webserver-c
| webserver-c | private-network-access | |
|---|---|---|
| 10 | 16 | |
| 2 | 59 | |
| - | - | |
| 1.6 | 2.8 | |
| almost 2 years ago | about 1 month ago | |
| C | HTML | |
| MIT License | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
webserver-c
-
Question about JS (and high-level languages in general)
This is one example webserver-c, more examples rsenn/qjs-modules.
-
Any stories/anecdotes of when you moved away from using Node.js/Typescript in the backend to other programming language, did NOT like it, and came back to Node.js again in the backend and became super happy that you came back? Why?
Right now I am working on a single-page source code C server that I compile to a shared library and import into QuickJS https://github.com/guest271314/webserver-c/tree/quickjs-webserver.
-
Why does server exit with body over certain length?
Not sure. This is the original code https://github.com/guest271314/webserver-c that uses getsockname().
-
What's a good framework for a real-time data heavy application?
Sure. https://github.com/guest271314/webserver-c/tree/quickjs-webserver, https://plnkr.co/edit/bK1BfoSgjFUDwkIV?preview, https://plnkr.co/plunk/qX5tepJ38BuDOSZj.
-
How to parse POST and assign only body (plain text) to char?
Because I am writing a Web server module for QuickJS https://github.com/guest271314/webserver-c/blob/quickjs-webserver/webserver.c. One use case is sending a command to a local server and streaming the stdout to the browser. I know the text will not be chunked because I am making the request.
-
Which backend JavaScript framework is the one you use ?
I use the source code for Deno's serveTls https://github.com/guest271314/native-messaging-espeak-ng/blob/deno-server/local_server.js and wrote a Web server module for QuickJS https://github.com/guest271314/webserver-c/tree/quickjs-webserver.
-
Create terminal GUI with html?
You can just send the data directly to the server, local server (that you can start and stop from the browser https://github.com/guest271314/webserver-c/tree/quickjs-webserver) or remote from the terminal or browser.
-
Kindly review this C QuickJS HTTP streaming Web server module
I finally cobbled together the C source code and QuickJS module heavily relying on existing C source code QuickJS module https://github.com/guest271314/webserver-c/tree/quickjs-webserver.
- QuickJS streaming Web server module
private-network-access
-
Why do we have both CSRF protection and CORS?
You still can make many kinds of requests [0] to an arbitrary endpoint that isn't the page origin, without being able to see the response. (Basically, anything that a form submission could do.) And you can't include any cookies or other credentials in the request that don't have SameSite=None (except on ancient browsers), and if you do, then you still can't see the response unless the endpoint opts in.
Really, there's exactly one thing that CORS headers protect against: endpoints that authorize the request based on the requester's IP address and nothing else. (The biggest case of this would be local addresses in the requester's network, but they've been planning on adding even more required headers for that [1].) They don't protect against data exfiltration, third-party cookie exfiltration (that's what the SameSite directive is for), or any other such attack vector.
[0] https://developer.mozilla.org/en-US/docs/Web/HTTP/CORS#simpl...
[1] https://wicg.github.io/private-network-access/
- CORS Is Stupid
- Why does server exit with body over certain length?
-
Basic HTML/JS page is able to access a webservice on my intranet, when run locally - but is unable to access my web-service when hosted as a static S3 bucket site.
Because browsers make a distinction between private networks and public networks.
-
Chrome v107 (Releasing 10/25) Impact on Contact Center Applications
Has anyone done any testing/mitigation in regards to Chrome v107 and Cisco UC/CCE applications in regards to the Private Network Access changes?
- Private Network Access web standard
- Private Network Access Specification
-
LAN-port-scan forbidder, browser addon to protect private network
See also: https://wicg.github.io/private-network-access/
-
What does 2022 have in store for cybersecurity and cloud security specialists?
Browser are also working to add IE6's zones* feature back in: https://wicg.github.io/private-network-access/
* I'm not actually sure if that did anything regarding cross-zone requests or if it was just "yeah, ActiveX is totally super-fine with me, as long as it comes from a trusted zone".
What are some alternatives?
qjs-modules - Some modules for QuickJS (mmap, inspect)
neocities - Neocities.org - the web site. Yep, the backend is open source!
quickwebserver - Implementation of HTTP web server in the QuickJS Runtime
LAN-port-scan-forbidder - Forbid untrusted webs to access localhost or LAN. An anti-scan protection 🛡️🏡
native-messaging-c - C Native Messaging host
node-red-contrib-sqlstring - Format SQL-Queries to avoid SQL-Injections - For Node-RED