nodebb/src/socket.io/index.js

"use strict";

var	SocketIO = require('socket.io');
var socketioWildcard = require('socketio-wildcard')();
var async = require('async');
var nconf = require('nconf');
var cookieParser = require('cookie-parser')(nconf.get('secret'));
var winston = require('winston');

var db = require('../database');
var user = require('../user');
var logger = require('../logger');
var ratelimit = require('../middleware/ratelimit');

var Sockets = {};
var Namespaces = {};

var io;

Sockets.init = function(server) {
	requireModules();

	io = new SocketIO({
		path: nconf.get('relative_path') + '/socket.io'
	});

	addRedisAdapter(io);

	io.use(socketioWildcard);
	io.use(authorize);

	io.on('connection', onConnection);

	io.listen(server, {
		transports: nconf.get('socket.io:transports')
	});

	Sockets.server = io;
};

function onConnection(socket) {
	socket.ip = socket.request.headers['x-forwarded-for'] || socket.request.connection.remoteAddress;

	logger.io_one(socket, socket.uid);

	cls.socket(socket, null, 'connection', function () {
		onConnect(socket);
	});

	socket.on('disconnect', function(payload) {
		cls.socket(socket, payload, 'disconnect', function () {
			onDisconnect(socket, payload);
		});
	});

	socket.on('*', function(payload) {
		cls.socket(socket, payload, null, function() {
			onMessage(socket, payload);
		});
	});
}

function onConnect(socket) {
	if (socket.uid) {
		socket.join('uid_' + socket.uid);
		socket.join('online_users');

		user.getUserFields(socket.uid, ['status'], function(err, userData) {
			if (err || !userData) {
				return;
			}

			if (userData.status !== 'offline') {
				socket.broadcast.emit('event:user_status_change', {uid: socket.uid, status: userData.status || 'online'});
			}
		});
	} else {
		socket.join('online_guests');
	}
}

function onDisconnect(socket) {
	if (socket.uid) {
		var socketCount = Sockets.getUserSocketCount(socket.uid);
		if (socketCount <= 1) {
			socket.broadcast.emit('event:user_status_change', {uid: socket.uid, status: 'offline'});
		}
	}
}

function onMessage(socket, payload) {
	if (!payload.data.length) {
		return winston.warn('[socket.io] Empty payload');
	}

	var eventName = payload.data[0];
	var params = payload.data[1];
	var callback = typeof payload.data[payload.data.length - 1] === 'function' ? payload.data[payload.data.length - 1] : function() {};

	if (!eventName) {
		return winston.warn('[socket.io] Empty method name');
	}

	var parts = eventName.toString().split('.');
	var namespace = parts[0];
	var methodToCall = parts.reduce(function(prev, cur) {
		if (prev !== null && prev[cur]) {
			return prev[cur];
		} else {
			return null;
		}
	}, Namespaces);

	if(!methodToCall) {
		if (process.env.NODE_ENV === 'development') {
			winston.warn('[socket.io] Unrecognized message: ' + eventName);
		}
		return;
	}

	socket.previousEvents = socket.previousEvents || [];
	socket.previousEvents.push(eventName);
	if (socket.previousEvents.length > 20) {
		socket.previousEvents.shift();
	}

	if (!eventName.startsWith('admin.') && ratelimit.isFlooding(socket)) {
		winston.warn('[socket.io] Too many emits! Disconnecting uid : ' + socket.uid + '. Events : ' + socket.previousEvents);
		return socket.disconnect();
	}

	async.waterfall([
		function (next) {
			validateSession(socket, next);
		},
		function (next) {
			if (Namespaces[namespace].before) {
				Namespaces[namespace].before(socket, eventName, params, next);
			} else {
				next();
			}
		},
		function (next) {
			methodToCall(socket, params, next);
		}
	], function(err, result) {
		callback(err ? {message: err.message} : null, result);
	});
}

function requireModules() {
	var modules = ['admin', 'categories', 'groups', 'meta', 'modules',
		'notifications', 'plugins', 'posts', 'topics', 'user'
	];

	modules.forEach(function(module) {
		Namespaces[module] = require('./' + module);
	});
}

function validateSession(socket, callback) {
	var req = socket.request;
	if (!req.signedCookies || !req.signedCookies['express.sid']) {
		return callback(new Error('[[error:invalid-session]]'));
	}
	db.sessionStore.get(req.signedCookies['express.sid'], function(err, sessionData) {
		if (err || !sessionData) {
			return callback(err || new Error('[[error:invalid-session]]'));
		}

		callback();
	});
}

function authorize(socket, callback) {
	var request = socket.request;

	if (!request) {
		return callback(new Error('[[error:not-authorized]]'));
	}

	async.waterfall([
		function(next) {
			cookieParser(request, {}, next);
		},
		function(next) {
			db.sessionStore.get(request.signedCookies['express.sid'], function(err, sessionData) {
				if (err) {
					return next(err);
				}
				if (sessionData && sessionData.passport && sessionData.passport.user) {
					socket.uid = parseInt(sessionData.passport.user, 10);
				} else {
					socket.uid = 0;
				}
				next();
			});
		}
	], callback);
}

function addRedisAdapter(io) {
	if (nconf.get('redis')) {
		var redisAdapter = require('socket.io-redis');
		var redis = require('../database/redis');
		var pub = redis.connect({return_buffers: true});
		var sub = redis.connect({return_buffers: true});

		io.adapter(redisAdapter({pubClient: pub, subClient: sub}));
	} else if (nconf.get('isCluster') === 'true') {
		winston.warn('[socket.io] Clustering detected, you are advised to configure Redis as a websocket store.');
	}
}

Sockets.in = function(room) {
	return io.in(room);
};

Sockets.getSocketCount = function() {
	if (!io) {
		return 0;
	}

	return Object.keys(io.sockets.sockets).length;
};

Sockets.getUserSocketCount = function(uid) {
	if (!io) {
		return 0;
	}
	var room = io.sockets.adapter.rooms['uid_' + uid];
	return room ? room.length : 0;
};

Sockets.getOnlineUserCount = function() {
	if (!io) {
		return 0;
	}
	var room = io.sockets.adapter.rooms.online_users;
	return room ? room.length : 0;
};

Sockets.getOnlineAnonCount = function () {
	if (!io) {
		return 0;
	}
	var room = io.sockets.adapter.rooms.online_guests;
	return room ? room.length : 0;
};

Sockets.reqFromSocket = function(socket, payload, event) {
	var headers = socket.request.headers;
	var host = headers.host;
	var referer = headers.referer || '';

	return {
		ip: headers['x-forwarded-for'] || socket.ip,
		host: host,
		uid: socket.uid,
		protocol: socket.request.connection.encrypted ? 'https' : 'http',
		secure: !!socket.request.connection.encrypted,
		url: referer,
		body: {event: event || ((payload || {}).data || [])[0], payload: payload},
		path: referer.substr(referer.indexOf(host) + host.length),
		headers: headers,
		_socket: socket
	};
};

Sockets.isUserOnline = function(uid) {
	winston.warn('[deprecated] Sockets.isUserOnline');
	return false;
};

Sockets.isUsersOnline = function(uids, callback) {
	winston.warn('[deprecated] Sockets.isUsersOnline');
	callback(null, uids.map(function() { return false; }));
};

Sockets.getUsersInRoom = function (uid, roomName, start, stop, callback) {
	winston.warn('[deprecated] Sockets.getUsersInRoom');
	callback(null, {
		users: [],
		room: roomName,
		total: 0,
		hidden: 0
	});
	return;
};

Sockets.getUidsInRoom = function(roomName, callback) {
	winston.warn('[deprecated] Sockets.getUidsInRoom');
	callback = callback || function() {};
	callback(null, []);
};


/* Exporting */
module.exports = Sockets;
linting and adding missing require'd dep 11 years ago			`"use strict";`

closes #4248 9 years ago			`var SocketIO = require('socket.io');`
			`var socketioWildcard = require('socketio-wildcard')();`
			`var async = require('async');`
			`var nconf = require('nconf');`
			`var cookieParser = require('cookie-parser')(nconf.get('secret'));`
			`var winston = require('winston');`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
closes #4248 9 years ago			`var db = require('../database');`
			`var user = require('../user');`
			`var logger = require('../logger');`
			`var ratelimit = require('../middleware/ratelimit');`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
closes #4248 9 years ago			`var Sockets = {};`
			`var Namespaces = {};`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
deps, disabled all server side calls 10 years ago			`var io;`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
closes #873, removed global translator, templates and server objects 11 years ago			`Sockets.init = function(server) {`
socket.io index refactor 10 years ago			`requireModules();`

set path on socket.io server 10 years ago			`io = new SocketIO({`
			`path: nconf.get('relative_path') + '/socket.io'`
			`});`
emit works 10 years ago
			`addRedisAdapter(io);`

deps, disabled all server side calls 10 years ago			`io.use(socketioWildcard);`
socket.io index refactor 10 years ago			`io.use(authorize);`

			`io.on('connection', onConnection);`
deps, disabled all server side calls 10 years ago
set path on socket.io server 10 years ago			`io.listen(server, {`
use socket.io default and ["polling", "websocket"] 10 years ago			`transports: nconf.get('socket.io:transports')`
set path on socket.io server 10 years ago			`});`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
first set of changes 11 years ago			`Sockets.server = io;`
socket.io index refactor 10 years ago			`};`
first set of changes 11 years ago
socket.io index refactor 10 years ago			`function onConnection(socket) {`
try to get ip from x-forwarded-for first 10 years ago			`socket.ip = socket.request.headers['x-forwarded-for'] \|\| socket.request.connection.remoteAddress;`
crashing a lot less now, heh 11 years ago
socket.io index refactor 10 years ago			`logger.io_one(socket, socket.uid);`
don't attempt to require a directory 11 years ago
adding cls support for ws 9 years ago			`cls.socket(socket, null, 'connection', function () {`
			`onConnect(socket);`
			`});`
socket.io index refactor 10 years ago
adding cls support for ws 9 years ago			`socket.on('disconnect', function(payload) {`
			`cls.socket(socket, payload, 'disconnect', function () {`
			`onDisconnect(socket, payload);`
			`});`
crashing a lot less now, heh 11 years ago			`});`

socket.io index refactor 10 years ago			`socket.on('*', function(payload) {`
adding cls support for ws 9 years ago			`cls.socket(socket, payload, null, function() {`
			`onMessage(socket, payload);`
			`});`
socket.io index refactor 10 years ago			`});`
			`}`

			`function onConnect(socket) {`
			`if (socket.uid) {`
removed rooms.js removed browsing users, removed chat syncing across sockets use lastonline for online detection 9 years ago			`socket.join('uid_' + socket.uid);`
			`socket.join('online_users');`
socket.io index refactor 10 years ago
closes #2539 10 years ago			`user.getUserFields(socket.uid, ['status'], function(err, userData) {`
			`if (err \|\| !userData) {`
socket.io index refactor 10 years ago			`return;`
			`}`
remove console.log 10 years ago
closes #2539 10 years ago			`if (userData.status !== 'offline') {`
			`socket.broadcast.emit('event:user_status_change', {uid: socket.uid, status: userData.status \|\| 'online'});`
dont sent status update if user set it offline 10 years ago			`}`
socket.io index refactor 10 years ago			`});`
			`} else {`
removed rooms.js removed browsing users, removed chat syncing across sockets use lastonline for online detection 9 years ago			`socket.join('online_guests');`
socket.io index refactor 10 years ago			`}`
			`}`

removed override no longer needed 9 years ago			`function onDisconnect(socket) {`
onDisconnect fix 10 years ago			`if (socket.uid) {`
			`var socketCount = Sockets.getUserSocketCount(socket.uid);`
#2486 various fixes for socket.io cluster display user presence correctly 10 years ago			`if (socketCount <= 1) {`
onDisconnect fix 10 years ago			`socket.broadcast.emit('event:user_status_change', {uid: socket.uid, status: 'offline'});`
			`}`
socket.io index refactor 10 years ago			`}`
			`}`

			`function onMessage(socket, payload) {`
			`if (!payload.data.length) {`
			`return winston.warn('[socket.io] Empty payload');`
			`}`

			`var eventName = payload.data[0];`
			`var params = payload.data[1];`
			`var callback = typeof payload.data[payload.data.length - 1] === 'function' ? payload.data[payload.data.length - 1] : function() {};`

			`if (!eventName) {`
			`return winston.warn('[socket.io] Empty method name');`
			`}`

closes #4248 9 years ago			`var parts = eventName.toString().split('.');`
			`var namespace = parts[0];`
			`var methodToCall = parts.reduce(function(prev, cur) {`
			`if (prev !== null && prev[cur]) {`
			`return prev[cur];`
			`} else {`
			`return null;`
			`}`
			`}, Namespaces);`
emit works 10 years ago
socket.io index refactor 10 years ago			`if(!methodToCall) {`
			`if (process.env.NODE_ENV === 'development') {`
			`winston.warn('[socket.io] Unrecognized message: ' + eventName);`
fix crash if socket.handshake is null 10 years ago			`}`
socket.io index refactor 10 years ago			`return;`
			`}`
fix crash if socket.handshake is null 10 years ago
keep track of the last 20 events 10 years ago			`socket.previousEvents = socket.previousEvents \|\| [];`
			`socket.previousEvents.push(eventName);`
			`if (socket.previousEvents.length > 20) {`
			`socket.previousEvents.shift();`
			`}`

dont check admin emits against flooding 10 years ago			`if (!eventName.startsWith('admin.') && ratelimit.isFlooding(socket)) {`
keep track of the last 20 events 10 years ago			`winston.warn('[socket.io] Too many emits! Disconnecting uid : ' + socket.uid + '. Events : ' + socket.previousEvents);`
			`return socket.disconnect();`
			`}`

closes #4248 9 years ago			`async.waterfall([`
			`function (next) {`
			`validateSession(socket, next);`
			`},`
			`function (next) {`
			`if (Namespaces[namespace].before) {`
			`Namespaces[namespace].before(socket, eventName, params, next);`
			`} else {`
			`next();`
added .before to socket.io/groups.js 10 years ago			`}`
closes #4248 9 years ago			`},`
			`function (next) {`
			`methodToCall(socket, params, next);`
			`}`
			`], function(err, result) {`
			`callback(err ? {message: err.message} : null, result);`
			`});`
socket.io index refactor 10 years ago			`}`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
socket.io index refactor 10 years ago			`function requireModules() {`
dont require everything in folder dont want rooms.js to be public 10 years ago			`var modules = ['admin', 'categories', 'groups', 'meta', 'modules',`
			`'notifications', 'plugins', 'posts', 'topics', 'user'`
			`];`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
dont require everything in folder dont want rooms.js to be public 10 years ago			`modules.forEach(function(module) {`
			`Namespaces[module] = require('./' + module);`
socket.io index refactor 10 years ago			`});`
			`}`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
closes #4248 9 years ago			`function validateSession(socket, callback) {`
			`var req = socket.request;`
			`if (!req.signedCookies \|\| !req.signedCookies['express.sid']) {`
			`return callback(new Error('[[error:invalid-session]]'));`
			`}`
			`db.sessionStore.get(req.signedCookies['express.sid'], function(err, sessionData) {`
			`if (err \|\| !sessionData) {`
			`return callback(err \|\| new Error('[[error:invalid-session]]'));`
			`}`

			`callback();`
			`});`
			`}`

dont display cluster warning if not running as cluster 10 years ago			`function authorize(socket, callback) {`
closes #4248 9 years ago			`var request = socket.request;`
emit works 10 years ago
closes #4248 9 years ago			`if (!request) {`
dont display cluster warning if not running as cluster 10 years ago			`return callback(new Error('[[error:not-authorized]]'));`
socket.io index refactor 10 years ago			`}`
remove console.log 10 years ago
dont display cluster warning if not running as cluster 10 years ago			`async.waterfall([`
			`function(next) {`
closes #4248 9 years ago			`cookieParser(request, {}, next);`
dont display cluster warning if not running as cluster 10 years ago			`},`
			`function(next) {`
closes #4248 9 years ago			`db.sessionStore.get(request.signedCookies['express.sid'], function(err, sessionData) {`
fix crash 10 years ago			`if (err) {`
			`return next(err);`
			`}`
			`if (sessionData && sessionData.passport && sessionData.passport.user) {`
			`socket.uid = parseInt(sessionData.passport.user, 10);`
			`} else {`
			`socket.uid = 0;`
#2486 various fixes for socket.io cluster display user presence correctly 10 years ago			`}`
fix crash 10 years ago			`next();`
			`});`
dont display cluster warning if not running as cluster 10 years ago			`}`
			`], callback);`
socket.io index refactor 10 years ago			`}`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
emit works 10 years ago			`function addRedisAdapter(io) {`
			`if (nconf.get('redis')) {`
			`var redisAdapter = require('socket.io-redis');`
			`var redis = require('../database/redis');`
update to socket.io 1.2.1, return_buffers option 10 years ago			`var pub = redis.connect({return_buffers: true});`
			`var sub = redis.connect({return_buffers: true});`
emit works 10 years ago
			`io.adapter(redisAdapter({pubClient: pub, subClient: sub}));`
dont display cluster warning if not running as cluster 10 years ago			`} else if (nconf.get('isCluster') === 'true') {`
emit works 10 years ago			`winston.warn('[socket.io] Clustering detected, you are advised to configure Redis as a websocket store.');`
			`}`
			`}`

interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago			`Sockets.in = function(room) {`
io.in logger 10 years ago			`return io.in(room);`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago			`};`

auto update user counts dont transmit all room data 11 years ago			`Sockets.getSocketCount = function() {`
single proc stats 9 years ago			`if (!io) {`
			`return 0;`
			`}`
closes #4038 9 years ago
closes #4032 9 years ago			`return Object.keys(io.sockets.sockets).length;`
user.isOnline fix wont hit db on every user socket connect or user disconnect 11 years ago			`};`

possible fix to online guest count using socket io rooms instead of syncing between workers. 11 years ago			`Sockets.getUserSocketCount = function(uid) {`
single proc stats 9 years ago			`if (!io) {`
			`return 0;`
			`}`
closes #4038 9 years ago			`var room = io.sockets.adapter.rooms['uid_' + uid];`
			`return room ? room.length : 0;`
#2486 various fixes for socket.io cluster display user presence correctly 10 years ago			`};`
deps, disabled all server side calls 10 years ago
#2486 various fixes for socket.io cluster display user presence correctly 10 years ago			`Sockets.getOnlineUserCount = function() {`
single proc stats 9 years ago			`if (!io) {`
			`return 0;`
			`}`
closes #4038 9 years ago			`var room = io.sockets.adapter.rooms.online_users;`
			`return room ? room.length : 0;`
possible fix to online guest count using socket io rooms instead of syncing between workers. 11 years ago			`};`

interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago			`Sockets.getOnlineAnonCount = function () {`
single proc stats 9 years ago			`if (!io) {`
			`return 0;`
			`}`
closes #4038 9 years ago			`var room = io.sockets.adapter.rooms.online_guests;`
			`return room ? room.length : 0;`
took out userSockets, using io.sockets.clients() now' 11 years ago			`};`

unify request as a store key for both http and websockets calls 9 years ago			`Sockets.reqFromSocket = function(socket, payload, event) {`
closes #4248 9 years ago			`var headers = socket.request.headers;`
			`var host = headers.host;`
			`var referer = headers.referer \|\| '';`
fix reqFromSocket for socket.io 1.x 10 years ago
			`return {`
closes #2498 10 years ago			`ip: headers['x-forwarded-for'] \|\| socket.ip,`
remove user from users:online on delete 10 years ago			`host: host,`
unify request as a store key for both http and websockets calls 9 years ago			`uid: socket.uid,`
remove user from users:online on delete 10 years ago			`protocol: socket.request.connection.encrypted ? 'https' : 'http',`
			`secure: !!socket.request.connection.encrypted,`
			`url: referer,`
unify request as a store key for both http and websockets calls 9 years ago			`body: {event: event \|\| ((payload \|\| {}).data \|\| [])[0], payload: payload},`
remove user from users:online on delete 10 years ago			`path: referer.substr(referer.indexOf(host) + host.length),`
unify request as a store key for both http and websockets calls 9 years ago			`headers: headers,`
			`_socket: socket`
remove user from users:online on delete 10 years ago			`};`
added reqFromSocket to topic posting new filter topic.post 11 years ago			`};`

chop chop 10 years ago			`Sockets.isUserOnline = function(uid) {`
missing semicolons 9 years ago			`winston.warn('[deprecated] Sockets.isUserOnline');`
removed rooms.js removed browsing users, removed chat syncing across sockets use lastonline for online detection 9 years ago			`return false;`
chop chop 10 years ago			`};`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
closes #2035, closes #2036 11 years ago			`Sockets.isUsersOnline = function(uids, callback) {`
missing semicolons 9 years ago			`winston.warn('[deprecated] Sockets.isUsersOnline');`
removed rooms.js removed browsing users, removed chat syncing across sockets use lastonline for online detection 9 years ago			`callback(null, uids.map(function() { return false; }));`
closes #2035, closes #2036 11 years ago			`};`

closes #3039 10 years ago			`Sockets.getUsersInRoom = function (uid, roomName, start, stop, callback) {`
missing semicolons 9 years ago			`winston.warn('[deprecated] Sockets.getUsersInRoom');`
disabled browsing users and global rooms syncing 9 years ago			`callback(null, {`
			`users: [],`
			`room: roomName,`
			`total: 0,`
			`hidden: 0`
			`});`
			`return;`
chop chop 10 years ago			`};`
interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
callback for getUidsInRoom 10 years ago			`Sockets.getUidsInRoom = function(roomName, callback) {`
missing semicolons 9 years ago			`winston.warn('[deprecated] Sockets.getUidsInRoom');`
callback for getUidsInRoom 10 years ago			`callback = callback \|\| function() {};`
removed commented out stuff removed topics.enter 9 years ago			`callback(null, []);`
getUsersInCategory 11 years ago			`};`

interim commit - removed calls to websockets.js, beginning porting to namespaced files 11 years ago
			`/* Exporting */`
Add missing new lines at end of files. 11 years ago			`module.exports = Sockets;`