|
|
|
package main
|
|
|
|
|
|
|
|
import (
|
|
|
|
"crypto/tls"
|
|
|
|
"fmt"
|
|
|
|
auth "github.com/abbot/go-http-auth"
|
|
|
|
"github.com/fangdingjun/gofast"
|
|
|
|
"github.com/gorilla/mux"
|
|
|
|
"log"
|
|
|
|
"net"
|
|
|
|
"net/http"
|
|
|
|
"net/http/httputil"
|
|
|
|
"net/url"
|
|
|
|
"os"
|
|
|
|
"regexp"
|
|
|
|
//"path/filepath"
|
|
|
|
"strings"
|
|
|
|
)
|
|
|
|
|
|
|
|
func initRouters(cfg conf) {
|
|
|
|
|
|
|
|
for _, l := range cfg {
|
|
|
|
router := mux.NewRouter()
|
|
|
|
domains := []string{}
|
|
|
|
certs := []tls.Certificate{}
|
|
|
|
|
|
|
|
// initial virtual host
|
|
|
|
for _, h := range l.Vhost {
|
|
|
|
h2 := h.Hostname
|
|
|
|
if h1, _, err := net.SplitHostPort(h.Hostname); err == nil {
|
|
|
|
h2 = h1
|
|
|
|
}
|
|
|
|
domains = append(domains, h2)
|
|
|
|
if h.Cert != "" && h.Key != "" {
|
|
|
|
if cert, err := tls.LoadX509KeyPair(h.Cert, h.Key); err == nil {
|
|
|
|
certs = append(certs, cert)
|
|
|
|
} else {
|
|
|
|
log.Fatal(err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
r := router.Host(h2).Subrouter()
|
|
|
|
for _, rule := range h.URLRules {
|
|
|
|
switch rule.Type {
|
|
|
|
case "alias":
|
|
|
|
registerAliasHandler(rule, r)
|
|
|
|
case "uwsgi":
|
|
|
|
registerUwsgiHandler(rule, r)
|
|
|
|
case "fastcgi":
|
|
|
|
registerFastCGIHandler(rule, h.Docroot, r)
|
|
|
|
case "reverse":
|
|
|
|
registerHTTPHandler(rule, r)
|
|
|
|
default:
|
|
|
|
fmt.Printf("invalid type: %s\n", rule.Type)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
r.PathPrefix("/").Handler(http.FileServer(http.Dir(h.Docroot)))
|
|
|
|
}
|
|
|
|
|
|
|
|
// default host config
|
|
|
|
for _, rule := range l.URLRules {
|
|
|
|
switch rule.Type {
|
|
|
|
case "alias":
|
|
|
|
registerAliasHandler(rule, router)
|
|
|
|
case "uwsgi":
|
|
|
|
registerUwsgiHandler(rule, router)
|
|
|
|
case "fastcgi":
|
|
|
|
docroot := l.Docroot
|
|
|
|
if rule.Docroot != "" {
|
|
|
|
docroot = rule.Docroot
|
|
|
|
}
|
|
|
|
registerFastCGIHandler(rule, docroot, router)
|
|
|
|
case "reverse":
|
|
|
|
registerHTTPHandler(rule, router)
|
|
|
|
default:
|
|
|
|
fmt.Printf("invalid type: %s\n", rule.Type)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
router.PathPrefix("/").Handler(http.FileServer(http.Dir(l.Docroot)))
|
|
|
|
|
|
|
|
go func(l server) {
|
|
|
|
addr := fmt.Sprintf("%s:%d", l.Host, l.Port)
|
|
|
|
hdlr := &handler{
|
|
|
|
handler: router,
|
|
|
|
enableProxy: l.EnableProxy,
|
|
|
|
enableAuth: l.EnableAuth,
|
|
|
|
localDomains: domains,
|
|
|
|
}
|
|
|
|
|
|
|
|
if l.EnableAuth {
|
|
|
|
if l.PasswdFile == "" {
|
|
|
|
log.Fatal("passwdfile required")
|
|
|
|
}
|
|
|
|
du, err := newDigestSecret(l.PasswdFile)
|
|
|
|
if err != nil {
|
|
|
|
log.Fatal(err)
|
|
|
|
}
|
|
|
|
digestAuth := auth.NewDigestAuthenticator(l.Realm, du.getPw)
|
|
|
|
digestAuth.Headers = auth.ProxyHeaders
|
|
|
|
hdlr.authMethod = digestAuth
|
|
|
|
}
|
|
|
|
|
|
|
|
if len(certs) > 0 {
|
|
|
|
tlsconfig := &tls.Config{
|
|
|
|
Certificates: certs,
|
|
|
|
}
|
|
|
|
|
|
|
|
tlsconfig.BuildNameToCertificate()
|
|
|
|
|
|
|
|
srv := http.Server{
|
|
|
|
Addr: addr,
|
|
|
|
TLSConfig: tlsconfig,
|
|
|
|
Handler: hdlr,
|
|
|
|
}
|
|
|
|
log.Printf("listen https on %s", addr)
|
|
|
|
if err := srv.ListenAndServeTLS("", ""); err != nil {
|
|
|
|
log.Fatal(err)
|
|
|
|
}
|
|
|
|
|
|
|
|
} else {
|
|
|
|
log.Printf("listen http on %s", addr)
|
|
|
|
if err := http.ListenAndServe(addr, hdlr); err != nil {
|
|
|
|
log.Fatal(err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}(l)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func registerAliasHandler(r rule, router *mux.Router) {
|
|
|
|
switch r.Target.Type {
|
|
|
|
case "file":
|
|
|
|
registerFileHandler(r, router)
|
|
|
|
case "dir":
|
|
|
|
registerDirHandler(r, router)
|
|
|
|
default:
|
|
|
|
fmt.Printf("invalid type: %s, only file, dir allowed\n", r.Target.Type)
|
|
|
|
os.Exit(-1)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func registerFileHandler(r rule, router *mux.Router) {
|
|
|
|
router.HandleFunc(r.URLPrefix,
|
|
|
|
func(w http.ResponseWriter, req *http.Request) {
|
|
|
|
http.ServeFile(w, req, r.Target.Path)
|
|
|
|
})
|
|
|
|
}
|
|
|
|
|
|
|
|
func registerDirHandler(r rule, router *mux.Router) {
|
|
|
|
p := strings.TrimRight(r.URLPrefix, "/")
|
|
|
|
router.PathPrefix(r.URLPrefix).Handler(
|
|
|
|
http.StripPrefix(p,
|
|
|
|
http.FileServer(http.Dir(r.Target.Path))))
|
|
|
|
}
|
|
|
|
|
|
|
|
func registerUwsgiHandler(r rule, router *mux.Router) {
|
|
|
|
var p string
|
|
|
|
switch r.Target.Type {
|
|
|
|
case "unix":
|
|
|
|
p = r.Target.Path
|
|
|
|
case "tcp":
|
|
|
|
p = fmt.Sprintf("%s:%d", r.Target.Host, r.Target.Port)
|
|
|
|
default:
|
|
|
|
fmt.Printf("invalid scheme: %s, only support unix, tcp", r.Target.Type)
|
|
|
|
os.Exit(-1)
|
|
|
|
}
|
|
|
|
|
|
|
|
if r.IsRegex {
|
|
|
|
m1 := myURLMatch{regexp.MustCompile(r.URLPrefix)}
|
|
|
|
u := NewUwsgi(r.Target.Type, p, "")
|
|
|
|
router.MatcherFunc(m1.match).Handler(u)
|
|
|
|
} else {
|
|
|
|
u := NewUwsgi(r.Target.Type, p, r.URLPrefix)
|
|
|
|
router.PathPrefix(r.URLPrefix).Handler(u)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func registerFastCGIHandler(r rule, docroot string, router *mux.Router) {
|
|
|
|
var n, p string
|
|
|
|
switch r.Target.Type {
|
|
|
|
case "unix":
|
|
|
|
n = "unix"
|
|
|
|
p = r.Target.Path
|
|
|
|
case "tcp":
|
|
|
|
n = "tcp"
|
|
|
|
p = fmt.Sprintf("%s:%d", r.Target.Host, r.Target.Port)
|
|
|
|
default:
|
|
|
|
fmt.Printf("invalid scheme: %s, only support unix, tcp", r.Target.Type)
|
|
|
|
os.Exit(-1)
|
|
|
|
}
|
|
|
|
|
|
|
|
u := gofast.NewHandler(gofast.NewPHPFS(docroot), n, p)
|
|
|
|
if r.IsRegex {
|
|
|
|
m1 := myURLMatch{regexp.MustCompile(r.URLPrefix)}
|
|
|
|
router.MatcherFunc(m1.match).Handler(u)
|
|
|
|
} else {
|
|
|
|
router.PathPrefix(r.URLPrefix).Handler(u)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func registerHTTPHandler(r rule, router *mux.Router) {
|
|
|
|
var u http.Handler
|
|
|
|
var addr string
|
|
|
|
switch r.Target.Type {
|
|
|
|
case "unix":
|
|
|
|
addr = r.Target.Path
|
|
|
|
u = newProxy(addr, r.URLPrefix)
|
|
|
|
case "http":
|
|
|
|
addr = fmt.Sprintf("%s:%d", r.Target.Host, r.Target.Port)
|
|
|
|
u1 := &url.URL{
|
|
|
|
Scheme: "http",
|
|
|
|
Host: addr,
|
|
|
|
Path: r.Target.Path,
|
|
|
|
}
|
|
|
|
u = httputil.NewSingleHostReverseProxy(u1)
|
|
|
|
default:
|
|
|
|
fmt.Printf("invalid scheme: %s, only support unix, http", r.Target.Type)
|
|
|
|
os.Exit(-1)
|
|
|
|
}
|
|
|
|
p := strings.TrimRight(r.URLPrefix, "/")
|
|
|
|
router.PathPrefix(r.URLPrefix).Handler(
|
|
|
|
http.StripPrefix(p, u))
|
|
|
|
}
|
|
|
|
|
|
|
|
type myURLMatch struct {
|
|
|
|
re *regexp.Regexp
|
|
|
|
}
|
|
|
|
|
|
|
|
func (m myURLMatch) match(r *http.Request, route *mux.RouteMatch) bool {
|
|
|
|
ret := m.re.MatchString(r.URL.Path)
|
|
|
|
return ret
|
|
|
|
}
|