/*! @azure/msal-node v2.5.1 2023-11-07 */ 'use strict'; 'use strict'; var msalCommon = require('@azure/msal-common'); var Constants = require('../utils/Constants.cjs'); var NetworkUtils = require('../utils/NetworkUtils.cjs'); var http = require('http'); var https = require('https'); /* * Copyright (c) Microsoft Corporation. All rights reserved. * Licensed under the MIT License. */ /** * This class implements the API for network requests. */ class HttpClient { constructor(proxyUrl, customAgentOptions) { this.proxyUrl = proxyUrl || ""; this.customAgentOptions = customAgentOptions || {}; } /** * Http Get request * @param url * @param options */ async sendGetRequestAsync(url, options) { if (this.proxyUrl) { return networkRequestViaProxy(url, this.proxyUrl, Constants.HttpMethod.GET, options, this.customAgentOptions); } else { return networkRequestViaHttps(url, Constants.HttpMethod.GET, options, this.customAgentOptions); } } /** * Http Post request * @param url * @param options */ async sendPostRequestAsync(url, options, cancellationToken) { if (this.proxyUrl) { return networkRequestViaProxy(url, this.proxyUrl, Constants.HttpMethod.POST, options, this.customAgentOptions, cancellationToken); } else { return networkRequestViaHttps(url, Constants.HttpMethod.POST, options, this.customAgentOptions, cancellationToken); } } } const networkRequestViaProxy = (destinationUrlString, proxyUrlString, httpMethod, options, agentOptions, timeout) => { const destinationUrl = new URL(destinationUrlString); const proxyUrl = new URL(proxyUrlString); // "method: connect" must be used to establish a connection to the proxy const headers = options?.headers || {}; const tunnelRequestOptions = { host: proxyUrl.hostname, port: proxyUrl.port, method: "CONNECT", path: destinationUrl.hostname, headers: headers, }; if (timeout) { tunnelRequestOptions.timeout = timeout; } if (agentOptions && Object.keys(agentOptions).length) { tunnelRequestOptions.agent = new http.Agent(agentOptions); } // compose a request string for the socket let postRequestStringContent = ""; if (httpMethod === Constants.HttpMethod.POST) { const body = options?.body || ""; postRequestStringContent = "Content-Type: application/x-www-form-urlencoded\r\n" + `Content-Length: ${body.length}\r\n` + `\r\n${body}`; } const outgoingRequestString = `${httpMethod.toUpperCase()} ${destinationUrl.href} HTTP/1.1\r\n` + `Host: ${destinationUrl.host}\r\n` + "Connection: close\r\n" + postRequestStringContent + "\r\n"; return new Promise((resolve, reject) => { const request = http.request(tunnelRequestOptions); if (tunnelRequestOptions.timeout) { request.on("timeout", () => { request.destroy(); reject(new Error("Request time out")); }); } request.end(); // establish connection to the proxy request.on("connect", (response, socket) => { const proxyStatusCode = response?.statusCode || Constants.ProxyStatus.SERVER_ERROR; if (proxyStatusCode < Constants.ProxyStatus.SUCCESS_RANGE_START || proxyStatusCode > Constants.ProxyStatus.SUCCESS_RANGE_END) { request.destroy(); socket.destroy(); reject(new Error(`Error connecting to proxy. Http status code: ${response.statusCode}. Http status message: ${response?.statusMessage || "Unknown"}`)); } if (tunnelRequestOptions.timeout) { socket.setTimeout(tunnelRequestOptions.timeout); socket.on("timeout", () => { request.destroy(); socket.destroy(); reject(new Error("Request time out")); }); } // make a request over an HTTP tunnel socket.write(outgoingRequestString); const data = []; socket.on("data", (chunk) => { data.push(chunk); }); socket.on("end", () => { // combine all received buffer streams into one buffer, and then into a string const dataString = Buffer.concat([...data]).toString(); // separate each line into it's own entry in an arry const dataStringArray = dataString.split("\r\n"); // the first entry will contain the statusCode and statusMessage const httpStatusCode = parseInt(dataStringArray[0].split(" ")[1]); // remove "HTTP/1.1" and the status code to get the status message const statusMessage = dataStringArray[0] .split(" ") .slice(2) .join(" "); // the last entry will contain the body const body = dataStringArray[dataStringArray.length - 1]; // everything in between the first and last entries are the headers const headersArray = dataStringArray.slice(1, dataStringArray.length - 2); // build an object out of all the headers const entries = new Map(); headersArray.forEach((header) => { /** * the header might look like "Content-Length: 1531", but that is just a string * it needs to be converted to a key/value pair * split the string at the first instance of ":" * there may be more than one ":" if the value of the header is supposed to be a JSON object */ const headerKeyValue = header.split(new RegExp(/:\s(.*)/s)); const headerKey = headerKeyValue[0]; let headerValue = headerKeyValue[1]; // check if the value of the header is supposed to be a JSON object try { const object = JSON.parse(headerValue); // if it is, then convert it from a string to a JSON object if (object && typeof object === "object") { headerValue = object; } } catch (e) { // otherwise, leave it as a string } entries.set(headerKey, headerValue); }); const headers = Object.fromEntries(entries); const parsedHeaders = headers; const networkResponse = NetworkUtils.NetworkUtils.getNetworkResponse(parsedHeaders, parseBody(httpStatusCode, statusMessage, parsedHeaders, body), httpStatusCode); if ((httpStatusCode < msalCommon.HttpStatus.SUCCESS_RANGE_START || httpStatusCode > msalCommon.HttpStatus.SUCCESS_RANGE_END) && // do not destroy the request for the device code flow networkResponse.body["error"] !== Constants.Constants.AUTHORIZATION_PENDING) { request.destroy(); } resolve(networkResponse); }); socket.on("error", (chunk) => { request.destroy(); socket.destroy(); reject(new Error(chunk.toString())); }); }); request.on("error", (chunk) => { request.destroy(); reject(new Error(chunk.toString())); }); }); }; const networkRequestViaHttps = (urlString, httpMethod, options, agentOptions, timeout) => { const isPostRequest = httpMethod === Constants.HttpMethod.POST; const body = options?.body || ""; const url = new URL(urlString); const headers = options?.headers || {}; const customOptions = { method: httpMethod, headers: headers, ...NetworkUtils.NetworkUtils.urlToHttpOptions(url), }; if (timeout) { customOptions.timeout = timeout; } if (agentOptions && Object.keys(agentOptions).length) { customOptions.agent = new https.Agent(agentOptions); } if (isPostRequest) { // needed for post request to work customOptions.headers = { ...customOptions.headers, "Content-Length": body.length, }; } return new Promise((resolve, reject) => { const request = https.request(customOptions); if (timeout) { request.on("timeout", () => { request.destroy(); reject(new Error("Request time out")); }); } if (isPostRequest) { request.write(body); } request.end(); request.on("response", (response) => { const headers = response.headers; const statusCode = response.statusCode; const statusMessage = response.statusMessage; const data = []; response.on("data", (chunk) => { data.push(chunk); }); response.on("end", () => { // combine all received buffer streams into one buffer, and then into a string const body = Buffer.concat([...data]).toString(); const parsedHeaders = headers; const networkResponse = NetworkUtils.NetworkUtils.getNetworkResponse(parsedHeaders, parseBody(statusCode, statusMessage, parsedHeaders, body), statusCode); if ((statusCode < msalCommon.HttpStatus.SUCCESS_RANGE_START || statusCode > msalCommon.HttpStatus.SUCCESS_RANGE_END) && // do not destroy the request for the device code flow networkResponse.body["error"] !== Constants.Constants.AUTHORIZATION_PENDING) { request.destroy(); } resolve(networkResponse); }); }); request.on("error", (chunk) => { request.destroy(); reject(new Error(chunk.toString())); }); }); }; /** * Check if extra parsing is needed on the repsonse from the server * @param statusCode {number} the status code of the response from the server * @param statusMessage {string | undefined} the status message of the response from the server * @param headers {Record} the headers of the response from the server * @param body {string} the body from the response of the server * @returns {Object} JSON parsed body or error object */ const parseBody = (statusCode, statusMessage, headers, body) => { /* * Informational responses (100 – 199) * Successful responses (200 – 299) * Redirection messages (300 – 399) * Client error responses (400 – 499) * Server error responses (500 – 599) */ let parsedBody; try { parsedBody = JSON.parse(body); } catch (error) { let errorType; let errorDescriptionHelper; if (statusCode >= msalCommon.HttpStatus.CLIENT_ERROR_RANGE_START && statusCode <= msalCommon.HttpStatus.CLIENT_ERROR_RANGE_END) { errorType = "client_error"; errorDescriptionHelper = "A client"; } else if (statusCode >= msalCommon.HttpStatus.SERVER_ERROR_RANGE_START && statusCode <= msalCommon.HttpStatus.SERVER_ERROR_RANGE_END) { errorType = "server_error"; errorDescriptionHelper = "A server"; } else { errorType = "unknown_error"; errorDescriptionHelper = "An unknown"; } parsedBody = { error: errorType, error_description: `${errorDescriptionHelper} error occured.\nHttp status code: ${statusCode}\nHttp status message: ${statusMessage || "Unknown"}\nHeaders: ${JSON.stringify(headers)}`, }; } return parsedBody; }; exports.HttpClient = HttpClient; //# sourceMappingURL=HttpClient.cjs.map