idolpx/meatloaf-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(webdav3): enhance CORS support for /commoserve/ proxy and update routing logic

Browse Source
This commit is contained in:
Jaime Idolpx 2026-06-15 15:55:22 -04:00
parent c289ffd477
commit e3f7ba9c19
1 changed files with 16 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
webdav3.py
View File

@ -550,8 +550,8 @@ class DAVRequestHandler(BaseHTTPRequestHandler):
self.send_header('Content-Length', '0') self.send_header('Content-Length', '0')
self.end_headers() self.end_headers()
return return
# CORS preflight for /leet/ proxy # CORS preflight for /leet/ and /commoserve/ proxies
if self.path.startswith('/leet/'): if self.path.startswith('/leet/') or self.path.startswith('/commoserve/'):
self.send_response(204) self.send_response(204)
self.send_header('Access-Control-Allow-Origin', '*') self.send_header('Access-Control-Allow-Origin', '*')
self.send_header('Access-Control-Allow-Methods', 'GET, OPTIONS') self.send_header('Access-Control-Allow-Methods', 'GET, OPTIONS')
@ -855,11 +855,13 @@ class DAVRequestHandler(BaseHTTPRequestHandler):
# ── Leet API proxy ───────────────────────────────────────────────────────── # ── Leet API proxy ─────────────────────────────────────────────────────────
# Browsers cannot override the User-Agent header (Fetch spec §forbidden # Browsers cannot override the User-Agent header (Fetch spec §forbidden
# header names). Assembly64 returns HTTP 463 for non-matching UAs. # header names). Assembly64 returns HTTP 463 for non-matching UAs.
# Requests to /leet/<path> are forwarded to hackerswithstyle.se with the # commoserve.files.commodore.net also lacks CORS headers on AQL endpoints.
# required headers added server-side. #
# Routes:
# GET /leet/* → https://hackerswithstyle.se/leet/*
# GET /commoserve/* → https://commoserve.files.commodore.net/leet/*
def _proxy_leet(self): def _proxy_leet(self, target: str):
target = 'https://hackerswithstyle.se' + self.path
try: try:
req = urllib.request.Request(target, headers={ req = urllib.request.Request(target, headers={
'User-Agent': 'Assembly Query', 'User-Agent': 'Assembly Query',
@ -870,6 +872,7 @@ class DAVRequestHandler(BaseHTTPRequestHandler):
body = resp.read() body = resp.read()
ct = resp.headers.get('Content-Type', 'application/octet-stream') ct = resp.headers.get('Content-Type', 'application/octet-stream')
self.send_response(200) self.send_response(200)
self.send_header('Access-Control-Allow-Origin', '*')
self.send_header('Content-Type', ct) self.send_header('Content-Type', ct)
self.send_header('Content-Length', str(len(body))) self.send_header('Content-Length', str(len(body)))
self.end_headers() self.end_headers()
@ -879,6 +882,7 @@ class DAVRequestHandler(BaseHTTPRequestHandler):
_log('LEET', f'Proxy error: {self.path}{e}') _log('LEET', f'Proxy error: {self.path}{e}')
body = json.dumps({'error': str(e)}).encode('utf-8') body = json.dumps({'error': str(e)}).encode('utf-8')
self.send_response(502) self.send_response(502)
self.send_header('Access-Control-Allow-Origin', '*')
self.send_header('Content-Type', 'application/json') self.send_header('Content-Type', 'application/json')
self.send_header('Content-Length', str(len(body))) self.send_header('Content-Length', str(len(body)))
self.end_headers() self.end_headers()
@ -890,7 +894,12 @@ class DAVRequestHandler(BaseHTTPRequestHandler):
self._handle_websocket() self._handle_websocket()
return return
if self.path.startswith('/leet/'): if self.path.startswith('/leet/'):
self._proxy_leet() self._proxy_leet('https://hackerswithstyle.se' + self.path)
return
if self.path.startswith('/commoserve/'):
# /commoserve/search/categories → /leet/search/categories on commoserve server
leet_path = '/leet' + self.path[len('/commoserve'):]
self._proxy_leet('https://commoserve.files.commodore.net' + leet_path)
return return
if self.WebAuth(): if self.WebAuth():
return return