keter/Keter/Main.hs

{-# LANGUAGE OverloadedStrings #-}
{-# LANGUAGE ViewPatterns      #-}
{-# LANGUAGE NoImplicitPrelude #-}
{-# LANGUAGE TemplateHaskell #-}
{-# LANGUAGE RecordWildCards #-}
{-# LANGUAGE ScopedTypeVariables #-}
module Keter.Main
    ( keter
    ) where

import Keter.Prelude hiding (getCurrentTime)
import qualified Codec.Archive.TempTarball as TempFolder
import qualified Keter.App as App
import Keter.Types
import qualified Keter.PortManager as PortMan
import qualified Keter.Proxy as Proxy
import qualified Keter.ReverseProxy as ReverseProxy
import System.Posix.Files (modificationTime, getFileStatus)
import System.Posix.Signals (sigHUP, installHandler, Handler (Catch))
import qualified Data.Conduit.LogFile as LogFile

import Data.Yaml.FilePath
import Data.Aeson (withObject)
import Data.Conduit.Network (HostPreference)
import qualified Control.Concurrent.MVar as M
import Control.Concurrent (forkIO)
import qualified Data.Map as Map
import qualified System.FSNotify as FSN
import Control.Monad (forever, forM)
import qualified Filesystem.Path.CurrentOS as F
import qualified Filesystem as F
import Control.Exception (throwIO, try)
import qualified Prelude as P
import Data.Text.Encoding (encodeUtf8)
import Data.Time (getCurrentTime)
import qualified Data.Text as T
import Data.Maybe (fromMaybe, catMaybes)
import Data.Yaml ((.:?), (.!=))
import Control.Applicative ((<$>), (<*>))
import Data.String (fromString)
import System.Posix.User (userID, userGroupID, getUserEntryForName, getUserEntryForID, userName)
import qualified Data.Text.Read
import Data.Set (Set)
import qualified Data.Set as Set
import qualified Network.HTTP.Conduit as HTTP (newManager)
import qualified Network.Wai.Handler.Warp as Warp
import Data.Conduit.Process.Unix (initProcessTracker)

data KeterConfig = KeterConfig
    { kconfigDir :: F.FilePath
    , kconfigPortMan :: PortMan.Settings
    , kconfigHost :: HostPreference
    , kconfigPort :: PortMan.Port
    , kconfigSsl :: Maybe Proxy.TLSConfig
    , kconfigSetuid :: Maybe Text
    , kconfigReverseProxy :: Set ReverseProxy.ReverseProxyConfig
    , kconfigIpFromHeader :: Bool
    }

instance Default KeterConfig where
    def = KeterConfig
        { kconfigDir = "."
        , kconfigPortMan = def
        , kconfigHost = "*"
        , kconfigPort = 80
        , kconfigSsl = Nothing
        , kconfigSetuid = Nothing
        , kconfigReverseProxy = Set.empty
        , kconfigIpFromHeader = False
        }

instance ParseYamlFile KeterConfig where
    parseYamlFile basedir = withObject "KeterConfig" $ \o -> KeterConfig
        <$> lookupBase basedir o "root"
        <*> o .:? "port-manager" .!= def
        <*> (fmap fromString <$> o .:? "host") .!= kconfigHost def
        <*> o .:? "port" .!= kconfigPort def
        <*> (o .:? "ssl" >>= maybe (return Nothing) (fmap Just . parseYamlFile basedir))
        <*> o .:? "setuid"
        <*> o .:? "reverse-proxy" .!= Set.empty
        <*> o .:? "ip-from-header" .!= False

keter :: P.FilePath -- ^ root directory or config file
      -> [F.FilePath -> KIO (Either SomeException Plugin)]
      -> P.IO ()
keter (F.decodeString -> input) mkPlugins = do
    exists <- F.isFile input
    KeterConfig{..} <-
        if exists
            then decodeFileRelative input >>= either
                    (\e -> P.error $ "Invalid config file: " ++ P.show e)
                    return
            else return def { kconfigDir = input }

    muid <-
        case kconfigSetuid of
            Nothing -> return Nothing
            Just t -> do
                x <- try $
                    case Data.Text.Read.decimal t of
                        Right (i, "") -> getUserEntryForID i
                        _ -> getUserEntryForName $ T.unpack t
                case x of
                    Left (_ :: SomeException) -> P.error $ T.unpack $ "Invalid user ID: " ++ t
                    Right ue -> return $ Just (T.pack $ userName ue, (userID ue, userGroupID ue))

    processTracker <- initProcessTracker
    portman <- runThrow $ PortMan.start kconfigPortMan
    tf <- runThrow $ liftIO $ TempFolder.setup $ kconfigDir </> "temp"
    plugins <- runThrow $ loadPlugins $ map ($ kconfigDir) mkPlugins
    mainlog <- runThrow $ liftIO $ LogFile.openRotatingLog
        (F.encodeString $ kconfigDir </> "log" </> "keter")
        LogFile.defaultMaxTotal

    let runKIO' = runKIO $ \ml -> do
            now <- getCurrentTime
            let bs = encodeUtf8 $ T.concat
                    [ T.take 22 $ show now
                    , ": "
                    , show ml
                    , "\n"
                    ]
            LogFile.addChunk mainlog bs
        runKIOPrint = runKIO P.print

    manager <- HTTP.newManager def
    _ <- forkIO $ Proxy.reverseProxy
            kconfigIpFromHeader
            manager
            Warp.defaultSettings
                { Warp.settingsPort = kconfigPort
                , Warp.settingsHost = kconfigHost
                }
            (runKIOPrint . PortMan.lookupPort portman)
    case kconfigSsl of
        Nothing -> return ()
        Just (Proxy.TLSConfig s ts) -> do
            _ <- forkIO $ Proxy.reverseProxySsl
                    kconfigIpFromHeader
                    manager
                    ts
                    s
                    (runKIOPrint . PortMan.lookupPort portman)
            return ()

    mappMap <- M.newMVar Map.empty
    let removeApp appname = Keter.Prelude.modifyMVar_ mappMap $ return . Map.delete appname
        addApp bundle = do
            let appname = getAppname bundle
            rest <- modifyMVar mappMap $ \appMap ->
                case Map.lookup appname appMap of
                    Just (app, _time) -> do
                        App.reload app
                        etime <- liftIO $ modificationTime <$> getFileStatus (F.encodeString bundle)
                        let time = either (P.const 0) id etime
                        return (Map.insert appname (app, time) appMap, return ())
                    Nothing -> do
                        mlogger <- do
                            let dirout = kconfigDir </> "log" </> fromText ("app-" ++ appname)
                                direrr = dirout </> "err"
                            erlog <- liftIO $ LogFile.openRotatingLog
                                (F.encodeString dirout)
                                LogFile.defaultMaxTotal
                            case erlog of
                                Left e -> do
                                    $logEx e
                                    return Nothing
                                Right rlog -> return (Just rlog)
                        let logger = fromMaybe LogFile.dummy mlogger
                        (app, rest) <- App.start
                            tf
                            muid
                            processTracker
                            portman
                            plugins
                            logger
                            appname
                            bundle
                            (removeApp appname)
                        etime <- liftIO $ modificationTime <$> getFileStatus (F.encodeString bundle)
                        let time = either (P.const 0) id etime
                        let appMap' = Map.insert appname (app, time) appMap
                        return (appMap', rest)
            rest
        terminateApp appname = do
            -- FIXME why not remove it from the map?
            appMap <- M.readMVar mappMap
            case Map.lookup appname appMap of
                Nothing -> return ()
                Just (app, _) -> runKIO' $ App.terminate app

    let incoming = kconfigDir </> "incoming"
        isKeter fp = hasExtension fp "keter"
    createTree incoming
    bundles0 <- fmap (filter isKeter) $ listDirectory incoming
    runKIO' $ mapM_ addApp bundles0

    let staticReverse r = do
            PortMan.addEntry portman (ReverseProxy.reversingHost r)
                $ PortMan.PEReverseProxy
                $ ReverseProxy.RPEntry r manager
    runKIO' $ mapM_ staticReverse (Set.toList kconfigReverseProxy)

    -- File system watching
    wm <- FSN.startManager
    FSN.watchDir wm incoming (P.const True) $ \e ->
        let e' =
                case e of
                    FSN.Removed fp _ -> Left fp
                    FSN.Added fp _ -> Right fp
                    FSN.Modified fp _ -> Right fp
         in case e' of
            Left fp -> when (isKeter fp) $ terminateApp $ getAppname fp
            Right fp -> when (isKeter fp) $ runKIO' $ addApp $ incoming </> fp

    -- Install HUP handler for cases when inotify cannot be used.
    _ <- flip (installHandler sigHUP) Nothing $ Catch $ do
        actions <- M.withMVar mappMap $ \appMap -> do
            bundles <- fmap (filter isKeter) $ F.listDirectory incoming
            newMap <- fmap Map.fromList $ forM bundles $ \bundle -> do
                time <- modificationTime <$> getFileStatus (F.encodeString bundle)
                return (getAppname' $ F.encodeString bundle, (bundle, time))

            let apps = Set.toList $ Set.fromList (Map.keys newMap)
                        `Set.union` Set.fromList (Map.keys appMap)
            fmap catMaybes $ forM apps $ \appname -> return $
                case (Map.lookup appname appMap, Map.lookup appname newMap) of
                    (Nothing, Nothing) -> Nothing -- should never happen
                    (Just _, Nothing) -> Just $ terminateApp appname
                    (Nothing, Just (bundle, _)) -> Just $ runKIO' $ addApp bundle
                    (Just (_, oldTime), Just (bundle, newTime))
                        | newTime /= oldTime -> Just $ runKIO' $ addApp bundle
                        | otherwise -> Nothing
        P.sequence_ actions

    runKIO' $ forever $ threadDelay $ 60 * 1000 * 1000
  where
    getAppname = either id id . toText . basename
    getAppname' = getAppname . F.decodeString
    runThrow f = runKIO P.print f >>= either throwIO return

loadPlugins :: [KIO (Either SomeException Plugin)]
            -> KIO (Either SomeException Plugins)
loadPlugins =
    loop id
  where
    loop front [] = return $ Right $ front []
    loop front (x:xs) = do
        eres <- x
        case eres of
            Left e -> return $ Left e
            Right p -> loop (front . (p:)) xs
TempFolder uses new prelude 2012-05-14 12:18:09 +04:00			`{-# LANGUAGE OverloadedStrings #-}`
Use WAI proxying 2013-06-03 15:15:13 +04:00			`{-# LANGUAGE ViewPatterns #-}`
Converted Keter.Main 2012-05-15 12:38:54 +04:00			`{-# LANGUAGE NoImplicitPrelude #-}`
Full logging 2012-05-17 10:32:11 +04:00			`{-# LANGUAGE TemplateHaskell #-}`
Config file (#1) 2012-05-29 06:30:59 +04:00			`{-# LANGUAGE RecordWildCards #-}`
setuid support 2012-10-24 18:31:18 +04:00			`{-# LANGUAGE ScopedTypeVariables #-}`
File watching: it all works 2012-05-11 12:29:25 +04:00			`module Keter.Main`
			`( keter`
			`) where`

Rate limiting on process restart 2012-05-17 11:59:17 +04:00			`import Keter.Prelude hiding (getCurrentTime)`
Moved TempDir to TempTarball 2013-07-10 15:15:18 +04:00			`import qualified Codec.Archive.TempTarball as TempFolder`
File watching: it all works 2012-05-11 12:29:25 +04:00			`import qualified Keter.App as App`
More generic plugin system 2013-07-10 14:26:37 +04:00			`import Keter.Types`
Initial built-in reverse proxy (no Nginx required) 2012-08-06 18:44:41 +04:00			`import qualified Keter.PortManager as PortMan`
			`import qualified Keter.Proxy as Proxy`
Built-in reverse proxy now supports rewriting headers This is necessary for using Keter as a front-end to other web services that may require hacks like Jenkins does, where the "Location" header needs to be rewritten to use https on every response. Example: ``` root: .. port: 80 ssl: # host: port: key: certificate: reverse-proxy: - reversed-host: jenkins-internal.corp.example.com reversed-port: 8080 reversing-host: jenkins.example.com ssl: False rewrite-response: - header: Location from: ^http://jenkins.example.com to: https://jenkins.example.com ``` 2013-03-20 09:01:43 +04:00			`import qualified Keter.ReverseProxy as ReverseProxy`
HUP signal to refresh apps #15 2013-05-29 10:43:52 +04:00			`import System.Posix.Files (modificationTime, getFileStatus)`
			`import System.Posix.Signals (sigHUP, installHandler, Handler (Catch))`
Move log file code into unix-process-conduit 2013-07-10 13:48:46 +04:00			`import qualified Data.Conduit.LogFile as LogFile`
File watching: it all works 2012-05-11 12:29:25 +04:00
Data.Yaml.FilePath 2013-07-10 10:57:38 +04:00			`import Data.Yaml.FilePath`
			`import Data.Aeson (withObject)`
Fix some warnings 2013-06-04 10:42:54 +04:00			`import Data.Conduit.Network (HostPreference)`
File watching: it all works 2012-05-11 12:29:25 +04:00			`import qualified Control.Concurrent.MVar as M`
Initial built-in reverse proxy (no Nginx required) 2012-08-06 18:44:41 +04:00			`import Control.Concurrent (forkIO)`
File watching: it all works 2012-05-11 12:29:25 +04:00			`import qualified Data.Map as Map`
Switch to fsnotify 2013-06-03 14:34:47 +04:00			`import qualified System.FSNotify as FSN`
Data.Yaml.FilePath 2013-07-10 10:57:38 +04:00			`import Control.Monad (forever, forM)`
Started Keter.Prelude 2012-05-14 11:15:50 +04:00			`import qualified Filesystem.Path.CurrentOS as F`
Config file (#1) 2012-05-29 06:30:59 +04:00			`import qualified Filesystem as F`
setuid support 2012-10-24 18:31:18 +04:00			`import Control.Exception (throwIO, try)`
Converted Keter.Main 2012-05-15 12:38:54 +04:00			`import qualified Prelude as P`
LogFile 2012-05-17 08:15:25 +04:00			`import Data.Text.Encoding (encodeUtf8)`
			`import Data.Time (getCurrentTime)`
			`import qualified Data.Text as T`
HUP signal to refresh apps #15 2013-05-29 10:43:52 +04:00			`import Data.Maybe (fromMaybe, catMaybes)`
Data.Yaml.FilePath 2013-07-10 10:57:38 +04:00			`import Data.Yaml ((.:?), (.!=))`
Config file (#1) 2012-05-29 06:30:59 +04:00			`import Control.Applicative ((<$>), (<*>))`
Initial built-in reverse proxy (no Nginx required) 2012-08-06 18:44:41 +04:00			`import Data.String (fromString)`
setuid support 2012-10-24 18:31:18 +04:00			`import System.Posix.User (userID, userGroupID, getUserEntryForName, getUserEntryForID, userName)`
			`import qualified Data.Text.Read`
Add static reverse proxy support for Keter. No longer have to set up keter bundles for mighttpd or other proxies. 2013-03-17 01:36:57 +04:00			`import Data.Set (Set)`
			`import qualified Data.Set as Set`
Built-in reverse proxy now supports rewriting headers This is necessary for using Keter as a front-end to other web services that may require hacks like Jenkins does, where the "Location" header needs to be rewritten to use https on every response. Example: ``` root: .. port: 80 ssl: # host: port: key: certificate: reverse-proxy: - reversed-host: jenkins-internal.corp.example.com reversed-port: 8080 reversing-host: jenkins.example.com ssl: False rewrite-response: - header: Location from: ^http://jenkins.example.com to: https://jenkins.example.com ``` 2013-03-20 09:01:43 +04:00			`import qualified Network.HTTP.Conduit as HTTP (newManager)`
Use WAI proxying 2013-06-03 15:15:13 +04:00			`import qualified Network.Wai.Handler.Warp as Warp`
Moved process tracker to unix-process-conduit 2013-07-10 10:03:03 +04:00			`import Data.Conduit.Process.Unix (initProcessTracker)`
File watching: it all works 2012-05-11 12:29:25 +04:00
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`data KeterConfig = KeterConfig`
			`{ kconfigDir :: F.FilePath`
			`, kconfigPortMan :: PortMan.Settings`
			`, kconfigHost :: HostPreference`
			`, kconfigPort :: PortMan.Port`
			`, kconfigSsl :: Maybe Proxy.TLSConfig`
			`, kconfigSetuid :: Maybe Text`
			`, kconfigReverseProxy :: Set ReverseProxy.ReverseProxyConfig`
			`, kconfigIpFromHeader :: Bool`
Config file (#1) 2012-05-29 06:30:59 +04:00			`}`
Add static reverse proxy support for Keter. No longer have to set up keter bundles for mighttpd or other proxies. 2013-03-17 01:36:57 +04:00
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`instance Default KeterConfig where`
			`def = KeterConfig`
			`{ kconfigDir = "."`
			`, kconfigPortMan = def`
			`, kconfigHost = "*"`
			`, kconfigPort = 80`
			`, kconfigSsl = Nothing`
			`, kconfigSetuid = Nothing`
			`, kconfigReverseProxy = Set.empty`
			`, kconfigIpFromHeader = False`
Initial built-in reverse proxy (no Nginx required) 2012-08-06 18:44:41 +04:00			`}`
Config file (#1) 2012-05-29 06:30:59 +04:00
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`instance ParseYamlFile KeterConfig where`
			`parseYamlFile basedir = withObject "KeterConfig" $ \o -> KeterConfig`
Better app config loading 2013-07-14 14:02:18 +04:00			`<$> lookupBase basedir o "root"`
Initial built-in reverse proxy (no Nginx required) 2012-08-06 18:44:41 +04:00			`<*> o .:? "port-manager" .!= def`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`<*> (fmap fromString <$> o .:? "host") .!= kconfigHost def`
			`<*> o .:? "port" .!= kconfigPort def`
Data.Yaml.FilePath 2013-07-10 10:57:38 +04:00			`<*> (o .:? "ssl" >>= maybe (return Nothing) (fmap Just . parseYamlFile basedir))`
setuid support 2012-10-24 18:31:18 +04:00			`<*> o .:? "setuid"`
Add static reverse proxy support for Keter. No longer have to set up keter bundles for mighttpd or other proxies. 2013-03-17 01:36:57 +04:00			`<*> o .:? "reverse-proxy" .!= Set.empty`
IP address headers #8 2013-06-03 15:45:52 +04:00			`<*> o .:? "ip-from-header" .!= False`
Config file (#1) 2012-05-29 06:30:59 +04:00
			`keter :: P.FilePath -- ^ root directory or config file`
More generic plugin system 2013-07-10 14:26:37 +04:00			`-> [F.FilePath -> KIO (Either SomeException Plugin)]`
Converted Keter.Main 2012-05-15 12:38:54 +04:00			`-> P.IO ()`
More generic plugin system 2013-07-10 14:26:37 +04:00			`keter (F.decodeString -> input) mkPlugins = do`
Config file (#1) 2012-05-29 06:30:59 +04:00			`exists <- F.isFile input`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`KeterConfig{..} <-`
Config file (#1) 2012-05-29 06:30:59 +04:00			`if exists`
Data.Yaml.FilePath 2013-07-10 10:57:38 +04:00			`then decodeFileRelative input >>= either`
			`(\e -> P.error $ "Invalid config file: " ++ P.show e)`
			`return`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`else return def { kconfigDir = input }`
Config file (#1) 2012-05-29 06:30:59 +04:00
setuid support 2012-10-24 18:31:18 +04:00			`muid <-`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`case kconfigSetuid of`
setuid support 2012-10-24 18:31:18 +04:00			`Nothing -> return Nothing`
			`Just t -> do`
			`x <- try $`
			`case Data.Text.Read.decimal t of`
			`Right (i, "") -> getUserEntryForID i`
			`_ -> getUserEntryForName $ T.unpack t`
			`case x of`
			`Left (_ :: SomeException) -> P.error $ T.unpack $ "Invalid user ID: " ++ t`
			`Right ue -> return $ Just (T.pack $ userName ue, (userID ue, userGroupID ue))`

Moved process tracker to unix-process-conduit 2013-07-10 10:03:03 +04:00			`processTracker <- initProcessTracker`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`portman <- runThrow $ PortMan.start kconfigPortMan`
			`tf <- runThrow $ liftIO $ TempFolder.setup $ kconfigDir </> "temp"`
			`plugins <- runThrow $ loadPlugins $ map ($ kconfigDir) mkPlugins`
Move log file code into unix-process-conduit 2013-07-10 13:48:46 +04:00			`mainlog <- runThrow $ liftIO $ LogFile.openRotatingLog`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`(F.encodeString $ kconfigDir </> "log" </> "keter")`
Move log file code into unix-process-conduit 2013-07-10 13:48:46 +04:00			`LogFile.defaultMaxTotal`
LogFile 2012-05-17 08:15:25 +04:00
			`let runKIO' = runKIO $ \ml -> do`
			`now <- getCurrentTime`
			`let bs = encodeUtf8 $ T.concat`
Full logging 2012-05-17 10:32:11 +04:00			`[ T.take 22 $ show now`
LogFile 2012-05-17 08:15:25 +04:00			`, ": "`
			`, show ml`
			`, "\n"`
			`]`
Move log file code into unix-process-conduit 2013-07-10 13:48:46 +04:00			`LogFile.addChunk mainlog bs`
LogFile 2012-05-17 08:15:25 +04:00			`runKIOPrint = runKIO P.print`
File watching: it all works 2012-05-11 12:29:25 +04:00
Use WAI proxying 2013-06-03 15:15:13 +04:00			`manager <- HTTP.newManager def`
Initial built-in reverse proxy (no Nginx required) 2012-08-06 18:44:41 +04:00			`_ <- forkIO $ Proxy.reverseProxy`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`kconfigIpFromHeader`
Use WAI proxying 2013-06-03 15:15:13 +04:00			`manager`
			`Warp.defaultSettings`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`{ Warp.settingsPort = kconfigPort`
			`, Warp.settingsHost = kconfigHost`
Use WAI proxying 2013-06-03 15:15:13 +04:00			`}`
Initial built-in reverse proxy (no Nginx required) 2012-08-06 18:44:41 +04:00			`(runKIOPrint . PortMan.lookupPort portman)`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`case kconfigSsl of`
Initial SSL support 2012-08-09 19:12:32 +04:00			`Nothing -> return ()`
Data.Yaml.FilePath 2013-07-10 10:57:38 +04:00			`Just (Proxy.TLSConfig s ts) -> do`
Initial SSL support 2012-08-09 19:12:32 +04:00			`_ <- forkIO $ Proxy.reverseProxySsl`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`kconfigIpFromHeader`
Use WAI proxying 2013-06-03 15:15:13 +04:00			`manager`
			`ts`
			`s`
Initial SSL support 2012-08-09 19:12:32 +04:00			`(runKIOPrint . PortMan.lookupPort portman)`
			`return ()`
Initial built-in reverse proxy (no Nginx required) 2012-08-06 18:44:41 +04:00
File watching: it all works 2012-05-11 12:29:25 +04:00			`mappMap <- M.newMVar Map.empty`
Converted Keter.App 2012-05-15 12:19:03 +04:00			`let removeApp appname = Keter.Prelude.modifyMVar_ mappMap $ return . Map.delete appname`
File watching: it all works 2012-05-11 12:29:25 +04:00			`addApp bundle = do`
			`let appname = getAppname bundle`
Converted Keter.Main 2012-05-15 12:38:54 +04:00			`rest <- modifyMVar mappMap $ \appMap ->`
File watching: it all works 2012-05-11 12:29:25 +04:00			`case Map.lookup appname appMap of`
HUP signal to refresh apps #15 2013-05-29 10:43:52 +04:00			`Just (app, _time) -> do`
Converted Keter.Main 2012-05-15 12:38:54 +04:00			`App.reload app`
HUP signal to refresh apps #15 2013-05-29 10:43:52 +04:00			`etime <- liftIO $ modificationTime <$> getFileStatus (F.encodeString bundle)`
			`let time = either (P.const 0) id etime`
			`return (Map.insert appname (app, time) appMap, return ())`
File watching: it all works 2012-05-11 12:29:25 +04:00			`Nothing -> do`
Full logging 2012-05-17 10:32:11 +04:00			`mlogger <- do`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`let dirout = kconfigDir </> "log" </> fromText ("app-" ++ appname)`
Full logging 2012-05-17 10:32:11 +04:00			`direrr = dirout </> "err"`
Move log file code into unix-process-conduit 2013-07-10 13:48:46 +04:00			`erlog <- liftIO $ LogFile.openRotatingLog`
			`(F.encodeString dirout)`
			`LogFile.defaultMaxTotal`
			`case erlog of`
Full logging 2012-05-17 10:32:11 +04:00			`Left e -> do`
			`$logEx e`
			`return Nothing`
Move log file code into unix-process-conduit 2013-07-10 13:48:46 +04:00			`Right rlog -> return (Just rlog)`
			`let logger = fromMaybe LogFile.dummy mlogger`
Converted Keter.Main 2012-05-15 12:38:54 +04:00			`(app, rest) <- App.start`
Started Keter.Prelude 2012-05-14 11:15:50 +04:00			`tf`
setuid support 2012-10-24 18:31:18 +04:00			`muid`
Kill processes when Keter shuts down (#3) 2012-11-19 12:31:35 +04:00			`processTracker`
Initial built-in reverse proxy (no Nginx required) 2012-08-06 18:44:41 +04:00			`portman`
More generic plugin system 2013-07-10 14:26:37 +04:00			`plugins`
Full logging 2012-05-17 10:32:11 +04:00			`logger`
Started Keter.Prelude 2012-05-14 11:15:50 +04:00			`appname`
Converted Keter.Main 2012-05-15 12:38:54 +04:00			`bundle`
Started Keter.Prelude 2012-05-14 11:15:50 +04:00			`(removeApp appname)`
HUP signal to refresh apps #15 2013-05-29 10:43:52 +04:00			`etime <- liftIO $ modificationTime <$> getFileStatus (F.encodeString bundle)`
			`let time = either (P.const 0) id etime`
			`let appMap' = Map.insert appname (app, time) appMap`
File watching: it all works 2012-05-11 12:29:25 +04:00			`return (appMap', rest)`
Converted Keter.Main 2012-05-15 12:38:54 +04:00			`rest`
File watching: it all works 2012-05-11 12:29:25 +04:00			`terminateApp appname = do`
HUP signal to refresh apps #15 2013-05-29 10:43:52 +04:00			`-- FIXME why not remove it from the map?`
File watching: it all works 2012-05-11 12:29:25 +04:00			`appMap <- M.readMVar mappMap`
			`case Map.lookup appname appMap of`
			`Nothing -> return ()`
HUP signal to refresh apps #15 2013-05-29 10:43:52 +04:00			`Just (app, _) -> runKIO' $ App.terminate app`
File watching: it all works 2012-05-11 12:29:25 +04:00
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`let incoming = kconfigDir </> "incoming"`
Converted Keter.Main 2012-05-15 12:38:54 +04:00			`isKeter fp = hasExtension fp "keter"`
A few more minor tweaks 2012-05-17 12:47:54 +04:00			`createTree incoming`
HUP signal to refresh apps #15 2013-05-29 10:43:52 +04:00			`bundles0 <- fmap (filter isKeter) $ listDirectory incoming`
			`runKIO' $ mapM_ addApp bundles0`
File watching: it all works 2012-05-11 12:29:25 +04:00
Built-in reverse proxy now supports rewriting headers This is necessary for using Keter as a front-end to other web services that may require hacks like Jenkins does, where the "Location" header needs to be rewritten to use https on every response. Example: ``` root: .. port: 80 ssl: # host: port: key: certificate: reverse-proxy: - reversed-host: jenkins-internal.corp.example.com reversed-port: 8080 reversing-host: jenkins.example.com ssl: False rewrite-response: - header: Location from: ^http://jenkins.example.com to: https://jenkins.example.com ``` 2013-03-20 09:01:43 +04:00			`let staticReverse r = do`
Use WAI proxying 2013-06-03 15:15:13 +04:00			`PortMan.addEntry portman (ReverseProxy.reversingHost r)`
			`$ PortMan.PEReverseProxy`
			`$ ReverseProxy.RPEntry r manager`
Config -> KeterConfig 2013-07-14 16:30:55 +04:00			`runKIO' $ mapM_ staticReverse (Set.toList kconfigReverseProxy)`
More generic plugin system 2013-07-10 14:26:37 +04:00
Switch to fsnotify 2013-06-03 14:34:47 +04:00			`-- File system watching`
			`wm <- FSN.startManager`
			`FSN.watchDir wm incoming (P.const True) $ \e ->`
			`let e' =`
			`case e of`
			`FSN.Removed fp _ -> Left fp`
			`FSN.Added fp _ -> Right fp`
			`FSN.Modified fp _ -> Right fp`
			`in case e' of`
			`Left fp -> when (isKeter fp) $ terminateApp $ getAppname fp`
			`Right fp -> when (isKeter fp) $ runKIO' $ addApp $ incoming </> fp`
File watching: it all works 2012-05-11 12:29:25 +04:00
HUP signal to refresh apps #15 2013-05-29 10:43:52 +04:00			`-- Install HUP handler for cases when inotify cannot be used.`
			`_ <- flip (installHandler sigHUP) Nothing $ Catch $ do`
			`actions <- M.withMVar mappMap $ \appMap -> do`
			`bundles <- fmap (filter isKeter) $ F.listDirectory incoming`
			`newMap <- fmap Map.fromList $ forM bundles $ \bundle -> do`
			`time <- modificationTime <$> getFileStatus (F.encodeString bundle)`
			`return (getAppname' $ F.encodeString bundle, (bundle, time))`

			`let apps = Set.toList $ Set.fromList (Map.keys newMap)`
			`Set.union` Set.fromList (Map.keys appMap)
			`fmap catMaybes $ forM apps $ \appname -> return $`
			`case (Map.lookup appname appMap, Map.lookup appname newMap) of`
			`(Nothing, Nothing) -> Nothing -- should never happen`
			`(Just _, Nothing) -> Just $ terminateApp appname`
			`(Nothing, Just (bundle, _)) -> Just $ runKIO' $ addApp bundle`
			`(Just (_, oldTime), Just (bundle, newTime))`
			`\| newTime /= oldTime -> Just $ runKIO' $ addApp bundle`
			`\| otherwise -> Nothing`
			`P.sequence_ actions`

Converted Keter.Main 2012-05-15 12:38:54 +04:00			`runKIO' $ forever $ threadDelay $ 60 * 1000 * 1000`
File watching: it all works 2012-05-11 12:29:25 +04:00			`where`
Converted Keter.Main 2012-05-15 12:38:54 +04:00			`getAppname = either id id . toText . basename`
			`getAppname' = getAppname . F.decodeString`
LogFile 2012-05-17 08:15:25 +04:00			`runThrow f = runKIO P.print f >>= either throwIO return`
More generic plugin system 2013-07-10 14:26:37 +04:00
			`loadPlugins :: [KIO (Either SomeException Plugin)]`
			`-> KIO (Either SomeException Plugins)`
			`loadPlugins =`
			`loop id`
			`where`
			`loop front [] = return $ Right $ front []`
			`loop front (x:xs) = do`
			`eres <- x`
			`case eres of`
			`Left e -> return $ Left e`
			`Right p -> loop (front . (p:)) xs`