mirror of
https://github.com/NodeBB/NodeBB.git
synced 2025-10-26 16:46:12 +01:00
feat: close #7002, console message if mismatched origins
This commit is contained in:
Peter Jaszkowiak
committed by
Julian Lam
Julian Lam
parent
43c3bb02e5
commit
89c025d102
@@ -150,4 +150,16 @@ app.isConnected = false;
|
||||
},
|
||||
});
|
||||
}
|
||||
|
||||
if (
|
||||
config.socketioOrigins
|
||||
&& config.socketioOrigins !== '*'
|
||||
&& config.socketioOrigins.indexOf(location.hostname) === -1
|
||||
) {
|
||||
console.error(
|
||||
'You are accessing the forum from an unknown origin. This will likely result in websockets failing to connect. \n'
|
||||
+ 'To fix this, set the `"url"` value in `config.json` to the URL at which you access the site. \n'
|
||||
+ 'For more information, see this FAQ topic: https://community.nodebb.org/topic/13388'
|
||||
);
|
||||
}
|
||||
}());
|
||||
|
||||
@@ -40,6 +40,7 @@ apiController.loadConfig = function (req, callback) {
|
||||
config.disableChatMessageEditing = meta.config.disableChatMessageEditing === 1;
|
||||
config.maximumChatMessageLength = meta.config.maximumChatMessageLength || 1000;
|
||||
config.socketioTransports = nconf.get('socket.io:transports') || ['polling', 'websocket'];
|
||||
config.socketioOrigins = nconf.get('socket.io:origins');
|
||||
config.websocketAddress = nconf.get('socket.io:address') || '';
|
||||
config.maxReconnectionAttempts = meta.config.maxReconnectionAttempts || 5;
|
||||
config.reconnectionDelay = meta.config.reconnectionDelay || 1500;
|
||||
|
||||
@@ -46,20 +46,16 @@ Sockets.init = function (server) {
|
||||
* Can be overridden via config (socket.io:origins)
|
||||
*/
|
||||
if (process.env.NODE_ENV !== 'development') {
|
||||
var domain = nconf.get('cookieDomain');
|
||||
var parsedUrl = url.parse(nconf.get('url'));
|
||||
var override = nconf.get('socket.io:origins');
|
||||
if (!domain) {
|
||||
domain = parsedUrl.hostname; // cookies don't provide isolation by port: http://stackoverflow.com/a/16328399/122353
|
||||
}
|
||||
const parsedUrl = url.parse(nconf.get('url'));
|
||||
|
||||
if (!override) {
|
||||
io.origins(parsedUrl.protocol + '//' + domain + ':*');
|
||||
winston.info('[socket.io] Restricting access to origin: ' + parsedUrl.protocol + '//' + domain + ':*');
|
||||
} else {
|
||||
io.origins(override);
|
||||
winston.info('[socket.io] Restricting access to origin: ' + override);
|
||||
}
|
||||
// cookies don't provide isolation by port: http://stackoverflow.com/a/16328399/122353
|
||||
const domain = nconf.get('cookieDomain') || parsedUrl.hostname;
|
||||
|
||||
const origins = nconf.get('socket.io:origins') || `${parsedUrl.protocol}//${domain}:*`;
|
||||
nconf.set('socket.io:origins', origins);
|
||||
|
||||
io.origins(origins);
|
||||
winston.info('[socket.io] Restricting access to origin: ' + origins);
|
||||
}
|
||||
|
||||
io.listen(server, {
|
||||
|
||||
Reference in New Issue
Block a user