dispatch/server/server.go

package server

import (
	"crypto/tls"
	"log"
	"net"
	"net/http"
	"net/http/httputil"
	"net/url"
	"strings"

	"github.com/gorilla/websocket"
	"github.com/spf13/viper"

	"github.com/khlieng/dispatch/letsencrypt"
	"github.com/khlieng/dispatch/storage"
)

var (
	sessions     *sessionStore
	channelStore *storage.ChannelStore

	upgrader = websocket.Upgrader{
		ReadBufferSize:  1024,
		WriteBufferSize: 1024,
	}
)

func Run() {
	sessions = newSessionStore()
	channelStore = storage.NewChannelStore()

	if viper.GetBool("dev") {
		upgrader.CheckOrigin = func(r *http.Request) bool {
			return true
		}
	}

	reconnectIRC()
	initAuth()
	initFileServer()
	startHTTP()
}

func startHTTP() {
	port := viper.GetString("port")

	if viper.GetBool("https.enabled") {
		portHTTPS := viper.GetString("https.port")
		redirect := viper.GetBool("https.redirect")

		if redirect {
			log.Println("[HTTP] Listening on port", port, "(HTTPS Redirect)")
			go http.ListenAndServe(":"+port, createHTTPSRedirect(portHTTPS))
		}

		server := &http.Server{
			Addr:    ":" + portHTTPS,
			Handler: http.HandlerFunc(serve),
		}

		if certExists() {
			log.Println("[HTTPS] Listening on port", portHTTPS)
			server.ListenAndServeTLS(viper.GetString("https.cert"), viper.GetString("https.key"))
		} else if domain := viper.GetString("letsencrypt.domain"); domain != "" {
			dir := storage.Path.LetsEncrypt()
			email := viper.GetString("letsencrypt.email")
			lePort := viper.GetString("letsencrypt.port")

			if viper.GetBool("letsencrypt.proxy") && lePort != "" && (port != "80" || !redirect) {
				log.Println("[HTTP] Listening on port 80 (Let's Encrypt Proxy))")
				go http.ListenAndServe(":80", http.HandlerFunc(letsEncryptProxy))
			}

			letsEncrypt, err := letsencrypt.Run(dir, domain, email, ":"+lePort)
			if err != nil {
				log.Fatal(err)
			}

			server.TLSConfig = &tls.Config{
				GetCertificate: letsEncrypt.GetCertificate,
			}

			log.Println("[HTTPS] Listening on port", portHTTPS)
			log.Fatal(server.ListenAndServeTLS("", ""))
		} else {
			log.Fatal("Could not locate SSL certificate or private key")
		}
	} else {
		if viper.GetBool("dev") {
			// The node dev server will proxy index page requests and
			// websocket connections to this port
			port = "1337"
		}
		log.Println("[HTTP] Listening on port", port)
		log.Fatal(http.ListenAndServe(":"+port, http.HandlerFunc(serve)))
	}
}

func serve(w http.ResponseWriter, r *http.Request) {
	if r.Method != "GET" {
		w.WriteHeader(404)
		return
	}

	if r.URL.Path == "/ws" {
		session := handleAuth(w, r)
		if session == nil {
			log.Println("[Auth] No session")
			w.WriteHeader(500)
			return
		}

		upgradeWS(w, r, session)
	} else {
		serveFiles(w, r)
	}
}

func upgradeWS(w http.ResponseWriter, r *http.Request, session *Session) {
	conn, err := upgrader.Upgrade(w, r, w.Header())
	if err != nil {
		log.Println(err)
		return
	}

	newWSHandler(conn, session, r).run()
}

func createHTTPSRedirect(portHTTPS string) http.HandlerFunc {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		if strings.HasPrefix(r.URL.Path, "/.well-known/acme-challenge") {
			letsEncryptProxy(w, r)
			return
		}

		host, _, err := net.SplitHostPort(r.Host)
		if err != nil {
			host = r.Host
		}

		u := url.URL{
			Scheme: "https",
			Host:   net.JoinHostPort(host, portHTTPS),
			Path:   r.RequestURI,
		}

		w.Header().Set("Location", u.String())
		w.WriteHeader(http.StatusMovedPermanently)
	})
}

func letsEncryptProxy(w http.ResponseWriter, r *http.Request) {
	host, _, err := net.SplitHostPort(r.Host)
	if err != nil {
		host = r.Host
	}

	upstream := &url.URL{
		Scheme: "http",
		Host:   net.JoinHostPort(host, viper.GetString("letsencrypt.port")),
	}

	httputil.NewSingleHostReverseProxy(upstream).ServeHTTP(w, r)
}
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`package server`

			`import (`
Add HTTP/2 push 2017-04-15 02:48:24 +00:00			`"crypto/tls"`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`"log"`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`"net"`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`"net/http"`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`"net/http/httputil"`
			`"net/url"`
			`"strings"`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00
Switch from Godep to go vendoring 2016-03-01 00:51:26 +00:00			`"github.com/gorilla/websocket"`
			`"github.com/spf13/viper"`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00
Let's Encrypt 2016-01-04 18:26:32 +00:00			`"github.com/khlieng/dispatch/letsencrypt"`
Name it 2015-12-11 03:35:48 +00:00			`"github.com/khlieng/dispatch/storage"`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`)`

			`var (`
Set long cache-control and add a hash to css and js urls, clean some things up 2016-01-25 05:01:40 +00:00			`sessions *sessionStore`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`channelStore *storage.ChannelStore`
Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00
Switch to gorilla/websocket 2015-05-01 22:20:22 +00:00			`upgrader = websocket.Upgrader{`
			`ReadBufferSize: 1024,`
			`WriteBufferSize: 1024,`
			`}`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`)`

Let's Encrypt 2016-01-04 18:26:32 +00:00			`func Run() {`
Set long cache-control and add a hash to css and js urls, clean some things up 2016-01-25 05:01:40 +00:00			`sessions = newSessionStore()`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`channelStore = storage.NewChannelStore()`

Allow all websocket origins in development mode 2016-01-27 17:03:38 +00:00			`if viper.GetBool("dev") {`
			`upgrader.CheckOrigin = func(r *http.Request) bool {`
			`return true`
			`}`
			`}`

Let's Encrypt 2016-01-04 18:26:32 +00:00			`reconnectIRC()`
Set long cache-control and add a hash to css and js urls, clean some things up 2016-01-25 05:01:40 +00:00			`initAuth()`
			`initFileServer()`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`startHTTP()`
Set GOMAXPROCS to NumCPU, drop httprouter 2015-06-06 23:18:26 +00:00			`}`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00
Let's Encrypt 2016-01-04 18:26:32 +00:00			`func startHTTP() {`
			`port := viper.GetString("port")`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00
Let's Encrypt 2016-01-04 18:26:32 +00:00			`if viper.GetBool("https.enabled") {`
			`portHTTPS := viper.GetString("https.port")`
			`redirect := viper.GetBool("https.redirect")`

Refactor lets encrypt integration to support cert changes and ocsp stapling without restarting 2016-01-06 21:19:06 +00:00			`if redirect {`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`log.Println("[HTTP] Listening on port", port, "(HTTPS Redirect)")`
			`go http.ListenAndServe(":"+port, createHTTPSRedirect(portHTTPS))`
			`}`

Refactor lets encrypt integration to support cert changes and ocsp stapling without restarting 2016-01-06 21:19:06 +00:00			`server := &http.Server{`
			`Addr: ":" + portHTTPS,`
			`Handler: http.HandlerFunc(serve),`
			`}`

Let's Encrypt 2016-01-04 18:26:32 +00:00			`if certExists() {`
Refactor lets encrypt integration to support cert changes and ocsp stapling without restarting 2016-01-06 21:19:06 +00:00			`log.Println("[HTTPS] Listening on port", portHTTPS)`
			`server.ListenAndServeTLS(viper.GetString("https.cert"), viper.GetString("https.key"))`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`} else if domain := viper.GetString("letsencrypt.domain"); domain != "" {`
			`dir := storage.Path.LetsEncrypt()`
			`email := viper.GetString("letsencrypt.email")`
			`lePort := viper.GetString("letsencrypt.port")`

			`if viper.GetBool("letsencrypt.proxy") && lePort != "" && (port != "80" \|\| !redirect) {`
			`log.Println("[HTTP] Listening on port 80 (Let's Encrypt Proxy))")`
			`go http.ListenAndServe(":80", http.HandlerFunc(letsEncryptProxy))`
			`}`

Update server dependencies 2016-01-15 18:48:03 +00:00			`letsEncrypt, err := letsencrypt.Run(dir, domain, email, ":"+lePort)`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`if err != nil {`
			`log.Fatal(err)`
			`}`
Refactor lets encrypt integration to support cert changes and ocsp stapling without restarting 2016-01-06 21:19:06 +00:00
Add HTTP/2 push 2017-04-15 02:48:24 +00:00			`server.TLSConfig = &tls.Config{`
			`GetCertificate: letsEncrypt.GetCertificate,`
			`}`
Refactor lets encrypt integration to support cert changes and ocsp stapling without restarting 2016-01-06 21:19:06 +00:00
			`log.Println("[HTTPS] Listening on port", portHTTPS)`
Add HTTP/2 push 2017-04-15 02:48:24 +00:00			`log.Fatal(server.ListenAndServeTLS("", ""))`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`} else {`
			`log.Fatal("Could not locate SSL certificate or private key")`
			`}`
			`} else {`
Always listen on port 1337 in dev mode since the client expects it 2017-05-21 09:11:16 +00:00			`if viper.GetBool("dev") {`
Print some info when running in dev mode 2017-06-06 22:17:46 +00:00			`// The node dev server will proxy index page requests and`
			`// websocket connections to this port`
Always listen on port 1337 in dev mode since the client expects it 2017-05-21 09:11:16 +00:00			`port = "1337"`
			`}`
Let's Encrypt 2016-01-04 18:26:32 +00:00			`log.Println("[HTTP] Listening on port", port)`
			`log.Fatal(http.ListenAndServe(":"+port, http.HandlerFunc(serve)))`
			`}`
			`}`

			`func serve(w http.ResponseWriter, r *http.Request) {`
Set GOMAXPROCS to NumCPU, drop httprouter 2015-06-06 23:18:26 +00:00			`if r.Method != "GET" {`
Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00			`w.WriteHeader(404)`
Set GOMAXPROCS to NumCPU, drop httprouter 2015-06-06 23:18:26 +00:00			`return`
			`}`

			`if r.URL.Path == "/ws" {`
Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00			`session := handleAuth(w, r)`
			`if session == nil {`
			`log.Println("[Auth] No session")`
			`w.WriteHeader(500)`
			`return`
			`}`

			`upgradeWS(w, r, session)`
Set GOMAXPROCS to NumCPU, drop httprouter 2015-06-06 23:18:26 +00:00			`} else {`
			`serveFiles(w, r)`
			`}`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`}`

Store auth info in a JWT token in a cookie 2016-01-15 01:27:30 +00:00			`func upgradeWS(w http.ResponseWriter, r http.Request, session Session) {`
			`conn, err := upgrader.Upgrade(w, r, w.Header())`
Switch to gorilla/websocket 2015-05-01 22:20:22 +00:00			`if err != nil {`
			`log.Println(err)`
			`return`
			`}`

Send the 25 last messages for each channel to the client on load 2017-04-19 23:51:55 +00:00			`newWSHandler(conn, session, r).run()`
Switch to gorilla/websocket 2015-05-01 22:20:22 +00:00			`}`

Let's Encrypt 2016-01-04 18:26:32 +00:00			`func createHTTPSRedirect(portHTTPS string) http.HandlerFunc {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
			`if strings.HasPrefix(r.URL.Path, "/.well-known/acme-challenge") {`
			`letsEncryptProxy(w, r)`
			`return`
			`}`

			`host, _, err := net.SplitHostPort(r.Host)`
			`if err != nil {`
			`host = r.Host`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`}`
Let's Encrypt 2016-01-04 18:26:32 +00:00
			`u := url.URL{`
			`Scheme: "https",`
			`Host: net.JoinHostPort(host, portHTTPS),`
			`Path: r.RequestURI,`
			`}`

			`w.Header().Set("Location", u.String())`
			`w.WriteHeader(http.StatusMovedPermanently)`
			`})`
			`}`

			`func letsEncryptProxy(w http.ResponseWriter, r *http.Request) {`
			`host, _, err := net.SplitHostPort(r.Host)`
			`if err != nil {`
			`host = r.Host`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`}`
Let's Encrypt 2016-01-04 18:26:32 +00:00
			`upstream := &url.URL{`
			`Scheme: "http",`
			`Host: net.JoinHostPort(host, viper.GetString("letsencrypt.port")),`
			`}`

			`httputil.NewSingleHostReverseProxy(upstream).ServeHTTP(w, r)`
Add cobra, move the server code into its own package 2015-05-01 20:59:46 +00:00			`}`