first commit

Author: xantrix

.gitignore

@@ -0,0 +1,2 @@
+node_modules/
+test/

.vscode/launch.json

@@ -0,0 +1,29 @@
+{
+  // Use IntelliSense to learn about possible attributes.
+  // Hover to view descriptions of existing attributes.
+  // For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
+  // https://code.visualstudio.com/docs/nodejs/nodejs-debugging
+  // if auto attach feature is enable, inside vscode terminal run 
+  // node --inspect-brk program.js
+  "version": "0.2.0",
+  "configurations": [
+    {
+      "type": "node",
+      "request": "attach",
+      "name": "Debug (host)",
+      //"localRoot": "${workspaceFolder}",
+      //"remoteRoot": "${workspaceFolder}",
+      "protocol": "inspector",
+      //"port": 9229,
+      //"address": "0.0.0.0",
+      "console": "integratedTerminal",
+      "stopOnEntry": true,
+      "outFiles": [
+        "${workspaceFolder}/**/*.js"
+      ],
+      "skipFiles": [
+        "<node_internals>/**/*.js"
+      ],      
+    },
+  ]
+}

.vscode/settings.json

@@ -0,0 +1,3 @@
+{
+  "debug.node.autoAttach": "on"
+}

README.md

@@ -0,0 +1,11 @@
+# Redis Patterns server
+
+# run project (docker)
+docker-compose up
+
+# debug 
+node --inspect-brk server.js
+
+# dependecies
+webSocket: https://github.com/websockets/ws
+ioredis: https://github.com/luin/ioredis

docker-compose.yml

@@ -0,0 +1,27 @@
+version: "3.5"
+services:
+
+  server:
+    image: node:12.9-alpine
+    command: sh -c "npm install && node server.js"
+    working_dir: /server
+    environment:
+      ENV: stage
+      REDIS_HOST: redis
+      ALLOWED_ORIGINS: "http://localhost,http://localhost:4200"
+    volumes:
+      - ./:/server
+    ports:
+      - '8080:8080'
+
+  redis:
+    image: redis:5
+    environment:
+      ENV: stage
+    volumes:
+      - redis_data:/data
+    ports:
+      - '6379:6379'
+
+volumes:
+  redis_data:

package-lock.json

@@ -0,0 +1,20 @@
+{
+  "name": "redis-patterns-server",
+  "version": "1.0.0",
+  "description": "",
+  "main": "server.js",
+  "dependencies": {
+    "ioredis": "^4.14.1",
+    "uuid": "^3.3.2",
+    "ws": "^7.0.1"
+  },
+  "devDependencies": {
+    "@types/ioredis": "^4.0.15"
+  },
+  "scripts": {
+    "test": "echo \"Error: no test specified\" && exit 1",
+    "start": "node server.js"
+  },
+  "author": "",
+  "license": "ISC"
+}

package.json

@@ -0,0 +1,120 @@
+const WebSocket = require('ws');
+const Redis = require("ioredis");
+const isAllow = require('./src/blacklist');
+
+const port = 8080;
+//https://github.com/websockets/ws/blob/master/doc/ws.md#new-websocketserveroptions-callback
+const wss = new WebSocket.Server({ 
+  port: port,
+  maxPayload: process.env.MAX_PAYLOAD ? process.env.MAX_PAYLOAD : 1000,
+  verifyClient: function(info) {
+    // console.log(process.env);
+    console.log('Origin:', info.origin);
+    let allowedOrigins = process.env.ALLOWED_ORIGINS ? process.env.ALLOWED_ORIGINS : 'origin-unknown';
+    allowedOrigins = allowedOrigins.split(',');
+    console.log('Allowed Origins:', allowedOrigins);
+    let verified = false;
+    allowedOrigins.forEach(function each(allow) {
+      if(info.origin === allow) {
+        verified = true;
+      }
+    });
+    return verified;
+  }
+});
+console.log('Start WebSocket.Server on: %s', port);
+
+const createRedisClient = function(data) {
+  const sessionId = data.sessionId ? data.sessionId : 'xxxx';
+  const client = new Redis({
+    keyPrefix: `${sessionId}:`,
+    host: process.env.REDIS_HOST ? process.env.REDIS_HOST : '127.0.0.1'
+  });
+  console.log('Create new Redis client with prefix: %s', sessionId);
+  return client;
+};
+
+const noop = function() {};
+
+const heartbeat = function() {
+  console.log('pong heartbeat...');
+  this.isAlive = true;
+};
+
+const interval = setInterval(function ping() {
+  wss.clients.forEach(function each(ws) {
+    if (ws.isAlive === false) {
+      console.log('terminate ws!');
+      return ws.terminate();
+    }
+
+    ws.isAlive = false;
+    ws.ping(noop);
+  });
+}, 10000);
+
+wss.on('connection', function connection(ws) {
+
+  ws.isAlive = true;
+  ws.on('pong', heartbeat);
+  ws.on('ping', console.info);
+
+  // https://github.com/websockets/ws/issues/1417
+  ws.on('error', console.error);
+
+  ws.on('open', function open() {
+    console.log('open');
+  });
+  
+  ws.on('close', function close() {
+    console.log('close');
+  });
+
+  ws.on('message', async function incoming(data) {
+    console.log('message: %s', data);
+    let request,response = {};
+    let client;
+
+    try {
+      request = JSON.parse(data);//from string to object
+    } catch (ex) {
+      response.command = 'unknown';
+      response.output = 'Invalid JSON';
+      response.status = 'error';
+      return ws.send(JSON.stringify(response));
+    }
+
+    try {
+      client = createRedisClient(request);
+      client.on("error", function(error) {
+        console.log(error);
+      });
+
+      const commandString = request.command;
+      const commandArray = commandString.split(" ");
+      const command = commandArray[0];
+      const args = commandArray.slice(1);
+  
+      response.command = commandString;//early set
+  
+      if(!isAllow(command)) {
+        throw new Error('Command not allowed'); 
+      }
+
+      response.status = '-';
+      response.output = await client.send_command(command,args);
+      response.status = 'ok';
+
+    } catch (ex) {
+      // console.log(ex);
+      console.log('Exception on send_command');
+      response.output = ex.message;
+      response.status = 'error';
+    } finally {
+      client.quit();
+      //send response
+      return ws.send(JSON.stringify(response));
+    }
+
+  });
+});

server.js

@@ -0,0 +1,60 @@
+const commandBlackList = [
+//cluster
+'CLUSTER', // *
+'READONLY',
+'READWRITE',
+
+//connection
+'AUTH',
+'QUIT',
+'SELECT',
+'SWAPDB',
+
+//Keys
+'OBJECT',
+'DUMP',
+'MIGRATE',
+'MOVE',
+'RESTORE',
+'WAIT',
+
+//Scripting
+'EVAL',
+'EVALSHA',
+'SCRIPT',//*
+
+//Server
+'BGREWRITEAOF',
+'BGSAVE',
+'CLIENT',//*
+'COMMAND',//*
+'CONFIG',//*
+'DBSIZE',
+'DEBUG',//*
+'FLUSHALL',
+'FLUSHDB',
+'INFO', // (or limit it)
+'MEMORY', //*
+'MONITOR',
+'ROLE',
+'SAVE',
+'SHUTDOWN',
+'SLAVEOF',
+'REPLICAOF',
+'SLOWLOG',
+'SYNC',
+'TIME',
+
+//Streams
+//(tbd)
+
+//Transactions
+'WATCH',
+'UNWATCH',
+];
+
+function isAllow(command) {
+  return commandBlackList.includes(command.toUpperCase()) ? false : true;
+}
+
+module.exports = isAllow;