トークン生成時に使用する文字数を増やした

[webchat/WebChat.git] / chatServer.js

/*\r
 * \90Ý\92è\r
 */\r
$max_room_number = 1;   //\8dÅ\91å\83\8b\81[\83\80\90\94\r
$log_directory = "log"; //\83\8d\83O\83t\83@\83C\83\8b\82ð\92u\82­\83t\83H\83\8b\83_\81[\r
$log_file_name = "logfile%d.txt";       //\83\8d\83O\83t\83@\83C\83\8b\96¼(%d\82Í\82»\82Ì\82Ü\82Ü\82É\82µ\82Ä\82¨\82­\82±\82Æ)\r
$splited_log_file_name = "logfile%d_%s.txt"     //\95ª\8a\84\8cã\82Ì\83t\83@\83C\83\8b\96¼(%d\82Æ%s\82Í\82»\82Ì\82Ü\82Ü\82É\82µ\82Ä\82¨\82­\82±\82Æ)\r
$spilt_size = 1024 * 512;       //\95ª\8a\84\82·\82é\83T\83C\83Y\r
$block_message = "failed to send your message.";        //\83u\83\8d\83b\83N\8e\9e\82Ì\83\81\83b\83Z\81[\83W\r
$ip_ban_list_file_name = "ipbanlist.txt";       //\83A\83N\83Z\83X\82ð\8bÖ\8e~\82·\82éIP\82ª\8bL\98^\82³\82ê\82Ä\82¢\82é\83t\83@\83C\83\8b\r
$port = process.env.port || 3000;       //\83|\81[\83g\r
$username = "admin";    //\8aÇ\97\9d\8eÒ\97p\82Ì\83y\81[\83W\82É\83A\83N\83Z\83X\82Å\82«\82é\83\86\81[\83U\96¼\r
$password = "admin";    //\8aÇ\97\9d\8eÒ\97p\82Ì\83y\81[\83W\82É\83A\83N\83Z\83X\82·\82é\82Ì\82É\95K\97v\82È\83p\83X\83\8f\81[\83h\r
$pastlogfile_pattern = "logfile%d(_+.*)?\.txt"; //\89ß\8b\8e\83\8d\83O\82Æ\94»\92è\82·\82é\90³\8bK\95\\8c»\r
$logfile_pattern = "logfile[0-9]+(_*.*)?\.txt"  //\89ß\8b\8e\83\8d\83O\82Æ\94»\92è\82·\82é\90³\8bK\95\\8c»\r
$token_length = 16;     //\83g\81[\83N\83\93\82Ì\92·\82³\r
$redisHost = "localhost";       //redis\83T\81[\83o\82Ì\83A\83h\83\8c\83X\r
$redisPort = 6379;      //redis\83T\81[\83o\82Ì\83|\81[\83g\r
$redisPassword = "";    //redis\83T\81[\83o\82Ì\83p\83X\83\8f\81[\83h\r
\r
/**\r
 * Module dependencies.\r
 */\r
\r
// Server\r
var express = require('express');\r
\r
var app = module.exports = express.createServer();\r
\r
var util = require("util");\r
\r
var lazy = require("lazy");\r
\r
var fs = require("fs");\r
\r
var parseCookie = require("connect").utils.parseCookie;\r
\r
var RedisStore = require("connect-redis")(express);\r
//var   sessionStore = new (require('connect').session.MemoryStore)();\r
var sessionStore = new RedisStore({host:$redisHost,port:$redisPort,pass:$redisPassword});\r
\r
var async = require("async");\r
\r
var path = require("path");\r
\r
// Configuration\r
\r
app.configure(function(){\r
        app.disabled("view cache");\r
        app.set("view options", { layout: false })\r
        app.set("views", __dirname + "/public");\r
        app.set("view engine", "ejs");\r
        app.use(express.bodyParser());\r
        app.use(express.methodOverride());\r
        app.use(express.cookieParser());\r
        app.use(express.session({\r
                store:sessionStore,\r
                secret: "5514EA2B-C9B2-4D65-8D81-1F33A180A0C2",\r
                cookie: { httpOnly: false }\r
        }));\r
        app.use(app.router);\r
        app.use(express.static(__dirname + "/public"));\r
});\r
\r
app.configure('development', function(){\r
  app.use(express.errorHandler({ dumpExceptions: true, showStack: true })); \r
});\r
\r
app.configure('production', function(){\r
  app.use(express.errorHandler()); \r
});\r
\r
// Routes\r
app.get("/chat", function(req, res){\r
        var auth_string = getRandomString($token_length);\r
        req.session.items = {token:auth_string};\r
\r
        var room_number = 0;\r
        if(typeof(req.query.rno) != "undefined")\r
                room_number = req.query.rno;\r
        res.render("chat",{rno:room_number,token:auth_string});\r
});\r
\r
app.all("/log/" + $logfile_pattern,express.basicAuth(function (user, pass) {\r
        return user === $username && pass === $password;\r
}));\r
\r
app.get("/log/" + $logfile_pattern, function(req, res){\r
        res.sendfile(__dirname + req.url);\r
});\r
\r
app.all("/admin",express.basicAuth(function (user, pass) {\r
        return user === $username && pass === $password;\r
}));\r
\r
app.get("/admin", function(req, res){\r
        renderAdmin(req,res);\r
});\r
\r
app.post("/admin",function(req,res){\r
        if(req.session.items.token != req.body.token)\r
        {\r
                res.send($invaild_token_message);\r
                return;\r
        }\r
        if(typeof(req.body.erase) != "undefined")\r
        {\r
                removeLog(req.body.file,function(){\r
                        renderAdmin(req,res);\r
                });\r
        }\r
        if(typeof(req.body.registor) != "undefined")\r
        {\r
                updateIpBanList(req.body.newbanlist,function(){\r
                        renderAdmin(req,res);\r
                });\r
        }\r
});\r
\r
function renderAdmin(req,res)\r
{\r
        var auth_string = getRandomString($token_length);\r
        req.session.items = {token:auth_string};\r
\r
        fs.readdir($log_directory,function(err,list){\r
                res.render("admin", {\r
                        files: list,\r
                        log_directory:$log_directory,\r
                        ipbanlist:getTextFromIpBanlist(ipbanlist),\r
                        token:auth_string\r
                });\r
        });\r
}\r
\r
function getRandomString(length)\r
{\r
        var RandomString = "";\r
        var BaseString ="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789!#$%&'()=~|-^\@[;:],./\`{+*}<>?_";\r
        for(var i=0; i<length; i++) {\r
                RandomString += BaseString.charAt( Math.floor( Math.random() * BaseString.length));\r
        }\r
        return RandomString\r
}\r
\r
function removeLog(files,callback)\r
{\r
        async.map(files,\r
        function(item,callback){\r
                fs.unlink($log_directory + "/" + item,callback);\r
        },\r
        function(err,results){\r
                if(typeof(callback) == "function")\r
                        callback();\r
        });\r
}\r
\r
function getTextFromIpBanlist(list)\r
{\r
        var text = "";\r
        for(var key in ipbanlist)\r
        {\r
                if(ipbanlist[key] == "")\r
                        text += key + "\r\n";\r
                else\r
                        text += key + ":" + ipbanlist[key] + "\r\n";\r
        }\r
        return text;\r
}\r
\r
function updateIpBanList(text,callfunc)\r
{\r
        async.waterfall([\r
                function(callback){\r
                        fs.open($ip_ban_list_file_name,"w",callback);\r
                },\r
                function(fd,callback){\r
                        var buf = new Buffer(text);\r
                        fs.write(fd,buf,0,Buffer.byteLength(text),null,function(){\r
                                callback(null,fd);\r
                        });\r
                },\r
                function(fd,callback){\r
                        fs.close(fd,function(){\r
                                getIpBanList(callfunc);\r
                        });\r
                }\r
        ]);\r
}\r
\r
app.listen($port);\r
console.log("Express server listening on port %d in %s mode", app.address().port, app.settings.env);\r
\r
/*\r
 * \83T\81[\83o\81[\95\94\95ª\r
 */\r
\r
var io = require("socket.io").listen(app);\r
io.configure('production', function(){\r
  io.enable('browser client minification');  // minified \82³\82ê\82½\83N\83\89\83C\83A\83\93\83g\83t\83@\83C\83\8b\82ð\91\97\90M\82·\82é\r
  io.enable('browser client etag');          // \83o\81[\83W\83\87\83\93\82É\82æ\82Á\82Ä etag \82É\82æ\82é\83L\83\83\83b\83V\83\93\83O\82ð\97L\8cø\82É\82·\82é\r
  io.set('log level', 1);                    // \83\8d\83O\83\8c\83x\83\8b\82ð\90Ý\92è(\83f\83t\83H\83\8b\83g\82æ\82è\89º\82°\82Ä\82¢\82é)\r
});\r
var clients = new Array();\r
\r
var ipbanlist = {};\r
\r
createLogDirectory();\r
\r
getIpBanList();\r
\r
for(var i = 0; i < $max_room_number; i++)\r
{\r
        clients[i] =io\r
        .of(GetNameFromRoomNumber(i))\r
        .authorization(ParseAuthorization)\r
        .on("connection", function (socket) {\r
                console.log("connected from %s",GetClientIPAdress(socket));\r
                socket.on("get pastLogList", function (msg) {\r
                        ParseGetPastLogList(socket,msg);\r
                });\r
                socket.on("get pastLog", function (msg) {\r
                        ParseGetPastLog(socket,msg);\r
                });\r
                socket.on("send msg", function (msg) {\r
                        ParseSendMsg(socket,msg);\r
                });\r
                socket.on("disconnect", function (msg) {\r
                        ParseDisconnect(socket,msg);\r
                });\r
        });\r
}\r
\r
function createLogDirectory()\r
{\r
        path.exists($log_directory,function(exists){\r
                if(exists == false)\r
                        fs.mkdirSync($log_directory);\r
        });\r
}\r
\r
function getIpBanList(callback)\r
{\r
        ipbanlist = {};\r
        path.exists($ip_ban_list_file_name,function(exists){\r
                if(exists == false)\r
                {\r
                        if(typeof(callback) == "function")\r
                                callback();\r
                        return;\r
                }\r
                var stream = fs.createReadStream($ip_ban_list_file_name);\r
                new lazy(stream)\r
                        .lines\r
                        .forEach(function(line){\r
                                var token = line.toString().split(":");\r
                                var ip = token[0].replace(/(\r|\n|\r\n)/gm, "");\r
                                if(token.length == 1)\r
                                        ipbanlist[ip] = "";\r
                                else\r
                                        ipbanlist[ip] = token[1];\r
                        })\r
                        .join(function(){\r
                                if(typeof(callback) == "function")\r
                                        callback();\r
                        });\r
        });\r
}\r
\r
function ParseAuthorization(handshakeData, callback)\r
{\r
        if(handshakeData.headers.cookie) {\r
                var cookie = handshakeData.headers.cookie;\r
                var sessionID = parseCookie(cookie)["connect.sid"];\r
                sessionStore.get(sessionID, function (err, session) {\r
                        if (err || ipbanlist[handshakeData.address.address] == "r") {\r
                                callback("failed get from session store", false);\r
                        } else {\r
                                var result = null;\r
                                if(handshakeData.query.token != session.items.token)\r
                                        return callback("invaild token", false);\r
                                sessionStore.destroy(sessionID);\r
                                return callback(result, true);\r
                        }\r
                });\r
        } else {\r
                return callback("failed get cookie", false);\r
        }\r
}\r
\r
function ParseDisconnect(socket,msg)\r
{\r
        console.log("disconnected");\r
}\r
\r
//socket \90Ú\91±\92\86\82Ì\83\\83P\83b\83g\r
//msg msg\83N\83\89\83X\r
function ParseSendMsg(socket,msg)\r
{\r
        var ip = GetClientIPAdress(socket);\r
\r
        if(ip in ipbanlist)\r
        {\r
                socket.emit("error",$block_message);\r
                return;\r
        }\r
\r
        var date = new Date();\r
        //var dateString = date.toFormat("YYYY/MM/DD HH24:MI:SS");\r
\r
        var repacked_msg = CreateMessage(msg,date);\r
\r
        socket.json.emit("req msg", repacked_msg);\r
\r
        socket.json.broadcast.emit("req msg", repacked_msg);\r
\r
        var rno = GetRoomNumberFromName(socket.namespace.name);\r
        var path = $log_directory + "/" + util.format($log_file_name,rno);\r
        var log = new ChatLog(path);\r
        log.Save(repacked_msg,ip);\r
}\r
\r
function GetNameFromRoomNumber(number)\r
{\r
        return "/" + number;\r
}\r
\r
function GetRoomNumberFromName(name)\r
{\r
        if(name.charAt(0) == "/")\r
                return parseInt(name.substr(1));\r
        throw "GetRoomNumberFromName error";\r
}\r
\r
function ParseGetPastLogList(socket,msg)\r
{\r
        var list = fs.readdir($log_directory,function(err,files){\r
                var text = "";\r
                var rno = GetRoomNumberFromName(socket.namespace.name);\r
                var pattern = $pastlogfile_pattern.replace("%d",rno);\r
                for(var i = 0; i < files.length; i++)\r
                {\r
                        var logname = files[i];\r
                        if(logname.match(pattern))\r
                                text += files[i] + "\n";\r
                }\r
                socket.emit("req pastloglist",text);\r
        });\r
}\r
\r
function ParseGetPastLog(socket,file)\r
{\r
        if(file == "")\r
                return;\r
        var path = $log_directory + "/" + file;\r
        var log = new ChatLog(path);\r
        log.ForEach(function(line){\r
                socket.json.emit("req pastlog",CreateMessageFromText(line.toString()));\r
        });\r
}\r
\r
function ChatLog(path)\r
{\r
        this.ForEach = function(callback)\r
        {\r
                var state = fs.stat(path,function(err,state){\r
                        if(err)\r
                                return;\r
                        var stream = fs.createReadStream(path);\r
                        new lazy(stream)\r
                                .lines\r
                                .forEach(callback);\r
                });\r
        }\r
\r
        this.Save = function(msg,ip){\r
                var text = GetTextFromMessage(msg,ip);\r
\r
                SplitLog(path,function(){\r
                        WritePastLog(path,text);\r
                });\r
        };\r
\r
        function GetTextFromMessage(msg,ip)\r
        {\r
                var text = msg.name + "<>" +\r
                                msg.date + "<>" +\r
                                ip + "<>" +\r
                                msg.message +\r
                                "\n";\r
                return text;\r
        }\r
\r
        function SplitLog(path,callback)\r
        {\r
                var state = fs.stat(path,function(err,state){\r
                        if(err && typeof(callback) == "function")\r
                        {\r
                                callback();\r
                                return;\r
                        }\r
                        if(state.size > $spilt_size)\r
                        {\r
                                var date = new Date();\r
\r
                                var newpath = $log_directory + "/" +\r
                                        util.format($splited_log_file_name,rno,date.toFormat("YYYYMMDDHH24MISS"));\r
                                fs.rename(path,newpath,callback);\r
                        }else{\r
                                if(typeof(callback) == "function")\r
                                        callback();\r
                        }\r
                });\r
        }\r
\r
        function WritePastLog(path,text)\r
        {\r
                async.waterfall([\r
                        function(callback){\r
                                fs.open(path,"a",callback);\r
                        },\r
                        function(fd,callback){\r
                                var buf = new Buffer(text);\r
                                fs.write(fd,buf,0,Buffer.byteLength(text),null,function(){\r
                                        callback(null,fd);\r
                                });\r
                        },\r
                        function(fd){\r
                                fs.close(fd);\r
                        }\r
                ]);\r
        }\r
}\r
\r
function GetClientIPAdress(socket)\r
{\r
        return socket.handshake.headers["x-forwarded-for"] || socket.handshake.address.address;\r
}\r
\r
// Message \83N\83\89\83X\r
function CreateMessage(msg,date)\r
{\r
        var result = {name:msg.name,\r
                date:date,\r
                message:msg.message};\r
        return result;\r
}\r
function CreateMessageFromText(text)\r
{\r
        var data = text.split("<>");\r
        var msg = {name:data[0],\r
                date:data[1],\r
                message:data[3]};\r
        return msg;\r
}\r