Initial commit

2025-08-25 14:02:03 +02:00 · 2023-11-30 14:15:19 +00:00
commit e4599df811
5457 changed files with 500139 additions and 0 deletions
--- a/node_modules/frameguard/dist/index.d.ts
+++ b/node_modules/frameguard/dist/index.d.ts
@@ -0,0 +1,8 @@
+/// <reference types="node" />
+import { IncomingMessage, ServerResponse } from 'http';
+interface FrameguardOptions {
+    action?: string;
+    domain?: string;
+}
+declare const _default: (options?: FrameguardOptions | undefined) => (_req: IncomingMessage, res: ServerResponse, next: () => void) => void;
+export = _default;
--- a/node_modules/frameguard/dist/index.js
+++ b/node_modules/frameguard/dist/index.js
@@ -0,0 +1,57 @@
+"use strict";
+function parseActionOption(actionOption) {
+    var invalidActionErr = new Error('action must be undefined, "DENY", "ALLOW-FROM", or "SAMEORIGIN".');
+    if (actionOption === undefined) {
+        actionOption = 'SAMEORIGIN';
+    }
+    else if (actionOption instanceof String) {
+        actionOption = actionOption.valueOf();
+    }
+    var result;
+    if (typeof actionOption === 'string') {
+        result = actionOption.toUpperCase();
+    }
+    else {
+        throw invalidActionErr;
+    }
+    if (result === 'ALLOWFROM') {
+        result = 'ALLOW-FROM';
+    }
+    else if (result === 'SAME-ORIGIN') {
+        result = 'SAMEORIGIN';
+    }
+    if (['DENY', 'ALLOW-FROM', 'SAMEORIGIN'].indexOf(result) === -1) {
+        throw invalidActionErr;
+    }
+    return result;
+}
+function parseDomainOption(domainOption) {
+    if (domainOption instanceof String) {
+        domainOption = domainOption.valueOf();
+    }
+    if (typeof domainOption !== 'string') {
+        throw new Error('ALLOW-FROM action requires a string domain parameter.');
+    }
+    else if (!domainOption.length) {
+        throw new Error('domain parameter must not be empty.');
+    }
+    return domainOption;
+}
+function getHeaderValueFromOptions(options) {
+    options = options || {};
+    var action = parseActionOption(options.action);
+    if (action === 'ALLOW-FROM') {
+        var domain = parseDomainOption(options.domain);
+        return action + " " + domain;
+    }
+    else {
+        return action;
+    }
+}
+module.exports = function frameguard(options) {
+    var headerValue = getHeaderValueFromOptions(options);
+    return function frameguard(_req, res, next) {
+        res.setHeader('X-Frame-Options', headerValue);
+        next();
+    };
+};