Merge pull request #203 from omar10594/master

tlaverdure · web-flow · commit 51a39cbc6e95 · 2017-08-23T11:35:54.000-04:00
Added validation if the socket doesn't have the referer header.
diff --git a/src/channels/private-channel.ts b/src/channels/private-channel.ts
@@ -45,23 +45,27 @@ export class PrivateChannel {
      * @return {string}
      */
     protected authHost(socket: any): string {
-        let referer = url.parse(socket.request.headers.referer);
-        let authHostSelected = 'http://localhost';
-        let authHosts = (this.options.authHost) ?
-            this.options.authHost : this.options.host;
-
-        if (typeof authHosts === "string") {
-            authHosts = [authHosts];
-        }
-
-        for (let authHost of authHosts) {
-            authHostSelected = authHost;
-
-            if (this.hasMatchingHost(referer, authHost)) {
-                authHostSelected = `${referer.protocol}//${referer.host}`;
-                break;
-            }
-        };
+		let authHosts = (this.options.authHost) ?
+			this.options.authHost : this.options.host;
+
+		if (typeof authHosts === "string") {
+			authHosts = [authHosts];
+		}
+
+		let authHostSelected = authHosts[0] || 'http://localhost';
+
+		if(socket.request.headers.referer) {
+			let referer = url.parse(socket.request.headers.referer);
+
+			for (let authHost of authHosts) {
+				authHostSelected = authHost;
+	
+				if (this.hasMatchingHost(referer, authHost)) {
+					authHostSelected = `${referer.protocol}//${referer.host}`;
+					break;
+				}
+			};
+		}
 
         return authHostSelected;
     }
