1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
|
function handleRequest(request, response) {
if (
(request.queryString == "test=user1_xhr" &&
request.hasHeader("Authorization") &&
request.getHeader("Authorization") == "Basic dXNlciAxOnBhc3N3b3JkIDE=") ||
(request.queryString == "test=user1_evtsrc" &&
request.hasHeader("Authorization") &&
request.getHeader("Authorization") == "Basic dXNlciAxOnBhc3N3b3JkIDE=")
) {
response.setStatusLine(null, 200, "OK");
response.setHeader("Content-Type", "text/event-stream", false);
response.setHeader(
"Access-Control-Allow-Origin",
"http://mochi.test:8888",
false
);
response.setHeader("Access-Control-Allow-Credentials", "true", false);
response.setHeader("Cache-Control", "no-cache, must-revalidate", false);
if (request.queryString == "test=user1_xhr") {
response.setHeader("Set-Cookie", "test=5c", false);
}
response.write("event: message\ndata: 1\n\n");
} else if (
(request.queryString == "test=user2_xhr" &&
request.hasHeader("Authorization") &&
request.getHeader("Authorization") == "Basic dXNlciAyOnBhc3N3b3JkIDI=") ||
(request.queryString == "test=user2_evtsrc" &&
request.hasHeader("Authorization") &&
request.getHeader("Authorization") == "Basic dXNlciAyOnBhc3N3b3JkIDI=" &&
request.hasHeader("Cookie") &&
request.getHeader("Cookie") == "test=5d")
) {
response.setStatusLine(null, 200, "OK");
response.setHeader("Content-Type", "text/event-stream", false);
response.setHeader(
"Access-Control-Allow-Origin",
"http://mochi.test:8888",
false
);
response.setHeader("Access-Control-Allow-Credentials", "true", false);
response.setHeader("Cache-Control", "no-cache, must-revalidate", false);
if (request.queryString == "test=user2_xhr") {
response.setHeader("Set-Cookie", "test=5d", false);
}
response.write("event: message\ndata: 1\n\n");
} else if (
request.queryString == "test=user1_xhr" ||
request.queryString == "test=user2_xhr"
) {
response.setStatusLine(null, 401, "Unauthorized");
response.setHeader("WWW-Authenticate", 'basic realm="restricted"', false);
response.setHeader(
"Access-Control-Allow-Origin",
"http://mochi.test:8888",
false
);
response.setHeader("Access-Control-Allow-Credentials", "true", false);
response.write("Unauthorized");
} else {
response.setStatusLine(null, 403, "Forbidden");
response.setHeader(
"Access-Control-Allow-Origin",
"http://mochi.test:8888",
false
);
response.setHeader("Access-Control-Allow-Credentials", "true", false);
response.write("Forbidden");
}
}
|
