Merge pull request #102 from YunoHost/enh-pcre

[enh] Add PCRE regex support
2024-09-03 20:06:27 +02:00 · 2018-12-14 00:32:23 +01:00 · 2018-12-14 00:32:23 +01:00 · c272b4cffd
commit c272b4cffd
parent 96d304124e 7dc84973df
1 changed files with 24 additions and 9 deletions
--- a/access.lua
+++ b/access.lua
@ -22,6 +22,9 @@ local conf = config.get_config()
 -- Import helpers
 local hlp = require "helpers"

+-- Import Perl regular expressions library
+local rex = require "rex_pcre"
+
 -- Just a note for the client to know that he passed through the SSO
 ngx.header["X-SSO-WAT"] = "You've just been SSOed"

@ -185,6 +188,18 @@ end
 -- If the URL matches one of the `redirected_urls` in the configuration file,
 -- just redirect to the target URL/URI
 --
+-- A match function that uses PCRE regex as default
+-- If '%.' is found in the regex, we assume it's a LUA regex (legacy code)
+function match(s, regex)
+    if not string.find(regex, '%%%.') then
+        if rex.match(s, regex) then
+            return true
+        end
+    elseif string.match(s,regex) then
+        return true
+    end
+    return false
+end

 function detect_redirection(redirect_url)
    if hlp.string.starts(redirect_url, "http://")
@ -209,9 +224,9 @@ end

 if conf["redirected_regex"] then
    for regex, redirect_url in pairs(conf["redirected_regex"]) do
-        if string.match(ngx.var.host..ngx.var.uri..hlp.uri_args_string(), regex)
-        or string.match(ngx.var.scheme.."://"..ngx.var.host..ngx.var.uri..hlp.uri_args_string(), regex)
-        or string.match(ngx.var.uri..hlp.uri_args_string(), regex) then
+        if match(ngx.var.host..ngx.var.uri..hlp.uri_args_string(), regex)
+        or match(ngx.var.scheme.."://"..ngx.var.host..ngx.var.uri..hlp.uri_args_string(), regex)
+        or match(ngx.var.uri..hlp.uri_args_string(), regex) then
            detect_redirection(redirect_url)
        end
    end
@ -242,8 +257,8 @@ function is_protected()
        end
    end
    for _, regex in ipairs(conf["protected_regex"]) do
-        if string.match(ngx.var.host..ngx.var.uri..hlp.uri_args_string(), regex)
-        or string.match(ngx.var.uri..hlp.uri_args_string(), regex) then
+        if match(ngx.var.host..ngx.var.uri..hlp.uri_args_string(), regex)
+        or match(ngx.var.uri..hlp.uri_args_string(), regex) then
            return true
        end
    end
@ -272,8 +287,8 @@ end

 if conf["skipped_regex"] then
    for _, regex in ipairs(conf["skipped_regex"]) do
-        if (string.match(ngx.var.host..ngx.var.uri..hlp.uri_args_string(), regex)
-        or  string.match(ngx.var.uri..hlp.uri_args_string(), regex))
+        if (match(ngx.var.host..ngx.var.uri..hlp.uri_args_string(), regex)
+        or  match(ngx.var.uri..hlp.uri_args_string(), regex))
        and not is_protected() then
            return hlp.pass()
        end
@ -341,8 +356,8 @@ end

 if conf["unprotected_regex"] then
    for _, regex in ipairs(conf["unprotected_regex"]) do
-        if (string.match(ngx.var.host..ngx.var.uri..hlp.uri_args_string(), regex)
-        or  string.match(ngx.var.uri..hlp.uri_args_string(), regex))
+        if (match(ngx.var.host..ngx.var.uri..hlp.uri_args_string(), regex)
+        or  match(ngx.var.uri..hlp.uri_args_string(), regex))
        and not is_protected() then
            if hlp.is_logged_in() then
                hlp.set_headers()