2019-07-01 01:07:58 +03:00
|
|
|
// Copyright 2015 Matthew Holt and The Caddy Authors
|
|
|
|
//
|
|
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
// you may not use this file except in compliance with the License.
|
|
|
|
// You may obtain a copy of the License at
|
|
|
|
//
|
|
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
//
|
|
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
// See the License for the specific language governing permissions and
|
|
|
|
// limitations under the License.
|
|
|
|
|
2019-05-21 00:46:47 +03:00
|
|
|
package headers
|
|
|
|
|
|
|
|
import (
|
2019-09-14 01:24:51 +03:00
|
|
|
"fmt"
|
2019-05-21 00:46:47 +03:00
|
|
|
"net/http"
|
2019-09-14 01:24:51 +03:00
|
|
|
"regexp"
|
2019-05-21 00:46:47 +03:00
|
|
|
"strings"
|
|
|
|
|
2019-07-02 21:37:06 +03:00
|
|
|
"github.com/caddyserver/caddy/v2"
|
|
|
|
"github.com/caddyserver/caddy/v2/modules/caddyhttp"
|
2019-05-21 00:46:47 +03:00
|
|
|
)
|
|
|
|
|
|
|
|
func init() {
|
2019-09-14 01:24:51 +03:00
|
|
|
caddy.RegisterModule(Handler{})
|
2019-05-21 00:46:47 +03:00
|
|
|
}
|
|
|
|
|
2019-09-14 01:24:51 +03:00
|
|
|
// Handler is a middleware which can mutate HTTP headers.
|
|
|
|
type Handler struct {
|
2019-05-22 21:32:36 +03:00
|
|
|
Request *HeaderOps `json:"request,omitempty"`
|
|
|
|
Response *RespHeaderOps `json:"response,omitempty"`
|
2019-05-21 00:46:47 +03:00
|
|
|
}
|
|
|
|
|
2019-08-21 19:46:35 +03:00
|
|
|
// CaddyModule returns the Caddy module information.
|
2019-09-14 01:24:51 +03:00
|
|
|
func (Handler) CaddyModule() caddy.ModuleInfo {
|
2019-08-21 19:46:35 +03:00
|
|
|
return caddy.ModuleInfo{
|
|
|
|
Name: "http.handlers.headers",
|
2019-09-14 01:24:51 +03:00
|
|
|
New: func() caddy.Module { return new(Handler) },
|
2019-08-21 19:46:35 +03:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2019-09-14 01:24:51 +03:00
|
|
|
// Provision sets up h's configuration.
|
|
|
|
func (h *Handler) Provision(_ caddy.Context) error {
|
|
|
|
if h.Request != nil {
|
|
|
|
err := h.Request.provision()
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if h.Response != nil {
|
|
|
|
err := h.Response.provision()
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
2019-05-21 00:46:47 +03:00
|
|
|
}
|
|
|
|
|
2019-09-14 01:24:51 +03:00
|
|
|
// Validate ensures h's configuration is valid.
|
|
|
|
func (h Handler) Validate() error {
|
|
|
|
if h.Request != nil {
|
|
|
|
err := h.Request.validate()
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if h.Response != nil {
|
|
|
|
err := h.Response.validate()
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
2019-05-21 00:46:47 +03:00
|
|
|
}
|
|
|
|
|
2019-09-14 01:24:51 +03:00
|
|
|
func (h Handler) ServeHTTP(w http.ResponseWriter, r *http.Request, next caddyhttp.Handler) error {
|
2019-06-14 20:58:28 +03:00
|
|
|
repl := r.Context().Value(caddy.ReplacerCtxKey).(caddy.Replacer)
|
2019-09-12 03:48:37 +03:00
|
|
|
|
2019-09-14 01:24:51 +03:00
|
|
|
h.Request.applyTo(r.Header, repl)
|
2019-09-12 03:48:37 +03:00
|
|
|
|
|
|
|
// request header's Host is handled specially by the
|
|
|
|
// Go standard library, so if that header was changed,
|
|
|
|
// change it in the Host field since the Header won't
|
|
|
|
// be used
|
|
|
|
if intendedHost := r.Header.Get("Host"); intendedHost != "" {
|
|
|
|
r.Host = intendedHost
|
|
|
|
r.Header.Del("Host")
|
|
|
|
}
|
|
|
|
|
2019-06-21 23:36:26 +03:00
|
|
|
if h.Response != nil {
|
|
|
|
if h.Response.Deferred || h.Response.Require != nil {
|
|
|
|
w = &responseWriterWrapper{
|
|
|
|
ResponseWriterWrapper: &caddyhttp.ResponseWriterWrapper{ResponseWriter: w},
|
|
|
|
replacer: repl,
|
|
|
|
require: h.Response.Require,
|
|
|
|
headerOps: h.Response.HeaderOps,
|
|
|
|
}
|
|
|
|
} else {
|
2019-09-14 01:24:51 +03:00
|
|
|
h.Response.applyTo(w.Header(), repl)
|
2019-05-21 00:46:47 +03:00
|
|
|
}
|
|
|
|
}
|
2019-09-14 01:24:51 +03:00
|
|
|
|
2019-05-21 00:46:47 +03:00
|
|
|
return next.ServeHTTP(w, r)
|
|
|
|
}
|
|
|
|
|
2019-09-14 01:24:51 +03:00
|
|
|
// HeaderOps defines some operations to
|
|
|
|
// perform on HTTP headers.
|
|
|
|
type HeaderOps struct {
|
|
|
|
Add http.Header `json:"add,omitempty"`
|
|
|
|
Set http.Header `json:"set,omitempty"`
|
|
|
|
Delete []string `json:"delete,omitempty"`
|
|
|
|
Replace map[string][]Replacement `json:"replace,omitempty"`
|
|
|
|
}
|
|
|
|
|
|
|
|
func (ops *HeaderOps) provision() error {
|
|
|
|
for fieldName, replacements := range ops.Replace {
|
|
|
|
for i, r := range replacements {
|
|
|
|
if r.SearchRegexp != "" {
|
|
|
|
re, err := regexp.Compile(r.SearchRegexp)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("replacement %d for header field '%s': %v", i, fieldName, err)
|
|
|
|
}
|
|
|
|
replacements[i].re = re
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (ops HeaderOps) validate() error {
|
|
|
|
for fieldName, replacements := range ops.Replace {
|
|
|
|
for _, r := range replacements {
|
|
|
|
if r.Search != "" && r.SearchRegexp != "" {
|
|
|
|
return fmt.Errorf("cannot specify both a substring search and a regular expression search for field '%s'", fieldName)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// Replacement describes a string replacement,
|
|
|
|
// either a simple and fast sugbstring search
|
|
|
|
// or a slower but more powerful regex search.
|
|
|
|
type Replacement struct {
|
|
|
|
Search string `json:"search,omitempty"`
|
|
|
|
SearchRegexp string `json:"search_regexp,omitempty"`
|
|
|
|
Replace string `json:"replace,omitempty"`
|
|
|
|
|
|
|
|
re *regexp.Regexp
|
|
|
|
}
|
|
|
|
|
|
|
|
// RespHeaderOps is like HeaderOps, but
|
|
|
|
// optionally deferred until response time.
|
|
|
|
type RespHeaderOps struct {
|
|
|
|
*HeaderOps
|
|
|
|
Require *caddyhttp.ResponseMatcher `json:"require,omitempty"`
|
|
|
|
Deferred bool `json:"deferred,omitempty"`
|
|
|
|
}
|
|
|
|
|
|
|
|
func (ops *HeaderOps) applyTo(hdr http.Header, repl caddy.Replacer) {
|
2019-06-21 23:36:26 +03:00
|
|
|
if ops == nil {
|
|
|
|
return
|
|
|
|
}
|
2019-09-14 01:24:51 +03:00
|
|
|
|
2019-05-21 00:46:47 +03:00
|
|
|
for fieldName, vals := range ops.Add {
|
2019-05-21 08:48:43 +03:00
|
|
|
fieldName = repl.ReplaceAll(fieldName, "")
|
2019-05-21 00:46:47 +03:00
|
|
|
for _, v := range vals {
|
2019-05-21 08:48:43 +03:00
|
|
|
hdr.Add(fieldName, repl.ReplaceAll(v, ""))
|
2019-05-21 00:46:47 +03:00
|
|
|
}
|
|
|
|
}
|
2019-09-14 01:24:51 +03:00
|
|
|
|
2019-05-21 00:46:47 +03:00
|
|
|
for fieldName, vals := range ops.Set {
|
2019-05-21 08:48:43 +03:00
|
|
|
fieldName = repl.ReplaceAll(fieldName, "")
|
|
|
|
for i := range vals {
|
|
|
|
vals[i] = repl.ReplaceAll(vals[i], "")
|
|
|
|
}
|
2019-05-21 00:46:47 +03:00
|
|
|
hdr.Set(fieldName, strings.Join(vals, ","))
|
|
|
|
}
|
2019-09-14 01:24:51 +03:00
|
|
|
|
2019-05-21 00:46:47 +03:00
|
|
|
for _, fieldName := range ops.Delete {
|
2019-05-21 08:48:43 +03:00
|
|
|
hdr.Del(repl.ReplaceAll(fieldName, ""))
|
2019-05-21 00:46:47 +03:00
|
|
|
}
|
2019-09-14 01:24:51 +03:00
|
|
|
|
|
|
|
for fieldName, replacements := range ops.Replace {
|
|
|
|
fieldName = repl.ReplaceAll(fieldName, "")
|
|
|
|
|
|
|
|
// perform replacements across all fields
|
|
|
|
if fieldName == "*" {
|
|
|
|
for _, r := range replacements {
|
|
|
|
search := repl.ReplaceAll(r.Search, "")
|
|
|
|
replace := repl.ReplaceAll(r.Replace, "")
|
|
|
|
for fieldName, vals := range hdr {
|
|
|
|
for i := range vals {
|
|
|
|
if r.re != nil {
|
|
|
|
hdr[fieldName][i] = r.re.ReplaceAllString(hdr[fieldName][i], replace)
|
|
|
|
} else {
|
|
|
|
hdr[fieldName][i] = strings.ReplaceAll(hdr[fieldName][i], search, replace)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
continue
|
|
|
|
}
|
|
|
|
|
|
|
|
// perform replacements only with the named field
|
|
|
|
for _, r := range replacements {
|
|
|
|
search := repl.ReplaceAll(r.Search, "")
|
|
|
|
replace := repl.ReplaceAll(r.Replace, "")
|
|
|
|
for i := range hdr[fieldName] {
|
|
|
|
if r.re != nil {
|
|
|
|
hdr[fieldName][i] = r.re.ReplaceAllString(hdr[fieldName][i], replace)
|
|
|
|
} else {
|
|
|
|
hdr[fieldName][i] = strings.ReplaceAll(hdr[fieldName][i], search, replace)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
2019-05-21 00:46:47 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
// responseWriterWrapper defers response header
|
|
|
|
// operations until WriteHeader is called.
|
|
|
|
type responseWriterWrapper struct {
|
|
|
|
*caddyhttp.ResponseWriterWrapper
|
2019-06-14 20:58:28 +03:00
|
|
|
replacer caddy.Replacer
|
2019-05-29 03:53:08 +03:00
|
|
|
require *caddyhttp.ResponseMatcher
|
2019-05-22 21:32:36 +03:00
|
|
|
headerOps *HeaderOps
|
2019-05-21 07:00:54 +03:00
|
|
|
wroteHeader bool
|
|
|
|
}
|
|
|
|
|
2019-05-21 00:46:47 +03:00
|
|
|
func (rww *responseWriterWrapper) WriteHeader(status int) {
|
2019-05-21 07:00:54 +03:00
|
|
|
if rww.wroteHeader {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
rww.wroteHeader = true
|
2019-05-29 03:53:08 +03:00
|
|
|
if rww.require == nil || rww.require.Match(status, rww.ResponseWriterWrapper.Header()) {
|
2019-09-14 01:24:51 +03:00
|
|
|
rww.headerOps.applyTo(rww.ResponseWriterWrapper.Header(), rww.replacer)
|
2019-05-29 03:53:08 +03:00
|
|
|
}
|
2019-05-21 00:46:47 +03:00
|
|
|
rww.ResponseWriterWrapper.WriteHeader(status)
|
|
|
|
}
|
|
|
|
|
2019-06-14 20:58:28 +03:00
|
|
|
func (rww *responseWriterWrapper) Write(d []byte) (int, error) {
|
|
|
|
if !rww.wroteHeader {
|
|
|
|
rww.WriteHeader(http.StatusOK)
|
|
|
|
}
|
|
|
|
return rww.ResponseWriterWrapper.Write(d)
|
|
|
|
}
|
|
|
|
|
2019-05-21 00:46:47 +03:00
|
|
|
// Interface guards
|
|
|
|
var (
|
2019-09-14 01:24:51 +03:00
|
|
|
_ caddy.Provisioner = (*Handler)(nil)
|
|
|
|
_ caddyhttp.MiddlewareHandler = (*Handler)(nil)
|
2019-05-21 00:46:47 +03:00
|
|
|
_ caddyhttp.HTTPInterfaces = (*responseWriterWrapper)(nil)
|
|
|
|
)
|