mirror of
https://github.com/yusing/godoxy.git
synced 2025-05-21 21:12:34 +02:00
fb0dc7dea0
* implement OIDC middleware * auth code cleanup * allow override allowed_user in middleware, fix typos * fix tests and callbackURL * update next release docs * fix OIDC middleware not working with Authentik * feat: add groups support for OIDC claims (#41) Allow users to specify allowed groups in the env and use it to inspect the claims. This performs a logical AND of users and groups (additive). * merge feat/oidc-middleware (#49) * api: enrich provider statistifcs * fix: docker monitor now uses container status * Feat/auto schemas (#48) * use auto generated schemas * go version bump and dependencies upgrade * clarify some error messages --------- Co-authored-by: yusing <yusing@6uo.me> * cleanup some loadbalancer code * api: cleanup websocket code * api: add /v1/health/ws for health bubbles on dashboard * feat: experimental memory logger and logs api for WebUI --------- Co-authored-by: yusing <yusing@6uo.me> --------- Co-authored-by: yusing <yusing@6uo.me> Co-authored-by: Peter Olds <peter@olds.co>
107 lines
2.6 KiB
Go
107 lines
2.6 KiB
Go
package middleware
|
|
|
|
import (
|
|
"path"
|
|
|
|
"github.com/yusing/go-proxy/internal/common"
|
|
E "github.com/yusing/go-proxy/internal/error"
|
|
"github.com/yusing/go-proxy/internal/utils"
|
|
"github.com/yusing/go-proxy/internal/utils/strutils"
|
|
)
|
|
|
|
// snakes and cases will be stripped on `Get`
|
|
// so keys are lowercase without snake.
|
|
var allMiddlewares = map[string]*Middleware{
|
|
"redirecthttp": RedirectHTTP,
|
|
|
|
"oidc": OIDC,
|
|
|
|
"request": ModifyRequest,
|
|
"modifyrequest": ModifyRequest,
|
|
"response": ModifyResponse,
|
|
"modifyresponse": ModifyResponse,
|
|
"setxforwarded": SetXForwarded,
|
|
"hidexforwarded": HideXForwarded,
|
|
|
|
"errorpage": CustomErrorPage,
|
|
"customerrorpage": CustomErrorPage,
|
|
|
|
"realip": RealIP,
|
|
"cloudflarerealip": CloudflareRealIP,
|
|
|
|
"cidrwhitelist": CIDRWhiteList,
|
|
"ratelimit": RateLimiter,
|
|
|
|
// !experimental
|
|
"forwardauth": ForwardAuth,
|
|
// "oauth2": OAuth2.m,
|
|
}
|
|
|
|
var (
|
|
ErrUnknownMiddleware = E.New("unknown middleware")
|
|
ErrDuplicatedMiddleware = E.New("duplicated middleware")
|
|
)
|
|
|
|
func Get(name string) (*Middleware, Error) {
|
|
middleware, ok := allMiddlewares[strutils.ToLowerNoSnake(name)]
|
|
if !ok {
|
|
return nil, ErrUnknownMiddleware.
|
|
Subject(name).
|
|
Withf(strutils.DoYouMean(utils.NearestField(name, allMiddlewares)))
|
|
}
|
|
return middleware, nil
|
|
}
|
|
|
|
func All() map[string]*Middleware {
|
|
return allMiddlewares
|
|
}
|
|
|
|
func LoadComposeFiles() {
|
|
errs := E.NewBuilder("middleware compile errors")
|
|
middlewareDefs, err := utils.ListFiles(common.MiddlewareComposeBasePath, 0)
|
|
if err != nil {
|
|
logger.Err(err).Msg("failed to list middleware definitions")
|
|
return
|
|
}
|
|
for _, defFile := range middlewareDefs {
|
|
voidErrs := E.NewBuilder("") // ignore these errors, will be added in next step
|
|
mws := BuildMiddlewaresFromComposeFile(defFile, voidErrs)
|
|
if len(mws) == 0 {
|
|
continue
|
|
}
|
|
for name, m := range mws {
|
|
name = strutils.ToLowerNoSnake(name)
|
|
if _, ok := allMiddlewares[name]; ok {
|
|
errs.Add(ErrDuplicatedMiddleware.Subject(name))
|
|
continue
|
|
}
|
|
allMiddlewares[name] = m
|
|
logger.Info().
|
|
Str("src", path.Base(defFile)).
|
|
Str("name", name).
|
|
Msg("middleware loaded")
|
|
}
|
|
}
|
|
// build again to resolve cross references
|
|
for _, defFile := range middlewareDefs {
|
|
mws := BuildMiddlewaresFromComposeFile(defFile, errs)
|
|
if len(mws) == 0 {
|
|
continue
|
|
}
|
|
for name, m := range mws {
|
|
name = strutils.ToLowerNoSnake(name)
|
|
if _, ok := allMiddlewares[name]; ok {
|
|
// already loaded above
|
|
continue
|
|
}
|
|
allMiddlewares[name] = m
|
|
logger.Info().
|
|
Str("src", path.Base(defFile)).
|
|
Str("name", name).
|
|
Msg("middleware loaded")
|
|
}
|
|
}
|
|
if errs.HasError() {
|
|
E.LogError(errs.About(), errs.Error(), &logger)
|
|
}
|
|
}
|