mirror of
https://github.com/verdaccio/verdaccio.git
synced 2024-11-13 03:35:52 +01:00
122 lines
3.4 KiB
JavaScript
122 lines
3.4 KiB
JavaScript
|
var assert = require('assert');
|
||
|
var crypto = require('crypto');
|
||
|
|
||
|
// [[a, [b, c]], d] -> [a, b, c, d]
|
||
|
function flatten(array) {
|
||
|
var result = [];
|
||
|
for (var i=0; i<array.length; i++) {
|
||
|
if (Array.isArray(array[i])) {
|
||
|
result.push.apply(result, flatten(array[i]));
|
||
|
} else {
|
||
|
result.push(array[i]);
|
||
|
}
|
||
|
}
|
||
|
return result;
|
||
|
}
|
||
|
|
||
|
function Config(config) {
|
||
|
if (!(this instanceof Config)) return new Config(config);
|
||
|
for (var i in config) {
|
||
|
if (this[i] == null) this[i] = config[i];
|
||
|
}
|
||
|
|
||
|
var users = {all:true};
|
||
|
|
||
|
var check_user_or_uplink = function(arg) {
|
||
|
assert(arg !== 'all' || arg !== 'owner', 'CONFIG: reserved user/uplink name: ' + arg);
|
||
|
assert(users[arg] == null, 'CONFIG: duplicate user/uplink name: ' + arg);
|
||
|
users[arg] = true;
|
||
|
};
|
||
|
|
||
|
['users', 'uplinks', 'packages'].forEach(function(x) {
|
||
|
if (this[x] == null) this[x] = {};
|
||
|
assert(
|
||
|
typeof(this[x]) === 'object' &&
|
||
|
!Array.isArray(this[x])
|
||
|
, 'CONFIG: bad "'+x+'" value (object expected)');
|
||
|
});
|
||
|
|
||
|
for (var i in this.users) check_user_or_uplink(i);
|
||
|
for (var i in this.uplinks) check_user_or_uplink(i);
|
||
|
|
||
|
for (var i in this.users) {
|
||
|
assert(this.users[i].password, 'CONFIG: no password for user: ' + i);
|
||
|
assert(
|
||
|
typeof(this.users[i].password) === 'string' &&
|
||
|
this.users[i].password.match(/^[a-f0-9]{40}$/)
|
||
|
, 'CONFIG: wrong password format for user: ' + i + ', sha1 expected');
|
||
|
}
|
||
|
|
||
|
for (var i in this.uplinks) {
|
||
|
assert(this.uplinks[i].url, 'CONFIG: no url for uplink: ' + i);
|
||
|
assert(
|
||
|
typeof(this.uplinks[i].url) === 'string'
|
||
|
, 'CONFIG: wrong url format for uplink: ' + i);
|
||
|
this.uplinks[i].url = this.uplinks[i].url.replace(/\/$/, '');
|
||
|
}
|
||
|
|
||
|
for (var i in this.packages) {
|
||
|
var check_userlist = function(i, hash, action) {
|
||
|
if (hash[action] == null) hash[action] = [];
|
||
|
assert(
|
||
|
typeof(hash[action]) === 'object' &&
|
||
|
Array.isArray(hash[action])
|
||
|
, 'CONFIG: bad "'+i+'" package '+action+' description (array expected)');
|
||
|
hash[action] = flatten(hash[action]);
|
||
|
hash[action].forEach(function(user) {
|
||
|
assert(
|
||
|
users[user] != null
|
||
|
, 'CONFIG: "'+i+'" package: user "'+user+'" doesn\'t exist');
|
||
|
});
|
||
|
}
|
||
|
|
||
|
assert(
|
||
|
typeof(this.packages[i]) === 'object' &&
|
||
|
!Array.isArray(this.packages[i])
|
||
|
, 'CONFIG: bad "'+i+'" package description (object expected)');
|
||
|
check_userlist(i, this.packages[i], 'read');
|
||
|
check_userlist(i, this.packages[i], 'proxy');
|
||
|
check_userlist(i, this.packages[i], 'publish');
|
||
|
}
|
||
|
|
||
|
return this;
|
||
|
}
|
||
|
|
||
|
function allow_action(package, who, action) {
|
||
|
for (var i in this.packages) {
|
||
|
var match_package = i == package;
|
||
|
var m = i.match(/^\/(.*)\/$/);
|
||
|
if (m && (new RegExp(m[1])).exec(package)) {
|
||
|
match_package = true;
|
||
|
}
|
||
|
|
||
|
if (match_package) {
|
||
|
return this.packages[i][action].reduce(function(prev, curr) {
|
||
|
if (curr === who || curr === 'all') return true;
|
||
|
return prev;
|
||
|
}, false);
|
||
|
}
|
||
|
}
|
||
|
return false;
|
||
|
}
|
||
|
|
||
|
Config.prototype.allow_access = function(package, user) {
|
||
|
return allow_action.call(this, package, user, 'access');
|
||
|
}
|
||
|
|
||
|
Config.prototype.allow_publish = function(package, user) {
|
||
|
return allow_action.call(this, package, user, 'publish');
|
||
|
}
|
||
|
|
||
|
Config.prototype.allow_proxy = function(package, uplink) {
|
||
|
return allow_action.call(this, package, uplink, 'proxy');
|
||
|
}
|
||
|
|
||
|
Config.prototype.authenticate = function(user, password) {
|
||
|
if (this.users[user] == null) return false;
|
||
|
return crypto.createHash('sha1').update(password).digest('hex') === this.users[user].password;
|
||
|
}
|
||
|
|
||
|
module.exports = Config;
|
||
|
|