mirror of
https://github.com/caddyserver/caddy.git
synced 2024-12-23 22:27:38 -05:00
f29023bf8f
We'll need that context in v2.1 when the transport can manage its own client certificates; see #3198
159 lines
4.1 KiB
Go
159 lines
4.1 KiB
Go
// Copyright 2015 Matthew Holt and The Caddy Authors
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package reverseproxy
|
|
|
|
import (
|
|
"encoding/json"
|
|
"flag"
|
|
"fmt"
|
|
"net"
|
|
"net/http"
|
|
"net/url"
|
|
"strings"
|
|
|
|
"github.com/caddyserver/caddy/v2"
|
|
"github.com/caddyserver/caddy/v2/caddyconfig"
|
|
caddycmd "github.com/caddyserver/caddy/v2/cmd"
|
|
"github.com/caddyserver/caddy/v2/modules/caddyhttp"
|
|
"github.com/caddyserver/caddy/v2/modules/caddyhttp/headers"
|
|
)
|
|
|
|
func init() {
|
|
caddycmd.RegisterCommand(caddycmd.Command{
|
|
Name: "reverse-proxy",
|
|
Func: cmdReverseProxy,
|
|
Usage: "[--from <addr>] [--to <addr>] [--change-host-header]",
|
|
Short: "A quick and production-ready reverse proxy",
|
|
Long: `
|
|
A simple but production-ready reverse proxy. Useful for quick deployments,
|
|
demos, and development.
|
|
|
|
Simply shuttles HTTP traffic from the --from address to the --to address.
|
|
|
|
If the --from address has a domain name, Caddy will attempt to serve the
|
|
proxy over HTTPS with a certificate.
|
|
|
|
If --change-host-header is set, the Host header on the request will be modified
|
|
from its original incoming value to the address of the upstream. (Otherwise, by
|
|
default, all incoming headers are passed through unmodified.)
|
|
`,
|
|
Flags: func() *flag.FlagSet {
|
|
fs := flag.NewFlagSet("file-server", flag.ExitOnError)
|
|
fs.String("from", "localhost:443", "Address on which to receive traffic")
|
|
fs.String("to", "", "Upstream address to which to to proxy traffic")
|
|
fs.Bool("change-host-header", false, "Set upstream Host header to address of upstream")
|
|
return fs
|
|
}(),
|
|
})
|
|
}
|
|
|
|
func cmdReverseProxy(fs caddycmd.Flags) (int, error) {
|
|
from := fs.String("from")
|
|
to := fs.String("to")
|
|
changeHost := fs.Bool("change-host-header")
|
|
|
|
if from == "" {
|
|
from = "localhost:443"
|
|
}
|
|
|
|
// URLs need a scheme in order to parse successfully
|
|
if !strings.Contains(from, "://") {
|
|
from = "http://" + from
|
|
}
|
|
if !strings.Contains(to, "://") {
|
|
to = "http://" + to
|
|
}
|
|
|
|
fromURL, err := url.Parse(from)
|
|
if err != nil {
|
|
return caddy.ExitCodeFailedStartup, fmt.Errorf("parsing 'from' URL: %v", err)
|
|
}
|
|
toURL, err := url.Parse(to)
|
|
if err != nil {
|
|
return caddy.ExitCodeFailedStartup, fmt.Errorf("parsing 'to' URL: %v", err)
|
|
}
|
|
|
|
if toURL.Port() == "" {
|
|
toPort := "80"
|
|
if toURL.Scheme == "https" {
|
|
toPort = "443"
|
|
}
|
|
toURL.Host = net.JoinHostPort(toURL.Host, toPort)
|
|
}
|
|
|
|
ht := HTTPTransport{}
|
|
if toURL.Scheme == "https" {
|
|
ht.TLS = new(TLSConfig)
|
|
}
|
|
|
|
handler := Handler{
|
|
TransportRaw: caddyconfig.JSONModuleObject(ht, "protocol", "http", nil),
|
|
Upstreams: UpstreamPool{{Dial: toURL.Host}},
|
|
}
|
|
|
|
if changeHost {
|
|
handler.Headers = &headers.Handler{
|
|
Request: &headers.HeaderOps{
|
|
Set: http.Header{
|
|
"Host": []string{"{http.reverse_proxy.upstream.hostport}"},
|
|
},
|
|
},
|
|
}
|
|
}
|
|
|
|
route := caddyhttp.Route{
|
|
HandlersRaw: []json.RawMessage{
|
|
caddyconfig.JSONModuleObject(handler, "handler", "reverse_proxy", nil),
|
|
},
|
|
}
|
|
urlHost := fromURL.Hostname()
|
|
if urlHost != "" {
|
|
route.MatcherSetsRaw = []caddy.ModuleMap{
|
|
{
|
|
"host": caddyconfig.JSON(caddyhttp.MatchHost{urlHost}, nil),
|
|
},
|
|
}
|
|
}
|
|
|
|
listen := ":443"
|
|
if urlPort := fromURL.Port(); urlPort != "" {
|
|
listen = ":" + urlPort
|
|
}
|
|
|
|
server := &caddyhttp.Server{
|
|
Routes: caddyhttp.RouteList{route},
|
|
Listen: []string{listen},
|
|
}
|
|
|
|
httpApp := caddyhttp.App{
|
|
Servers: map[string]*caddyhttp.Server{"proxy": server},
|
|
}
|
|
|
|
cfg := &caddy.Config{
|
|
Admin: &caddy.AdminConfig{Disabled: true},
|
|
AppsRaw: caddy.ModuleMap{
|
|
"http": caddyconfig.JSON(httpApp, nil),
|
|
},
|
|
}
|
|
|
|
err = caddy.Run(cfg)
|
|
if err != nil {
|
|
return caddy.ExitCodeFailedStartup, err
|
|
}
|
|
|
|
fmt.Printf("Caddy 2 proxying from %s to %s\n", fromURL, toURL)
|
|
|
|
select {}
|
|
}
|