LittleSheep
e55077c7e9
All checks were successful
release-nightly / build-docker (push) Successful in 2m4s
112 lines
3.0 KiB
Go
112 lines
3.0 KiB
Go
package hypertext
|
|
|
|
import (
|
|
"crypto/tls"
|
|
jsoniter "github.com/json-iterator/go"
|
|
"net"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/gofiber/fiber/v2"
|
|
"github.com/gofiber/fiber/v2/middleware/limiter"
|
|
"github.com/gofiber/fiber/v2/middleware/logger"
|
|
"github.com/rs/zerolog/log"
|
|
"github.com/spf13/viper"
|
|
)
|
|
|
|
func InitServer() *fiber.App {
|
|
app := fiber.New(fiber.Config{
|
|
AppName: "RoadSign",
|
|
ServerHeader: "RoadSign",
|
|
DisableStartupMessage: true,
|
|
EnableIPValidation: true,
|
|
JSONDecoder: jsoniter.ConfigCompatibleWithStandardLibrary.Unmarshal,
|
|
JSONEncoder: jsoniter.ConfigCompatibleWithStandardLibrary.Marshal,
|
|
Prefork: viper.GetBool("performance.prefork"),
|
|
BodyLimit: viper.GetInt("hypertext.limitation.max_body_size"),
|
|
})
|
|
|
|
if viper.GetBool("telemetry.request_logging") {
|
|
app.Use(logger.New(logger.Config{
|
|
Output: log.Logger,
|
|
Format: "[Proxies] [${time}] ${status} - ${latency} ${method} ${path}\n",
|
|
}))
|
|
}
|
|
|
|
if viper.GetInt("hypertext.limitation.max_qps") > 0 {
|
|
app.Use(limiter.New(limiter.Config{
|
|
Max: viper.GetInt("hypertext.limitation.max_qps"),
|
|
Expiration: 1 * time.Second,
|
|
}))
|
|
}
|
|
|
|
UseProxies(app)
|
|
|
|
return app
|
|
}
|
|
|
|
type CertificateConfig struct {
|
|
Key string `json:"key"`
|
|
Pem string `json:"pem"`
|
|
}
|
|
|
|
func RunServer(app *fiber.App, ports []string, securedPorts []string) {
|
|
var certs []CertificateConfig
|
|
raw, _ := jsoniter.Marshal(viper.Get("hypertext.certificate"))
|
|
jsoniter.Unmarshal(raw, &certs)
|
|
|
|
tlsCfg := &tls.Config{
|
|
MinVersion: tls.VersionTLS12,
|
|
Certificates: []tls.Certificate{},
|
|
}
|
|
|
|
for _, info := range certs {
|
|
cert, err := tls.LoadX509KeyPair(info.Pem, info.Key)
|
|
if err != nil {
|
|
log.Error().Err(err).
|
|
Str("pem", info.Pem).
|
|
Str("key", info.Key).
|
|
Msg("An error occurred when loading certificate.")
|
|
} else {
|
|
tlsCfg.Certificates = append(tlsCfg.Certificates, cert)
|
|
}
|
|
}
|
|
|
|
for _, port := range ports {
|
|
port := port
|
|
go func() {
|
|
if viper.GetBool("hypertext.redirect_to_https") {
|
|
redirector := fiber.New(fiber.Config{
|
|
AppName: "RoadSign",
|
|
ServerHeader: "RoadSign",
|
|
DisableStartupMessage: true,
|
|
EnableIPValidation: true,
|
|
})
|
|
redirector.All("/", func(c *fiber.Ctx) error {
|
|
return c.Redirect(strings.ReplaceAll(string(c.Request().URI().FullURI()), "http", "https"))
|
|
})
|
|
if err := redirector.Listen(port); err != nil {
|
|
log.Panic().Err(err).Msg("An error occurred when listening hypertext non-tls ports.")
|
|
}
|
|
} else {
|
|
if err := app.Listen(port); err != nil {
|
|
log.Panic().Err(err).Msg("An error occurred when listening hypertext non-tls ports.")
|
|
}
|
|
}
|
|
}()
|
|
}
|
|
|
|
for _, port := range securedPorts {
|
|
port := port
|
|
go func() {
|
|
listener, err := net.Listen("tcp", port)
|
|
if err != nil {
|
|
log.Panic().Err(err).Msg("An error occurred when listening hypertext tls ports.")
|
|
}
|
|
if err := app.Listener(tls.NewListener(listener, tlsCfg)); err != nil {
|
|
log.Panic().Err(err).Msg("An error occurred when listening hypertext tls ports.")
|
|
}
|
|
}()
|
|
}
|
|
}
|