npm - serverless-offline - Versions diffs - 8.8.0 → 9.1.0 - Mend

serverless-offline 8.8.0 → 9.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (233) hide show

package/README.md +12 -11
package/package.json +33 -58
package/src/ServerlessOffline.js +409 -0
package/src/config/commandOptions.js +159 -0
package/src/config/constants.js +22 -0
package/{dist → src}/config/defaultOptions.js +9 -17
package/src/config/index.js +4 -0
package/src/config/supportedRuntimes.js +47 -0
package/src/events/authCanExecuteResource.js +35 -0
package/src/events/authFunctionNameExtractor.js +75 -0
package/src/events/authMatchPolicyResource.js +71 -0
package/src/events/authValidateContext.js +51 -0
package/src/events/http/Endpoint.js +135 -0
package/src/events/http/Http.js +50 -0
package/src/events/http/HttpEventDefinition.js +20 -0
package/src/events/http/HttpServer.js +1242 -0
package/src/events/http/OfflineEndpoint.js +33 -0
package/src/events/http/authJWTSettingsExtractor.js +70 -0
package/src/events/http/createAuthScheme.js +176 -0
package/src/events/http/createJWTAuthScheme.js +106 -0
package/src/events/http/index.js +1 -0
package/src/events/http/javaHelpers.js +102 -0
package/src/events/http/lambda-events/LambdaIntegrationEvent.js +57 -0
package/src/events/http/lambda-events/LambdaProxyIntegrationEvent.js +233 -0
package/src/events/http/lambda-events/LambdaProxyIntegrationEventV2.js +190 -0
package/src/events/http/lambda-events/VelocityContext.js +147 -0
package/src/events/http/lambda-events/index.js +4 -0
package/src/events/http/lambda-events/renderVelocityTemplateObject.js +93 -0
package/{dist → src}/events/http/parseResources.js +73 -78
package/src/events/http/payloadSchemaValidator.js +13 -0
package/{dist → src}/events/http/templates/offline-default.req.vm +0 -0
package/{dist → src}/events/http/templates/offline-default.res.vm +0 -0
package/src/events/schedule/Schedule.js +131 -0
package/src/events/schedule/ScheduleEvent.js +18 -0
package/src/events/schedule/ScheduleEventDefinition.js +21 -0
package/src/events/schedule/index.js +1 -0
package/src/events/websocket/HttpServer.js +69 -0
package/src/events/websocket/WebSocket.js +52 -0
package/src/events/websocket/WebSocketClients.js +462 -0
package/src/events/websocket/WebSocketEventDefinition.js +18 -0
package/src/events/websocket/WebSocketServer.js +73 -0
package/src/events/websocket/http-routes/_catchAll/catchAllRoute.js +16 -0
package/src/events/websocket/http-routes/_catchAll/index.js +1 -0
package/src/events/websocket/http-routes/connections/ConnectionsController.js +28 -0
package/src/events/websocket/http-routes/connections/connectionsRoutes.js +70 -0
package/src/events/websocket/http-routes/connections/index.js +1 -0
package/src/events/websocket/http-routes/index.js +2 -0
package/src/events/websocket/index.js +1 -0
package/src/events/websocket/lambda-events/WebSocketAuthorizerEvent.js +65 -0
package/src/events/websocket/lambda-events/WebSocketConnectEvent.js +68 -0
package/src/events/websocket/lambda-events/WebSocketDisconnectEvent.js +31 -0
package/src/events/websocket/lambda-events/WebSocketEvent.js +29 -0
package/src/events/websocket/lambda-events/WebSocketRequestContext.js +67 -0
package/src/events/websocket/lambda-events/index.js +4 -0
package/src/index.js +12 -0
package/src/lambda/HttpServer.js +108 -0
package/src/lambda/Lambda.js +68 -0
package/src/lambda/LambdaContext.js +33 -0
package/src/lambda/LambdaFunction.js +309 -0
package/src/lambda/LambdaFunctionPool.js +109 -0
package/src/lambda/__tests__/LambdaContext.test.js +30 -0
package/src/lambda/__tests__/LambdaFunction.test.js +196 -0
package/src/lambda/__tests__/fixtures/Lambda/LambdaFunctionThatReturnsJSONObject.fixture.js +47 -0
package/src/lambda/__tests__/fixtures/Lambda/LambdaFunctionThatReturnsNativeString.fixture.js +46 -0
package/src/lambda/__tests__/fixtures/Lambda/package.json +3 -0
package/src/lambda/__tests__/fixtures/lambdaFunction.fixture.js +145 -0
package/src/lambda/__tests__/fixtures/package.json +3 -0
package/src/lambda/__tests__/routes/invocations/InvocationsController.test.js +42 -0
package/src/lambda/handler-runner/HandlerRunner.js +136 -0
package/src/lambda/handler-runner/child-process-runner/ChildProcessRunner.js +72 -0
package/src/lambda/handler-runner/child-process-runner/childProcessHelper.js +42 -0
package/src/lambda/handler-runner/child-process-runner/index.js +1 -0
package/src/lambda/handler-runner/docker-runner/DockerContainer.js +417 -0
package/src/lambda/handler-runner/docker-runner/DockerImage.js +35 -0
package/src/lambda/handler-runner/docker-runner/DockerRunner.js +63 -0
package/src/lambda/handler-runner/docker-runner/index.js +1 -0
package/src/lambda/handler-runner/go-runner/GoRunner.js +167 -0
package/src/lambda/handler-runner/go-runner/index.js +1 -0
package/src/lambda/handler-runner/in-process-runner/InProcessRunner.js +125 -0
package/src/lambda/handler-runner/in-process-runner/index.js +1 -0
package/src/lambda/handler-runner/index.js +1 -0
package/src/lambda/handler-runner/java-runner/JavaRunner.js +114 -0
package/src/lambda/handler-runner/java-runner/index.js +1 -0
package/src/lambda/handler-runner/python-runner/PythonRunner.js +138 -0
package/src/lambda/handler-runner/python-runner/index.js +1 -0
package/{dist → src}/lambda/handler-runner/python-runner/invoke.py +0 -0
package/src/lambda/handler-runner/ruby-runner/RubyRunner.js +107 -0
package/src/lambda/handler-runner/ruby-runner/index.js +1 -0
package/{dist → src}/lambda/handler-runner/ruby-runner/invoke.rb +0 -0
package/src/lambda/handler-runner/worker-thread-runner/WorkerThreadRunner.js +70 -0
package/src/lambda/handler-runner/worker-thread-runner/index.js +1 -0
package/src/lambda/handler-runner/worker-thread-runner/workerThreadHelper.js +29 -0
package/src/lambda/index.js +1 -0
package/src/lambda/routes/index.js +2 -0
package/src/lambda/routes/invocations/InvocationsController.js +102 -0
package/src/lambda/routes/invocations/index.js +1 -0
package/src/lambda/routes/invocations/invocationsRoute.js +77 -0
package/src/lambda/routes/invoke-async/InvokeAsyncController.js +20 -0
package/src/lambda/routes/invoke-async/index.js +1 -0
package/src/lambda/routes/invoke-async/invokeAsyncRoute.js +33 -0
package/src/utils/__tests__/createUniqueId.test.js +18 -0
package/src/utils/__tests__/formatToClfTime.test.js +14 -0
package/src/utils/__tests__/generateHapiPath.test.js +46 -0
package/src/utils/__tests__/lowerCaseKeys.test.js +30 -0
package/src/utils/__tests__/parseHeaders.test.js +13 -0
package/src/utils/__tests__/parseMultiValueHeaders.test.js +24 -0
package/src/utils/__tests__/parseMultiValueQueryStringParameters.test.js +159 -0
package/src/utils/__tests__/parseQueryStringParameters.test.js +15 -0
package/src/utils/__tests__/splitHandlerPathAndName.test.js +54 -0
package/src/utils/__tests__/unflatten.test.js +32 -0
package/src/utils/checkDockerDaemon.js +19 -0
package/src/utils/checkGoVersion.js +16 -0
package/src/utils/createApiKey.js +5 -0
package/src/utils/createUniqueId.js +5 -0
package/src/utils/detectExecutable.js +11 -0
package/{dist → src}/utils/formatToClfTime.js +6 -14
package/src/utils/generateHapiPath.js +26 -0
package/src/utils/getHttpApiCorsConfig.js +28 -0
package/src/utils/index.js +42 -0
package/src/utils/jsonPath.js +13 -0
package/src/utils/logRoutes.js +64 -0
package/src/utils/lowerCaseKeys.js +6 -0
package/src/utils/parseHeaders.js +14 -0
package/src/utils/parseMultiValueHeaders.js +27 -0
package/src/utils/parseMultiValueQueryStringParameters.js +31 -0
package/src/utils/parseQueryStringParameters.js +15 -0
package/src/utils/splitHandlerPathAndName.js +31 -0
package/src/utils/unflatten.js +11 -0
package/dist/ServerlessOffline.js +0 -514
package/dist/config/commandOptions.js +0 -149
package/dist/config/constants.js +0 -30
package/dist/config/index.js +0 -55
package/dist/config/supportedRuntimes.js +0 -40
package/dist/debugLog.js +0 -12
package/dist/events/authCanExecuteResource.js +0 -35
package/dist/events/authFunctionNameExtractor.js +0 -87
package/dist/events/authMatchPolicyResource.js +0 -62
package/dist/events/authValidateContext.js +0 -53
package/dist/events/http/Endpoint.js +0 -173
package/dist/events/http/Http.js +0 -77
package/dist/events/http/HttpEventDefinition.js +0 -36
package/dist/events/http/HttpServer.js +0 -1370
package/dist/events/http/OfflineEndpoint.js +0 -38
package/dist/events/http/authJWTSettingsExtractor.js +0 -76
package/dist/events/http/createAuthScheme.js +0 -184
package/dist/events/http/createJWTAuthScheme.js +0 -159
package/dist/events/http/index.js +0 -15
package/dist/events/http/javaHelpers.js +0 -99
package/dist/events/http/lambda-events/LambdaIntegrationEvent.js +0 -87
package/dist/events/http/lambda-events/LambdaProxyIntegrationEvent.js +0 -246
package/dist/events/http/lambda-events/LambdaProxyIntegrationEventV2.js +0 -225
package/dist/events/http/lambda-events/VelocityContext.js +0 -170
package/dist/events/http/lambda-events/index.js +0 -39
package/dist/events/http/lambda-events/renderVelocityTemplateObject.js +0 -111
package/dist/events/http/payloadSchemaValidator.js +0 -13
package/dist/events/schedule/Schedule.js +0 -183
package/dist/events/schedule/ScheduleEvent.js +0 -27
package/dist/events/schedule/ScheduleEventDefinition.js +0 -36
package/dist/events/schedule/index.js +0 -15
package/dist/events/websocket/HttpServer.js +0 -114
package/dist/events/websocket/WebSocket.js +0 -78
package/dist/events/websocket/WebSocketClients.js +0 -577
package/dist/events/websocket/WebSocketEventDefinition.js +0 -32
package/dist/events/websocket/WebSocketServer.js +0 -139
package/dist/events/websocket/http-routes/_catchAll/catchAllRoute.js +0 -33
package/dist/events/websocket/http-routes/_catchAll/index.js +0 -15
package/dist/events/websocket/http-routes/connections/ConnectionsController.js +0 -45
package/dist/events/websocket/http-routes/connections/connectionsRoutes.js +0 -95
package/dist/events/websocket/http-routes/connections/index.js +0 -15
package/dist/events/websocket/http-routes/index.js +0 -23
package/dist/events/websocket/index.js +0 -15
package/dist/events/websocket/lambda-events/WebSocketAuthorizerEvent.js +0 -99
package/dist/events/websocket/lambda-events/WebSocketConnectEvent.js +0 -101
package/dist/events/websocket/lambda-events/WebSocketDisconnectEvent.js +0 -47
package/dist/events/websocket/lambda-events/WebSocketEvent.js +0 -54
package/dist/events/websocket/lambda-events/WebSocketRequestContext.js +0 -98
package/dist/events/websocket/lambda-events/index.js +0 -39
package/dist/index.js +0 -15
package/dist/lambda/HttpServer.js +0 -124
package/dist/lambda/Lambda.js +0 -117
package/dist/lambda/LambdaContext.js +0 -53
package/dist/lambda/LambdaFunction.js +0 -390
package/dist/lambda/LambdaFunctionPool.js +0 -127
package/dist/lambda/handler-runner/HandlerRunner.js +0 -195
package/dist/lambda/handler-runner/child-process-runner/ChildProcessRunner.js +0 -124
package/dist/lambda/handler-runner/child-process-runner/childProcessHelper.js +0 -49
package/dist/lambda/handler-runner/child-process-runner/index.js +0 -15
package/dist/lambda/handler-runner/docker-runner/DockerContainer.js +0 -515
package/dist/lambda/handler-runner/docker-runner/DockerImage.js +0 -67
package/dist/lambda/handler-runner/docker-runner/DockerRunner.js +0 -74
package/dist/lambda/handler-runner/docker-runner/index.js +0 -15
package/dist/lambda/handler-runner/go-runner/GoRunner.js +0 -230
package/dist/lambda/handler-runner/go-runner/index.js +0 -15
package/dist/lambda/handler-runner/in-process-runner/InProcessRunner.js +0 -228
package/dist/lambda/handler-runner/in-process-runner/index.js +0 -15
package/dist/lambda/handler-runner/index.js +0 -15
package/dist/lambda/handler-runner/java-runner/JavaRunner.js +0 -153
package/dist/lambda/handler-runner/java-runner/index.js +0 -15
package/dist/lambda/handler-runner/python-runner/PythonRunner.js +0 -185
package/dist/lambda/handler-runner/python-runner/index.js +0 -15
package/dist/lambda/handler-runner/ruby-runner/RubyRunner.js +0 -147
package/dist/lambda/handler-runner/ruby-runner/index.js +0 -15
package/dist/lambda/handler-runner/worker-thread-runner/WorkerThreadRunner.js +0 -92
package/dist/lambda/handler-runner/worker-thread-runner/index.js +0 -15
package/dist/lambda/handler-runner/worker-thread-runner/workerThreadHelper.js +0 -31
package/dist/lambda/index.js +0 -15
package/dist/lambda/routes/index.js +0 -23
package/dist/lambda/routes/invocations/InvocationsController.js +0 -142
package/dist/lambda/routes/invocations/index.js +0 -15
package/dist/lambda/routes/invocations/invocationsRoute.js +0 -90
package/dist/lambda/routes/invoke-async/InvokeAsyncController.js +0 -38
package/dist/lambda/routes/invoke-async/index.js +0 -15
package/dist/lambda/routes/invoke-async/invokeAsyncRoute.js +0 -43
package/dist/main.js +0 -11
package/dist/serverlessLog.js +0 -91
package/dist/utils/checkDockerDaemon.js +0 -27
package/dist/utils/checkGoVersion.js +0 -27
package/dist/utils/createApiKey.js +0 -12
package/dist/utils/createUniqueId.js +0 -14
package/dist/utils/detectExecutable.js +0 -21
package/dist/utils/generateHapiPath.js +0 -28
package/dist/utils/getHttpApiCorsConfig.js +0 -40
package/dist/utils/index.js +0 -165
package/dist/utils/jsonPath.js +0 -21
package/dist/utils/lowerCaseKeys.js +0 -14
package/dist/utils/parseHeaders.js +0 -23
package/dist/utils/parseMultiValueHeaders.js +0 -36
package/dist/utils/parseMultiValueQueryStringParameters.js +0 -40
package/dist/utils/parseQueryStringParameters.js +0 -26
package/dist/utils/resolveJoins.js +0 -36
package/dist/utils/satisfiesVersionRange.js +0 -20
package/dist/utils/splitHandlerPathAndName.js +0 -37
package/dist/utils/unflatten.js +0 -18

package/src/events/websocket/WebSocketClients.js ADDED Viewed

@@ -0,0 +1,462 @@
+import { WebSocket } from 'ws'
+import { isBoom } from '@hapi/boom'
+import { log } from '@serverless/utils/log.js'
+import {
+  WebSocketAuthorizerEvent,
+  WebSocketConnectEvent,
+  WebSocketDisconnectEvent,
+  WebSocketEvent,
+} from './lambda-events/index.js'
+import authCanExecuteResource from '../authCanExecuteResource.js'
+import authFunctionNameExtractor from '../authFunctionNameExtractor.js'
+import authValidateContext from '../authValidateContext.js'
+import {
+  DEFAULT_WEBSOCKETS_API_ROUTE_SELECTION_EXPRESSION,
+  DEFAULT_WEBSOCKETS_ROUTE,
+} from '../../config/index.js'
+import { jsonPath } from '../../utils/index.js'
+const { parse, stringify } = JSON
+export default class WebSocketClients {
+  #clients = new Map()
+  #hardTimeouts = new WeakMap()
+  #idleTimeouts = new WeakMap()
+  #lambda = null
+  #options = null
+  #serverless = null
+  #webSocketAuthorizers = new Map()
+  #webSocketAuthorizersCache = new Map()
+  #webSocketRoutes = new Map()
+  #websocketsApiRouteSelectionExpression = null
+  constructor(serverless, options, lambda) {
+    this.#lambda = lambda
+    this.#options = options
+    this.#serverless = serverless
+    this.#websocketsApiRouteSelectionExpression =
+      serverless.service.provider.websocketsApiRouteSelectionExpression ||
+      DEFAULT_WEBSOCKETS_API_ROUTE_SELECTION_EXPRESSION
+  }
+  #addWebSocketClient(client, connectionId) {
+    this.#clients.set(client, connectionId)
+    this.#clients.set(connectionId, client)
+    this.#onWebSocketUsed(connectionId)
+    this.#addHardTimeout(client, connectionId)
+  }
+  #removeWebSocketClient(client) {
+    const connectionId = this.#clients.get(client)
+    this.#clients.delete(client)
+    this.#clients.delete(connectionId)
+    return connectionId
+  }
+  #getWebSocketClient(connectionId) {
+    return this.#clients.get(connectionId)
+  }
+  #addHardTimeout(client, connectionId) {
+    const timeoutId = setTimeout(() => {
+      log.debug(`timeout:hard:${connectionId}`)
+      client.close(1001, 'Going away')
+    }, this.#options.webSocketHardTimeout * 1000)
+    this.#hardTimeouts.set(client, timeoutId)
+  }
+  #clearHardTimeout(client) {
+    const timeoutId = this.#hardTimeouts.get(client)
+    clearTimeout(timeoutId)
+  }
+  #onWebSocketUsed(connectionId) {
+    const client = this.#getWebSocketClient(connectionId)
+    this.#clearIdleTimeout(client)
+    log.debug(`timeout:idle:${connectionId}:reset`)
+    const timeoutId = setTimeout(() => {
+      log.debug(`timeout:idle:${connectionId}:trigger`)
+      client.close(1001, 'Going away')
+    }, this.#options.webSocketIdleTimeout * 1000)
+    this.#idleTimeouts.set(client, timeoutId)
+  }
+  #clearIdleTimeout(client) {
+    const timeoutId = this.#idleTimeouts.get(client)
+    clearTimeout(timeoutId)
+  }
+  async verifyClient(connectionId, request) {
+    const routeName = '$connect'
+    const route = this.#webSocketRoutes.get(routeName)
+    if (!route) {
+      return {
+        statusCode: 502,
+        verified: false,
+      }
+    }
+    const connectEvent = new WebSocketConnectEvent(
+      connectionId,
+      request,
+      this.#options,
+    ).create()
+    const authFunName = this.#webSocketAuthorizers.get(routeName)
+    if (authFunName) {
+      const authorizerFunction = this.#lambda.get(authFunName)
+      const authorizeEvent = new WebSocketAuthorizerEvent(
+        connectionId,
+        request,
+        this.#serverless.service.provider,
+        this.#options,
+      ).create()
+      authorizerFunction.setEvent(authorizeEvent)
+      log.notice()
+      log.notice(
+        `Running Authorization function for ${routeName} (λ: ${authFunName})`,
+      )
+      try {
+        const result = await authorizerFunction.runHandler()
+        if (result === 'Unauthorized') {
+          return {
+            statusCode: 401,
+            verified: false,
+          }
+        }
+        const policy = result
+        // Validate that the policy document has the principalId set
+        if (!policy.principalId) {
+          log.notice(
+            `Authorization response did not include a principalId: (λ: ${authFunName})`,
+          )
+          return {
+            statusCode: 403,
+            verified: false,
+          }
+        }
+        if (
+          !authCanExecuteResource(
+            policy.policyDocument,
+            authorizeEvent.methodArn,
+          )
+        ) {
+          log.notice(
+            `Authorization response didn't authorize user to access resource: (λ: ${authFunName})`,
+          )
+          return {
+            statusCode: 403,
+            verified: false,
+          }
+        }
+        log.notice(
+          `Authorization function returned a successful response: (λ: ${authFunName})`,
+        )
+        if (policy.context) {
+          const validatedContext = authValidateContext(
+            policy.context,
+            authorizerFunction,
+          )
+          if (validatedContext instanceof Error) throw validatedContext
+          policy.context = validatedContext
+        }
+        this.#webSocketAuthorizersCache.set(connectionId, {
+          authorizer: {
+            integrationLatency: '42',
+            principalId: policy.principalId,
+            ...policy.context,
+          },
+          identity: {
+            apiKey: policy.usageIdentifierKey,
+            sourceIp: authorizeEvent.requestContext.sourceIp,
+            userAgent: authorizeEvent.headers['user-agent'] || '',
+          },
+        })
+      } catch (err) {
+        log.debug(`Error in route handler '${routeName}' authorizer`, err)
+        let headers = []
+        let message
+        if (isBoom(err)) {
+          headers = err.output.headers
+          message = err.output.payload.message
+        }
+        return {
+          headers,
+          message,
+          statusCode: 500,
+          verified: false,
+        }
+      }
+    }
+    const authorizerData = this.#webSocketAuthorizersCache.get(connectionId)
+    if (authorizerData) {
+      connectEvent.requestContext.identity = authorizerData.identity
+      connectEvent.requestContext.authorizer = authorizerData.authorizer
+    }
+    const lambdaFunction = this.#lambda.get(route.functionKey)
+    lambdaFunction.setEvent(connectEvent)
+    try {
+      const { statusCode } = await lambdaFunction.runHandler()
+      const verified = statusCode >= 200 && statusCode < 300
+      return {
+        statusCode,
+        verified,
+      }
+    } catch (err) {
+      this.#webSocketAuthorizersCache.delete(connectionId)
+      log.debug(`Error in route handler '${route.functionKey}'`, err)
+      return {
+        statusCode: 502,
+        verified: false,
+      }
+    }
+  }
+  async #processEvent(websocketClient, connectionId, routeKey, event) {
+    let route = this.#webSocketRoutes.get(routeKey)
+    if (!route && routeKey !== '$disconnect') {
+      route = this.#webSocketRoutes.get('$default')
+    }
+    if (!route) {
+      return
+    }
+    const sendError = (err) => {
+      if (websocketClient.readyState === WebSocket.OPEN) {
+        websocketClient.send(
+          stringify({
+            connectionId,
+            message: 'Internal server error',
+            requestId: '1234567890',
+          }),
+        )
+      }
+      log.debug(`Error in route handler '${route.functionKey}'`, err)
+    }
+    const authorizerData = this.#webSocketAuthorizersCache.get(connectionId)
+    let authorizedEvent
+    if (authorizerData) {
+      authorizedEvent = event
+      authorizedEvent.requestContext.identity = authorizerData.identity
+      authorizedEvent.requestContext.authorizer = authorizerData.authorizer
+    }
+    const lambdaFunction = this.#lambda.get(route.functionKey)
+    lambdaFunction.setEvent(authorizedEvent || event)
+    try {
+      const { body } = await lambdaFunction.runHandler()
+      if (
+        body &&
+        routeKey !== '$disconnect' &&
+        route.definition.routeResponseSelectionExpression === '$default'
+      ) {
+        // https://docs.aws.amazon.com/apigateway/latest/developerguide/apigateway-websocket-api-selection-expressions.html#apigateway-websocket-api-route-response-selection-expressions
+        // TODO: Once API gateway supports RouteResponses, this will need to change to support that functionality
+        // For now, send body back to the client
+        this.send(connectionId, body)
+      }
+    } catch (err) {
+      log.error(err)
+      sendError(err)
+    }
+  }
+  #getRoute(value) {
+    let json
+    try {
+      json = parse(value)
+    } catch {
+      return DEFAULT_WEBSOCKETS_ROUTE
+    }
+    const routeSelectionExpression =
+      this.#websocketsApiRouteSelectionExpression.replace('request.body', '')
+    const route = jsonPath(json, routeSelectionExpression)
+    if (typeof route !== 'string') {
+      return DEFAULT_WEBSOCKETS_ROUTE
+    }
+    return route || DEFAULT_WEBSOCKETS_ROUTE
+  }
+  addClient(webSocketClient, connectionId) {
+    this.#addWebSocketClient(webSocketClient, connectionId)
+    webSocketClient.on('close', () => {
+      log.debug(`disconnect:${connectionId}`)
+      this.#removeWebSocketClient(webSocketClient)
+      const disconnectEvent = new WebSocketDisconnectEvent(
+        connectionId,
+      ).create()
+      this.#clearHardTimeout(webSocketClient)
+      this.#clearIdleTimeout(webSocketClient)
+      const authorizerData = this.#webSocketAuthorizersCache.get(connectionId)
+      if (authorizerData) {
+        disconnectEvent.requestContext.identity = authorizerData.identity
+        disconnectEvent.requestContext.authorizer = authorizerData.authorizer
+      }
+      this.#processEvent(
+        webSocketClient,
+        connectionId,
+        '$disconnect',
+        disconnectEvent,
+      ).finally(() => this.#webSocketAuthorizersCache.delete(connectionId))
+    })
+    webSocketClient.on('message', (data, isBinary) => {
+      const message = isBinary ? data : String(data)
+      log.debug(`message:${message}`)
+      const route = this.#getRoute(message)
+      log.debug(`route:${route} on connection=${connectionId}`)
+      const event = new WebSocketEvent(connectionId, route, message).create()
+      const authorizerData = this.#webSocketAuthorizersCache.get(connectionId)
+      if (authorizerData) {
+        event.requestContext.identity = authorizerData.identity
+        event.requestContext.authorizer = authorizerData.authorizer
+      }
+      this.#onWebSocketUsed(connectionId)
+      this.#processEvent(webSocketClient, connectionId, route, event)
+    })
+  }
+  #extractAuthFunctionName(endpoint) {
+    if (
+      typeof endpoint.authorizer === 'object' &&
+      endpoint.authorizer.type &&
+      endpoint.authorizer.type.toUpperCase() === 'TOKEN'
+    ) {
+      log.debug(`Websockets does not support the TOKEN authorization type`)
+      return null
+    }
+    const result = authFunctionNameExtractor(endpoint)
+    return result.unsupportedAuth ? null : result.authorizerName
+  }
+  #configureAuthorization(endpoint, functionKey) {
+    if (!endpoint.authorizer) {
+      return
+    }
+    if (endpoint.route === '$connect') {
+      const authFunctionName = this.#extractAuthFunctionName(endpoint)
+      if (!authFunctionName) {
+        return
+      }
+      log.notice(
+        `Configuring Authorization: ${functionKey} ${authFunctionName}`,
+      )
+      const authFunction =
+        this.#serverless.service.getFunction(authFunctionName)
+      if (!authFunction) {
+        log.error(`Authorization function ${authFunctionName} does not exist`)
+        return
+      }
+      this.#webSocketAuthorizers.set(endpoint.route, authFunctionName)
+      return
+    }
+    log.notice(`Configuring Authorization is supported only on $connect route`)
+  }
+  addRoute(functionKey, definition) {
+    // set the route name
+    this.#webSocketRoutes.set(definition.route, {
+      definition,
+      functionKey,
+    })
+    if (!this.#options.noAuth) {
+      this.#configureAuthorization(definition, functionKey)
+    }
+    log.notice(`route '${definition.route} (λ: ${functionKey})'`)
+  }
+  close(connectionId) {
+    const client = this.#getWebSocketClient(connectionId)
+    if (client) {
+      client.close()
+      return true
+    }
+    return false
+  }
+  send(connectionId, payload) {
+    const client = this.#getWebSocketClient(connectionId)
+    if (client) {
+      this.#onWebSocketUsed(connectionId)
+      client.send(payload)
+      return true
+    }
+    return false
+  }
+}

package/src/events/websocket/WebSocketEventDefinition.js ADDED Viewed

@@ -0,0 +1,18 @@
+const { assign } = Object
+export default class WebSocketEventDefinition {
+  constructor(rawWebSocketEventDefinition) {
+    let rest
+    let route
+    if (typeof rawWebSocketEventDefinition === 'string') {
+      route = rawWebSocketEventDefinition
+    } else {
+      ;({ route, ...rest } = rawWebSocketEventDefinition)
+    }
+    this.route = route
+    assign(this, rest)
+  }
+}

package/src/events/websocket/WebSocketServer.js ADDED Viewed

@@ -0,0 +1,73 @@
+import { log } from '@serverless/utils/log.js'
+import { WebSocketServer as WsWebSocketServer } from 'ws'
+import { createUniqueId } from '../../utils/index.js'
+export default class WebSocketServer {
+  #connectionIds = new Map()
+  #options = null
+  #webSocketClients = null
+  constructor(options, webSocketClients, sharedServer) {
+    this.#options = options
+    this.#webSocketClients = webSocketClients
+    const server = new WsWebSocketServer({
+      server: sharedServer,
+      verifyClient: async ({ req }, cb) => {
+        const connectionId = createUniqueId()
+        const key = req.headers['sec-websocket-key']
+        log.debug(`verifyClient:${key} ${connectionId}`)
+        // use the websocket key to correlate connection IDs
+        this.#connectionIds.set(key, connectionId)
+        const { headers, message, statusCode, verified } =
+          await this.#webSocketClients.verifyClient(connectionId, req)
+        try {
+          if (!verified) {
+            cb(false, statusCode, message, headers)
+            return
+          }
+          cb(true)
+        } catch (err) {
+          log.debug(`Error verifying`, err)
+          cb(false)
+        }
+      },
+    })
+    server.on('connection', (webSocketClient, request) => {
+      log.notice('received connection')
+      const { headers } = request
+      const key = headers['sec-websocket-key']
+      const connectionId = this.#connectionIds.get(key)
+      log.debug(`connect:${connectionId}`)
+      this.#webSocketClients.addClient(webSocketClient, connectionId)
+    })
+  }
+  async start() {
+    const { host, httpsProtocol, websocketPort } = this.#options
+    log.notice(
+      `Offline [websocket] listening on ws${
+        httpsProtocol ? 's' : ''
+      }://${host}:${websocketPort}`,
+    )
+  }
+  // no-op, we're re-using the http server
+  stop() {}
+  addRoute(functionKey, webSocketEvent) {
+    this.#webSocketClients.addRoute(functionKey, webSocketEvent)
+  }
+}

package/src/events/websocket/http-routes/_catchAll/catchAllRoute.js ADDED Viewed

@@ -0,0 +1,16 @@
+import { log } from '@serverless/utils/log.js'
+export default function catchAllRoute() {
+  return {
+    handler(request, h) {
+      const { url } = request
+      log.debug(`got GET to ${url}`)
+      return h.response(null).code(426)
+    },
+    method: 'GET',
+    path: '/{path*}',
+  }
+}

package/src/events/websocket/http-routes/_catchAll/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { default } from './catchAllRoute.js'

package/src/events/websocket/http-routes/connections/ConnectionsController.js ADDED Viewed

@@ -0,0 +1,28 @@
+export default class ConnectionsController {
+  #webSocketClients = null
+  constructor(webSocketClients) {
+    this.#webSocketClients = webSocketClients
+  }
+  send(connectionId, payload) {
+    // TODO, is this correct?
+    if (!payload) {
+      return null
+    }
+    const clientExisted = this.#webSocketClients.send(
+      connectionId,
+      // payload is a Buffer
+      payload.toString('utf-8'),
+    )
+    return clientExisted
+  }
+  remove(connectionId) {
+    const clientExisted = this.#webSocketClients.close(connectionId)
+    return clientExisted
+  }
+}

package/src/events/websocket/http-routes/connections/connectionsRoutes.js ADDED Viewed

@@ -0,0 +1,70 @@
+import { log } from '@serverless/utils/log.js'
+import ConnectionsController from './ConnectionsController.js'
+export default function connectionsRoutes(webSocketClients) {
+  const connectionsController = new ConnectionsController(webSocketClients)
+  return [
+    {
+      async handler(request, h) {
+        const {
+          params: { connectionId },
+          payload,
+          url,
+        } = request
+        log.debug(`got POST to ${url}`)
+        const clientExisted = await connectionsController.send(
+          connectionId,
+          payload,
+        )
+        if (!clientExisted) {
+          return h.response(null).code(410)
+        }
+        log.debug(`sent data to connection:${connectionId}`)
+        return null
+      },
+      method: 'POST',
+      options: {
+        payload: {
+          parse: false,
+        },
+      },
+      path: '/@connections/{connectionId}',
+    },
+    {
+      handler(request, h) {
+        const {
+          params: { connectionId },
+          url,
+        } = request
+        log.debug(`got DELETE to ${url}`)
+        const clientExisted = connectionsController.remove(connectionId)
+        if (!clientExisted) {
+          return h.response(null).code(410)
+        }
+        log.debug(`closed connection:${connectionId}`)
+        return h.response(null).code(204)
+      },
+      method: 'DELETE',
+      options: {
+        payload: {
+          parse: false,
+        },
+      },
+      path: '/@connections/{connectionId}',
+    },
+  ]
+}

package/src/events/websocket/http-routes/connections/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { default } from './connectionsRoutes.js'

package/src/events/websocket/http-routes/index.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export { default as catchAllRoute } from './_catchAll/index.js'
2	+ export { default as connectionsRoutes } from './connections/index.js'

package/src/events/websocket/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { default } from './WebSocket.js'