Cosmos-Server/src/proxy/routerGen.go

package proxy

import (
	"net/http"
	"regexp"
	"strconv"
	"time"

	"github.com/azukaar/cosmos-server/src/user"
	"github.com/azukaar/cosmos-server/src/utils"
	"github.com/go-chi/httprate"
	"github.com/gorilla/mux"
)

func tokenMiddleware(enabled bool, adminOnly bool) func(next http.Handler) http.Handler {
	return func(next http.Handler) http.Handler {
		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
			r.Header.Del("x-cosmos-user")
			r.Header.Del("x-cosmos-role")
			r.Header.Del("x-cosmos-mfa")

			u, err := user.RefreshUserToken(w, r)

			if err != nil {
				return
			}

			r.Header.Set("x-cosmos-user", u.Nickname)
			r.Header.Set("x-cosmos-role", strconv.Itoa((int)(u.Role)))
			r.Header.Set("x-cosmos-mfa", strconv.Itoa((int)(u.MFAState)))

			ogcookies := r.Header.Get("Cookie")
			cookieRemoveRegex := regexp.MustCompile(`jwttoken=[^;]*;`)
			cookies := cookieRemoveRegex.ReplaceAllString(ogcookies, "")
			r.Header.Set("Cookie", cookies)

			// Replace the token with a application speicfic one
			r.Header.Set("x-cosmos-token", "1234567890")

			if enabled && adminOnly {
				if errT := utils.AdminOnlyWithRedirect(w, r); errT != nil {
					return
				}
			} else if enabled {
				if errT := utils.LoggedInOnlyWithRedirect(w, r); errT != nil {
					return
				}
			}

			next.ServeHTTP(w, r)
		})
	}
}

func RouterGen(route utils.ProxyRouteConfig, router *mux.Router, destination http.Handler) *mux.Route {
	origin := router.NewRoute()

	if route.UseHost {
		origin = origin.Host(route.Host)
	}
	
	if route.UsePathPrefix {
		if route.PathPrefix != "" && route.PathPrefix[0] != '/' {
			utils.Error("PathPrefix must start with a /", nil)
		}
		origin = origin.PathPrefix(route.PathPrefix)
	}
	
	if route.UsePathPrefix && route.StripPathPrefix {
		if route.PathPrefix != "" && route.PathPrefix[0] != '/' {
			utils.Error("PathPrefix must start with a /", nil)
		}
		destination = http.StripPrefix(route.PathPrefix, destination)
	}

	for filter := range route.AddionalFilters {
		if route.AddionalFilters[filter].Type == "header" {
			origin = origin.Headers(route.AddionalFilters[filter].Name, route.AddionalFilters[filter].Value)
		} else if route.AddionalFilters[filter].Type == "query" {
			origin = origin.Queries(route.AddionalFilters[filter].Name, route.AddionalFilters[filter].Value)
		} else if route.AddionalFilters[filter].Type == "method" {
			origin = origin.Methods(route.AddionalFilters[filter].Value)
		} else {
			utils.Error("Unknown filter type: "+route.AddionalFilters[filter].Type, nil)
		}
	}
	
	destination = SmartShieldMiddleware(route.SmartShield)(destination)

	originCORS := route.CORSOrigin

	if originCORS == "" {
		if route.UseHost {
			originCORS = route.Host
		} else {
			originCORS = utils.GetMainConfig().HTTPConfig.Hostname
		}
	}

	if route.UsePathPrefix && !route.StripPathPrefix && (route.Mode == "STATIC" || route.Mode == "SPA") {
		utils.Warn("PathPrefix is used, but StripPathPrefix is false. The route mode is " + (string)(route.Mode) + ". This will likely cause issues with the route. Ignore this warning if you know what you are doing.")
	}

	timeout := route.Timeout

	
	if(!utils.GetMainConfig().HTTPConfig.AcceptAllInsecureHostname) {
		destination = utils.EnsureHostname(destination)
	}

	if timeout > 0 {
		destination = utils.MiddlewareTimeout(timeout * time.Millisecond)(destination)
	}

	throttlePerMinute := route.ThrottlePerMinute

	if throttlePerMinute > 0 {
		throtthleTime := time.Minute
		destination = httprate.Limit(throttlePerMinute, throtthleTime,
			httprate.WithKeyFuncs(httprate.KeyByIP),
			httprate.WithLimitHandler(func(w http.ResponseWriter, r *http.Request) {
				utils.Error("Too many requests. Throttling", nil)
				utils.HTTPError(w, "Too many requests",
					http.StatusTooManyRequests, "HTTP003")
				return
			}),
		)(destination)
	}

	if route.MaxBandwith > 0 {
		destination = utils.BandwithLimiterMiddleware(route.MaxBandwith)(destination)
	}

	if route.BlockCommonBots {
		destination = BotDetectionMiddleware(destination)
	}

	if route.BlockAPIAbuse {
		destination = utils.BlockPostWithoutReferer(destination)
	}

	destination = tokenMiddleware(route.AuthEnabled, route.AdminOnly)(utils.CORSHeader(originCORS)((destination)))

	origin.Handler(destination)

	utils.Log("Added route: [" + (string)(route.Mode) + "] " + route.Host + route.PathPrefix + " to " + route.Target + "")

	return origin
}
Wrote proxy 2023-02-26 22:26:09 +00:00			`package proxy`

			`import (`
			`"net/http"`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`"regexp"`
			`"strconv"`
Wrote user management 2023-03-10 20:59:56 +00:00			`"time"`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00
v0.0.7: Docker Integration 2023-03-25 20:15:00 +00:00			`"github.com/azukaar/cosmos-server/src/user"`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`"github.com/azukaar/cosmos-server/src/utils"`
Wrote user management 2023-03-10 20:59:56 +00:00			`"github.com/go-chi/httprate"`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`"github.com/gorilla/mux"`
Wrote proxy 2023-02-26 22:26:09 +00:00			`)`

v0.3.0-unstable14 2023-05-01 11:59:46 +00:00			`func tokenMiddleware(enabled bool, adminOnly bool) func(next http.Handler) http.Handler {`
Proxy working with authentications 2023-03-18 19:59:32 +00:00			`return func(next http.Handler) http.Handler {`
			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
[release] v0.3.0-unstable 2FA + geoblock 2023-04-30 12:03:14 +00:00			`r.Header.Del("x-cosmos-user")`
			`r.Header.Del("x-cosmos-role")`
			`r.Header.Del("x-cosmos-mfa")`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00
Proxy working with authentications 2023-03-18 19:59:32 +00:00			`u, err := user.RefreshUserToken(w, r)`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00
Proxy working with authentications 2023-03-18 19:59:32 +00:00			`if err != nil {`
			`return`
			`}`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00
Proxy working with authentications 2023-03-18 19:59:32 +00:00			`r.Header.Set("x-cosmos-user", u.Nickname)`
			`r.Header.Set("x-cosmos-role", strconv.Itoa((int)(u.Role)))`
[release] v0.3.0-unstable 2FA + geoblock 2023-04-30 12:03:14 +00:00			`r.Header.Set("x-cosmos-mfa", strconv.Itoa((int)(u.MFAState)))`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00
Proxy working with authentications 2023-03-18 19:59:32 +00:00			`ogcookies := r.Header.Get("Cookie")`
			cookieRemoveRegex := regexp.MustCompile(`jwttoken=[^;]*;`)
			`cookies := cookieRemoveRegex.ReplaceAllString(ogcookies, "")`
			`r.Header.Set("Cookie", cookies)`

			`// Replace the token with a application speicfic one`
			`r.Header.Set("x-cosmos-token", "1234567890")`

v0.3.0-unstable14 2023-05-01 11:59:46 +00:00			`if enabled && adminOnly {`
v0.3.0-unstable15 2023-05-01 12:07:01 +00:00			`if errT := utils.AdminOnlyWithRedirect(w, r); errT != nil {`
			`return`
			`}`
v0.3.0-unstable14 2023-05-01 11:59:46 +00:00			`} else if enabled {`
v0.3.0-unstable15 2023-05-01 12:07:01 +00:00			`if errT := utils.LoggedInOnlyWithRedirect(w, r); errT != nil {`
			`return`
			`}`
Proxy working with authentications 2023-03-18 19:59:32 +00:00			`}`

			`next.ServeHTTP(w, r)`
			`})`
			`}`
			`}`

v0.1.0 servapps management 2023-03-31 19:19:38 +00:00			`func RouterGen(route utils.ProxyRouteConfig, router mux.Router, destination http.Handler) mux.Route {`
[release] v0.7.1 2023-06-17 17:08:26 +00:00			`origin := router.NewRoute()`
Wrote proxy 2023-02-26 22:26:09 +00:00
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`if route.UseHost {`
Wrote proxy 2023-02-26 22:26:09 +00:00			`origin = origin.Host(route.Host)`
			`}`
[relase] v0.1.18-unstable3 - restore network clean up 2023-04-18 17:55:59 +00:00
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`if route.UsePathPrefix {`
			`if route.PathPrefix != "" && route.PathPrefix[0] != '/' {`
v0.1.0 servapps management 2023-03-31 19:19:38 +00:00			`utils.Error("PathPrefix must start with a /", nil)`
			`}`
Wrote proxy 2023-02-26 22:26:09 +00:00			`origin = origin.PathPrefix(route.PathPrefix)`
Add UI and login screen 2023-03-12 18:17:28 +00:00			`}`
[relase] v0.1.18-unstable3 - restore network clean up 2023-04-18 17:55:59 +00:00
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`if route.UsePathPrefix && route.StripPathPrefix {`
			`if route.PathPrefix != "" && route.PathPrefix[0] != '/' {`
v0.1.0 servapps management 2023-03-31 19:19:38 +00:00			`utils.Error("PathPrefix must start with a /", nil)`
			`}`
			`destination = http.StripPrefix(route.PathPrefix, destination)`
Wrote proxy 2023-02-26 22:26:09 +00:00			`}`
[release] 0.9.9 2023-07-19 10:27:48 +00:00
			`for filter := range route.AddionalFilters {`
			`if route.AddionalFilters[filter].Type == "header" {`
			`origin = origin.Headers(route.AddionalFilters[filter].Name, route.AddionalFilters[filter].Value)`
			`} else if route.AddionalFilters[filter].Type == "query" {`
			`origin = origin.Queries(route.AddionalFilters[filter].Name, route.AddionalFilters[filter].Value)`
			`} else if route.AddionalFilters[filter].Type == "method" {`
			`origin = origin.Methods(route.AddionalFilters[filter].Value)`
			`} else {`
			`utils.Error("Unknown filter type: "+route.AddionalFilters[filter].Type, nil)`
			`}`
			`}`
[relase] v0.1.18-unstable3 - restore network clean up 2023-04-18 17:55:59 +00:00
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`destination = SmartShieldMiddleware(route.SmartShield)(destination)`

Wrote user management 2023-03-10 20:59:56 +00:00			`originCORS := route.CORSOrigin`

			`if originCORS == "" {`
			`if route.UseHost {`
			`originCORS = route.Host`
			`} else {`
			`originCORS = utils.GetMainConfig().HTTPConfig.Hostname`
			`}`
			`}`

[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`if route.UsePathPrefix && !route.StripPathPrefix && (route.Mode == "STATIC" \|\| route.Mode == "SPA") {`
v0.1.0 servapps management 2023-03-31 19:19:38 +00:00			`utils.Warn("PathPrefix is used, but StripPathPrefix is false. The route mode is " + (string)(route.Mode) + ". This will likely cause issues with the route. Ignore this warning if you know what you are doing.")`
			`}`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00
v0.1.9 Various bug fixes and UI improvements to route form 2023-04-04 20:54:35 +00:00			`timeout := route.Timeout`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00
[release] version 0.4.2 2023-05-10 17:17:11 +00:00
			`if(!utils.GetMainConfig().HTTPConfig.AcceptAllInsecureHostname) {`
			`destination = utils.EnsureHostname(destination)`
			`}`

[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`if timeout > 0 {`
v0.1.9 Various bug fixes and UI improvements to route form 2023-04-04 20:54:35 +00:00			`destination = utils.MiddlewareTimeout(timeout * time.Millisecond)(destination)`
			`}`
v0.1.0 servapps management 2023-03-31 19:19:38 +00:00
v0.1.9 Various bug fixes and UI improvements to route form 2023-04-04 20:54:35 +00:00			`throttlePerMinute := route.ThrottlePerMinute`

[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`if throttlePerMinute > 0 {`
v0.1.9 Various bug fixes and UI improvements to route form 2023-04-04 20:54:35 +00:00			`throtthleTime := time.Minute`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`destination = httprate.Limit(throttlePerMinute, throtthleTime,`
Wrote user management 2023-03-10 20:59:56 +00:00			`httprate.WithKeyFuncs(httprate.KeyByIP),`
			`httprate.WithLimitHandler(func(w http.ResponseWriter, r *http.Request) {`
			`utils.Error("Too many requests. Throttling", nil)`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`utils.HTTPError(w, "Too many requests",`
Wrote user management 2023-03-10 20:59:56 +00:00			`http.StatusTooManyRequests, "HTTP003")`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`return`
Wrote user management 2023-03-10 20:59:56 +00:00			`}),`
v0.1.9 Various bug fixes and UI improvements to route form 2023-04-04 20:54:35 +00:00			`)(destination)`
			`}`

[relase] v0.1.18-unstable3 - restore network clean up 2023-04-18 17:55:59 +00:00			`if route.MaxBandwith > 0 {`
			`destination = utils.BandwithLimiterMiddleware(route.MaxBandwith)(destination)`
			`}`

[release] v0.3.0-unstable 2FA + geoblock 2023-04-30 12:03:14 +00:00			`if route.BlockCommonBots {`
			`destination = BotDetectionMiddleware(destination)`
			`}`

			`if route.BlockAPIAbuse {`
			`destination = utils.BlockPostWithoutReferer(destination)`
			`}`

v0.3.0-unstable14 2023-05-01 11:59:46 +00:00			`destination = tokenMiddleware(route.AuthEnabled, route.AdminOnly)(utils.CORSHeader(originCORS)((destination)))`
[release] v0.3.0-unstable 2FA + geoblock 2023-04-30 12:03:14 +00:00
			`origin.Handler(destination)`
v0.1.0 servapps management 2023-03-31 19:19:38 +00:00
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`utils.Log("Added route: [" + (string)(route.Mode) + "] " + route.Host + route.PathPrefix + " to " + route.Target + "")`
Wrote proxy 2023-02-26 22:26:09 +00:00
			`return origin`
[release] v0.1.17-unstable - Smart Shield 2023-04-18 15:50:12 +00:00			`}`