83 lines
2.4 KiB
Go
83 lines
2.4 KiB
Go
package runner
|
|
|
|
import (
|
|
"context"
|
|
"crypto/tls"
|
|
"fmt"
|
|
"log"
|
|
"net"
|
|
"net/http"
|
|
"strconv"
|
|
"time"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/gotify/server/v2/config"
|
|
"golang.org/x/crypto/acme/autocert"
|
|
)
|
|
|
|
// Run starts the http server and if configured a https server.
|
|
func Run(engine *gin.Engine, conf *config.Configuration) {
|
|
var httpHandler http.Handler = engine
|
|
|
|
if *conf.Server.SSL.Enabled {
|
|
if *conf.Server.SSL.RedirectToHTTPS {
|
|
httpHandler = redirectToHTTPS(strconv.Itoa(conf.Server.SSL.Port))
|
|
}
|
|
|
|
addr := fmt.Sprintf("%s:%d", conf.Server.SSL.ListenAddr, conf.Server.SSL.Port)
|
|
s := &http.Server{
|
|
Addr: addr,
|
|
Handler: engine,
|
|
}
|
|
|
|
if *conf.Server.SSL.LetsEncrypt.Enabled {
|
|
certManager := autocert.Manager{
|
|
Prompt: func(tosURL string) bool { return *conf.Server.SSL.LetsEncrypt.AcceptTOS },
|
|
HostPolicy: autocert.HostWhitelist(conf.Server.SSL.LetsEncrypt.Hosts...),
|
|
Cache: autocert.DirCache(conf.Server.SSL.LetsEncrypt.Cache),
|
|
}
|
|
httpHandler = certManager.HTTPHandler(httpHandler)
|
|
s.TLSConfig = &tls.Config{GetCertificate: certManager.GetCertificate}
|
|
}
|
|
fmt.Println("Started Listening for TLS connection on " + addr)
|
|
go func() {
|
|
listener := startListening(addr, conf.Server.KeepAlivePeriodSeconds)
|
|
log.Fatal(s.ServeTLS(listener, conf.Server.SSL.CertFile, conf.Server.SSL.CertKey))
|
|
}()
|
|
}
|
|
addr := fmt.Sprintf("%s:%d", conf.Server.ListenAddr, conf.Server.Port)
|
|
fmt.Println("Started Listening for plain HTTP connection on " + addr)
|
|
server := &http.Server{Addr: addr, Handler: httpHandler}
|
|
|
|
log.Fatal(server.Serve(startListening(addr, conf.Server.KeepAlivePeriodSeconds)))
|
|
}
|
|
|
|
func startListening(addr string, keepAlive int) net.Listener {
|
|
lc := net.ListenConfig{KeepAlive: time.Duration(keepAlive) * time.Second}
|
|
conn, err := lc.Listen(context.Background(), "tcp", addr)
|
|
if err != nil {
|
|
log.Fatalln("Could not listen on", addr, err)
|
|
}
|
|
return conn
|
|
}
|
|
|
|
func redirectToHTTPS(port string) http.HandlerFunc {
|
|
return func(w http.ResponseWriter, r *http.Request) {
|
|
if r.Method != "GET" && r.Method != "HEAD" {
|
|
http.Error(w, "Use HTTPS", http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
target := "https://" + changePort(r.Host, port) + r.URL.RequestURI()
|
|
http.Redirect(w, r, target, http.StatusFound)
|
|
}
|
|
}
|
|
|
|
func changePort(hostPort string, port string) string {
|
|
host, _, err := net.SplitHostPort(hostPort)
|
|
if err != nil {
|
|
return hostPort
|
|
}
|
|
return net.JoinHostPort(host, port)
|
|
}
|