-
Notifications
You must be signed in to change notification settings - Fork 55
/
vhostHandler.go
111 lines (97 loc) · 3.22 KB
/
vhostHandler.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
package serverHandler
import (
"mjpclab.dev/ghfs/src/param"
"mjpclab.dev/ghfs/src/serverError"
"mjpclab.dev/ghfs/src/serverLog"
"mjpclab.dev/ghfs/src/tpl"
"mjpclab.dev/ghfs/src/user"
"net/http"
"strings"
)
func NewVhostHandler(
p *param.Param,
logger *serverLog.Logger,
theme tpl.Theme,
) (handler http.Handler, errs []error) {
// users
users := user.NewList(p.UserMatchCase)
for _, u := range p.UsersPlain {
errs = serverError.AppendError(errs, users.AddPlain(u[0], u[1]))
}
for _, u := range p.UsersBase64 {
errs = serverError.AppendError(errs, users.AddBase64(u[0], u[1]))
}
for _, u := range p.UsersMd5 {
errs = serverError.AppendError(errs, users.AddMd5(u[0], u[1]))
}
for _, u := range p.UsersSha1 {
errs = serverError.AppendError(errs, users.AddSha1(u[0], u[1]))
}
for _, u := range p.UsersSha256 {
errs = serverError.AppendError(errs, users.AddSha256(u[0], u[1]))
}
for _, u := range p.UsersSha512 {
errs = serverError.AppendError(errs, users.AddSha512(u[0], u[1]))
}
// show/hide
shows, err := wildcardToRegexp(p.Shows)
errs = serverError.AppendError(errs, err)
showDirs, err := wildcardToRegexp(p.ShowDirs)
errs = serverError.AppendError(errs, err)
showFiles, err := wildcardToRegexp(p.ShowFiles)
errs = serverError.AppendError(errs, err)
hides, err := wildcardToRegexp(p.Hides)
errs = serverError.AppendError(errs, err)
hideDirs, err := wildcardToRegexp(p.HideDirs)
errs = serverError.AppendError(errs, err)
hideFiles, err := wildcardToRegexp(p.HideFiles)
errs = serverError.AppendError(errs, err)
if len(errs) > 0 {
return nil, errs
}
// restrict access
restrictAccessUrls := newRestrictAccesses(p.RestrictAccessUrls)
restrictAccessDirs := newRestrictAccesses(p.RestrictAccessDirs)
restrictAccess := hasRestrictAccess(p.GlobalRestrictAccess, restrictAccessUrls, restrictAccessDirs)
// `Vary` header
pageVarys := make([]string, 0, 4)
contentVarys := make([]string, 0, 3)
pageVarys = append(pageVarys, "Accept-Encoding")
if restrictAccess {
pageVarys = append(pageVarys, "Referer", "Origin")
contentVarys = append(contentVarys, "Referer", "Origin")
}
if p.GlobalAuth || len(p.AuthUrls) > 0 || len(p.AuthDirs) > 0 {
pageVarys = append(pageVarys, "Authorization")
contentVarys = append(contentVarys, "Authorization")
}
pageVaryV1 := strings.Join(pageVarys, ", ")
contentVaryV1 := strings.Join(contentVarys, ", ")
pageVary := strings.ToLower(pageVaryV1)
contentVary := strings.ToLower(contentVaryV1)
// alias param
ap := &aliasParam{
users: *users,
theme: theme,
logger: logger,
shows: shows,
showDirs: showDirs,
showFiles: showFiles,
hides: hides,
hideDirs: hideDirs,
hideFiles: hideFiles,
restrictAccess: restrictAccess,
restrictAccessUrls: restrictAccessUrls,
restrictAccessDirs: restrictAccessDirs,
headersUrls: newPathHeaders(p.HeadersUrls),
headersDirs: newPathHeaders(p.HeadersDirs),
pageVaryV1: pageVaryV1,
pageVary: pageVary,
contentVaryV1: contentVaryV1,
contentVary: contentVary,
}
muxHandler := newMultiplexHandler(p, ap)
preprocessHandler := newPreprocessHandler(logger, p.PreMiddlewares, muxHandler)
pathTransformHandler := newPathTransformHandler(p.PrefixUrls, preprocessHandler)
return pathTransformHandler, nil
}