Reverse proxy improvements.

2019-10-29 16:31:03 -07:00 · 2019-10-29 16:31:03 -07:00 · 33eca58670
parent 1f06f91610
commit 33eca58670
3 changed files with 10 additions and 9 deletions
--- a/meshagent.js
+++ b/meshagent.js
@ -387,7 +387,7 @@ module.exports.CreateMeshAgent = function (parent, db, ws, req, args, domain) {
                        if (parent.parent.supportsProxyCertificatesRequest !== false) {
                            obj.badWebCert = Buffer.from(parent.crypto.randomBytes(16), 'binary').toString('base64');
                            parent.wsagentsWithBadWebCerts[obj.badWebCert] = obj; // Add this agent to the list of of agents with bad web certificates.
-                            parent.parent.updateProxyCertificates();
+                            parent.parent.updateProxyCertificates(false);
                        }
                        parent.agentStats.agentBadWebCertHashCount++;
                        console.log('Agent bad web cert hash (Agent:' + (Buffer.from(msg.substring(2, 50), 'binary').toString('hex').substring(0, 10)) + ' != Server:' + (Buffer.from(getWebCertHash(domain), 'binary').toString('hex').substring(0, 10)) + ' or ' + (new Buffer(getWebCertFullHash(domain), 'binary').toString('hex').substring(0, 10)) + '), holding connection (' + obj.remoteaddrport + ').');
--- a/meshcentral.js
+++ b/meshcentral.js
@ -862,7 +862,7 @@ function CreateMeshCentralServer(config, args) {
            }
        }

-        if (obj.supportsProxyCertificatesRequest == true) { obj.updateProxyCertificates(); }
+        if (obj.supportsProxyCertificatesRequest == true) { obj.updateProxyCertificates(true); }
        obj.StartEx4(); // Keep going
    }

@ -1022,14 +1022,15 @@ function CreateMeshCentralServer(config, args) {
    obj.pendingProxyCertificatesRequests = 0;
    obj.lastProxyCertificatesRequest = null;
    obj.supportsProxyCertificatesRequest = false;
-    obj.updateProxyCertificates = function () {
-        var i;
-        if ((obj.pendingProxyCertificatesRequests > 0) || (obj.supportsProxyCertificatesRequest == false)) { return; }
-        if ((obj.lastProxyCertificatesRequest != null) && ((Date.now() - obj.lastProxyCertificatesRequest) < 120000)) { return; } // Don't allow this call more than every 2 minutes.
-        obj.lastProxyCertificatesRequest = Date.now();
+    obj.updateProxyCertificates = function (force) {
+        if (force !== true) {
+            if ((obj.pendingProxyCertificatesRequests > 0) || (obj.supportsProxyCertificatesRequest == false)) return;
+            if ((obj.lastProxyCertificatesRequest != null) && ((Date.now() - obj.lastProxyCertificatesRequest) < 120000)) return; // Don't allow this call more than every 2 minutes.
+            obj.lastProxyCertificatesRequest = Date.now();
+        }

        // Load any domain web certificates
-        for (i in obj.config.domains) {
+        for (var i in obj.config.domains) {
            if (obj.config.domains[i].certurl != null) {
                // Load web certs
                obj.pendingProxyCertificatesRequests++;
--- a/package.json
+++ b/package.json
@ -1,6 +1,6 @@
 {
  "name": "meshcentral",
-  "version": "0.4.3-p",
+  "version": "0.4.3-q",
  "keywords": [
    "Remote Management",
    "Intel AMT",