f6fac6c4bc
Fix bin/publish: use correct .env path for rspade_system Fix bin/publish script: prevent grep exit code 1 from terminating script 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
173 lines
3.5 KiB
JavaScript
Executable File
173 lines
3.5 KiB
JavaScript
Executable File
"use strict";
|
|
|
|
const {
|
|
isForbidden,
|
|
isForbiddenResponse,
|
|
isPrivilegedNoCORSRequest,
|
|
isNoCORSSafelistedRequest,
|
|
isCORSWhitelisted
|
|
} = require("./header-types");
|
|
const HeaderList = require("./header-list");
|
|
|
|
function assertName(name) {
|
|
if (!name.match(/^[!#$%&'*+\-.^`|~\w]+$/)) {
|
|
throw new TypeError("name is invalid");
|
|
}
|
|
}
|
|
|
|
function assertValue(value) {
|
|
if (value.match(/[\0\r\n]/)) {
|
|
throw new TypeError("value is invalid");
|
|
}
|
|
}
|
|
|
|
// https://fetch.spec.whatwg.org/#concept-header-value-normalize
|
|
function normalizeValue(potentialValue) {
|
|
return potentialValue.replace(/^[\n\r\t ]+|[\n\r\t ]+$/g, "");
|
|
}
|
|
|
|
class HeadersImpl {
|
|
constructor(globalObject, args) {
|
|
this.guard = "none";
|
|
this.headersList = new HeaderList();
|
|
|
|
if (args[0]) {
|
|
this._fill(args[0]);
|
|
}
|
|
}
|
|
|
|
_fill(init) {
|
|
if (Array.isArray(init)) {
|
|
for (const header of init) {
|
|
if (header.length !== 2) {
|
|
throw new TypeError("init is invalid");
|
|
}
|
|
this.append(header[0], header[1]);
|
|
}
|
|
} else {
|
|
for (const key of Object.keys(init)) {
|
|
this.append(key, init[key]);
|
|
}
|
|
}
|
|
}
|
|
|
|
has(name) {
|
|
assertName(name);
|
|
return this.headersList.contains(name);
|
|
}
|
|
|
|
getSetCookie() {
|
|
return this.headersList.get("Set-Cookie") || [];
|
|
}
|
|
|
|
get(name) {
|
|
assertName(name);
|
|
const r = this.headersList.get(name);
|
|
if (!r) {
|
|
return null;
|
|
}
|
|
return r.join(", ");
|
|
}
|
|
|
|
_removePrivilegedNoCORSHeaders() {
|
|
this.headersList.delete("range");
|
|
}
|
|
|
|
append(name, value) {
|
|
value = normalizeValue(value);
|
|
assertName(name);
|
|
assertValue(value);
|
|
|
|
switch (this.guard) {
|
|
case "immutable":
|
|
throw new TypeError("Headers is immutable");
|
|
case "request":
|
|
if (isForbidden(name)) {
|
|
return;
|
|
}
|
|
break;
|
|
case "request-no-cors": {
|
|
if (!isCORSWhitelisted(name, value)) {
|
|
return;
|
|
}
|
|
break;
|
|
}
|
|
case "response":
|
|
if (isForbiddenResponse(name)) {
|
|
return;
|
|
}
|
|
break;
|
|
}
|
|
|
|
this.headersList.append(name, value);
|
|
this._removePrivilegedNoCORSHeaders();
|
|
}
|
|
|
|
set(name, value) {
|
|
value = normalizeValue(value);
|
|
assertName(name);
|
|
assertValue(value);
|
|
|
|
switch (this.guard) {
|
|
case "immutable":
|
|
throw new TypeError("Headers is immutable");
|
|
case "request":
|
|
if (isForbidden(name)) {
|
|
return;
|
|
}
|
|
break;
|
|
case "request-no-cors": {
|
|
if (!isCORSWhitelisted(name, value)) {
|
|
return;
|
|
}
|
|
break;
|
|
}
|
|
case "response":
|
|
if (isForbiddenResponse(name)) {
|
|
return;
|
|
}
|
|
break;
|
|
}
|
|
this.headersList.set(name, value);
|
|
this._removePrivilegedNoCORSHeaders();
|
|
}
|
|
|
|
delete(name) {
|
|
assertName(name);
|
|
|
|
switch (this.guard) {
|
|
case "immutable":
|
|
throw new TypeError("Headers is immutable");
|
|
case "request":
|
|
if (isForbidden(name)) {
|
|
return;
|
|
}
|
|
break;
|
|
case "request-no-cors": {
|
|
if (
|
|
!isNoCORSSafelistedRequest(name) &&
|
|
!isPrivilegedNoCORSRequest(name)
|
|
) {
|
|
return;
|
|
}
|
|
break;
|
|
}
|
|
case "response":
|
|
if (isForbiddenResponse(name)) {
|
|
return;
|
|
}
|
|
break;
|
|
}
|
|
this.headersList.delete(name);
|
|
this._removePrivilegedNoCORSHeaders();
|
|
}
|
|
|
|
* [Symbol.iterator]() {
|
|
for (const header of this.headersList.sortAndCombine()) {
|
|
yield header;
|
|
}
|
|
}
|
|
}
|
|
|
|
exports.implementation = HeadersImpl;
|