors --config scripts/webpack.dev.js", "builddev": "webpack --progress --config scripts/webpack.dev.js",
"analyze": "webpack --json --config scripts/webpack.prod.js | webpack-bundle-size-analyzer", "analyze": "webpack --json --config scripts/webpack.prod.js | webpack-bundle-size-analyzer",
"test": "snyk test", "test": "snyk test",
"watch": "nodemon index.js", "watch": "nodemon index.js",
@ -67,29 +67,29 @@
] ]
}, },
"devDependencies": { "devDependencies": {
"terser-webpack-plugin": "^2.3.5", "@fortawesome/fontawesome-svg-core": "^1.2.35",
"xterm-addon-fit": "^0.3.0", "@fortawesome/free-solid-svg-icons": "^5.15.3",
"xterm-addon-search": "^0.5.0",
"xterm-addon-web-links": "^0.2.1",
"@fortawesome/fontawesome-svg-core": "^1.2.27",
"@fortawesome/free-solid-svg-icons": "^5.12.1",
"clean-webpack-plugin": "^3.0.0", "clean-webpack-plugin": "^3.0.0",
"copy-webpack-plugin": "^5.1.1", "copy-webpack-plugin": "^8.1.1",
"cross-env": "^7.0.2", "cross-env": "^7.0.3",
"css-loader": "^3.4.2", "css-loader": "^5.2.4",
"extract-text-webpack-plugin": "^4.0.0-beta.0", "file-loader": "^6.2.0",
"file-loader": "^5.1.0", "mini-css-extract-plugin": "^1.6.0",
"nodaemon": "0.0.5", "nodaemon": "0.0.5",
"postcss-discard-comments": "^4.0.2", "postcss-discard-comments": "^5.0.0",
"snazzy": "^8.0.0", "snazzy": "^9.0.0",
"standard": "^14.3.1", "standard": "^16.0.3",
"standard-version": "^8.0.1", "standard-version": "^9.3.0",
"style-loader": "^1.1.3", "style-loader": "^2.0.0",
"url-loader": "^3.0.0", "terser-webpack-plugin": "^5.1.1",
"webpack": "^4.42.0", "url-loader": "^4.1.1",
"webpack-cli": "^3.3.11", "webpack": "^5.37.0",
"webpack-merge": "^4.2.2", "webpack-cli": "^4.7.0",
"webpack-stream": "^5.2.1", "webpack-merge": "^5.7.3",
"xterm": "^4.4.0" "webpack-stream": "^6.1.2",
"xterm": "^4.12.0",
"xterm-addon-fit": "^0.5.0",
"xterm-addon-search": "^0.8.0",
"xterm-addon-web-links": "^0.4.0"
} }
} }

19
app/scripts/webpack.common.js
View file

@ -1,7 +1,7 @@
const path = require('path') const path = require('path')
const { CleanWebpackPlugin } = require('clean-webpack-plugin') const { CleanWebpackPlugin } = require('clean-webpack-plugin')
const CopyWebpackPlugin = require('copy-webpack-plugin') const CopyWebpackPlugin = require('copy-webpack-plugin')
const ExtractTextPlugin = require('extract-text-webpack-plugin') const MiniCssExtractPlugin = require('mini-css-extract-plugin');
module.exports = { module.exports = {
context: path.resolve('__dirname', '../'), context: path.resolve('__dirname', '../'),
entry: { entry: {
@ -9,11 +9,13 @@ module.exports = {
}, },
plugins: [ plugins: [
new CleanWebpackPlugin(), new CleanWebpackPlugin(),
new CopyWebpackPlugin([ new CopyWebpackPlugin({
patterns: [
'./client/src/client.htm', './client/src/client.htm',
'./client/src/favicon.ico' './client/src/favicon.ico'
]), ]
new ExtractTextPlugin('[name].css') }),
new MiniCssExtractPlugin()
], ],
output: { output: {
filename: '[name].bundle.js', filename: '[name].bundle.js',
@ -23,14 +25,7 @@ module.exports = {
rules: [ rules: [
{ {
test: /\.css$/, test: /\.css$/,
use: ExtractTextPlugin.extract({ use: [MiniCssExtractPlugin.loader, 'css-loader']
fallback: 'style-loader',
use: [
{
loader: 'css-loader'
}
]
})
} }
] ]
} }

4
app/scripts/webpack.prod.js
View file

@ -1,13 +1,13 @@
const TerserPlugin = require('terser-webpack-plugin') const TerserPlugin = require('terser-webpack-plugin')
const merge = require('webpack-merge') const { merge } = require('webpack-merge')
const common = require('./webpack.common.js') const common = require('./webpack.common.js')
module.exports = merge(common, { module.exports = merge(common, {
mode: 'production',
optimization: { optimization: {
minimize: true, minimize: true,
minimizer: [new TerserPlugin({ minimizer: [new TerserPlugin({
terserOptions: { terserOptions: {
parallel: 4,
ie8: false, ie8: false,
safari10: false safari10: false
} }

5
app/server/app.js
View file

@ -17,6 +17,9 @@ let config = {
ip: '0.0.0.0', ip: '0.0.0.0',
port: 2222 port: 2222
}, },
http: {
origins: ['localhost:2222']
},
user: { user: {
name: null, name: null,
password: null, password: null,
@ -115,7 +118,7 @@ var server = require('http').Server(app)
var myutil = require('./util') var myutil = require('./util')
myutil.setDefaultCredentials(config.user.name, config.user.password, config.user.privatekey) myutil.setDefaultCredentials(config.user.name, config.user.password, config.user.privatekey)
var validator = require('validator') var validator = require('validator')
var io = require('socket.io')(server, { serveClient: false, path: '/ssh/socket.io' }) var io = require('socket.io')(server, { serveClient: false, path: '/ssh/socket.io', origins: config.http.origins })
var socket = require('./socket') var socket = require('./socket')
var expressOptions = require('./expressOptions') var expressOptions = require('./expressOptions')
var favicon = require('serve-favicon') var favicon = require('serve-favicon')