misty.cafe/mistykey
1
0
Fork 0
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

allow HTTP connections to private IPs

Browse source
This commit is contained in:
Hazelnoot 2025-07-08 11:27:31 -04:00
parent fba171840f
commit 63bac24ece
3 changed files with 42 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

8
packages/backend/src/core/UtilityService.ts
View file

@ -243,7 +243,7 @@ export class UtilityService {
* @throws {IdentifiableError} If URL contains credentials
*/
@bindThis
public assertUrl(url: string | URL): URL | never {
public assertUrl(url: string | URL, allowHttp?: boolean): URL | never {
// If string, parse and validate
if (typeof(url) === 'string') {
try {
@ -254,7 +254,7 @@ export class UtilityService {
}
// Must be HTTPS
if (!this.checkHttps(url)) {
if (!this.checkHttps(url, allowHttp)) {
throw new IdentifiableError('0bedd29b-e3bf-4604-af51-d3352e2518af', `invalid url ${url}: unsupported protocol ${url.protocol}`);
}
@ -272,12 +272,12 @@ export class UtilityService {
* Based on check-https.ts.
*/
@bindThis
public checkHttps(url: string | URL): boolean {
public checkHttps(url: string | URL, allowHttp = false): boolean {
const isNonProd = this.envService.env.NODE_ENV !== 'production';
try {
const proto = new URL(url).protocol;
return proto === 'https:' || (proto === 'http:' && isNonProd);
return proto === 'https:' || (proto === 'http:' && (isNonProd || allowHttp));
} catch {
// Invalid URLs don't "count" as HTTPS
return false;