@abtnode/router-provider 1.8.60 → 1.8.62

package/lib/default/index.js

@@ -159,6 +159,10 @@ class DefaultProvider extends BaseProvider {
       error: fs.realpathSync(this.errorLog),
     };
   }
+
+  getLogDir() {
+    return this.logDir;
+  }
 }
 
 DefaultProvider.describe = async ({ configDir = '' } = {}) => {

package/lib/nginx/index.js

@@ -131,6 +131,10 @@ class NginxProvider extends BaseProvider {
     this.initialize();
   }
 
+  static isDidAuthPrefix(prefix) {
+    return prefix === ADMIN_DID_AUTH_PATH_PREFIX;
+  }
+
   getRelativeConfigDir(dir) {
     return path.relative(this.configDir, dir);
   }
@@ -449,23 +453,10 @@ class NginxProvider extends BaseProvider {
     server._add('location', concatPath(prefix, suffix));
 
     const location = this._getLastLocation(server);
-    const isDidAuthPath = prefix === ADMIN_DID_AUTH_PATH_PREFIX;
+    const isDidAuthPath = NginxProvider.isDidAuthPrefix(prefix);
 
     // Note: 下面这段代码比较 tricky，不要在这段代码之前添加任何 add_header, proxy_set_header, proxy_hide_header 的语句，否则 nginx 配置可能无法按预期工作
-    if (!isEmpty(corsAllowedOrigins)) {
-      if (corsAllowedOrigins.includes(DOMAIN_FOR_DEFAULT_SITE) || isDidAuthPath) {
-        location._add('include', 'includes/cors-loose');
-        location._add('include', 'includes/security');
-      } else {
-        location._add('add_header', `Access-Control-Allow-Origin $allow_origin_${md5(serverName)} always`);
-        location._add('include', 'includes/cors-strict');
-        location._add('include', 'includes/security');
-      }
-
-      location._addVerbatimBlock('if ($request_method = "OPTIONS")', 'return 204;');
-    } else {
-      location._add('include', 'includes/security');
-    }
+    this._addCors({ location, corsAllowedOrigins, serverName, isDidAuthPath });
 
     this._addCommonResHeaders(location, commonHeaders);
     this._addTailSlashRedirection(location, prefix); // Note: 末尾 "/" 的重定向要放在 CORS(OPTIONS) 响应之后, 这样不会影响 OPTIONS 的响应
@@ -522,11 +513,15 @@ class NginxProvider extends BaseProvider {
     location._add('proxy_pass', `http://${getUpstreamName(port)}`);
   }
 
-  _addRedirectTypeLocation({ server, url, redirectCode, prefix, suffix }) {
+  _addRedirectTypeLocation({ server, url, redirectCode, prefix, suffix, corsAllowedOrigins, serverName }) {
     const cleanUrl = trimEndSlash(url);
-
     server._add('location', `${concatPath(prefix, suffix)}`);
     const location = this._getLastLocation(server);
+
+    const isDidAuthPath = NginxProvider.isDidAuthPrefix(prefix);
+
+    this._addCors({ location, corsAllowedOrigins, serverName, isDidAuthPath });
+
     location._add('set $abt_query_string', '""');
     location._addVerbatimBlock('if ($query_string)', 'set $abt_query_string "?$query_string";');
 
@@ -739,7 +734,7 @@ class NginxProvider extends BaseProvider {
 
     this._addDefaultLocations(httpsServerUnit, daemonPort);
     // eslint-disable-next-line max-len
-    locations.forEach((x) => this._addReverseProxy({ server: httpsServerUnit, ...x, serverName, corsAllowedOrigins,commonHeaders })); // prettier-ignore
+    locations.forEach((x) => this._addReverseProxy({ server: httpsServerUnit, ...x, serverName, corsAllowedOrigins, commonHeaders })); // prettier-ignore
   }
 
   _addHttpServerUnit({ conf, serverName, port }) {
@@ -832,6 +827,23 @@ class NginxProvider extends BaseProvider {
     });
   }
 
+  _addCors({ location, corsAllowedOrigins, serverName, isDidAuthPath }) {
+    if (!isEmpty(corsAllowedOrigins)) {
+      if (corsAllowedOrigins.includes(DOMAIN_FOR_DEFAULT_SITE) || isDidAuthPath) {
+        location._add('include', 'includes/cors-loose');
+        location._add('include', 'includes/security');
+      } else {
+        location._add('add_header', `Access-Control-Allow-Origin $allow_origin_${md5(serverName)} always`);
+        location._add('include', 'includes/cors-strict');
+        location._add('include', 'includes/security');
+      }
+
+      location._addVerbatimBlock('if ($request_method = "OPTIONS")', 'return 204;');
+    } else {
+      location._add('include', 'includes/security');
+    }
+  }
+
   addGlobalReqLimit(block, limit) {
     const key = limit.ipHeader ? `$http_${limit.ipHeader}` : '$binary_remote_addr';
     block._add('limit_req_zone', `${key} zone=ip_limit:20m rate=${limit.rate || 5}r/s`);
@@ -845,6 +857,10 @@ class NginxProvider extends BaseProvider {
       error: this.errorLog,
     };
   }
+
+  getLogDir() {
+    return this.logDir;
+  }
 }
 
 NginxProvider.describe = async ({ configDir = '' } = {}) => {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@abtnode/router-provider",
-  "version": "1.8.60",
+  "version": "1.8.62",
   "description": "Routing engine implementations for abt node",
   "author": "polunzh <polunzh@gmail.com>",
   "homepage": "https://github.com/ArcBlock/blocklet-server#readme",
@@ -32,10 +32,10 @@
     "url": "https://github.com/ArcBlock/blocklet-server/issues"
   },
   "dependencies": {
-    "@abtnode/constant": "1.8.60",
-    "@abtnode/logger": "1.8.60",
-    "@abtnode/router-templates": "1.8.60",
-    "@abtnode/util": "1.8.60",
+    "@abtnode/constant": "1.8.62",
+    "@abtnode/logger": "1.8.62",
+    "@abtnode/router-templates": "1.8.62",
+    "@abtnode/util": "1.8.62",
     "axios": "^0.27.2",
     "debug": "^4.3.4",
     "find-process": "^1.4.7",
@@ -62,5 +62,5 @@
     "fs-extra": "^10.1.0",
     "needle": "^3.1.0"
   },
-  "gitHead": "0a56dc596f58d83f22d1ea0d0145d84e7151f5be"
+  "gitHead": "ea6ab48149eb9e1157ef37ab1505fa36a9ce598f"
 }