reverseproxy: Add Caddyfile scheme shorthand for h2c (#3629)

* reverseproxy: Add Caddyfile scheme shorthand for h2c

* reverseproxy: Use parentheses for condition

Co-authored-by: Matt Holt <mholt@users.noreply.github.com>

Co-authored-by: Matt Holt <mholt@users.noreply.github.com>
This commit is contained in:
Francis Lavoie 2020-11-23 14:18:26 -05:00 committed by GitHub
parent bd17eb205d
commit 4a641f6c6f
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 48 additions and 3 deletions

View file

@ -0,0 +1,38 @@
:8884
reverse_proxy h2c://localhost:8080
----------
{
"apps": {
"http": {
"servers": {
"srv0": {
"listen": [
":8884"
],
"routes": [
{
"handle": [
{
"handler": "reverse_proxy",
"transport": {
"protocol": "http",
"versions": [
"h2c",
"2"
]
},
"upstreams": [
{
"dial": "localhost:8080"
}
]
}
]
}
]
}
}
}
}
}

View file

@ -131,12 +131,15 @@ func (h *Handler) UnmarshalCaddyfile(d *caddyfile.Dispenser) error {
if toURL.Scheme == "https" && urlPort == "80" { if toURL.Scheme == "https" && urlPort == "80" {
return "", d.Err("upstream address has conflicting scheme (https://) and port (:80, the HTTP port)") return "", d.Err("upstream address has conflicting scheme (https://) and port (:80, the HTTP port)")
} }
if toURL.Scheme == "h2c" && urlPort == "443" {
return "", d.Err("upstream address has conflicting scheme (h2c://) and port (:443, the HTTPS port)")
}
// if port is missing, attempt to infer from scheme // if port is missing, attempt to infer from scheme
if toURL.Port() == "" { if toURL.Port() == "" {
var toPort string var toPort string
switch toURL.Scheme { switch toURL.Scheme {
case "", "http": case "", "http", "h2c":
toPort = "80" toPort = "80"
case "https": case "https":
toPort = "443" toPort = "443"
@ -565,8 +568,9 @@ func (h *Handler) UnmarshalCaddyfile(d *caddyfile.Dispenser) error {
} }
// if the scheme inferred from the backends' addresses is // if the scheme inferred from the backends' addresses is
// HTTPS, we will need a non-nil transport to enable TLS // HTTPS, we will need a non-nil transport to enable TLS,
if commonScheme == "https" && transport == nil { // or if H2C, to set the transport versions.
if (commonScheme == "https" || commonScheme == "h2c") && transport == nil {
transport = new(HTTPTransport) transport = new(HTTPTransport)
transportModuleName = "http" transportModuleName = "http"
} }
@ -583,6 +587,9 @@ func (h *Handler) UnmarshalCaddyfile(d *caddyfile.Dispenser) error {
if commonScheme == "http" && te.TLSEnabled() { if commonScheme == "http" && te.TLSEnabled() {
return d.Errf("upstream address scheme is HTTP but transport is configured for HTTP+TLS (HTTPS)") return d.Errf("upstream address scheme is HTTP but transport is configured for HTTP+TLS (HTTPS)")
} }
if te, ok := transport.(*HTTPTransport); ok && commonScheme == "h2c" {
te.Versions = []string{"h2c", "2"}
}
} else if commonScheme == "https" { } else if commonScheme == "https" {
return d.Errf("upstreams are configured for HTTPS but transport module does not support TLS: %T", transport) return d.Errf("upstreams are configured for HTTPS but transport module does not support TLS: %T", transport)
} }