npm - serverless-offline - Versions diffs - 8.7.0 → 9.0.0 - Mend

serverless-offline 8.7.0 → 9.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (234) hide show

package/README.md +91 -95
package/package.json +41 -69
package/src/ServerlessOffline.js +412 -0
package/src/config/commandOptions.js +155 -0
package/src/config/constants.js +22 -0
package/{dist → src}/config/defaultOptions.js +8 -17
package/src/config/index.js +4 -0
package/src/config/supportedRuntimes.js +47 -0
package/src/events/authCanExecuteResource.js +35 -0
package/src/events/authFunctionNameExtractor.js +75 -0
package/src/events/authMatchPolicyResource.js +71 -0
package/src/events/authValidateContext.js +51 -0
package/src/events/http/Endpoint.js +135 -0
package/src/events/http/Http.js +50 -0
package/src/events/http/HttpEventDefinition.js +20 -0
package/src/events/http/HttpServer.js +1277 -0
package/src/events/http/OfflineEndpoint.js +33 -0
package/src/events/http/authJWTSettingsExtractor.js +70 -0
package/src/events/http/createAuthScheme.js +176 -0
package/src/events/http/createJWTAuthScheme.js +106 -0
package/src/events/http/index.js +1 -0
package/src/events/http/javaHelpers.js +102 -0
package/src/events/http/lambda-events/LambdaIntegrationEvent.js +57 -0
package/src/events/http/lambda-events/LambdaProxyIntegrationEvent.js +233 -0
package/src/events/http/lambda-events/LambdaProxyIntegrationEventV2.js +190 -0
package/src/events/http/lambda-events/VelocityContext.js +147 -0
package/src/events/http/lambda-events/index.js +4 -0
package/src/events/http/lambda-events/renderVelocityTemplateObject.js +93 -0
package/{dist → src}/events/http/parseResources.js +73 -78
package/src/events/http/payloadSchemaValidator.js +13 -0
package/{dist → src}/events/http/templates/offline-default.req.vm +0 -0
package/{dist → src}/events/http/templates/offline-default.res.vm +0 -0
package/src/events/schedule/Schedule.js +131 -0
package/src/events/schedule/ScheduleEvent.js +18 -0
package/src/events/schedule/ScheduleEventDefinition.js +21 -0
package/src/events/schedule/index.js +1 -0
package/src/events/websocket/HttpServer.js +69 -0
package/src/events/websocket/WebSocket.js +52 -0
package/src/events/websocket/WebSocketClients.js +462 -0
package/src/events/websocket/WebSocketEventDefinition.js +18 -0
package/src/events/websocket/WebSocketServer.js +73 -0
package/src/events/websocket/http-routes/_catchAll/catchAllRoute.js +16 -0
package/src/events/websocket/http-routes/_catchAll/index.js +1 -0
package/src/events/websocket/http-routes/connections/ConnectionsController.js +28 -0
package/src/events/websocket/http-routes/connections/connectionsRoutes.js +70 -0
package/src/events/websocket/http-routes/connections/index.js +1 -0
package/src/events/websocket/http-routes/index.js +2 -0
package/src/events/websocket/index.js +1 -0
package/src/events/websocket/lambda-events/WebSocketAuthorizerEvent.js +65 -0
package/src/events/websocket/lambda-events/WebSocketConnectEvent.js +68 -0
package/src/events/websocket/lambda-events/WebSocketDisconnectEvent.js +31 -0
package/src/events/websocket/lambda-events/WebSocketEvent.js +29 -0
package/src/events/websocket/lambda-events/WebSocketRequestContext.js +67 -0
package/src/events/websocket/lambda-events/index.js +4 -0
package/src/index.js +12 -0
package/src/lambda/HttpServer.js +108 -0
package/src/lambda/Lambda.js +68 -0
package/src/lambda/LambdaContext.js +33 -0
package/src/lambda/LambdaFunction.js +308 -0
package/src/lambda/LambdaFunctionPool.js +109 -0
package/src/lambda/__tests__/LambdaContext.test.js +30 -0
package/src/lambda/__tests__/LambdaFunction.test.js +196 -0
package/src/lambda/__tests__/fixtures/Lambda/LambdaFunctionThatReturnsJSONObject.fixture.js +47 -0
package/src/lambda/__tests__/fixtures/Lambda/LambdaFunctionThatReturnsNativeString.fixture.js +46 -0
package/src/lambda/__tests__/fixtures/Lambda/package.json +3 -0
package/src/lambda/__tests__/fixtures/lambdaFunction.fixture.js +145 -0
package/src/lambda/__tests__/fixtures/package.json +3 -0
package/src/lambda/__tests__/routes/invocations/InvocationsController.test.js +42 -0
package/src/lambda/handler-runner/HandlerRunner.js +136 -0
package/src/lambda/handler-runner/child-process-runner/ChildProcessRunner.js +72 -0
package/src/lambda/handler-runner/child-process-runner/childProcessHelper.js +42 -0
package/src/lambda/handler-runner/child-process-runner/index.js +1 -0
package/src/lambda/handler-runner/docker-runner/DockerContainer.js +417 -0
package/src/lambda/handler-runner/docker-runner/DockerImage.js +35 -0
package/src/lambda/handler-runner/docker-runner/DockerRunner.js +63 -0
package/src/lambda/handler-runner/docker-runner/index.js +1 -0
package/src/lambda/handler-runner/go-runner/GoRunner.js +166 -0
package/src/lambda/handler-runner/go-runner/index.js +1 -0
package/src/lambda/handler-runner/in-process-runner/InProcessRunner.js +125 -0
package/src/lambda/handler-runner/in-process-runner/index.js +1 -0
package/src/lambda/handler-runner/index.js +1 -0
package/src/lambda/handler-runner/java-runner/JavaRunner.js +114 -0
package/src/lambda/handler-runner/java-runner/index.js +1 -0
package/src/lambda/handler-runner/python-runner/PythonRunner.js +138 -0
package/src/lambda/handler-runner/python-runner/index.js +1 -0
package/{dist → src}/lambda/handler-runner/python-runner/invoke.py +0 -0
package/src/lambda/handler-runner/ruby-runner/RubyRunner.js +107 -0
package/src/lambda/handler-runner/ruby-runner/index.js +1 -0
package/{dist → src}/lambda/handler-runner/ruby-runner/invoke.rb +0 -0
package/src/lambda/handler-runner/worker-thread-runner/WorkerThreadRunner.js +70 -0
package/src/lambda/handler-runner/worker-thread-runner/index.js +1 -0
package/src/lambda/handler-runner/worker-thread-runner/workerThreadHelper.js +29 -0
package/src/lambda/index.js +1 -0
package/src/lambda/routes/index.js +2 -0
package/src/lambda/routes/invocations/InvocationsController.js +102 -0
package/src/lambda/routes/invocations/index.js +1 -0
package/src/lambda/routes/invocations/invocationsRoute.js +77 -0
package/src/lambda/routes/invoke-async/InvokeAsyncController.js +20 -0
package/src/lambda/routes/invoke-async/index.js +1 -0
package/src/lambda/routes/invoke-async/invokeAsyncRoute.js +33 -0
package/src/utils/__tests__/createUniqueId.test.js +18 -0
package/src/utils/__tests__/formatToClfTime.test.js +14 -0
package/src/utils/__tests__/generateHapiPath.test.js +46 -0
package/src/utils/__tests__/lowerCaseKeys.test.js +30 -0
package/src/utils/__tests__/parseHeaders.test.js +13 -0
package/src/utils/__tests__/parseMultiValueHeaders.test.js +24 -0
package/src/utils/__tests__/parseMultiValueQueryStringParameters.test.js +159 -0
package/src/utils/__tests__/parseQueryStringParameters.test.js +15 -0
package/src/utils/__tests__/splitHandlerPathAndName.test.js +54 -0
package/src/utils/__tests__/unflatten.test.js +32 -0
package/src/utils/checkDockerDaemon.js +19 -0
package/src/utils/checkGoVersion.js +16 -0
package/src/utils/createApiKey.js +5 -0
package/src/utils/createUniqueId.js +5 -0
package/src/utils/detectExecutable.js +11 -0
package/{dist → src}/utils/formatToClfTime.js +6 -14
package/src/utils/generateHapiPath.js +26 -0
package/src/utils/getHttpApiCorsConfig.js +28 -0
package/src/utils/index.js +42 -0
package/src/utils/jsonPath.js +13 -0
package/src/utils/logRoutes.js +64 -0
package/src/utils/lowerCaseKeys.js +6 -0
package/src/utils/parseHeaders.js +14 -0
package/src/utils/parseMultiValueHeaders.js +27 -0
package/src/utils/parseMultiValueQueryStringParameters.js +31 -0
package/src/utils/parseQueryStringParameters.js +15 -0
package/src/utils/resolveJoins.js +29 -0
package/src/utils/splitHandlerPathAndName.js +31 -0
package/src/utils/unflatten.js +11 -0
package/dist/ServerlessOffline.js +0 -507
package/dist/checkEngine.js +0 -21
package/dist/config/commandOptions.js +0 -149
package/dist/config/constants.js +0 -30
package/dist/config/index.js +0 -55
package/dist/config/supportedRuntimes.js +0 -40
package/dist/debugLog.js +0 -10
package/dist/events/authCanExecuteResource.js +0 -35
package/dist/events/authFunctionNameExtractor.js +0 -87
package/dist/events/authMatchPolicyResource.js +0 -62
package/dist/events/http/Endpoint.js +0 -171
package/dist/events/http/Http.js +0 -77
package/dist/events/http/HttpEventDefinition.js +0 -36
package/dist/events/http/HttpServer.js +0 -1363
package/dist/events/http/OfflineEndpoint.js +0 -40
package/dist/events/http/authJWTSettingsExtractor.js +0 -76
package/dist/events/http/authValidateContext.js +0 -48
package/dist/events/http/createAuthScheme.js +0 -184
package/dist/events/http/createJWTAuthScheme.js +0 -155
package/dist/events/http/index.js +0 -15
package/dist/events/http/javaHelpers.js +0 -99
package/dist/events/http/lambda-events/LambdaIntegrationEvent.js +0 -85
package/dist/events/http/lambda-events/LambdaProxyIntegrationEvent.js +0 -244
package/dist/events/http/lambda-events/LambdaProxyIntegrationEventV2.js +0 -221
package/dist/events/http/lambda-events/VelocityContext.js +0 -168
package/dist/events/http/lambda-events/index.js +0 -39
package/dist/events/http/lambda-events/renderVelocityTemplateObject.js +0 -108
package/dist/events/http/payloadSchemaValidator.js +0 -13
package/dist/events/schedule/Schedule.js +0 -182
package/dist/events/schedule/ScheduleEvent.js +0 -27
package/dist/events/schedule/ScheduleEventDefinition.js +0 -36
package/dist/events/schedule/index.js +0 -15
package/dist/events/websocket/HttpServer.js +0 -112
package/dist/events/websocket/WebSocket.js +0 -78
package/dist/events/websocket/WebSocketClients.js +0 -550
package/dist/events/websocket/WebSocketEventDefinition.js +0 -32
package/dist/events/websocket/WebSocketServer.js +0 -140
package/dist/events/websocket/http-routes/_catchAll/catchAllRoute.js +0 -33
package/dist/events/websocket/http-routes/_catchAll/index.js +0 -15
package/dist/events/websocket/http-routes/connections/ConnectionsController.js +0 -45
package/dist/events/websocket/http-routes/connections/connectionsRoutes.js +0 -95
package/dist/events/websocket/http-routes/connections/index.js +0 -15
package/dist/events/websocket/http-routes/index.js +0 -23
package/dist/events/websocket/index.js +0 -15
package/dist/events/websocket/lambda-events/WebSocketAuthorizerEvent.js +0 -99
package/dist/events/websocket/lambda-events/WebSocketConnectEvent.js +0 -101
package/dist/events/websocket/lambda-events/WebSocketDisconnectEvent.js +0 -47
package/dist/events/websocket/lambda-events/WebSocketEvent.js +0 -54
package/dist/events/websocket/lambda-events/WebSocketRequestContext.js +0 -98
package/dist/events/websocket/lambda-events/index.js +0 -39
package/dist/index.js +0 -19
package/dist/lambda/HttpServer.js +0 -122
package/dist/lambda/Lambda.js +0 -113
package/dist/lambda/LambdaContext.js +0 -53
package/dist/lambda/LambdaFunction.js +0 -391
package/dist/lambda/LambdaFunctionPool.js +0 -127
package/dist/lambda/handler-runner/HandlerRunner.js +0 -223
package/dist/lambda/handler-runner/child-process-runner/ChildProcessRunner.js +0 -132
package/dist/lambda/handler-runner/child-process-runner/childProcessHelper.js +0 -40
package/dist/lambda/handler-runner/child-process-runner/index.js +0 -15
package/dist/lambda/handler-runner/docker-runner/DockerContainer.js +0 -517
package/dist/lambda/handler-runner/docker-runner/DockerImage.js +0 -67
package/dist/lambda/handler-runner/docker-runner/DockerRunner.js +0 -74
package/dist/lambda/handler-runner/docker-runner/index.js +0 -15
package/dist/lambda/handler-runner/go-runner/GoRunner.js +0 -211
package/dist/lambda/handler-runner/go-runner/index.js +0 -15
package/dist/lambda/handler-runner/in-process-runner/InProcessRunner.js +0 -234
package/dist/lambda/handler-runner/in-process-runner/index.js +0 -15
package/dist/lambda/handler-runner/index.js +0 -15
package/dist/lambda/handler-runner/java-runner/JavaRunner.js +0 -151
package/dist/lambda/handler-runner/java-runner/index.js +0 -15
package/dist/lambda/handler-runner/python-runner/PythonRunner.js +0 -180
package/dist/lambda/handler-runner/python-runner/index.js +0 -15
package/dist/lambda/handler-runner/ruby-runner/RubyRunner.js +0 -148
package/dist/lambda/handler-runner/ruby-runner/index.js +0 -15
package/dist/lambda/handler-runner/worker-thread-runner/WorkerThreadRunner.js +0 -94
package/dist/lambda/handler-runner/worker-thread-runner/index.js +0 -15
package/dist/lambda/handler-runner/worker-thread-runner/workerThreadHelper.js +0 -30
package/dist/lambda/index.js +0 -15
package/dist/lambda/routes/index.js +0 -23
package/dist/lambda/routes/invocations/InvocationsController.js +0 -142
package/dist/lambda/routes/invocations/index.js +0 -15
package/dist/lambda/routes/invocations/invocationsRoute.js +0 -90
package/dist/lambda/routes/invoke-async/InvokeAsyncController.js +0 -38
package/dist/lambda/routes/invoke-async/index.js +0 -15
package/dist/lambda/routes/invoke-async/invokeAsyncRoute.js +0 -43
package/dist/main.js +0 -11
package/dist/serverlessLog.js +0 -91
package/dist/utils/checkDockerDaemon.js +0 -27
package/dist/utils/checkGoVersion.js +0 -27
package/dist/utils/createApiKey.js +0 -12
package/dist/utils/createUniqueId.js +0 -14
package/dist/utils/detectExecutable.js +0 -21
package/dist/utils/generateHapiPath.js +0 -28
package/dist/utils/getHttpApiCorsConfig.js +0 -44
package/dist/utils/index.js +0 -158
package/dist/utils/jsonPath.js +0 -21
package/dist/utils/parseHeaders.js +0 -23
package/dist/utils/parseMultiValueHeaders.js +0 -36
package/dist/utils/parseMultiValueQueryStringParameters.js +0 -40
package/dist/utils/parseQueryStringParameters.js +0 -26
package/dist/utils/resolveJoins.js +0 -34
package/dist/utils/satisfiesVersionRange.js +0 -20
package/dist/utils/splitHandlerPathAndName.js +0 -41
package/dist/utils/unflatten.js +0 -18

package/src/events/websocket/WebSocketClients.js ADDED Viewed

@@ -0,0 +1,462 @@
+import { WebSocket } from 'ws'
+import { isBoom } from '@hapi/boom'
+import { log } from '@serverless/utils/log.js'
+import {
+  WebSocketAuthorizerEvent,
+  WebSocketConnectEvent,
+  WebSocketDisconnectEvent,
+  WebSocketEvent,
+} from './lambda-events/index.js'
+import authCanExecuteResource from '../authCanExecuteResource.js'
+import authFunctionNameExtractor from '../authFunctionNameExtractor.js'
+import authValidateContext from '../authValidateContext.js'
+import {
+  DEFAULT_WEBSOCKETS_API_ROUTE_SELECTION_EXPRESSION,
+  DEFAULT_WEBSOCKETS_ROUTE,
+} from '../../config/index.js'
+import { jsonPath } from '../../utils/index.js'
+const { parse, stringify } = JSON
+export default class WebSocketClients {
+  #clients = new Map()
+  #hardTimeouts = new WeakMap()
+  #idleTimeouts = new WeakMap()
+  #lambda = null
+  #options = null
+  #serverless = null
+  #webSocketAuthorizers = new Map()
+  #webSocketAuthorizersCache = new Map()
+  #webSocketRoutes = new Map()
+  #websocketsApiRouteSelectionExpression = null
+  constructor(serverless, options, lambda) {
+    this.#lambda = lambda
+    this.#options = options
+    this.#serverless = serverless
+    this.#websocketsApiRouteSelectionExpression =
+      serverless.service.provider.websocketsApiRouteSelectionExpression ||
+      DEFAULT_WEBSOCKETS_API_ROUTE_SELECTION_EXPRESSION
+  }
+  #addWebSocketClient(client, connectionId) {
+    this.#clients.set(client, connectionId)
+    this.#clients.set(connectionId, client)
+    this.#onWebSocketUsed(connectionId)
+    this.#addHardTimeout(client, connectionId)
+  }
+  #removeWebSocketClient(client) {
+    const connectionId = this.#clients.get(client)
+    this.#clients.delete(client)
+    this.#clients.delete(connectionId)
+    return connectionId
+  }
+  #getWebSocketClient(connectionId) {
+    return this.#clients.get(connectionId)
+  }
+  #addHardTimeout(client, connectionId) {
+    const timeoutId = setTimeout(() => {
+      log.debug(`timeout:hard:${connectionId}`)
+      client.close(1001, 'Going away')
+    }, this.#options.webSocketHardTimeout * 1000)
+    this.#hardTimeouts.set(client, timeoutId)
+  }
+  #clearHardTimeout(client) {
+    const timeoutId = this.#hardTimeouts.get(client)
+    clearTimeout(timeoutId)
+  }
+  #onWebSocketUsed(connectionId) {
+    const client = this.#getWebSocketClient(connectionId)
+    this.#clearIdleTimeout(client)
+    log.debug(`timeout:idle:${connectionId}:reset`)
+    const timeoutId = setTimeout(() => {
+      log.debug(`timeout:idle:${connectionId}:trigger`)
+      client.close(1001, 'Going away')
+    }, this.#options.webSocketIdleTimeout * 1000)
+    this.#idleTimeouts.set(client, timeoutId)
+  }
+  #clearIdleTimeout(client) {
+    const timeoutId = this.#idleTimeouts.get(client)
+    clearTimeout(timeoutId)
+  }
+  async verifyClient(connectionId, request) {
+    const routeName = '$connect'
+    const route = this.#webSocketRoutes.get(routeName)
+    if (!route) {
+      return {
+        statusCode: 502,
+        verified: false,
+      }
+    }
+    const connectEvent = new WebSocketConnectEvent(
+      connectionId,
+      request,
+      this.#options,
+    ).create()
+    const authFunName = this.#webSocketAuthorizers.get(routeName)
+    if (authFunName) {
+      const authorizerFunction = this.#lambda.get(authFunName)
+      const authorizeEvent = new WebSocketAuthorizerEvent(
+        connectionId,
+        request,
+        this.#serverless.service.provider,
+        this.#options,
+      ).create()
+      authorizerFunction.setEvent(authorizeEvent)
+      log.notice()
+      log.notice(
+        `Running Authorization function for ${routeName} (λ: ${authFunName})`,
+      )
+      try {
+        const result = await authorizerFunction.runHandler()
+        if (result === 'Unauthorized') {
+          return {
+            statusCode: 401,
+            verified: false,
+          }
+        }
+        const policy = result
+        // Validate that the policy document has the principalId set
+        if (!policy.principalId) {
+          log.notice(
+            `Authorization response did not include a principalId: (λ: ${authFunName})`,
+          )
+          return {
+            statusCode: 403,
+            verified: false,
+          }
+        }
+        if (
+          !authCanExecuteResource(
+            policy.policyDocument,
+            authorizeEvent.methodArn,
+          )
+        ) {
+          log.notice(
+            `Authorization response didn't authorize user to access resource: (λ: ${authFunName})`,
+          )
+          return {
+            statusCode: 403,
+            verified: false,
+          }
+        }
+        log.notice(
+          `Authorization function returned a successful response: (λ: ${authFunName})`,
+        )
+        if (policy.context) {
+          const validatedContext = authValidateContext(
+            policy.context,
+            authorizerFunction,
+          )
+          if (validatedContext instanceof Error) throw validatedContext
+          policy.context = validatedContext
+        }
+        this.#webSocketAuthorizersCache.set(connectionId, {
+          authorizer: {
+            integrationLatency: '42',
+            principalId: policy.principalId,
+            ...policy.context,
+          },
+          identity: {
+            apiKey: policy.usageIdentifierKey,
+            sourceIp: authorizeEvent.requestContext.sourceIp,
+            userAgent: authorizeEvent.headers['user-agent'] || '',
+          },
+        })
+      } catch (err) {
+        log.debug(`Error in route handler '${routeName}' authorizer`, err)
+        let headers = []
+        let message
+        if (isBoom(err)) {
+          headers = err.output.headers
+          message = err.output.payload.message
+        }
+        return {
+          headers,
+          message,
+          statusCode: 500,
+          verified: false,
+        }
+      }
+    }
+    const authorizerData = this.#webSocketAuthorizersCache.get(connectionId)
+    if (authorizerData) {
+      connectEvent.requestContext.identity = authorizerData.identity
+      connectEvent.requestContext.authorizer = authorizerData.authorizer
+    }
+    const lambdaFunction = this.#lambda.get(route.functionKey)
+    lambdaFunction.setEvent(connectEvent)
+    try {
+      const { statusCode } = await lambdaFunction.runHandler()
+      const verified = statusCode >= 200 && statusCode < 300
+      return {
+        statusCode,
+        verified,
+      }
+    } catch (err) {
+      this.#webSocketAuthorizersCache.delete(connectionId)
+      log.debug(`Error in route handler '${route.functionKey}'`, err)
+      return {
+        statusCode: 502,
+        verified: false,
+      }
+    }
+  }
+  async #processEvent(websocketClient, connectionId, routeKey, event) {
+    let route = this.#webSocketRoutes.get(routeKey)
+    if (!route && routeKey !== '$disconnect') {
+      route = this.#webSocketRoutes.get('$default')
+    }
+    if (!route) {
+      return
+    }
+    const sendError = (err) => {
+      if (websocketClient.readyState === WebSocket.OPEN) {
+        websocketClient.send(
+          stringify({
+            connectionId,
+            message: 'Internal server error',
+            requestId: '1234567890',
+          }),
+        )
+      }
+      log.debug(`Error in route handler '${route.functionKey}'`, err)
+    }
+    const authorizerData = this.#webSocketAuthorizersCache.get(connectionId)
+    let authorizedEvent
+    if (authorizerData) {
+      authorizedEvent = event
+      authorizedEvent.requestContext.identity = authorizerData.identity
+      authorizedEvent.requestContext.authorizer = authorizerData.authorizer
+    }
+    const lambdaFunction = this.#lambda.get(route.functionKey)
+    lambdaFunction.setEvent(authorizedEvent || event)
+    try {
+      const { body } = await lambdaFunction.runHandler()
+      if (
+        body &&
+        routeKey !== '$disconnect' &&
+        route.definition.routeResponseSelectionExpression === '$default'
+      ) {
+        // https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-websocket-api-selection-expressions.html#apigateway-websocket-api-route-response-selection-expressions
+        // TODO: Once API gateway supports RouteResponses, this will need to change to support that functionality
+        // For now, send body back to the client
+        this.send(connectionId, body)
+      }
+    } catch (err) {
+      log.error(err)
+      sendError(err)
+    }
+  }
+  #getRoute(value) {
+    let json
+    try {
+      json = parse(value)
+    } catch {
+      return DEFAULT_WEBSOCKETS_ROUTE
+    }
+    const routeSelectionExpression =
+      this.#websocketsApiRouteSelectionExpression.replace('request.body', '')
+    const route = jsonPath(json, routeSelectionExpression)
+    if (typeof route !== 'string') {
+      return DEFAULT_WEBSOCKETS_ROUTE
+    }
+    return route || DEFAULT_WEBSOCKETS_ROUTE
+  }
+  addClient(webSocketClient, connectionId) {
+    this.#addWebSocketClient(webSocketClient, connectionId)
+    webSocketClient.on('close', () => {
+      log.debug(`disconnect:${connectionId}`)
+      this.#removeWebSocketClient(webSocketClient)
+      const disconnectEvent = new WebSocketDisconnectEvent(
+        connectionId,
+      ).create()
+      this.#clearHardTimeout(webSocketClient)
+      this.#clearIdleTimeout(webSocketClient)
+      const authorizerData = this.#webSocketAuthorizersCache.get(connectionId)
+      if (authorizerData) {
+        disconnectEvent.requestContext.identity = authorizerData.identity
+        disconnectEvent.requestContext.authorizer = authorizerData.authorizer
+      }
+      this.#processEvent(
+        webSocketClient,
+        connectionId,
+        '$disconnect',
+        disconnectEvent,
+      ).finally(() => this.#webSocketAuthorizersCache.delete(connectionId))
+    })
+    webSocketClient.on('message', (data, isBinary) => {
+      const message = isBinary ? data : String(data)
+      log.debug(`message:${message}`)
+      const route = this.#getRoute(message)
+      log.debug(`route:${route} on connection=${connectionId}`)
+      const event = new WebSocketEvent(connectionId, route, message).create()
+      const authorizerData = this.#webSocketAuthorizersCache.get(connectionId)
+      if (authorizerData) {
+        event.requestContext.identity = authorizerData.identity
+        event.requestContext.authorizer = authorizerData.authorizer
+      }
+      this.#onWebSocketUsed(connectionId)
+      this.#processEvent(webSocketClient, connectionId, route, event)
+    })
+  }
+  #extractAuthFunctionName(endpoint) {
+    if (
+      typeof endpoint.authorizer === 'object' &&
+      endpoint.authorizer.type &&
+      endpoint.authorizer.type.toUpperCase() === 'TOKEN'
+    ) {
+      log.debug(`Websockets does not support the TOKEN authorization type`)
+      return null
+    }
+    const result = authFunctionNameExtractor(endpoint)
+    return result.unsupportedAuth ? null : result.authorizerName
+  }
+  #configureAuthorization(endpoint, functionKey) {
+    if (!endpoint.authorizer) {
+      return
+    }
+    if (endpoint.route === '$connect') {
+      const authFunctionName = this.#extractAuthFunctionName(endpoint)
+      if (!authFunctionName) {
+        return
+      }
+      log.notice(
+        `Configuring Authorization: ${functionKey} ${authFunctionName}`,
+      )
+      const authFunction =
+        this.#serverless.service.getFunction(authFunctionName)
+      if (!authFunction) {
+        log.error(`Authorization function ${authFunctionName} does not exist`)
+        return
+      }
+      this.#webSocketAuthorizers.set(endpoint.route, authFunctionName)
+      return
+    }
+    log.notice(`Configuring Authorization is supported only on $connect route`)
+  }
+  addRoute(functionKey, definition) {
+    // set the route name
+    this.#webSocketRoutes.set(definition.route, {
+      definition,
+      functionKey,
+    })
+    if (!this.#options.noAuth) {
+      this.#configureAuthorization(definition, functionKey)
+    }
+    log.notice(`route '${definition.route} (λ: ${functionKey})'`)
+  }
+  close(connectionId) {
+    const client = this.#getWebSocketClient(connectionId)
+    if (client) {
+      client.close()
+      return true
+    }
+    return false
+  }
+  send(connectionId, payload) {
+    const client = this.#getWebSocketClient(connectionId)
+    if (client) {
+      this.#onWebSocketUsed(connectionId)
+      client.send(payload)
+      return true
+    }
+    return false
+  }
+}

package/src/events/websocket/WebSocketEventDefinition.js ADDED Viewed

@@ -0,0 +1,18 @@
+const { assign } = Object
+export default class WebSocketEventDefinition {
+  constructor(rawWebSocketEventDefinition) {
+    let rest
+    let route
+    if (typeof rawWebSocketEventDefinition === 'string') {
+      route = rawWebSocketEventDefinition
+    } else {
+      ;({ route, ...rest } = rawWebSocketEventDefinition)
+    }
+    this.route = route
+    assign(this, rest)
+  }
+}

package/src/events/websocket/WebSocketServer.js ADDED Viewed

@@ -0,0 +1,73 @@
+import { log } from '@serverless/utils/log.js'
+import { WebSocketServer as WsWebSocketServer } from 'ws'
+import { createUniqueId } from '../../utils/index.js'
+export default class WebSocketServer {
+  #connectionIds = new Map()
+  #options = null
+  #webSocketClients = null
+  constructor(options, webSocketClients, sharedServer) {
+    this.#options = options
+    this.#webSocketClients = webSocketClients
+    const server = new WsWebSocketServer({
+      server: sharedServer,
+      verifyClient: async ({ req }, cb) => {
+        const connectionId = createUniqueId()
+        const key = req.headers['sec-websocket-key']
+        log.debug(`verifyClient:${key} ${connectionId}`)
+        // use the websocket key to correlate connection IDs
+        this.#connectionIds.set(key, connectionId)
+        const { headers, message, statusCode, verified } =
+          await this.#webSocketClients.verifyClient(connectionId, req)
+        try {
+          if (!verified) {
+            cb(false, statusCode, message, headers)
+            return
+          }
+          cb(true)
+        } catch (err) {
+          log.debug(`Error verifying`, err)
+          cb(false)
+        }
+      },
+    })
+    server.on('connection', (webSocketClient, request) => {
+      log.notice('received connection')
+      const { headers } = request
+      const key = headers['sec-websocket-key']
+      const connectionId = this.#connectionIds.get(key)
+      log.debug(`connect:${connectionId}`)
+      this.#webSocketClients.addClient(webSocketClient, connectionId)
+    })
+  }
+  async start() {
+    const { host, httpsProtocol, websocketPort } = this.#options
+    log.notice(
+      `Offline [websocket] listening on ws${
+        httpsProtocol ? 's' : ''
+      }://${host}:${websocketPort}`,
+    )
+  }
+  // no-op, we're re-using the http server
+  stop() {}
+  addRoute(functionKey, webSocketEvent) {
+    this.#webSocketClients.addRoute(functionKey, webSocketEvent)
+  }
+}

package/src/events/websocket/http-routes/_catchAll/catchAllRoute.js ADDED Viewed

@@ -0,0 +1,16 @@
+import { log } from '@serverless/utils/log.js'
+export default function catchAllRoute() {
+  return {
+    handler(request, h) {
+      const { url } = request
+      log.debug(`got GET to ${url}`)
+      return h.response(null).code(426)
+    },
+    method: 'GET',
+    path: '/{path*}',
+  }
+}

package/src/events/websocket/http-routes/_catchAll/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { default } from './catchAllRoute.js'

package/src/events/websocket/http-routes/connections/ConnectionsController.js ADDED Viewed

@@ -0,0 +1,28 @@
+export default class ConnectionsController {
+  #webSocketClients = null
+  constructor(webSocketClients) {
+    this.#webSocketClients = webSocketClients
+  }
+  send(connectionId, payload) {
+    // TODO, is this correct?
+    if (!payload) {
+      return null
+    }
+    const clientExisted = this.#webSocketClients.send(
+      connectionId,
+      // payload is a Buffer
+      payload.toString('utf-8'),
+    )
+    return clientExisted
+  }
+  remove(connectionId) {
+    const clientExisted = this.#webSocketClients.close(connectionId)
+    return clientExisted
+  }
+}

package/src/events/websocket/http-routes/connections/connectionsRoutes.js ADDED Viewed

@@ -0,0 +1,70 @@
+import { log } from '@serverless/utils/log.js'
+import ConnectionsController from './ConnectionsController.js'
+export default function connectionsRoutes(webSocketClients) {
+  const connectionsController = new ConnectionsController(webSocketClients)
+  return [
+    {
+      async handler(request, h) {
+        const {
+          params: { connectionId },
+          payload,
+          url,
+        } = request
+        log.debug(`got POST to ${url}`)
+        const clientExisted = await connectionsController.send(
+          connectionId,
+          payload,
+        )
+        if (!clientExisted) {
+          return h.response(null).code(410)
+        }
+        log.debug(`sent data to connection:${connectionId}`)
+        return null
+      },
+      method: 'POST',
+      options: {
+        payload: {
+          parse: false,
+        },
+      },
+      path: '/@connections/{connectionId}',
+    },
+    {
+      handler(request, h) {
+        const {
+          params: { connectionId },
+          url,
+        } = request
+        log.debug(`got DELETE to ${url}`)
+        const clientExisted = connectionsController.remove(connectionId)
+        if (!clientExisted) {
+          return h.response(null).code(410)
+        }
+        log.debug(`closed connection:${connectionId}`)
+        return h.response(null).code(204)
+      },
+      method: 'DELETE',
+      options: {
+        payload: {
+          parse: false,
+        },
+      },
+      path: '/@connections/{connectionId}',
+    },
+  ]
+}

package/src/events/websocket/http-routes/connections/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { default } from './connectionsRoutes.js'

package/src/events/websocket/http-routes/index.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export { default as catchAllRoute } from './_catchAll/index.js'
2	+ export { default as connectionsRoutes } from './connections/index.js'

package/src/events/websocket/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { default } from './WebSocket.js'