2008-09-30 17:50:42 -07:00
|
|
|
function handleRequest(request, response)
|
|
|
|
|
{
|
|
|
|
|
try {
|
|
|
|
|
var query = {};
|
|
|
|
|
request.queryString.split('&').forEach(function (val) {
|
2008-09-30 17:52:52 -07:00
|
|
|
[name, value] = val.split('=');
|
2008-09-30 17:50:42 -07:00
|
|
|
query[name] = unescape(value);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
var isPreflight = request.method == "OPTIONS";
|
|
|
|
|
|
|
|
|
|
// Check that request was correct
|
|
|
|
|
if (!isPreflight && "headers" in query) {
|
|
|
|
|
headers = eval(query.headers);
|
|
|
|
|
for(headerName in headers) {
|
|
|
|
|
if (request.getHeader(headerName) != headers[headerName]) {
|
|
|
|
|
throw "Header " + headerName + " had wrong value. Expected " +
|
|
|
|
|
headers[headerName] + " got " + request.getHeader(headerName);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
if (isPreflight && "requestHeaders" in query &&
|
|
|
|
|
request.getHeader("Access-Control-Request-Headers") != query.requestHeaders) {
|
|
|
|
|
throw "Access-Control-Request-Headers had wrong value. Expected " +
|
|
|
|
|
query.requestHeaders + " got " +
|
|
|
|
|
request.getHeader("Access-Control-Request-Headers");
|
|
|
|
|
}
|
|
|
|
|
if (isPreflight && "requestMethod" in query &&
|
|
|
|
|
request.getHeader("Access-Control-Request-Method") != query.requestMethod) {
|
|
|
|
|
throw "Access-Control-Request-Method had wrong value. Expected " +
|
|
|
|
|
query.requestMethod + " got " +
|
|
|
|
|
request.getHeader("Access-Control-Request-Method");
|
|
|
|
|
}
|
|
|
|
|
if ("origin" in query && request.getHeader("Origin") != query.origin) {
|
|
|
|
|
throw "Origin had wrong value. Expected " + query.origin + " got " +
|
|
|
|
|
request.getHeader("Origin");
|
|
|
|
|
}
|
2008-09-30 17:52:52 -07:00
|
|
|
if ("cookie" in query) {
|
|
|
|
|
cookies = {};
|
|
|
|
|
request.getHeader("Cookie").split(/ *; */).forEach(function (val) {
|
|
|
|
|
[name, value] = val.split('=');
|
|
|
|
|
cookies[name] = unescape(value);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
query.cookie.split(",").forEach(function (val) {
|
|
|
|
|
[name, value] = val.split('=');
|
|
|
|
|
if (cookies[name] != value) {
|
|
|
|
|
throw "Cookie " + name + " had wrong value. Expected " + value +
|
|
|
|
|
" got " + cookies[name];
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
if ("noCookie" in query && request.hasHeader("Cookie")) {
|
|
|
|
|
throw "Got cookies when didn't expect to";
|
|
|
|
|
}
|
2008-09-30 17:50:42 -07:00
|
|
|
|
|
|
|
|
|
|
|
|
|
// Send response
|
2008-09-30 17:54:04 -07:00
|
|
|
|
2008-09-30 17:50:42 -07:00
|
|
|
if (query.allowOrigin && (!isPreflight || !query.noAllowPreflight))
|
|
|
|
|
response.setHeader("Access-Control-Allow-Origin", query.allowOrigin);
|
|
|
|
|
|
2008-09-30 17:52:52 -07:00
|
|
|
if (query.allowCred)
|
|
|
|
|
response.setHeader("Access-Control-Allow-Credentials", "true");
|
|
|
|
|
|
|
|
|
|
if (query.setCookie)
|
|
|
|
|
response.setHeader("Set-Cookie", query.setCookie + "; path=/");
|
|
|
|
|
|
2008-09-30 17:50:42 -07:00
|
|
|
|
|
|
|
|
if (isPreflight) {
|
|
|
|
|
if (query.allowHeaders)
|
|
|
|
|
response.setHeader("Access-Control-Allow-Headers", query.allowHeaders);
|
|
|
|
|
|
|
|
|
|
if (query.allowMethods)
|
|
|
|
|
response.setHeader("Access-Control-Allow-Methods", query.allowMethods);
|
|
|
|
|
|
|
|
|
|
return;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
response.setHeader("Content-Type", "application/xml", false);
|
|
|
|
|
response.write("<res>hello pass</res>\n");
|
|
|
|
|
|
|
|
|
|
} catch (e) {
|
|
|
|
|
dump(e + "\n");
|
|
|
|
|
throw e;
|
|
|
|
|
}
|
|
|
|
|
}
|
