gogrlx/nats-server
1
0
Fork 0
mirror of https://github.com/gogrlx/nats-server.git synced 2026-04-02 11:48:43 -07:00
Code Issues Packages Projects Releases Wiki Activity
Files
da91b0621864991f10076d785ef4703f4e30c929
nats-server/server
History
Ivan Kozlovic da91b06218 [FIXED] Websocket: Origin should be checked only if present 
There are 2 options, same_origin and allowed_origins that should
apply only to webbrowsers that set the Origin http header. If
the header is not present, the server should not fail direct
clients using websocket protocol, or leafnodes.

From spec:
https://datatracker.ietf.org/doc/html/rfc6455#section-1.6

   The WebSocket Protocol uses the origin model used by web browsers to
   restrict which web pages can contact a WebSocket server when the
   WebSocket Protocol is used from a web page.  Naturally, when the
   WebSocket Protocol is used by a dedicated client directly (i.e., not
   from a web page through a web browser), the origin model is not
   useful, as the client can provide any arbitrary origin string.

Resolves #2207

Signed-off-by: Ivan Kozlovic <ivan@synadia.com>
2021-05-11 18:37:16 -06:00
..
configs
Declare required JetStream resources in test
2021-04-16 15:21:35 -07:00
pse
FreeBSD fixes: %cpu scale; no-cgo for amd64
2020-11-24 23:04:50 -05:00
sysmem
Fixed Memory() for Windows
2020-05-19 14:15:11 -07:00
accounts_test.go
Return not ready for connection reason
2021-04-20 11:45:08 -07:00
accounts.go
Add in formal support for multiple JetStream domains across leafnodes.
2021-05-06 18:45:27 -06:00
auth_test.go
Run gofmt -s to simplify code
2021-04-09 15:18:06 -07:00
auth.go
Export the clientOpts structure
2021-05-07 15:51:31 +02:00
ciphersuites.go
Add TLS 1.3 (and new ciphers) in the tlsVersion output
2020-03-18 10:09:23 -06:00
client_test.go
Export the clientOpts structure
2021-05-07 15:51:31 +02:00
client.go
Export the clientOpts structure
2021-05-07 15:51:31 +02:00
closed_conns_test.go
System Account on by default.
2020-05-29 17:56:45 -07:00
config_check_test.go
Check errors when removing test directories and files
2021-04-07 11:09:47 -07:00
const.go
Bump version and skip test for now, will fix in followup PR.
2021-05-10 10:44:07 -07:00
consumer.go
Fix for failing test, we needed to account for consumers having filtered subjects configured but not really being filtered.
2021-05-10 17:01:31 -07:00
dirstore_test.go
[FIXED] MQTT: asset placement in origin cluster
2021-04-28 19:28:00 -06:00
dirstore.go
[added] disconnect of all clients and disable account on remove
2021-03-30 02:24:02 -04:00
disk_avail_windows.go
Separate out disk available for Windows
2020-10-31 12:56:27 -07:00
disk_avail.go
Unbreak FreeBSD compilation (syscall.Statfs_t) (#1734)
2020-11-22 20:00:37 -05:00
errors_test.go
Renaming IsErr to ErrorIs
2020-02-25 19:53:09 -05:00
errors.go
Fix for #2202
2021-05-11 13:12:10 -07:00
events_test.go
Do not propagate service import interest across GW and ROUTES
2021-04-15 11:34:36 -06:00
events.go
[added] filter system requests by JS domain
2021-05-07 18:58:40 -04:00
filestore_test.go
[FIXED] Under certain conditions with messages being auto-deleted we would not honor blk size properly.
2021-05-05 08:27:22 -07:00
filestore.go
Add in comments to help with usage
2021-05-05 08:58:14 -07:00
fuzz.go
Updated fuzzer
2020-11-17 18:57:45 +00:00
gateway_test.go
[FIXED] MQTT fixes and improvements
2021-05-04 20:48:14 -06:00
gateway.go
[FIXED] MQTT fixes and improvements
2021-05-04 20:48:14 -06:00
jetstream_api.go
[added] check for mirror stream return error when de dupe window is set
2021-05-10 19:57:17 -04:00
jetstream_cluster_test.go
Fix for #2202
2021-05-11 13:12:10 -07:00
jetstream_cluster.go
Fix data race
2021-05-10 17:29:24 -07:00
jetstream_events.go
add domain in JS advisories
2021-05-07 19:35:46 +02:00
jetstream_test.go
Fix for #2202
2021-05-11 13:12:10 -07:00
jetstream.go
Extend stream/consumer name validation to include more characters
2021-05-07 16:50:29 -06:00
jwt_test.go
Fixed some tests to manually close account resolver
2021-05-06 18:46:32 -06:00
jwt.go
[fixed] decorated jwt parsing issue by using same functionality of jwt
2021-05-04 23:04:51 -04:00
leafnode_test.go
Fix test
2021-05-06 18:46:32 -06:00
leafnode.go
Moved the JetStream logic for solicited leafnodes to after we receive first info.
2021-05-06 18:46:32 -06:00
log_test.go
Check errors when removing test directories and files
2021-04-07 11:09:47 -07:00
log.go
JetStream Clustering WIP
2021-01-14 01:14:52 -08:00
memstore_test.go
JetStream Clustering WIP
2021-01-14 01:14:52 -08:00
memstore.go
Change to report total deleted by default for stream info.
2021-04-12 18:10:11 -07:00
monitor_sort_opts.go
lint updates
2019-05-06 15:41:38 -07:00
monitor_test.go
[FIXED] Getting varz from the http endoint saw Subscriptions always double for each fetch.
2021-05-03 18:43:07 -07:00
monitor.go
[FIXED] Getting varz from the http endoint saw Subscriptions always double for each fetch.
2021-05-03 18:43:07 -07:00
mqtt_test.go
MQTT make session streams domain aware
2021-05-06 20:02:00 -06:00
mqtt.go
Don't need to store domain in mqttJSA structure
2021-05-07 11:29:46 -06:00
nkey_test.go
Check errors when removing test directories and files
2021-04-07 11:09:47 -07:00
nkey.go
[added] support for StrictSigningKeyUsage and updated jwt library (#1845)
2021-01-26 17:49:58 -05:00
norace_test.go
Fix flapper
2021-04-19 11:43:43 -07:00
opts_test.go
Fixed flappers
2021-05-10 16:54:33 -06:00
opts.go
Detect if perm subjects have queue group qualifiers.
2021-05-07 06:27:43 -07:00
parser_test.go
[CHANGED] Enforce max_control_line for client connections only
2021-01-26 15:33:39 -07:00
parser.go
Add in formal support for multiple JetStream domains across leafnodes.
2021-05-06 18:45:27 -06:00
ping_test.go
Fixed TestPing test
2020-06-12 10:03:47 -06:00
raft.go
Fixed bug that could cause raft group to spin trying to catchup.
2021-05-07 09:13:18 -07:00
reload_test.go
Check errors when removing test directories and files
2021-04-07 11:09:47 -07:00
reload.go
[fixed] issue with concurrent account fetch when account was incomplete (#2067)
2021-04-06 12:43:10 -04:00
ring_test.go
ring buffer test
2018-10-06 14:06:14 -07:00
ring.go
Adding an option to include subscription details in monitoring responses.
2020-03-23 12:25:51 -04:00
route.go
Export the clientOpts structure
2021-05-07 15:51:31 +02:00
routes_test.go
Return not ready for connection reason
2021-04-20 11:45:08 -07:00
sendq.go
Changed stream sendq to linked list outq.
2021-03-04 17:19:50 -08:00
server_test.go
Force server name to be set if mqtt{} defined
2021-05-05 13:17:53 -06:00
server.go
Add in support for JetStream domains.
2021-05-06 18:46:32 -06:00
service_test.go
Return not ready for connection reason
2021-04-20 11:45:08 -07:00
service_windows.go
Shutdown on Ctrl+C
2019-11-14 20:05:32 -07:00
service.go
Update license to Apache 2
2018-03-15 22:31:07 -07:00
signal_test.go
Check errors when removing test directories and files
2021-04-07 11:09:47 -07:00
signal_windows.go
Shutdown on Ctrl+C
2019-11-14 20:05:32 -07:00
signal.go
Make SIGTERM exit 1
2021-04-12 10:17:13 -07:00
split_test.go
Refactor async client tests
2019-12-12 11:58:24 -07:00
store.go
Change to report total deleted by default for stream info.
2021-04-12 18:10:11 -07:00
stream.go
Fix for #2202
2021-05-11 13:12:10 -07:00
sublist_test.go
[FIXED] Return no match result if subject contains empty token
2021-01-28 17:43:22 -07:00
sublist.go
Check for bad domain names
2021-05-06 19:41:43 -07:00
test_test.go
Add in support for JetStream domains.
2021-05-06 18:46:32 -06:00
trust_test.go
Check errors when removing test directories and files
2021-04-07 11:09:47 -07:00
util_test.go
unexported import of Comma function from humanize
2020-05-19 14:16:03 -07:00
util.go
Inhibit Go's default TCP keepalive settings for NATS (#1562)
2020-08-14 13:37:59 -04:00
websocket_test.go
[FIXED] Websocket: Origin should be checked only if present
2021-05-11 18:37:16 -06:00
websocket.go
[FIXED] Websocket: Origin should be checked only if present
2021-05-11 18:37:16 -06:00