dispatch/server/server.go

package server

import (
	"log"
	"net"
	"net/http"
	"net/http/httputil"
	"net/url"
	"strings"
	"sync"

	"github.com/khlieng/dispatch/Godeps/_workspace/src/github.com/gorilla/websocket"
	"github.com/khlieng/dispatch/Godeps/_workspace/src/github.com/spf13/viper"
	"github.com/khlieng/dispatch/Godeps/_workspace/src/golang.org/x/net/http2"

	"github.com/khlieng/dispatch/letsencrypt"
	"github.com/khlieng/dispatch/storage"
)

const (
	cookieName = "dispatch"
)

var (
	channelStore *storage.ChannelStore
	sessions     map[uint64]*Session
	sessionLock  sync.Mutex

	hmacKey []byte

	upgrader = websocket.Upgrader{
		ReadBufferSize:  1024,
		WriteBufferSize: 1024,
		CheckOrigin: func(r *http.Request) bool {
			return true
		},
	}
)

func Run() {
	defer storage.Close()

	channelStore = storage.NewChannelStore()
	sessions = make(map[uint64]*Session)

	var err error
	hmacKey, err = getHMACKey()
	if err != nil {
		log.Fatal(err)
	}

	reconnectIRC()
	startHTTP()

	select {}
}

func startHTTP() {
	port := viper.GetString("port")

	if viper.GetBool("https.enabled") {
		portHTTPS := viper.GetString("https.port")
		redirect := viper.GetBool("https.redirect")

		if redirect {
			log.Println("[HTTP] Listening on port", port, "(HTTPS Redirect)")
			go http.ListenAndServe(":"+port, createHTTPSRedirect(portHTTPS))
		}

		server := &http.Server{
			Addr:    ":" + portHTTPS,
			Handler: http.HandlerFunc(serve),
		}

		http2.ConfigureServer(server, nil)

		if certExists() {
			log.Println("[HTTPS] Listening on port", portHTTPS)
			server.ListenAndServeTLS(viper.GetString("https.cert"), viper.GetString("https.key"))
		} else if domain := viper.GetString("letsencrypt.domain"); domain != "" {
			dir := storage.Path.LetsEncrypt()
			email := viper.GetString("letsencrypt.email")
			lePort := viper.GetString("letsencrypt.port")

			if viper.GetBool("letsencrypt.proxy") && lePort != "" && (port != "80" || !redirect) {
				log.Println("[HTTP] Listening on port 80 (Let's Encrypt Proxy))")
				go http.ListenAndServe(":80", http.HandlerFunc(letsEncryptProxy))
			}

			letsEncrypt, err := letsencrypt.Run(dir, domain, email, lePort)
			if err != nil {
				log.Fatal(err)
			}

			server.TLSConfig.GetCertificate = letsEncrypt.GetCertificate

			log.Println("[HTTPS] Listening on port", portHTTPS)
			log.Fatal(listenAndServeTLS(server))
		} else {
			log.Fatal("Could not locate SSL certificate or private key")
		}
	} else {
		log.Println("[HTTP] Listening on port", port)
		log.Fatal(http.ListenAndServe(":"+port, http.HandlerFunc(serve)))
	}
}

func serve(w http.ResponseWriter, r *http.Request) {
	if r.Method != "GET" {
		w.WriteHeader(404)
		return
	}

	if r.URL.Path == "/ws" {
		session := handleAuth(w, r)
		if session == nil {
			log.Println("[Auth] No session")
			w.WriteHeader(500)
			return
		}

		upgradeWS(w, r, session)
	} else {
		serveFiles(w, r)
	}
}

func upgradeWS(w http.ResponseWriter, r *http.Request, session *Session) {
	conn, err := upgrader.Upgrade(w, r, w.Header())
	if err != nil {
		log.Println(err)
		return
	}

	newWSHandler(conn, session).run()
}

func createHTTPSRedirect(portHTTPS string) http.HandlerFunc {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		if strings.HasPrefix(r.URL.Path, "/.well-known/acme-challenge") {
			letsEncryptProxy(w, r)
			return
		}

		host, _, err := net.SplitHostPort(r.Host)
		if err != nil {
			host = r.Host
		}

		u := url.URL{
			Scheme: "https",
			Host:   net.JoinHostPort(host, portHTTPS),
			Path:   r.RequestURI,
		}

		w.Header().Set("Location", u.String())
		w.WriteHeader(http.StatusMovedPermanently)
	})
}

func letsEncryptProxy(w http.ResponseWriter, r *http.Request) {
	host, _, err := net.SplitHostPort(r.Host)
	if err != nil {
		host = r.Host
	}

	upstream := &url.URL{
		Scheme: "http",
		Host:   net.JoinHostPort(host, viper.GetString("letsencrypt.port")),
	}

	httputil.NewSingleHostReverseProxy(upstream).ServeHTTP(w, r)
}
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`package server`

			`import (`
			`"log"`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`"net"`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`"net/http"`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`"net/http/httputil"`
			`"net/url"`
			`"strings"`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`"sync"`

Name it 2015-12-11 03:35:48 +00:00			`"github.com/khlieng/dispatch/Godeps/_workspace/src/github.com/gorilla/websocket"`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`"github.com/khlieng/dispatch/Godeps/_workspace/src/github.com/spf13/viper"`
Enable HTTP/2 2016-01-08 17:53:02 +00:00			`"github.com/khlieng/dispatch/Godeps/_workspace/src/golang.org/x/net/http2"`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00
Let's Encrypt 2016-01-04 18:26:32 +00:00			`"github.com/khlieng/dispatch/letsencrypt"`
Name it 2015-12-11 03:35:48 +00:00			`"github.com/khlieng/dispatch/storage"`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`)`

Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00			`const (`
			`cookieName = "dispatch"`
			`)`

Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`var (`
			`channelStore *storage.ChannelStore`
Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00			`sessions map[uint64]*Session`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`sessionLock sync.Mutex`
Update client dependencies, embed only gzipped assets and unzip on the fly if needed 2015-05-15 05:32:32 +00:00
Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00			`hmacKey []byte`

Switch to gorilla/websocket 2015-05-01 22:20:22 +00:00			`upgrader = websocket.Upgrader{`
			`ReadBufferSize: 1024,`
			`WriteBufferSize: 1024,`
Allow websocket connections from all origins 2015-05-11 03:13:35 +00:00			`CheckOrigin: func(r *http.Request) bool {`
			`return true`
			`},`
Switch to gorilla/websocket 2015-05-01 22:20:22 +00:00			`}`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`)`

Let's Encrypt 2016-01-04 18:26:32 +00:00			`func Run() {`
Add clear command and get rid of the development flag 2015-05-01 23:02:21 +00:00			`defer storage.Close()`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00
			`channelStore = storage.NewChannelStore()`
Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00			`sessions = make(map[uint64]*Session)`

			`var err error`
			`hmacKey, err = getHMACKey()`
			`if err != nil {`
			`log.Fatal(err)`
			`}`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00
Let's Encrypt 2016-01-04 18:26:32 +00:00			`reconnectIRC()`
			`startHTTP()`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00
Let's Encrypt 2016-01-04 18:26:32 +00:00			`select {}`
Set GOMAXPROCS to NumCPU, drop httprouter 2015-06-06 23:18:26 +00:00			`}`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00
Let's Encrypt 2016-01-04 18:26:32 +00:00			`func startHTTP() {`
			`port := viper.GetString("port")`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00
Let's Encrypt 2016-01-04 18:26:32 +00:00			`if viper.GetBool("https.enabled") {`
			`portHTTPS := viper.GetString("https.port")`
			`redirect := viper.GetBool("https.redirect")`

Refactor lets encrypt integration to support cert changes and ocsp stapling without restarting 2016-01-06 21:19:06 +00:00			`if redirect {`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`log.Println("[HTTP] Listening on port", port, "(HTTPS Redirect)")`
			`go http.ListenAndServe(":"+port, createHTTPSRedirect(portHTTPS))`
			`}`

Refactor lets encrypt integration to support cert changes and ocsp stapling without restarting 2016-01-06 21:19:06 +00:00			`server := &http.Server{`
			`Addr: ":" + portHTTPS,`
			`Handler: http.HandlerFunc(serve),`
			`}`

Enable HTTP/2 2016-01-08 17:53:02 +00:00			`http2.ConfigureServer(server, nil)`

Let's Encrypt 2016-01-04 18:26:32 +00:00			`if certExists() {`
Refactor lets encrypt integration to support cert changes and ocsp stapling without restarting 2016-01-06 21:19:06 +00:00			`log.Println("[HTTPS] Listening on port", portHTTPS)`
			`server.ListenAndServeTLS(viper.GetString("https.cert"), viper.GetString("https.key"))`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`} else if domain := viper.GetString("letsencrypt.domain"); domain != "" {`
			`dir := storage.Path.LetsEncrypt()`
			`email := viper.GetString("letsencrypt.email")`
			`lePort := viper.GetString("letsencrypt.port")`

			`if viper.GetBool("letsencrypt.proxy") && lePort != "" && (port != "80" \|\| !redirect) {`
			`log.Println("[HTTP] Listening on port 80 (Let's Encrypt Proxy))")`
			`go http.ListenAndServe(":80", http.HandlerFunc(letsEncryptProxy))`
			`}`

Refactor lets encrypt integration to support cert changes and ocsp stapling without restarting 2016-01-06 21:19:06 +00:00			`letsEncrypt, err := letsencrypt.Run(dir, domain, email, lePort)`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`if err != nil {`
			`log.Fatal(err)`
			`}`
Refactor lets encrypt integration to support cert changes and ocsp stapling without restarting 2016-01-06 21:19:06 +00:00
Enable HTTP/2 2016-01-08 17:53:02 +00:00			`server.TLSConfig.GetCertificate = letsEncrypt.GetCertificate`
Refactor lets encrypt integration to support cert changes and ocsp stapling without restarting 2016-01-06 21:19:06 +00:00
			`log.Println("[HTTPS] Listening on port", portHTTPS)`
			`log.Fatal(listenAndServeTLS(server))`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`} else {`
			`log.Fatal("Could not locate SSL certificate or private key")`
			`}`
			`} else {`
			`log.Println("[HTTP] Listening on port", port)`
			`log.Fatal(http.ListenAndServe(":"+port, http.HandlerFunc(serve)))`
			`}`
			`}`

			`func serve(w http.ResponseWriter, r *http.Request) {`
Set GOMAXPROCS to NumCPU, drop httprouter 2015-06-06 23:18:26 +00:00			`if r.Method != "GET" {`
Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00			`w.WriteHeader(404)`
Set GOMAXPROCS to NumCPU, drop httprouter 2015-06-06 23:18:26 +00:00			`return`
			`}`

			`if r.URL.Path == "/ws" {`
Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00			`session := handleAuth(w, r)`
			`if session == nil {`
			`log.Println("[Auth] No session")`
			`w.WriteHeader(500)`
			`return`
			`}`

			`upgradeWS(w, r, session)`
Set GOMAXPROCS to NumCPU, drop httprouter 2015-06-06 23:18:26 +00:00			`} else {`
			`serveFiles(w, r)`
			`}`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`}`

Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00			`func upgradeWS(w http.ResponseWriter, r http.Request, session Session) {`
			`conn, err := upgrader.Upgrade(w, r, w.Header())`
Switch to gorilla/websocket 2015-05-01 22:20:22 +00:00			`if err != nil {`
			`log.Println(err)`
			`return`
			`}`

Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00			`newWSHandler(conn, session).run()`
Switch to gorilla/websocket 2015-05-01 22:20:22 +00:00			`}`

Let's Encrypt 2016-01-04 18:26:32 +00:00			`func createHTTPSRedirect(portHTTPS string) http.HandlerFunc {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`if strings.HasPrefix(r.URL.Path, "/.well-known/acme-challenge") {`
			`letsEncryptProxy(w, r)`
			`return`
			`}`

			`host, _, err := net.SplitHostPort(r.Host)`
			`if err != nil {`
			`host = r.Host`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`}`
Let's Encrypt 2016-01-04 18:26:32 +00:00
			`u := url.URL{`
			`Scheme: "https",`
			`Host: net.JoinHostPort(host, portHTTPS),`
			`Path: r.RequestURI,`
			`}`

			`w.Header().Set("Location", u.String())`
			`w.WriteHeader(http.StatusMovedPermanently)`
			`})`
			`}`

			`func letsEncryptProxy(w http.ResponseWriter, r *http.Request) {`
			`host, _, err := net.SplitHostPort(r.Host)`
			`if err != nil {`
			`host = r.Host`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`}`
Let's Encrypt 2016-01-04 18:26:32 +00:00
			`upstream := &url.URL{`
			`Scheme: "http",`
			`Host: net.JoinHostPort(host, viper.GetString("letsencrypt.port")),`
			`}`

			`httputil.NewSingleHostReverseProxy(upstream).ServeHTTP(w, r)`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`}`