address feedbcak

This commit is contained in:
Mohammed Al Sahaf 2024-08-26 17:46:27 +00:00 committed by GitHub
parent 18cd1c0525
commit 38bb05c6c6
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
5 changed files with 33 additions and 15 deletions

View file

@ -1,7 +1,7 @@
:8884 :8884
reverse_proxy 127.0.0.1:65535 { reverse_proxy 127.0.0.1:65535 {
transport http { transport http {
forward_proxy none network_proxy none
} }
} }
---------- ----------

View file

@ -1,7 +1,7 @@
:8884 :8884
reverse_proxy 127.0.0.1:65535 { reverse_proxy 127.0.0.1:65535 {
transport http { transport http {
forward_proxy url http://localhost:8080 network_proxy url http://localhost:8080
} }
} }
---------- ----------

View file

@ -980,7 +980,9 @@ func (h *Handler) FinalizeUnmarshalCaddyfile(helper httpcaddyfile.Helper) error
// read_buffer <size> // read_buffer <size>
// write_buffer <size> // write_buffer <size>
// max_response_header <size> // max_response_header <size>
// forward_proxy_url <url> // network_proxy <module> {
// ...
// }
// dial_timeout <duration> // dial_timeout <duration>
// dial_fallback_delay <duration> // dial_fallback_delay <duration>
// response_header_timeout <duration> // response_header_timeout <duration>
@ -991,6 +993,9 @@ func (h *Handler) FinalizeUnmarshalCaddyfile(helper httpcaddyfile.Helper) error
// tls_insecure_skip_verify // tls_insecure_skip_verify
// tls_timeout <duration> // tls_timeout <duration>
// tls_trusted_ca_certs <cert_files...> // tls_trusted_ca_certs <cert_files...>
// tls_trust_pool <module> {
// ...
// }
// tls_server_name <sni> // tls_server_name <sni>
// tls_renegotiation <level> // tls_renegotiation <level>
// tls_except_ports <ports...> // tls_except_ports <ports...>
@ -1069,12 +1074,13 @@ func (h *HTTPTransport) UnmarshalCaddyfile(d *caddyfile.Dispenser) error {
} }
case "forward_proxy_url": case "forward_proxy_url":
caddy.Log().Warn("The 'forward_proxy_url' field is deprecated. Use the 'network_proxy' field instead.")
if !d.NextArg() { if !d.NextArg() {
return d.ArgErr() return d.ArgErr()
} }
h.ForwardProxyURL = d.Val()
case "forward_proxy": h.ForwardProxyURL = d.Val()
case "network_proxy":
if !d.NextArg() { if !d.NextArg() {
return d.ArgErr() return d.ArgErr()
} }
@ -1084,11 +1090,6 @@ func (h *HTTPTransport) UnmarshalCaddyfile(d *caddyfile.Dispenser) error {
if err != nil { if err != nil {
return err return err
} }
// TODO: should we validate here?
// ca, ok := unm.(caddy.ProxyFuncProducer)
// if !ok {
// return d.Errf("module %s is not a caddy.ProxyFuncProducer", modID)
// }
h.NetworkProxyRaw = caddyconfig.JSONModuleObject(unm, "from", modStem, nil) h.NetworkProxyRaw = caddyconfig.JSONModuleObject(unm, "from", modStem, nil)
case "dial_timeout": case "dial_timeout":
if !d.NextArg() { if !d.NextArg() {

View file

@ -88,6 +88,7 @@ type HTTPTransport struct {
// forward_proxy_url -> upstream // forward_proxy_url -> upstream
// //
// Default: http.ProxyFromEnvironment // Default: http.ProxyFromEnvironment
// DEPRECATED: Use NetworkProxyRaw|`network_proxy` instead. Subject to removal.
ForwardProxyURL string `json:"forward_proxy_url,omitempty"` ForwardProxyURL string `json:"forward_proxy_url,omitempty"`
// How long to wait before timing out trying to connect to // How long to wait before timing out trying to connect to
@ -139,7 +140,20 @@ type HTTPTransport struct {
// The pre-configured underlying HTTP transport. // The pre-configured underlying HTTP transport.
Transport *http.Transport `json:"-"` Transport *http.Transport `json:"-"`
// Forward proxy module // The module that provides the network (forward) proxy
// URL that the HTTP transport will use to proxy
// requests to the upstream. See [http.Transport.Proxy](https://pkg.go.dev/net/http#Transport.Proxy)
// for information regarding supported protocols.
//
// Providing a value to this parameter results in
// requests flowing through the reverse_proxy in the following
// way:
//
// User Agent ->
// reverse_proxy ->
// [proxy provided by the module] -> upstream
//
// If nil/empty, default to reading the `HTTP_PROXY`, `HTTPS_PROXY`, and `NO_PROXY`.
NetworkProxyRaw json.RawMessage `json:"network_proxy,omitempty" caddy:"namespace=caddy.network_proxy.source inline_key=from"` NetworkProxyRaw json.RawMessage `json:"network_proxy,omitempty" caddy:"namespace=caddy.network_proxy.source inline_key=from"`
h2cTransport *http2.Transport h2cTransport *http2.Transport
@ -343,6 +357,7 @@ func (h *HTTPTransport) NewTransport(caddyCtx caddy.Context) (*http.Transport, e
} }
if h.ForwardProxyURL != "" { if h.ForwardProxyURL != "" {
caddyCtx.Logger().Warn("forward_proxy_url is deprecated; use network_proxy instead")
pUrl, err := url.Parse(h.ForwardProxyURL) pUrl, err := url.Parse(h.ForwardProxyURL)
if err != nil { if err != nil {
return nil, fmt.Errorf("failed to parse transport proxy url: %v", err) return nil, fmt.Errorf("failed to parse transport proxy url: %v", err)

View file

@ -17,6 +17,7 @@ func init() {
caddy.RegisterModule(ProxyFromNone{}) caddy.RegisterModule(ProxyFromNone{})
} }
// The "url" proxy source uses the defined URL as the proxy
type ProxyFromURL struct { type ProxyFromURL struct {
URL string `json:"url"` URL string `json:"url"`
@ -65,17 +66,17 @@ func (p ProxyFromURL) ProxyFunc() func(*http.Request) (*url.URL, error) {
// note: h.ForwardProxyURL should never be empty at this point // note: h.ForwardProxyURL should never be empty at this point
s := repl.ReplaceAll(p.URL, "") s := repl.ReplaceAll(p.URL, "")
if s == "" { if s == "" {
p.logger.Error("forward_proxy_url was empty after applying placeholders", p.logger.Error("network_proxy URL was empty after applying placeholders",
zap.String("initial_value", p.URL), zap.String("initial_value", p.URL),
zap.String("final_value", s), zap.String("final_value", s),
zap.String("hint", "check for invalid placeholders")) zap.String("hint", "check for invalid placeholders"))
return nil, errors.New("empty value for forward_proxy_url") return nil, errors.New("empty value for network_proxy URL")
} }
// parse the url // parse the url
pUrl, err := url.Parse(s) pUrl, err := url.Parse(s)
if err != nil { if err != nil {
p.logger.Warn("failed to derive transport proxy from forward_proxy_url") p.logger.Warn("failed to derive transport proxy from network_proxy URL")
pUrl = nil pUrl = nil
} else if pUrl.Host == "" || strings.Split("", pUrl.Host)[0] == ":" { } else if pUrl.Host == "" || strings.Split("", pUrl.Host)[0] == ":" {
// url.Parse does not return an error on these values: // url.Parse does not return an error on these values:
@ -86,7 +87,7 @@ func (p ProxyFromURL) ProxyFunc() func(*http.Request) (*url.URL, error) {
// - pUrl.Host == "" // - pUrl.Host == ""
// //
// Super edge cases, but humans are human. // Super edge cases, but humans are human.
err = errors.New("supplied forward_proxy_url is missing a host value") err = errors.New("supplied network_proxy URL is missing a host value")
pUrl = nil pUrl = nil
} else { } else {
p.logger.Debug("setting transport proxy url", zap.String("url", s)) p.logger.Debug("setting transport proxy url", zap.String("url", s))
@ -108,6 +109,7 @@ func (p *ProxyFromURL) UnmarshalCaddyfile(d *caddyfile.Dispenser) error {
return nil return nil
} }
// The "none" proxy source module disables the use of network proxy.
type ProxyFromNone struct{} type ProxyFromNone struct{}
func (p ProxyFromNone) CaddyModule() caddy.ModuleInfo { func (p ProxyFromNone) CaddyModule() caddy.ModuleInfo {