Home Explore Help
Register Sign In
lvjunxi
/
node_modules
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 25798bf1e1
Branches Tags
node_modules
/
rttc
/
lib
/
helpers
/
sanitize.js

sanitize.js 6.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178 
  1. /**
    2. 

  2.  * Module dependencies
    3. 

  3.  */
    4. 

  4. 

  5. var _ = require('@sailshq/lodash');
    6. 

  6. var Readable = require('stream').Readable;
    7. 

  7. 

  8. 

  9. 

  10. /**
    11. 

  11.  * Rebuild a value to make it JSON-compatible (plus some extra affordances)
    12. 

  12.  * This is used when validating/coercing an array or dictionary (and its contents)
    13. 

  13.  * against `example: {}` or `example: []`.
    14. 

  14.  *
    15. 

  15.  * It is also used elsewhere throughout rttc.
    16. 

  16.  *
    17. 

  17.  * @param {Anything} val
    18. 

  18.  * @param {Boolean?} allowNull
    19. 

  19.  * @param {Boolean?} dontStringifyFunctions
    20. 

  20.  * @param {Boolean?} allowNaNAndFriends
    21. 

  21.  * @param {Boolean?} doRunToJSONMethods
    22. 

  22.  *                   ^^^^^^^^^^^^^^^^^^
    23. 

  23.  *                   (only applies to certain things -- see https://trello.com/c/5SkpUlhI/402-make-customtojson-work-with-actions2#comment-5a3b6e7b43107b7a2938e7bd)
    24. 

  24.  */
    25. 

  25. module.exports = function rebuildSanitized(val, allowNull, dontStringifyFunctions, allowNaNAndFriends, doRunToJSONMethods) {
    26. 

  26. 

  27.   // Does not `allowNull` by default.
    28. 

  28. 

  29.   // Never allows `undefined` at the top level (or inside- but that check is below in stringifySafe)
    30. 

  30.   if (_.isUndefined(val)) {
    31. 

  31.     if (allowNull) { return null; }
    32. 

  32.     else { return undefined; }
    33. 

  33.   }
    34. 

  34. 

  35.   return _rebuild(val, allowNull, dontStringifyFunctions, allowNaNAndFriends, doRunToJSONMethods);
    36. 

  36. };
    37. 

  37. 

  38. // (note that the recursive validation will not penetrate deeper into this
    39. 

  39. //  object, so we don't have to worry about this function running more than once
    40. 

  40. //  and doing unnecessary extra deep copies at each successive level)
    41. 

  41. 

  42. 

  43. // If dictionary:
    44. 

  44. // ==============================================================================
    45. 

  45. // Sanitize a dictionary provided for a generic dictionary example (`example: {}`)
    46. 

  46. // The main recursive validation function will not descend into this dictionary because
    47. 

  47. // it's already met the minimum requirement of being an object.  So we need to deep clone
    48. 

  48. // the provided value for safety; and in the process ensure that it meets the basic minimum
    49. 

  49. // quality requirements (i.e. no dictionaries within have any keys w/ invalid values)
    50. 

  50. 

  51. // If array:
    52. 

  52. // ==============================================================================
    53. 

  53. // Sanitize an array provided for a generic array example (`example: []`)
    54. 

  54. // The main recursive validation function will not descend into this array because
    55. 

  55. // it's already met the minimum requirement of being `_.isArray()`.  So we need to
    56. 

  56. // deep clone the provided value for safety; and in the process ensure that it meets
    57. 

  57. // the basic minimum quality requirements (i.e. no dictionaries within have any keys w/
    58. 

  58. // invalid values)
    59. 

  59. //
    60. 

  60. // We also don't include invalid items in the rebuilt array.
    61. 

  61. //
    62. 

  62. // (NOTE: `example: ['===']` won't make it here because it will be picked up
    63. 

  63. // by the recursive validation.  And so it's different-- it will contain
    64. 

  64. // the original items, and therefore may contain dictionaries w/ keys w/ invalid values)
    65. 

  65. 

  66. function _rebuild(val, allowNull, dontStringifyFunctions, allowNaNAndFriends, doRunToJSONMethods) {
    67. 

  67.   var stack = [];
    68. 

  68.   var keys = [];
    69. 

  69. 

  70.   // This was modified from @isaacs' json-stringify-safe
    71. 

  71.   // (see https://github.com/isaacs/json-stringify-safe/commit/02cfafd45f06d076ac4bf0dd28be6738a07a72f9#diff-c3fcfbed30e93682746088e2ce1a4a24)
    72. 

  72.   var cycleReplacer = function(unused, value) {
    73. 

  73.     if (stack[0] === value) { return '[Circular ~]'; }
    74. 

  74.     return '[Circular ~.' + keys.slice(0, stack.indexOf(value)).join('.') + ']';
    75. 

  75.   };
    76. 

  76. 

  77.   function _recursivelyRebuildAndSanitize (val, key) {
    78. 

  78. 

  79.     // Handle circle jerks
    80. 

  80.     if (stack.length > 0) {
    81. 

  81.       var self = this;
    82. 

  82.       var thisPos = stack.indexOf(self);
    83. 

  83.       ~thisPos ? stack.splice(thisPos + 1) : stack.push(self);
    84. 

  84.       ~thisPos ? keys.splice(thisPos, Infinity, key) : keys.push(key);
    85. 

  85.       if (~stack.indexOf(val)) {
    86. 

  86.         val = cycleReplacer.call(self, key, val);
    87. 

  87.       }
    88. 

  88.     }
    89. 

  89.     else { stack.push(val); }
    90. 

  90. 

  91. 

  92. 

  93.     // Rebuild and strip undefineds/nulls
    94. 

  94.     if (_.isArray(val)) {
    95. 

  95.       return _.reduce(val,function (memo, item, i) {
    96. 

  96.         if (!_.isUndefined(item) && (allowNull || !_.isNull(item))) {
    97. 

  97.           memo.push(_recursivelyRebuildAndSanitize.call(val, item, i));
    98. 

  98.         }
    99. 

  99.         return memo;
    100. 

  100.       }, []);
    101. 

  101.     }
    102. 

  102. 

  103.     // Serialize errors, regexps, dates, and functions to strings:
    104. 

  104.     else if (_.isError(val)){
    105. 

  105.       if (doRunToJSONMethods && _.isFunction(val.toJSON)) {
    106. 

  106.         val = val.toJSON();
    107. 

  107.       } else {
    108. 

  108.         val = val.stack;
    109. 

  109.       }
    110. 

  110.     }
    111. 

  111.     else if (_.isRegExp(val)){
    112. 

  112.       val = val.toString();
    113. 

  113.     }
    114. 

  114.     else if (_.isDate(val)){
    115. 

  115.       val = val.toJSON();
    116. 

  116.     }
    117. 

  117.     else if (_.isFunction(val)){
    118. 

  118.       if (!dontStringifyFunctions) {
    119. 

  119.         val = val.toString();
    120. 

  120.       }
    121. 

  121.     }
    122. 

  122.     else if (!_.isObject(val)) {
    123. 

  123.       // Coerce NaN, Infinity, and -Infinity to 0:
    124. 

  124.       // (unless "allowNaNAndFriends" is enabled)
    125. 

  125.       if (!allowNaNAndFriends) {
    126. 

  126.         if (_.isNaN(val)) {
    127. 

  127.           val = 0;
    128. 

  128.         }
    129. 

  129.         else if (val === Infinity) {
    130. 

  130.           val = 0;
    131. 

  131.         }
    132. 

  132.         else if (val === -Infinity) {
    133. 

  133.           val = 0;
    134. 

  134.         }
    135. 

  135.       }
    136. 

  136. 

  137.       // Always coerce -0 to +0 regardless.
    138. 

  138.       if (val === 0) {
    139. 

  139.         val = 0;
    140. 

  140.       }
    141. 

  141.     }
    142. 

  142.     else if (_.isObject(val)) {
    143. 

  143.       // Reject readable streams out of hand
    144. 

  144.       if (val instanceof Readable) {
    145. 

  145.         return null;
    146. 

  146.       }
    147. 

  147.       // Reject buffers out of hand
    148. 

  148.       if (val instanceof Buffer) {
    149. 

  149.         return null;
    150. 

  150.       }
    151. 

  151.       // Reject `RttcRefPlaceholders` out of hand
    152. 

  152.       // (this is a special case so there is a placeholder value that ONLY validates stricly against the "ref" type)
    153. 

  153.       // (note that like anything else, RttcRefPlaceholders nested inside of a JSON/generic dict/generic array get sanitized into JSON-compatible things)
    154. 

  154.       if (_.isObject(val.constructor) && val.constructor.name === 'RttcRefPlaceholder') {
    155. 

  155.         return null;
    156. 

  156.       }
    157. 

  157.       // Run its .toJSON() method and use the result, if appropriate.
    158. 

  158.       if (doRunToJSONMethods && _.isFunction(val.toJSON)) {
    159. 

  159.         return val.toJSON();
    160. 

  160.       }//•
    161. 

  161. 

  162.       return _.reduce(_.keys(val),function (memo, key) {
    163. 

  163.         var subVal = val[key];
    164. 

  164.         if (!_.isUndefined(subVal) && (allowNull || !_.isNull(subVal))) {
    165. 

  165.           memo[key] = _recursivelyRebuildAndSanitize.call(val, subVal, key);
    166. 

  166.         }
    167. 

  167.         return memo;
    168. 

  168.       }, {});
    169. 

  169.     }
    170. 

  170. 

  171. 

  172.     return val;
    173. 

  173.   }
    174. 

  174. 

  175.   // Pass in the empty string for the top-level "key"
    176. 

  176.   // to satisfy Mr. isaac's replacer
    177. 

  177.   return _recursivelyRebuildAndSanitize(val, '');
    178. 

  178. }
    179.