snoyberg/keter
1
1
Fork 0
mirror of https://github.com/snoyberg/keter.git synced 2024-12-15 01:23:09 +03:00
Code Issues Projects Releases Wiki Activity
0e5cf2e35a
keter/Keter/Proxy.hs
root 03dbc0807d Built-in reverse proxy now supports rewriting headers 
This is necessary for using Keter as a front-end to other web
services that may require hacks like Jenkins does, where the
"Location" header needs to be rewritten to use https on every
response.

Example:

```
root: ..
port: 80
ssl:
  # host:
  port:
  key:
  certificate:
reverse-proxy:
  - reversed-host: jenkins-internal.corp.example.com
    reversed-port: 8080
    reversing-host: jenkins.example.com
    ssl: False
    rewrite-response:
      - header: Location
        from: ^http://jenkins.example.com
        to: https://jenkins.example.com
```
2013-03-20 00:01:43 -05:00

73 lines
2.8 KiB
Haskell
Raw Blame History

{-# LANGUAGE OverloadedStrings #-}
-- | A light-weight, minimalistic reverse HTTP proxy.
module Keter.Proxy
( reverseProxy
, PortLookup
, reverseProxySsl
, setDir
, TLSConfig
, TLSConfigNoDir
) where
import Prelude hiding ((++), FilePath)
import Keter.Prelude ((++))
import Data.Conduit
import Data.Conduit.Network
import Data.ByteString (ByteString)
import Keter.PortManager (PortEntry (..))
import qualified Data.ByteString as S
import qualified Data.ByteString.Lazy as L
import Keter.SSL
import Network.HTTP.ReverseProxy (rawProxyTo, ProxyDest (ProxyDest), waiToRaw)
import Network.Wai.Application.Static (defaultFileServerSettings, staticApp)
import qualified Network.Wai as Wai
import Network.HTTP.Types (status301)
import qualified Keter.ReverseProxy as ReverseProxy
-- | Mapping from virtual hostname to port number.
type PortLookup = ByteString -> IO (Maybe PortEntry)
reverseProxy :: ServerSettings IO -> PortLookup -> IO ()
reverseProxy settings = runTCPServer settings . withClient
reverseProxySsl :: TLSConfig -> PortLookup -> IO ()
reverseProxySsl settings = runTCPServerTLS settings . withClient
withClient :: PortLookup
-> Application IO
withClient portLookup =
rawProxyTo getDest
where
getDest headers = do
mport <- maybe (return Nothing) portLookup mhost
case mport of
Nothing -> return $ Left $ srcToApp $ toResponse mhost
Just (PEPort port) -> return $ Right $ ProxyDest "127.0.0.1" port
Just (PEStatic root) -> return $ Left $ waiToRaw $ staticApp $ defaultFileServerSettings root
Just (PERedirect host) -> return $ Left $ waiToRaw $ redirectApp host
Just (PEReverseProxy rpentry) -> return $ Left $ waiToRaw $ ReverseProxy.simpleReverseProxy rpentry
where
mhost = lookup "host" headers
redirectApp :: ByteString -> Wai.Application
redirectApp host req = return $ Wai.responseLBS
status301
[("Location", dest)]
(L.fromChunks [dest])
where
dest = S.concat
[ "http://"
, host
, Wai.rawPathInfo req
, Wai.rawQueryString req
]
srcToApp :: Monad m => Source m ByteString -> Application m
srcToApp src appdata = src $$ appSink appdata
toResponse :: Monad m => Maybe ByteString -> Source m ByteString
toResponse Nothing =
yield "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\n\r\n<html><head><title>Welcome to Keter</title></head><body><h1>Welcome to Keter</h1><p>You did not provide a virtual hostname for this request.</p></body></html>"
toResponse (Just host) =
yield $ "HTTP/1.1 200 OK\r\nContent-Type: text/html; charset=utf-8\r\n\r\n<html><head><title>Welcome to Keter</title></head><body><h1>Welcome to Keter</h1><p>The hostname you have provided, <code>" ++ host ++ "</code>, is not recognized.</p></body></html>"
Reference in New Issue View Git Blame Copy Permalink