habsi/elasticsearch-js
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Support for non-friendly chars in url username and password (#858)

Browse Source 
* Support for non-friendly chars in url username and password
- Added auth option to Connection class
- Updated pool.addConnection

* Updated test
This commit is contained in:
Tomas Della Vedova
2019-05-20 11:09:33 -04:00
committed by delvedor
parent 9897ba8831
commit bb0ff22fd2
4 changed files with 36 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
lib/Connection.js
View File

@ -35,6 +35,7 @@ class Connection {
this.ssl = opts.ssl || null this.ssl = opts.ssl || null
this.id = opts.id || stripAuth(opts.url.href) this.id = opts.id || stripAuth(opts.url.href)
this.headers = opts.headers || null this.headers = opts.headers || null
this.auth = opts.auth || { username: null, password: null }
this.deadCount = 0 this.deadCount = 0
this.resurrectTimeout = 0 this.resurrectTimeout = 0
@ -180,6 +181,7 @@ class Connection {
buildRequestObject (params) { buildRequestObject (params) {
const url = this.url const url = this.url
const { username, password } = this.auth
const request = { const request = {
protocol: url.protocol, protocol: url.protocol,
hostname: url.hostname[0] === '[' hostname: url.hostname[0] === '['
@ -194,8 +196,8 @@ class Connection {
// https://github.com/elastic/elasticsearch-js/issues/843 // https://github.com/elastic/elasticsearch-js/issues/843
port: url.port !== '' ? url.port : undefined, port: url.port !== '' ? url.port : undefined,
headers: this.headers, headers: this.headers,
auth: !!url.username === true || !!url.password === true auth: username != null && password != null
? `${url.username}:${url.password}` ? `${username}:${password}`
: undefined, : undefined,
agent: this.agent agent: this.agent
} }
@ -224,7 +226,7 @@ class Connection {
} }
// Handles console.log and utils.inspect invocations. // Handles console.log and utils.inspect invocations.
// We want to hide `agent` and `ssl` since they made // We want to hide `auth`, `agent` and `ssl` since they made
// the logs very hard to read. The user can still // the logs very hard to read. The user can still
// access them with `instance.agent` and `instance.ssl`. // access them with `instance.agent` and `instance.ssl`.
[inspect.custom] (depth, options) { [inspect.custom] (depth, options) {

21
lib/ConnectionPool.js
View File

@ -222,21 +222,24 @@ class ConnectionPool {
// we can add it to them once the connection instance has been created // we can add it to them once the connection instance has been created
if (opts.url.username !== '' && opts.url.password !== '') { if (opts.url.username !== '' && opts.url.password !== '') {
this._auth = { this._auth = {
username: opts.url.username, username: decodeURIComponent(opts.url.username),
password: opts.url.password password: decodeURIComponent(opts.url.password)
}
opts.auth = this._auth
}
if (this._auth != null) {
if (opts.auth == null || (opts.auth.username == null && opts.auth.password == null)) {
opts.auth = this._auth
opts.url.username = this._auth.username
opts.url.password = this._auth.password
} }
} }
if (opts.ssl == null) opts.ssl = this._ssl if (opts.ssl == null) opts.ssl = this._ssl
if (opts.agent == null) opts.agent = this._agent if (opts.agent == null) opts.agent = this._agent
const connection = new this.Connection(opts) const connection = new this.Connection(opts)
if (connection.url.username === '' &&
connection.url.password === '' &&
this._auth != null) {
connection.url.username = this._auth.username
connection.url.password = this._auth.password
}
debug('Adding a new connection', connection) debug('Adding a new connection', connection)
if (this.connections.has(connection.id)) { if (this.connections.has(connection.id)) {
throw new Error(`Connection with id '${connection.id}' is already present`) throw new Error(`Connection with id '${connection.id}' is already present`)

19
test/unit/connection-pool.test.js
View File

@ -61,8 +61,23 @@ test('API', t => {
t.deepEqual(pool._auth, { username: 'foo', password: 'bar' }) t.deepEqual(pool._auth, { username: 'foo', password: 'bar' })
pool.addConnection('http://localhost:9201') pool.addConnection('http://localhost:9201')
t.strictEqual(pool.connections.get('http://localhost:9201/').url.username, 'foo') const conn = pool.connections.get('http://localhost:9201/')
t.strictEqual(pool.connections.get('http://localhost:9201/').url.password, 'bar') t.strictEqual(conn.url.username, 'foo')
t.strictEqual(conn.url.password, 'bar')
t.strictEqual(conn.auth.username, 'foo')
t.strictEqual(conn.auth.password, 'bar')
t.end()
})
t.test('addConnection should handle not-friendly url parameters for user and password', t => {
const pool = new ConnectionPool({ Connection })
const href = 'http://us"er:p@assword@localhost:9200/'
pool.addConnection(href)
const conn = pool.getConnection()
t.strictEqual(conn.url.username, 'us%22er')
t.strictEqual(conn.url.password, 'p%40assword')
t.strictEqual(conn.auth.username, 'us"er')
t.strictEqual(conn.auth.password, 'p@assword')
t.end() t.end()
}) })

3
test/unit/connection.test.js
View File

@ -526,7 +526,8 @@ test('Url with auth', t => {
buildServer(handler, ({ port }, server) => { buildServer(handler, ({ port }, server) => {
const connection = new Connection({ const connection = new Connection({
url: new URL(`http://foo:bar@localhost:${port}`) url: new URL(`http://foo:bar@localhost:${port}`),
auth: { username: 'foo', password: 'bar' }
}) })
connection.request({ connection.request({
path: '/hello', path: '/hello',