#![doc(html_root_url = "https://docs.rs/tsukuyomi-cors/0.2.0")]
#![deny(
missing_docs,
missing_debug_implementations,
nonstandard_style,
rust_2018_idioms,
rust_2018_compatibility,
unused
)]
#![forbid(clippy::unimplemented)]
use {
failure::Fail,
http::{
header::{
HeaderMap, HeaderName,
HeaderValue,
ACCESS_CONTROL_ALLOW_CREDENTIALS,
ACCESS_CONTROL_ALLOW_HEADERS,
ACCESS_CONTROL_ALLOW_METHODS,
ACCESS_CONTROL_ALLOW_ORIGIN,
ACCESS_CONTROL_MAX_AGE,
ACCESS_CONTROL_REQUEST_HEADERS,
ACCESS_CONTROL_REQUEST_METHOD,
ORIGIN,
},
HttpTryFrom, Method, Request, Response, StatusCode, Uri,
},
std::{collections::HashSet, sync::Arc, time::Duration},
tsukuyomi::{HttpError, Input},
};
#[derive(Debug, Default)]
pub struct Builder {
origins: Option<HashSet<Uri>>,
methods: Option<HashSet<Method>>,
headers: Option<HashSet<HeaderName>>,
max_age: Option<Duration>,
allow_credentials: bool,
}
impl Builder {
pub fn new() -> Self {
Self::default()
}
#[allow(missing_docs)]
pub fn allow_origin<U>(mut self, origin: U) -> http::Result<Self>
where
Uri: HttpTryFrom<U>,
{
let origin = Uri::try_from(origin).map_err(Into::into)?;
self.origins
.get_or_insert_with(Default::default)
.insert(origin);
Ok(self)
}
#[allow(missing_docs)]
pub fn allow_origins<U>(mut self, origins: impl IntoIterator<Item = U>) -> http::Result<Self>
where
Uri: HttpTryFrom<U>,
{
let origins = origins
.into_iter()
.map(Uri::try_from)
.collect::<Result<Vec<Uri>, _>>()
.map_err(Into::into)?;
self.origins
.get_or_insert_with(Default::default)
.extend(origins);
Ok(self)
}
#[allow(missing_docs)]
pub fn allow_method<M>(mut self, method: M) -> http::Result<Self>
where
Method: HttpTryFrom<M>,
{
let method = Method::try_from(method).map_err(Into::into)?;
self.methods
.get_or_insert_with(Default::default)
.insert(method);
Ok(self)
}
#[allow(missing_docs)]
pub fn allow_methods<M>(mut self, methods: impl IntoIterator<Item = M>) -> http::Result<Self>
where
Method: HttpTryFrom<M>,
{
let methods = methods
.into_iter()
.map(Method::try_from)
.collect::<Result<Vec<Method>, _>>()
.map_err(Into::into)?;
self.methods
.get_or_insert_with(Default::default)
.extend(methods);
Ok(self)
}
#[allow(missing_docs)]
pub fn allow_header<H>(mut self, header: H) -> http::Result<Self>
where
HeaderName: HttpTryFrom<H>,
{
let header = HeaderName::try_from(header).map_err(Into::into)?;
self.headers
.get_or_insert_with(Default::default)
.insert(header);
Ok(self)
}
#[allow(missing_docs)]
pub fn allow_headers<H>(mut self, headers: impl IntoIterator<Item = H>) -> http::Result<Self>
where
HeaderName: HttpTryFrom<H>,
{
let headers = headers
.into_iter()
.map(HeaderName::try_from)
.collect::<Result<Vec<HeaderName>, _>>()
.map_err(Into::into)?;
self.headers
.get_or_insert_with(Default::default)
.extend(headers);
Ok(self)
}
#[allow(missing_docs)]
pub fn allow_credentials(self, enabled: bool) -> Self {
Self {
allow_credentials: enabled,
..self
}
}
#[allow(missing_docs)]
pub fn max_age(self, max_age: Duration) -> Self {
Self {
max_age: Some(max_age),
..self
}
}
#[allow(missing_docs)]
pub fn build(self) -> CORS {
let methods = self.methods.unwrap_or_else(|| {
vec![Method::GET, Method::POST, Method::OPTIONS]
.into_iter()
.collect()
});
let methods_value = HeaderValue::from_shared(
methods
.iter()
.enumerate()
.fold(String::new(), |mut acc, (i, m)| {
if i > 0 {
acc += ",";
}
acc += m.as_str();
acc
})
.into(),
)
.expect("should be a valid header value");
let headers_value = self.headers.as_ref().map(|hdrs| {
HeaderValue::from_shared(
hdrs.iter()
.enumerate()
.fold(String::new(), |mut acc, (i, hdr)| {
if i > 0 {
acc += ",";
}
acc += hdr.as_str();
acc
})
.into(),
)
.expect("should be a valid header value")
});
CORS {
inner: Arc::new(Inner {
origins: self.origins,
methods,
methods_value,
headers: self.headers,
headers_value,
max_age: self.max_age,
allow_credentials: self.allow_credentials,
}),
}
}
}
#[derive(Debug, Clone)]
pub struct CORS {
inner: Arc<Inner>,
}
impl Default for CORS {
fn default() -> Self {
Self::new()
}
}
impl CORS {
pub fn new() -> Self {
Self::builder().build()
}
pub fn builder() -> Builder {
Builder::new()
}
}
mod impl_endpoint_for_cors {
use {
super::CORS,
http::{Method, Response, StatusCode},
tsukuyomi::{
endpoint::{ApplyContext, ApplyError, ApplyResult, Endpoint},
error::Error,
future::{Poll, TryFuture},
handler::AllowedMethods,
input::Input,
},
};
impl Endpoint<()> for CORS {
type Output = Response<()>;
type Error = Error;
type Future = CORSEndpointFuture;
fn apply(&self, _: (), cx: &mut ApplyContext<'_, '_>) -> ApplyResult<(), Self> {
if cx.method() == Method::OPTIONS {
Ok(CORSEndpointFuture { cors: self.clone() })
} else {
Err(((), ApplyError::method_not_allowed()))
}
}
fn allowed_methods(&self) -> Option<AllowedMethods> {
Some(AllowedMethods::from(Method::OPTIONS))
}
}
#[derive(Debug)]
pub struct CORSEndpointFuture {
cors: CORS,
}
impl TryFuture for CORSEndpointFuture {
type Ok = Response<()>;
type Error = Error;
fn poll_ready(&mut self, input: &mut Input<'_>) -> Poll<Self::Ok, Self::Error> {
match self.cors.inner.validate_origin(input.request) {
Ok(Some(origin)) => self
.cors
.inner
.process_preflight_request(input.request, origin)
.map(Into::into)
.map_err(Into::into),
Ok(None) => Err(StatusCode::NOT_FOUND.into()),
Err(err) => Err(err.into()),
}
}
}
}
mod impl_modify_handler_for_cors {
use {
super::CORS,
either::Either,
http::{Method, Response},
tsukuyomi::{
error::Error,
future::{Async, Poll, TryFuture},
handler::{AllowedMethods, Handler, ModifyHandler},
input::Input,
},
};
impl<H> ModifyHandler<H> for CORS
where
H: Handler,
H::Output: 'static,
{
type Output = Either<Response<()>, H::Output>;
type Handler = CORSHandler<H>;
fn modify(&self, handler: H) -> Self::Handler {
let allowed_methods = handler.allowed_methods().cloned().map(|mut methods| {
methods.extend(Some(Method::OPTIONS));
methods
});
CORSHandler {
handler,
allowed_methods,
cors: self.clone(),
}
}
}
#[derive(Debug)]
pub struct CORSHandler<H> {
handler: H,
allowed_methods: Option<AllowedMethods>,
cors: CORS,
}
#[allow(clippy::type_complexity)]
impl<H: Handler> Handler for CORSHandler<H> {
type Output = Either<Response<()>, H::Output>;
type Error = Error;
type Handle = CORSHandle<H::Handle>;
fn allowed_methods(&self) -> Option<&AllowedMethods> {
self.allowed_methods.as_ref()
}
#[inline]
fn handle(&self) -> Self::Handle {
CORSHandle {
cors: Some(self.cors.clone()),
handle: self.handler.handle(),
}
}
}
#[derive(Debug)]
pub struct CORSHandle<H: TryFuture> {
cors: Option<CORS>,
handle: H,
}
impl<H: TryFuture> TryFuture for CORSHandle<H> {
type Ok = Either<Response<()>, H::Ok>;
type Error = Error;
fn poll_ready(&mut self, input: &mut Input<'_>) -> Poll<Self::Ok, Self::Error> {
if let Some(cors) = self.cors.take() {
if let Some(output) = cors.inner.process_request(input)? {
return Ok(Async::Ready(Either::Left(output)));
}
}
self.handle
.poll_ready(input)
.map(|x| x.map(Either::Right))
.map_err(Into::into)
}
}
}
#[derive(Debug)]
struct Inner {
origins: Option<HashSet<Uri>>,
methods: HashSet<Method>,
methods_value: HeaderValue,
headers: Option<HashSet<HeaderName>>,
headers_value: Option<HeaderValue>,
max_age: Option<Duration>,
allow_credentials: bool,
}
impl Inner {
fn validate_origin<T>(&self, request: &Request<T>) -> Result<Option<AllowedOrigin>, CORSError> {
let origin = match request.headers().get(ORIGIN) {
Some(origin) => origin,
None => return Ok(None),
};
let parsed_origin = {
let h_str = origin.to_str().map_err(|_| CORSErrorKind::InvalidOrigin)?;
let origin_uri: Uri = h_str.parse().map_err(|_| CORSErrorKind::InvalidOrigin)?;
if origin_uri.scheme_part().is_none() {
return Err(CORSErrorKind::InvalidOrigin.into());
}
if origin_uri.host().is_none() {
return Err(CORSErrorKind::InvalidOrigin.into());
}
origin_uri
};
if let Some(ref origins) = self.origins {
if !origins.contains(&parsed_origin) {
return Err(CORSErrorKind::DisallowedOrigin.into());
}
return Ok(Some(AllowedOrigin::Some(origin.clone())));
}
if self.allow_credentials {
Ok(Some(AllowedOrigin::Some(origin.clone())))
} else {
Ok(Some(AllowedOrigin::Any))
}
}
fn validate_request_method<T>(
&self,
request: &Request<T>,
) -> Result<Option<HeaderValue>, CORSError> {
match request.headers().get(ACCESS_CONTROL_REQUEST_METHOD) {
Some(h) => {
let method: Method = h
.to_str()
.map_err(|_| CORSErrorKind::InvalidRequestMethod)?
.parse()
.map_err(|_| CORSErrorKind::InvalidRequestMethod)?;
if self.methods.contains(&method) {
Ok(Some(self.methods_value.clone()))
} else {
Err(CORSErrorKind::DisallowedRequestMethod.into())
}
}
None => Ok(None),
}
}
fn validate_request_headers<T>(
&self,
request: &Request<T>,
) -> Result<Option<HeaderValue>, CORSError> {
match request.headers().get(ACCESS_CONTROL_REQUEST_HEADERS) {
Some(hdrs) => match self.headers {
Some(ref headers) => {
let mut request_headers = HashSet::new();
let hdrs_str = hdrs
.to_str()
.map_err(|_| CORSErrorKind::InvalidRequestHeaders)?;
for hdr in hdrs_str.split(',').map(|s| s.trim()) {
let hdr: HeaderName = hdr
.parse()
.map_err(|_| CORSErrorKind::InvalidRequestHeaders)?;
request_headers.insert(hdr);
}
if !headers.is_superset(&request_headers) {
return Err(CORSErrorKind::DisallowedRequestHeaders.into());
}
Ok(self.headers_value.clone())
}
None => Ok(Some(hdrs.clone())),
},
None => Ok(None),
}
}
fn process_preflight_request<T>(
&self,
request: &Request<T>,
origin: AllowedOrigin,
) -> Result<Response<()>, CORSError> {
let allow_methods = self.validate_request_method(request)?;
let allow_headers = self.validate_request_headers(request)?;
let mut response = Response::default();
*response.status_mut() = StatusCode::NO_CONTENT;
response
.headers_mut()
.insert(ACCESS_CONTROL_ALLOW_ORIGIN, origin.into());
if let Some(allow_methods) = allow_methods {
response
.headers_mut()
.insert(ACCESS_CONTROL_ALLOW_METHODS, allow_methods);
}
if let Some(allow_headers) = allow_headers {
response
.headers_mut()
.insert(ACCESS_CONTROL_ALLOW_HEADERS, allow_headers);
}
if let Some(max_age) = self.max_age {
response
.headers_mut()
.insert(ACCESS_CONTROL_MAX_AGE, max_age.as_secs().into());
}
Ok(response)
}
fn process_simple_request<T>(
&self,
request: &Request<T>,
origin: AllowedOrigin,
hdrs: &mut HeaderMap,
) -> Result<(), CORSError> {
if !self.methods.contains(request.method()) {
return Err(CORSErrorKind::DisallowedRequestMethod.into());
}
hdrs.append(ACCESS_CONTROL_ALLOW_ORIGIN, origin.into());
if self.allow_credentials {
hdrs.append(
ACCESS_CONTROL_ALLOW_CREDENTIALS,
HeaderValue::from_static("true"),
);
}
Ok(())
}
fn process_request(&self, input: &mut Input<'_>) -> Result<Option<Response<()>>, CORSError> {
let origin = match self.validate_origin(input.request)? {
Some(origin) => origin,
None => return Ok(None), };
if input.request.method() == Method::OPTIONS {
self.process_preflight_request(input.request, origin)
.map(Some)
.map_err(Into::into)
} else {
let response_headers = input.response_headers.get_or_insert_with(Default::default);
self.process_simple_request(input.request, origin, response_headers)
.map(|_| None)
.map_err(Into::into)
}
}
}
#[derive(Debug, Clone)]
enum AllowedOrigin {
Some(HeaderValue),
Any,
}
impl Into<HeaderValue> for AllowedOrigin {
fn into(self) -> HeaderValue {
match self {
AllowedOrigin::Some(v) => v,
AllowedOrigin::Any => HeaderValue::from_static("*"),
}
}
}
#[allow(missing_docs)]
#[derive(Debug, Fail)]
#[fail(display = "Invalid CORS request: {}", kind)]
pub struct CORSError {
kind: CORSErrorKind,
}
impl CORSError {
#[allow(missing_docs)]
pub fn kind(&self) -> &CORSErrorKind {
&self.kind
}
}
impl From<CORSErrorKind> for CORSError {
fn from(kind: CORSErrorKind) -> Self {
Self { kind }
}
}
impl HttpError for CORSError {
type Body = String;
fn into_response(self, _: &Request<()>) -> Response<Self::Body> {
Response::builder()
.status(StatusCode::FORBIDDEN)
.body(self.to_string())
.expect("should be a valid response")
}
}
#[allow(missing_docs)]
#[derive(Debug, Fail)]
pub enum CORSErrorKind {
#[fail(display = "the provided Origin is not a valid value.")]
InvalidOrigin,
#[fail(display = "the provided Origin is not allowed.")]
DisallowedOrigin,
#[fail(display = "the provided Access-Control-Request-Method is not a valid value.")]
InvalidRequestMethod,
#[fail(display = "the provided Access-Control-Request-Method is not allowed.")]
DisallowedRequestMethod,
#[fail(display = "the provided Access-Control-Request-Headers is not a valid value.")]
InvalidRequestHeaders,
#[fail(display = "the provided Access-Control-Request-Headers is not allowed.")]
DisallowedRequestHeaders,
}