\r
var resource = require("./resources.js");\r
var config = require("./configure.js");\r
-var lazy = require("./lazy.js");\r
var security = require("./security.js");\r
+var lazy = require("lazy");\r
var fs = require("fs");\r
var async = require("async");\r
var path = require("path");\r
app.get("/chat", chat_proc);\r
app.all("/log/*",express.basicAuth(auth_proc));\r
app.get("/log/*",log_proc);\r
- app.all("/admin_chat",express.basicAuth(auth_proc));\r
- app.get("/admin_chat", adminchat_proc);\r
- app.all("/admin",express.basicAuth(auth_proc));\r
- app.get("/admin", admin_proc);\r
- app.post("/admin",admin_postproc);\r
+ app.all("/chat/admin",express.basicAuth(auth_proc));\r
+ app.get("/chat/admin", admin_proc);\r
+ app.post("/chat/admin",admin_postproc);\r
\r
var io = require("socket.io").listen(server);\r
io.configure("production", function(){\r
+ io.set("transports", config.transports);\r
io.enable("browser client minification"); // minified されたクライアントファイルを送信する\r
- io.enable("browser client etag"); // バージョンによって etag によるキャッシングを有効にする\r
- io.set("log level", 1); // ログレベルを設定(デフォルトより下げている)\r
+ io.enable("browser client etag"); // バージョンによって etag によるキャッシングを有効にする\r
+ io.set("log level", 1); // ログレベルを設定(デフォルトより下げている)\r
});\r
\r
for(var i = 0; i < config.max_room_number; i++)\r
var room_number = 0;\r
if(typeof(req.query.rno) != "undefined")\r
room_number = req.query.rno;\r
- res.render("chat",{rno:room_number,token:info.token});\r
+ res.render("chat",{rno:room_number,token:req.session._csrf});\r
}\r
\r
function auth_proc(user, pass) {\r
res.sendfile(__dirname + req.url);\r
}\r
\r
-function adminchat_proc(req, res){\r
- var info = new security.SessionInfomation(true);\r
- req.session.items = info;\r
-\r
- var room_number = 0;\r
- if(typeof(req.query.rno) != "undefined")\r
- room_number = req.query.rno;\r
- res.render("chat",{rno:room_number,token:info.token});\r
-}\r
-\r
function admin_postproc(req,res){\r
- if(req.session.items.token != req.body.token)\r
- {\r
- res.send(resource.invaild_token_message);\r
- return;\r
- }\r
if(typeof(req.body.erase) != "undefined")\r
{\r
removeLog(req.body.file,function(){\r
- res.redirect("/admin");\r
+ res.redirect("/chat/admin");\r
});\r
}\r
if(typeof(req.body.registor) != "undefined")\r
{\r
ipbanlist.Update(req.body.newbanlist,function(){\r
- res.redirect("/admin");\r
+ res.redirect("/chat/admin");\r
});\r
}\r
if(typeof(req.body.updateroom) != "undefined")\r
{\r
- $rooms.Update(req.body.newroomlist,function(){\r
- res.redirect("/admin");\r
+ $rooms.Update(req.body,function(){\r
+ res.redirect("/chat/admin");\r
});\r
}\r
}\r
var iplist = ipbanlist.GetText();\r
\r
fs.readdir($log_directory,function(err,list){\r
+ res.setHeader("X-FRAME-OPTIONS","DENY");\r
res.render("admin", {\r
files: list,\r
log_directory:$log_directory,\r
ipbanlist:iplist,\r
- token:info.token,\r
- roomlist:$rooms.GetString()\r
+ token:req.session._csrf,\r
+ roomlist:$rooms.GetMessage()\r
});\r
});\r
}\r
//RoomInfomationCollecionクラス\r
function RoomInfomationCollection()\r
{\r
+ var MySQLPool = new require("./mysql_pool.js");\r
+ var pool = new MySQLPool({\r
+ host : config.db_host,\r
+ user : config.db_user,\r
+ password : config.db_password,\r
+ port : config.db_port,\r
+ database : config.db_name,\r
+ });\r
var collection = {};\r
this.Get = function(rno){\r
return collection[rno];\r
this.IsContains = function(rno){\r
return rno in collection;\r
};\r
- this.GetString = function(){\r
- var retval = "";\r
+ this.GetMessage = function(){\r
+ var retval = new Array();\r
for(var rno in collection)\r
{\r
- if($rooms.Get(rno).IsVolatile())\r
- continue;\r
- var pass = collection[rno].password;\r
- if(pass == null)\r
- pass = "";\r
- var hiddenlog = collection[rno].hiddenlog;\r
- retval += rno + ":" + pass + ":" + hiddenlog + "\r\n";\r
+ item={};\r
+ item.applyflag = !$rooms.Get(rno).IsVolatile();\r
+ item.password = collection[rno].password;\r
+ if(item.password == null)\r
+ item.password = "";\r
+ item.hiddenlog = collection[rno].hiddenlog;\r
+ retval.push(item);\r
}\r
return retval;\r
};\r
}\r
return retval;\r
}\r
- this.Update = function(text,callfunc){\r
+ this.Update = function(data,callfunc){\r
+ Clear();\r
async.waterfall([\r
- function(callback){\r
- fs.open($room_configure_file_name,"w",callback);\r
- },\r
- function(fd,callback){\r
- var buf = new Buffer(text);\r
- fs.write(fd,buf,0,Buffer.byteLength(text),null,function(){\r
- callback(null,fd);\r
- });\r
+ function(next){\r
+ pool.query("TRUNCATE TABLE rooms",null,next);\r
},\r
- function(fd,callback){\r
- fs.close(fd,function(){\r
- GetRoomList(callfunc);\r
- });\r
+ function(result,next){\r
+ console.log(util.inspect(data));\r
+ var items = new Array();\r
+ var config = data.config;\r
+ for(var i = 0; i < config.length; i++)\r
+ {\r
+ var rno = Number(config[i].applyflag);\r
+ if(isNaN(rno))\r
+ continue;\r
+ var password,romonly;\r
+ if(typeof(config[rno].password)=="undefined")\r
+ password = null;\r
+ else if(config[rno].password == "")\r
+ password = null;\r
+ else\r
+ password = config[rno].password;\r
+ if(typeof(config[rno].hiddenlog)=="undefined")\r
+ romonly = false;\r
+ else\r
+ romonly = config[rno].hiddenlog == "romonly";\r
+\r
+ Add(rno,password,romonly);\r
+ items.push(new Array(rno,password,romonly));\r
+ }\r
+ pool.query("INSERT INTO rooms VALUES ?",[items],callfunc);\r
}\r
- ]);\r
+ ],callfunc);\r
}\r
function GetRoomList(callback){\r
Clear();\r
- fs.exists($room_configure_file_name,function(exists){\r
- if(exists == false)\r
- {\r
- if(typeof(callback) == "function")\r
- callback();\r
- return;\r
+ async.waterfall([\r
+ function(next){\r
+ pool.query("SELECT * FROM rooms",null,next);\r
+ },\r
+ function(result,next){\r
+ for(var i = 0; i < result.length; i++)\r
+ {\r
+ //MySQLではTINYINTが使われている\r
+ Add(result[i].number,result[i].password,result[i].hiddenlog != 0);\r
+ }\r
+ next(null,null);\r
}\r
- var stream = fs.createReadStream($room_configure_file_name);\r
- new lazy(stream)\r
- .lines\r
- .forEach(function(line){\r
- var token = line.toString().replace(/(\r|\n|\r\n)/gm, "").split(":");\r
- if(token.length == 1)\r
- {\r
- Add(token[0],null,false);\r
- }\r
- else if(token.length == 2)\r
- {\r
- var rno = token[0];\r
- var pass = token[1];\r
- if(pass == "")\r
- pass = null;\r
- Add(rno, pass,false);\r
- }\r
- else if(token.length == 3)\r
- {\r
- var rno = token[0];\r
- var pass = token[1];\r
- if(pass == "")\r
- pass = null;\r
- var hiddenlog = false;\r
- if(token[2] == "true")\r
- hiddenlog = true;\r
- Add(rno, pass,hiddenlog);\r
- }\r
- })\r
- .join(function(){\r
- if(typeof(callback) == "function")\r
- callback();\r
- });\r
- });\r
+ ],callback);\r
}\r
function Clear(){\r
collection = {};\r
//IPBANクラス\r
function IpBanCollecion()\r
{\r
+ var MySQLPool = new require("./mysql_pool.js");\r
+ var pool = new MySQLPool({\r
+ host : config.db_host,\r
+ user : config.db_user,\r
+ password : config.db_password,\r
+ port : config.db_port,\r
+ database : config.db_name,\r
+ });\r
var collection = {};\r
this.IsBaned = function(ip){\r
return collection[ip] == "r";\r
return text;\r
}\r
this.Update = function(text,callfunc){\r
+ collection = {};\r
async.waterfall([\r
- function(callback){\r
- fs.open($ip_ban_list_file_name,"w",callback);\r
- },\r
- function(fd,callback){\r
- var buf = new Buffer(text);\r
- fs.write(fd,buf,0,Buffer.byteLength(text),null,function(){\r
- callback(null,fd);\r
- });\r
+ function(next){\r
+ pool.query("TRUNCATE TABLE ipbanlist",null,next);\r
},\r
- function(fd,callback){\r
- fs.close(fd,function(){\r
- GetIpBanList(callfunc);\r
- });\r
- }\r
- ]);\r
- }\r
- function GetIpBanList(callback)\r
- {\r
- collection = {};\r
- fs.exists($ip_ban_list_file_name,function(exists){\r
- if(exists == false)\r
- {\r
- if(typeof(callback) == "function")\r
- callback();\r
- return;\r
- }\r
- var stream = fs.createReadStream($ip_ban_list_file_name);\r
- new lazy(stream)\r
- .lines\r
- .forEach(function(line){\r
- var token = line.toString().replace(/(\r|\n|\r\n)/gm, "").split(":");\r
+ function(result,next){\r
+ var items = new Array();\r
+ lines = text.split("\r\n");\r
+ for(var i = 0; i < lines.length; i++)\r
+ {\r
+ var token = lines[i].split(":");\r
var ip = token[0];\r
+ if(ip == "")\r
+ continue;\r
if(token.length == 1)\r
collection[ip] = "";\r
else\r
collection[ip] = token[1];\r
- })\r
- .join(function(){\r
- if(typeof(callback) == "function")\r
- callback();\r
- });\r
- });\r
+ items.push(new Array(ip,collection[ip]));\r
+ }\r
+ pool.query("INSERT INTO ipbanlist VALUES ?",[items],next);\r
+ },\r
+ ],callfunc);\r
+ }\r
+ function GetIpBanList(callfunc)\r
+ {\r
+ async.waterfall([\r
+ function(next){\r
+ pool.query("SELECT * FROM ipbanlist",null,next);\r
+ },\r
+ function(result,next){\r
+ for(var i = 0; i < result.length; i++)\r
+ collection[result[i].ip] = result[i].type;\r
+ next(null,null);\r
+ },\r
+ ],callfunc);\r
}\r
GetIpBanList();\r
}\r
room.AddRom(ip);\r
\r
var roomconfig = room.GetConfig();\r
- roomconfig.admin = socket.handshake.admin;\r
socket.json.emit("send roominfo",roomconfig);\r
\r
var romcount = room.GetRomCount();\r
result = "failed get from session store";\r
else if(err)\r
result = err;\r
- else if(handshakeData.query.token != session.items.token)\r
+ else if(typeof(session) == "undefined" || typeof(session._csrf) == "undefined")\r
+ result = "session is undefined";\r
+ else if(handshakeData.query.token != session._csrf)\r
result = "invaild token";\r
- if(typeof(session) != "undefined" && result == null)\r
- {\r
- handshakeData.admin = session.items.admin;\r
+ if(result == null)\r
handshakeData.sessionID = sessionID;\r
- }\r
callback(result,result == null && !err);\r
});\r
} else {\r
}\r
else\r
{\r
- socket.emit("error",$not_match_password);\r
+ socket.emit("error",resource.unmatch_password);\r
return;\r
}\r
}\r
return;\r
var path = $log_directory + "/" + file;\r
var log = new ChatLog(path);\r
- log.ToArray(socket.handshake.admin,function(array){\r
+ log.ToArray(config.showip,function(array){\r
socket.json.emit("req pastlog",array);\r
});\r
}\r
var array = new Array();\r
var stream = fs.createReadStream(path);\r
new lazy(stream)\r
- .spilt(";")\r
+ .lines\r
.forEach(function(line){\r
var msg = CreateMessageFromText(line.toString());\r
if(hasIp == false)\r
msg.date + "<>" +\r
ip + "<>" +\r
msg.message +\r
- ";";\r
+ "\n";\r
return text;\r
}\r
\r
OSDN Git Service
