@cappitolian/http-local-server-swifter 0.0.20 → 0.0.22
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
|
@@ -6,15 +6,19 @@ import UIKit
|
|
|
6
6
|
///
|
|
7
7
|
/// IMPORTANT: iOS Local Network permission does NOT block TCP sockets.
|
|
8
8
|
/// It only blocks mDNS/Bonjour service discovery. This means Swifter's
|
|
9
|
-
/// server.start() will always succeed regardless of permission status
|
|
9
|
+
/// server.start() will always succeed regardless of permission status —
|
|
10
|
+
/// the denial is only detectable via Bonjour/mDNS probes.
|
|
10
11
|
///
|
|
11
|
-
/// Detection strategy:
|
|
12
|
-
///
|
|
13
|
-
///
|
|
14
|
-
///
|
|
15
|
-
///
|
|
16
|
-
///
|
|
17
|
-
///
|
|
12
|
+
/// Detection strategy (dual-probe):
|
|
13
|
+
/// 1. NWBrowser with the app's registered Bonjour service type (_ssspos._tcp).
|
|
14
|
+
/// This is the authoritative source — if Bonjour is denied, the local
|
|
15
|
+
/// network permission is denied. The service type MUST match NSBonjourServices
|
|
16
|
+
/// in Info.plist, otherwise iOS returns NoAuth even when permission is granted.
|
|
17
|
+
/// 2. UDP probe to 224.0.0.251:5353 (mDNS multicast) as a secondary signal
|
|
18
|
+
/// to trigger the system dialog on first launch.
|
|
19
|
+
///
|
|
20
|
+
/// The first probe that resolves wins. If both time out, we assume .unknown
|
|
21
|
+
/// and allow the server to start (covers simulator and edge cases).
|
|
18
22
|
@objc public class LocalNetworkPermission: NSObject {
|
|
19
23
|
|
|
20
24
|
// MARK: - Types
|
|
@@ -25,84 +29,118 @@ import UIKit
|
|
|
25
29
|
case unknown
|
|
26
30
|
}
|
|
27
31
|
|
|
32
|
+
// MARK: - Constants
|
|
33
|
+
|
|
34
|
+
/// Must match the NSBonjourServices entry in Info.plist exactly.
|
|
35
|
+
/// NWBrowser will return NoAuth(-65555) for any type NOT listed there,
|
|
36
|
+
/// even when the user has granted Local Network permission.
|
|
37
|
+
private static let bonjourServiceType = "_ssspos._tcp"
|
|
38
|
+
|
|
28
39
|
// MARK: - Private state
|
|
29
40
|
|
|
30
|
-
private var
|
|
41
|
+
private var browser: NWBrowser?
|
|
42
|
+
private var udpConnection: NWConnection?
|
|
31
43
|
|
|
32
44
|
// MARK: - Permission check
|
|
33
45
|
|
|
34
|
-
///
|
|
46
|
+
/// Checks Local Network permission using a dual-probe approach.
|
|
35
47
|
///
|
|
36
|
-
///
|
|
37
|
-
///
|
|
48
|
+
/// - Parameter completion: Called on the main thread with the result.
|
|
49
|
+
/// `.granted` / `.denied` once a probe resolves, or `.unknown` on timeout.
|
|
38
50
|
///
|
|
39
|
-
/// -
|
|
40
|
-
///
|
|
41
|
-
/// (simulator, permission already granted and cached by the OS, etc.).
|
|
42
|
-
///
|
|
43
|
-
/// - Note: iOS shows the dialog only once. Subsequent calls return the cached decision.
|
|
51
|
+
/// - Note: iOS shows the permission dialog only once. On subsequent calls
|
|
52
|
+
/// the OS returns the cached decision immediately without showing a dialog.
|
|
44
53
|
public func checkPermission(completion: @escaping (PermissionStatus) -> Void) {
|
|
45
|
-
// mDNS multicast address — probing this triggers the Local Network permission dialog.
|
|
46
|
-
// This approach does NOT require NSBonjourServices in Info.plist.
|
|
47
|
-
let host = NWEndpoint.Host("224.0.0.251")
|
|
48
|
-
let port = NWEndpoint.Port(rawValue: 5353)!
|
|
49
|
-
|
|
50
|
-
let conn = NWConnection(host: host, port: port, using: .udp)
|
|
51
|
-
self.connection = conn
|
|
52
|
-
|
|
53
54
|
var completed = false
|
|
54
55
|
|
|
55
|
-
|
|
56
|
-
// This covers: simulator, permission already granted (OS may skip the callback),
|
|
57
|
-
// and edge cases where iOS doesn't fire stateUpdateHandler promptly.
|
|
58
|
-
let timeout = DispatchWorkItem { [weak self] in
|
|
56
|
+
let finish: (PermissionStatus) -> Void = { [weak self] status in
|
|
59
57
|
guard !completed else { return }
|
|
60
58
|
completed = true
|
|
61
|
-
self?.
|
|
62
|
-
self?.
|
|
63
|
-
|
|
59
|
+
self?.browser?.cancel()
|
|
60
|
+
self?.browser = nil
|
|
61
|
+
self?.udpConnection?.cancel()
|
|
62
|
+
self?.udpConnection = nil
|
|
63
|
+
DispatchQueue.main.async { completion(status) }
|
|
64
64
|
}
|
|
65
|
-
DispatchQueue.main.asyncAfter(deadline: .now() + 3.0, execute: timeout)
|
|
66
|
-
|
|
67
|
-
conn.stateUpdateHandler = { [weak self] state in
|
|
68
|
-
guard !completed else { return }
|
|
69
65
|
|
|
66
|
+
// Timeout fallback — if neither probe resolves, allow startup.
|
|
67
|
+
// Covers: simulator, already-granted permission where iOS skips the callback.
|
|
68
|
+
// 6s gives iOS enough time to evaluate a previously-revoked permission,
|
|
69
|
+
// which can take longer than a first-time denial.
|
|
70
|
+
let timeout = DispatchWorkItem {
|
|
71
|
+
print("⚠️ LocalNetworkPermission: timeout reached — resolving as .unknown")
|
|
72
|
+
finish(.unknown)
|
|
73
|
+
}
|
|
74
|
+
DispatchQueue.main.asyncAfter(deadline: .now() + 6.0, execute: timeout)
|
|
75
|
+
|
|
76
|
+
// --- Probe 1: NWBrowser (authoritative for permission status) ---
|
|
77
|
+
// Uses the app's registered Bonjour type so iOS evaluates the real permission.
|
|
78
|
+
// .failed with PolicyDenied/NoAuth = denied. .ready = granted.
|
|
79
|
+
let parameters = NWParameters()
|
|
80
|
+
parameters.includePeerToPeer = true
|
|
81
|
+
|
|
82
|
+
let browser = NWBrowser(
|
|
83
|
+
for: .bonjour(type: Self.bonjourServiceType, domain: "local."),
|
|
84
|
+
using: parameters
|
|
85
|
+
)
|
|
86
|
+
self.browser = browser
|
|
87
|
+
|
|
88
|
+
browser.stateUpdateHandler = { state in
|
|
89
|
+
print("🔍 LocalNetworkPermission NWBrowser state: \(state)")
|
|
70
90
|
switch state {
|
|
71
91
|
case .ready:
|
|
72
|
-
// UDP connection reached the network layer — permission is granted.
|
|
73
|
-
completed = true
|
|
74
92
|
timeout.cancel()
|
|
75
|
-
|
|
76
|
-
|
|
77
|
-
|
|
93
|
+
finish(.granted)
|
|
94
|
+
case .failed(let error):
|
|
95
|
+
print("🔍 LocalNetworkPermission NWBrowser error code: \((error as NSError).code) — \(error.localizedDescription)")
|
|
96
|
+
if Self.isPolicyDenied(error) {
|
|
97
|
+
timeout.cancel()
|
|
98
|
+
finish(.denied)
|
|
99
|
+
} else {
|
|
100
|
+
// Non-policy failure (e.g. no Wi-Fi) — let UDP probe or timeout decide
|
|
101
|
+
print("⚠️ LocalNetworkPermission: NWBrowser failed (non-policy): \(error)")
|
|
102
|
+
}
|
|
103
|
+
case .cancelled:
|
|
104
|
+
break
|
|
105
|
+
default:
|
|
106
|
+
break
|
|
107
|
+
}
|
|
108
|
+
}
|
|
109
|
+
browser.start(queue: .main)
|
|
110
|
+
|
|
111
|
+
// --- Probe 2: UDP mDNS multicast (dialog trigger + secondary signal) ---
|
|
112
|
+
// Sending to 224.0.0.251:5353 triggers the system dialog on first launch.
|
|
113
|
+
// Also catches policy denials that surface at the UDP layer.
|
|
114
|
+
let host = NWEndpoint.Host("224.0.0.251")
|
|
115
|
+
let port = NWEndpoint.Port(rawValue: 5353)!
|
|
116
|
+
let conn = NWConnection(host: host, port: port, using: .udp)
|
|
117
|
+
self.udpConnection = conn
|
|
78
118
|
|
|
119
|
+
conn.stateUpdateHandler = { state in
|
|
120
|
+
print("🔍 LocalNetworkPermission UDP state: \(state)")
|
|
121
|
+
switch state {
|
|
79
122
|
case .waiting(let error):
|
|
80
|
-
|
|
81
|
-
// Other .waiting errors (no route, offline) are transient — keep waiting.
|
|
123
|
+
print("🔍 LocalNetworkPermission UDP waiting error code: \((error as NSError).code) — \(error.localizedDescription)")
|
|
82
124
|
if Self.isPolicyDenied(error) {
|
|
83
|
-
completed = true
|
|
84
125
|
timeout.cancel()
|
|
85
|
-
|
|
86
|
-
self?.connection = nil
|
|
87
|
-
DispatchQueue.main.async { completion(.denied) }
|
|
126
|
+
finish(.denied)
|
|
88
127
|
}
|
|
89
|
-
|
|
128
|
+
// Other .waiting errors (no route, offline) are transient — ignore
|
|
90
129
|
case .failed(let error):
|
|
91
|
-
|
|
92
|
-
|
|
93
|
-
|
|
94
|
-
|
|
95
|
-
|
|
96
|
-
|
|
97
|
-
|
|
130
|
+
print("🔍 LocalNetworkPermission UDP failed error code: \((error as NSError).code) — \(error.localizedDescription)")
|
|
131
|
+
if Self.isPolicyDenied(error) {
|
|
132
|
+
timeout.cancel()
|
|
133
|
+
finish(.denied)
|
|
134
|
+
}
|
|
135
|
+
// Non-policy UDP failure — let NWBrowser or timeout decide
|
|
98
136
|
case .cancelled:
|
|
99
|
-
break
|
|
100
|
-
|
|
137
|
+
break
|
|
101
138
|
default:
|
|
102
|
-
break
|
|
139
|
+
break
|
|
140
|
+
// Note: UDP .ready does NOT confirm permission — we rely on NWBrowser for that.
|
|
141
|
+
// A UDP socket can reach .ready even when Bonjour is blocked.
|
|
103
142
|
}
|
|
104
143
|
}
|
|
105
|
-
|
|
106
144
|
conn.start(queue: .main)
|
|
107
145
|
}
|
|
108
146
|
|
|
@@ -125,9 +163,9 @@ import UIKit
|
|
|
125
163
|
|
|
126
164
|
/// Returns true if the NWError indicates a Local Network policy denial.
|
|
127
165
|
///
|
|
128
|
-
/// Known denial
|
|
129
|
-
///
|
|
130
|
-
///
|
|
166
|
+
/// Known denial codes:
|
|
167
|
+
/// kDNSServiceErr_PolicyDenied = -65570
|
|
168
|
+
/// kDNSServiceErr_NoAuth = -65555
|
|
131
169
|
private static func isPolicyDenied(_ error: NWError) -> Bool {
|
|
132
170
|
let nsError = error as NSError
|
|
133
171
|
if nsError.code == -65570 || nsError.code == -65555 { return true }
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@cappitolian/http-local-server-swifter",
|
|
3
|
-
"version": "0.0.
|
|
3
|
+
"version": "0.0.22",
|
|
4
4
|
"description": "Runs a local HTTP server on your device, accessible over LAN. Supports connect, disconnect, GET, and POST methods with IP and port discovery.",
|
|
5
5
|
"main": "dist/plugin.cjs.js",
|
|
6
6
|
"module": "dist/esm/index.js",
|