dufs/src/args.rs

use clap::crate_description;
use clap::{Arg, ArgMatches};
use rustls::{Certificate, PrivateKey};
use std::net::{IpAddr, SocketAddr};
use std::path::{Path, PathBuf};
use std::{env, fs, io};

use crate::auth::parse_auth;
use crate::BoxResult;

const ABOUT: &str = concat!("\n", crate_description!()); // Add extra newline.

fn app() -> clap::Command<'static> {
    clap::command!()
        .about(ABOUT)
        .arg(
            Arg::new("address")
                .short('b')
                .long("bind")
                .default_value("0.0.0.0")
                .help("Specify bind address")
                .value_name("address"),
        )
        .arg(
            Arg::new("port")
                .short('p')
                .long("port")
                .default_value("5000")
                .help("Specify port to listen on")
                .value_name("port"),
        )
        .arg(
            Arg::new("path")
                .default_value(".")
                .allow_invalid_utf8(true)
                .help("Path to a root directory for serving files"),
        )
        .arg(
            Arg::new("path-prefix")
                .long("path-prefix")
                .value_name("path")
                .help("Specify an url path prefix"),
        )
        .arg(
            Arg::new("allow-all")
                .short('A')
                .long("allow-all")
                .help("Allow all operations"),
        )
        .arg(
            Arg::new("allow-upload")
                .long("allow-upload")
                .help("Allow upload files/folders"),
        )
        .arg(
            Arg::new("allow-delete")
                .long("allow-delete")
                .help("Allow delete files/folders"),
        )
        .arg(
            Arg::new("allow-symlink")
                .long("allow-symlink")
                .help("Allow symlink to files/folders outside root directory"),
        )
        .arg(
            Arg::new("render-index")
                .long("render-index")
                .help("Render index.html when requesting a directory"),
        )
        .arg(
            Arg::new("render-spa")
                .long("render-spa")
                .help("Render for single-page application"),
        )
        .arg(
            Arg::new("auth")
                .short('a')
                .display_order(1)
                .long("auth")
                .help("Use HTTP authentication")
                .value_name("user:pass"),
        )
        .arg(
            Arg::new("no-auth-access")
                .display_order(1)
                .long("no-auth-access")
                .help("Not required auth when access static files"),
        )
        .arg(
            Arg::new("cors")
                .long("cors")
                .help("Enable CORS, sets `Access-Control-Allow-Origin: *`"),
        )
        .arg(
            Arg::new("tls-cert")
                .long("tls-cert")
                .value_name("path")
                .help("Path to an SSL/TLS certificate to serve with HTTPS"),
        )
        .arg(
            Arg::new("tls-key")
                .long("tls-key")
                .value_name("path")
                .help("Path to the SSL/TLS certificate's private key"),
        )
}

pub fn matches() -> ArgMatches {
    app().get_matches()
}

#[derive(Debug, Clone, Eq, PartialEq)]
pub struct Args {
    pub addr: SocketAddr,
    pub path: PathBuf,
    pub path_prefix: String,
    pub uri_prefix: String,
    pub auth: Option<(String, String)>,
    pub no_auth_access: bool,
    pub allow_upload: bool,
    pub allow_delete: bool,
    pub allow_symlink: bool,
    pub render_index: bool,
    pub render_spa: bool,
    pub cors: bool,
    pub tls: Option<(Vec<Certificate>, PrivateKey)>,
}

impl Args {
    /// Parse command-line arguments.
    ///
    /// If a parsing error ocurred, exit the process and print out informative
    /// error message to user.
    pub fn parse(matches: ArgMatches) -> BoxResult<Args> {
        let ip = matches.value_of("address").unwrap_or_default();
        let port = matches.value_of_t::<u16>("port")?;
        let addr = to_addr(ip, port)?;
        let path = Args::parse_path(matches.value_of_os("path").unwrap_or_default())?;
        let path_prefix = matches
            .value_of("path-prefix")
            .map(|v| v.trim_matches('/').to_owned())
            .unwrap_or_default();
        let uri_prefix = if path_prefix.is_empty() {
            "/".to_owned()
        } else {
            format!("/{}/", &path_prefix)
        };
        let cors = matches.is_present("cors");
        let auth = match matches.value_of("auth") {
            Some(auth) => Some(parse_auth(auth)?),
            None => None,
        };
        let no_auth_access = matches.is_present("no-auth-access");
        let allow_upload = matches.is_present("allow-all") || matches.is_present("allow-upload");
        let allow_delete = matches.is_present("allow-all") || matches.is_present("allow-delete");
        let allow_symlink = matches.is_present("allow-all") || matches.is_present("allow-symlink");
        let render_index = matches.is_present("render-index");
        let render_spa = matches.is_present("render-spa");
        let tls = match (matches.value_of("tls-cert"), matches.value_of("tls-key")) {
            (Some(certs_file), Some(key_file)) => {
                let certs = load_certs(certs_file)?;
                let key = load_private_key(key_file)?;
                Some((certs, key))
            }
            _ => None,
        };

        Ok(Args {
            addr,
            path,
            path_prefix,
            uri_prefix,
            auth,
            no_auth_access,
            cors,
            allow_delete,
            allow_upload,
            allow_symlink,
            render_index,
            render_spa,
            tls,
        })
    }

    /// Parse path.
    fn parse_path<P: AsRef<Path>>(path: P) -> BoxResult<PathBuf> {
        let path = path.as_ref();
        if !path.exists() {
            return Err(format!("Path `{}` doesn't exist", path.display()).into());
        }

        env::current_dir()
            .and_then(|mut p| {
                p.push(path); // If path is absolute, it replaces the current path.
                std::fs::canonicalize(p)
            })
            .map_err(|err| format!("Failed to access path `{}`: {}", path.display(), err,).into())
    }
}

fn to_addr(ip: &str, port: u16) -> BoxResult<SocketAddr> {
    let ip: IpAddr = ip.parse()?;
    Ok(SocketAddr::new(ip, port))
}

// Load public certificate from file.
fn load_certs(filename: &str) -> BoxResult<Vec<Certificate>> {
    // Open certificate file.
    let certfile = fs::File::open(&filename)
        .map_err(|e| format!("Failed to access `{}`, {}", &filename, e))?;
    let mut reader = io::BufReader::new(certfile);

    // Load and return certificate.
    let certs = rustls_pemfile::certs(&mut reader).map_err(|_| "Failed to load certificate")?;
    if certs.is_empty() {
        return Err("No supported certificate in file".into());
    }
    Ok(certs.into_iter().map(Certificate).collect())
}

// Load private key from file.
fn load_private_key(filename: &str) -> BoxResult<PrivateKey> {
    // Open keyfile.
    let keyfile = fs::File::open(&filename)
        .map_err(|e| format!("Failed to access `{}`, {}", &filename, e))?;
    let mut reader = io::BufReader::new(keyfile);

    // Load and return a single private key.
    let keys = rustls_pemfile::read_all(&mut reader)
        .map_err(|e| format!("There was a problem with reading private key: {:?}", e))?
        .into_iter()
        .find_map(|item| match item {
            rustls_pemfile::Item::RSAKey(key) | rustls_pemfile::Item::PKCS8Key(key) => Some(key),
            _ => None,
        })
        .ok_or("No supported private key in file")?;

    Ok(PrivateKey(keys))
}
init commit 2022-05-26 11:17:55 +03:00			`use clap::crate_description;`
			`use clap::{Arg, ArgMatches};`
feat: support tls 2022-06-02 06:06:41 +03:00			`use rustls::{Certificate, PrivateKey};`
feat: support ipv6 (#25) 2022-06-06 05:52:12 +03:00			`use std::net::{IpAddr, SocketAddr};`
init commit 2022-05-26 11:17:55 +03:00			`use std::path::{Path, PathBuf};`
feat: support tls 2022-06-02 06:06:41 +03:00			`use std::{env, fs, io};`
init commit 2022-05-26 11:17:55 +03:00
feat: use digest auth (#14) * feat: switch to digest auth * implement digest auth * cargo fmt * no lock 2022-06-04 19:09:21 +03:00			`use crate::auth::parse_auth;`
init commit 2022-05-26 11:17:55 +03:00			`use crate::BoxResult;`

			`const ABOUT: &str = concat!("\n", crate_description!()); // Add extra newline.`

			`fn app() -> clap::Command<'static> {`
			`clap::command!()`
			`.about(ABOUT)`
feat: replace --static option to --no-edit 2022-05-29 12:01:30 +03:00			`.arg(`
			`Arg::new("address")`
			`.short('b')`
			`.long("bind")`
feat: listen 0.0.0.0 by default 2022-06-03 06:18:46 +03:00			`.default_value("0.0.0.0")`
feat: replace --static option to --no-edit 2022-05-29 12:01:30 +03:00			`.help("Specify bind address")`
			`.value_name("address"),`
			`)`
			`.arg(`
			`Arg::new("port")`
			`.short('p')`
			`.long("port")`
			`.default_value("5000")`
			`.help("Specify port to listen on")`
			`.value_name("port"),`
			`)`
			`.arg(`
			`Arg::new("path")`
			`.default_value(".")`
			`.allow_invalid_utf8(true)`
feat: cli add allow-symlink option 2022-05-31 15:53:14 +03:00			`.help("Path to a root directory for serving files"),`
feat: replace --static option to --no-edit 2022-05-29 12:01:30 +03:00			`)`
feat: support path prefix 2022-06-02 03:32:31 +03:00			`.arg(`
			`Arg::new("path-prefix")`
			`.long("path-prefix")`
			`.value_name("path")`
			`.help("Specify an url path prefix"),`
			`)`
feat: replace --static option to --no-edit 2022-05-29 12:01:30 +03:00			`.arg(`
feat: distinct upload and delete operation 2022-05-31 03:38:30 +03:00			`Arg::new("allow-all")`
			`.short('A')`
			`.long("allow-all")`
			`.help("Allow all operations"),`
			`)`
			`.arg(`
			`Arg::new("allow-upload")`
			`.long("allow-upload")`
feat: change auth logic/options 2022-06-02 14:32:19 +03:00			`.help("Allow upload files/folders"),`
feat: distinct upload and delete operation 2022-05-31 03:38:30 +03:00			`)`
			`.arg(`
			`Arg::new("allow-delete")`
fix: some typos close #6 2022-05-31 17:38:00 +03:00			`.long("allow-delete")`
feat: change auth logic/options 2022-06-02 14:32:19 +03:00			`.help("Allow delete files/folders"),`
feat: replace --static option to --no-edit 2022-05-29 12:01:30 +03:00			`)`
feat: cli add allow-symlink option 2022-05-31 15:53:14 +03:00			`.arg(`
			`Arg::new("allow-symlink")`
fix: some typos close #6 2022-05-31 17:38:00 +03:00			`.long("allow-symlink")`
feat: change auth logic/options 2022-06-02 14:32:19 +03:00			`.help("Allow symlink to files/folders outside root directory"),`
feat: cli add allow-symlink option 2022-05-31 15:53:14 +03:00			`)`
feat: support render-index/render-spa closes #5 2022-06-01 17:49:55 +03:00			`.arg(`
			`Arg::new("render-index")`
			`.long("render-index")`
refactor: small improvement 2022-06-02 12:06:22 +03:00			`.help("Render index.html when requesting a directory"),`
feat: support render-index/render-spa closes #5 2022-06-01 17:49:55 +03:00			`)`
			`.arg(`
			`Arg::new("render-spa")`
			`.long("render-spa")`
refactor: small improvement 2022-06-02 12:06:22 +03:00			`.help("Render for single-page application"),`
feat: support render-index/render-spa closes #5 2022-06-01 17:49:55 +03:00			`)`
feat: replace --static option to --no-edit 2022-05-29 12:01:30 +03:00			`.arg(`
			`Arg::new("auth")`
			`.short('a')`
feat: change auth logic/options 2022-06-02 14:32:19 +03:00			`.display_order(1)`
feat: replace --static option to --no-edit 2022-05-29 12:01:30 +03:00			`.long("auth")`
fix: rename --no-auth-read to --no-auth-access 2022-06-03 01:51:03 +03:00			`.help("Use HTTP authentication")`
feat: replace --static option to --no-edit 2022-05-29 12:01:30 +03:00			`.value_name("user:pass"),`
			`)`
feat: add no-auth-read options 2022-05-30 07:40:57 +03:00			`.arg(`
fix: rename --no-auth-read to --no-auth-access 2022-06-03 01:51:03 +03:00			`Arg::new("no-auth-access")`
feat: change auth logic/options 2022-06-02 14:32:19 +03:00			`.display_order(1)`
fix: rename --no-auth-read to --no-auth-access 2022-06-03 01:51:03 +03:00			`.long("no-auth-access")`
			`.help("Not required auth when access static files"),`
feat: add no-auth-read options 2022-05-30 07:40:57 +03:00			`)`
feat: add cors 2022-05-29 12:33:21 +03:00			`.arg(`
			`Arg::new("cors")`
			`.long("cors")`
			.help("Enable CORS, sets `Access-Control-Allow-Origin: *`"),
			`)`
feat: support tls 2022-06-02 06:06:41 +03:00			`.arg(`
			`Arg::new("tls-cert")`
			`.long("tls-cert")`
			`.value_name("path")`
			`.help("Path to an SSL/TLS certificate to serve with HTTPS"),`
			`)`
			`.arg(`
			`Arg::new("tls-key")`
			`.long("tls-key")`
			`.value_name("path")`
			`.help("Path to the SSL/TLS certificate's private key"),`
			`)`
init commit 2022-05-26 11:17:55 +03:00			`}`

			`pub fn matches() -> ArgMatches {`
			`app().get_matches()`
			`}`

			`#[derive(Debug, Clone, Eq, PartialEq)]`
			`pub struct Args {`
feat: support ipv6 (#25) 2022-06-06 05:52:12 +03:00			`pub addr: SocketAddr,`
init commit 2022-05-26 11:17:55 +03:00			`pub path: PathBuf,`
feat: implement more webdav methods (#13) Now you can mount the server as webdav driver on windows. 2022-06-04 14:08:18 +03:00			`pub path_prefix: String,`
			`pub uri_prefix: String,`
feat: use digest auth (#14) * feat: switch to digest auth * implement digest auth * cargo fmt * no lock 2022-06-04 19:09:21 +03:00			`pub auth: Option<(String, String)>,`
fix: rename --no-auth-read to --no-auth-access 2022-06-03 01:51:03 +03:00			`pub no_auth_access: bool,`
feat: distinct upload and delete operation 2022-05-31 03:38:30 +03:00			`pub allow_upload: bool,`
			`pub allow_delete: bool,`
feat: cli add allow-symlink option 2022-05-31 15:53:14 +03:00			`pub allow_symlink: bool,`
feat: support render-index/render-spa closes #5 2022-06-01 17:49:55 +03:00			`pub render_index: bool,`
			`pub render_spa: bool,`
feat: add cors 2022-05-29 12:33:21 +03:00			`pub cors: bool,`
feat: support tls 2022-06-02 06:06:41 +03:00			`pub tls: Option<(Vec<Certificate>, PrivateKey)>,`
init commit 2022-05-26 11:17:55 +03:00			`}`

			`impl Args {`
			`/// Parse command-line arguments.`
			`///`
			`/// If a parsing error ocurred, exit the process and print out informative`
			`/// error message to user.`
			`pub fn parse(matches: ArgMatches) -> BoxResult<Args> {`
feat: support ipv6 (#25) 2022-06-06 05:52:12 +03:00			`let ip = matches.value_of("address").unwrap_or_default();`
init commit 2022-05-26 11:17:55 +03:00			`let port = matches.value_of_t::<u16>("port")?;`
feat: support ipv6 (#25) 2022-06-06 05:52:12 +03:00			`let addr = to_addr(ip, port)?;`
feat: distinct upload and delete operation 2022-05-31 03:38:30 +03:00			`let path = Args::parse_path(matches.value_of_os("path").unwrap_or_default())?;`
feat: support webdav (#10) 2022-06-04 07:51:56 +03:00			`let path_prefix = matches`
			`.value_of("path-prefix")`
feat: implement more webdav methods (#13) Now you can mount the server as webdav driver on windows. 2022-06-04 14:08:18 +03:00			`.map(\|v\| v.trim_matches('/').to_owned())`
			`.unwrap_or_default();`
			`let uri_prefix = if path_prefix.is_empty() {`
			`"/".to_owned()`
			`} else {`
fix: escape path-prefix/url-prefix different 2022-06-06 03:00:26 +03:00			`format!("/{}/", &path_prefix)`
feat: implement more webdav methods (#13) Now you can mount the server as webdav driver on windows. 2022-06-04 14:08:18 +03:00			`};`
feat: add cors 2022-05-29 12:33:21 +03:00			`let cors = matches.is_present("cors");`
feat: use digest auth (#14) * feat: switch to digest auth * implement digest auth * cargo fmt * no lock 2022-06-04 19:09:21 +03:00			`let auth = match matches.value_of("auth") {`
			`Some(auth) => Some(parse_auth(auth)?),`
			`None => None,`
			`};`
fix: rename --no-auth-read to --no-auth-access 2022-06-03 01:51:03 +03:00			`let no_auth_access = matches.is_present("no-auth-access");`
feat: distinct upload and delete operation 2022-05-31 03:38:30 +03:00			`let allow_upload = matches.is_present("allow-all") \|\| matches.is_present("allow-upload");`
			`let allow_delete = matches.is_present("allow-all") \|\| matches.is_present("allow-delete");`
feat: cli add allow-symlink option 2022-05-31 15:53:14 +03:00			`let allow_symlink = matches.is_present("allow-all") \|\| matches.is_present("allow-symlink");`
feat: support render-index/render-spa closes #5 2022-06-01 17:49:55 +03:00			`let render_index = matches.is_present("render-index");`
			`let render_spa = matches.is_present("render-spa");`
feat: support tls 2022-06-02 06:06:41 +03:00			`let tls = match (matches.value_of("tls-cert"), matches.value_of("tls-key")) {`
			`(Some(certs_file), Some(key_file)) => {`
			`let certs = load_certs(certs_file)?;`
			`let key = load_private_key(key_file)?;`
			`Some((certs, key))`
			`}`
			`_ => None,`
			`};`
init commit 2022-05-26 11:17:55 +03:00
			`Ok(Args {`
feat: support ipv6 (#25) 2022-06-06 05:52:12 +03:00			`addr,`
init commit 2022-05-26 11:17:55 +03:00			`path,`
feat: support path prefix 2022-06-02 03:32:31 +03:00			`path_prefix,`
feat: implement more webdav methods (#13) Now you can mount the server as webdav driver on windows. 2022-06-04 14:08:18 +03:00			`uri_prefix,`
feat: add basic auth and readonly mode 2022-05-26 13:06:52 +03:00			`auth,`
fix: rename --no-auth-read to --no-auth-access 2022-06-03 01:51:03 +03:00			`no_auth_access,`
feat: add cors 2022-05-29 12:33:21 +03:00			`cors,`
feat: distinct upload and delete operation 2022-05-31 03:38:30 +03:00			`allow_delete,`
			`allow_upload,`
feat: cli add allow-symlink option 2022-05-31 15:53:14 +03:00			`allow_symlink,`
feat: support render-index/render-spa closes #5 2022-06-01 17:49:55 +03:00			`render_index,`
			`render_spa,`
feat: support tls 2022-06-02 06:06:41 +03:00			`tls,`
init commit 2022-05-26 11:17:55 +03:00			`})`
			`}`

			`/// Parse path.`
			`fn parse_path<P: AsRef<Path>>(path: P) -> BoxResult<PathBuf> {`
			`let path = path.as_ref();`
			`if !path.exists() {`
feat: listen 0.0.0.0 by default 2022-06-03 06:18:46 +03:00			return Err(format!("Path `{}` doesn't exist", path.display()).into());
init commit 2022-05-26 11:17:55 +03:00			`}`

			`env::current_dir()`
			`.and_then(\|mut p\| {`
			`p.push(path); // If path is absolute, it replaces the current path.`
fix: some typos close #6 2022-05-31 17:38:00 +03:00			`std::fs::canonicalize(p)`
init commit 2022-05-26 11:17:55 +03:00			`})`
feat: listen 0.0.0.0 by default 2022-06-03 06:18:46 +03:00			.map_err(\|err\| format!("Failed to access path `{}`: {}", path.display(), err,).into())
init commit 2022-05-26 11:17:55 +03:00			`}`
feat: support ipv6 (#25) 2022-06-06 05:52:12 +03:00			`}`
init commit 2022-05-26 11:17:55 +03:00
feat: support ipv6 (#25) 2022-06-06 05:52:12 +03:00			`fn to_addr(ip: &str, port: u16) -> BoxResult<SocketAddr> {`
			`let ip: IpAddr = ip.parse()?;`
			`Ok(SocketAddr::new(ip, port))`
init commit 2022-05-26 11:17:55 +03:00			`}`
feat: support tls 2022-06-02 06:06:41 +03:00
			`// Load public certificate from file.`
feat: support ipv6 (#25) 2022-06-06 05:52:12 +03:00			`fn load_certs(filename: &str) -> BoxResult<Vec<Certificate>> {`
feat: support tls 2022-06-02 06:06:41 +03:00			`// Open certificate file.`
test: add integration tests (#36) 2022-06-12 03:43:50 +03:00			`let certfile = fs::File::open(&filename)`
			.map_err(\|e\| format!("Failed to access `{}`, {}", &filename, e))?;
feat: support tls 2022-06-02 06:06:41 +03:00			`let mut reader = io::BufReader::new(certfile);`

			`// Load and return certificate.`
			`let certs = rustls_pemfile::certs(&mut reader).map_err(\|_\| "Failed to load certificate")?;`
			`if certs.is_empty() {`
feat: support tls-key in pkcs#8 format (#35) 2022-06-11 10:26:08 +03:00			`return Err("No supported certificate in file".into());`
feat: support tls 2022-06-02 06:06:41 +03:00			`}`
			`Ok(certs.into_iter().map(Certificate).collect())`
			`}`

			`// Load private key from file.`
feat: support ipv6 (#25) 2022-06-06 05:52:12 +03:00			`fn load_private_key(filename: &str) -> BoxResult<PrivateKey> {`
feat: support tls 2022-06-02 06:06:41 +03:00			`// Open keyfile.`
test: add integration tests (#36) 2022-06-12 03:43:50 +03:00			`let keyfile = fs::File::open(&filename)`
			.map_err(\|e\| format!("Failed to access `{}`, {}", &filename, e))?;
feat: support tls 2022-06-02 06:06:41 +03:00			`let mut reader = io::BufReader::new(keyfile);`

			`// Load and return a single private key.`
feat: support tls-key in pkcs#8 format (#35) 2022-06-11 10:26:08 +03:00			`let keys = rustls_pemfile::read_all(&mut reader)`
			`.map_err(\|e\| format!("There was a problem with reading private key: {:?}", e))?`
			`.into_iter()`
			`.find_map(\|item\| match item {`
			`rustls_pemfile::Item::RSAKey(key) \| rustls_pemfile::Item::PKCS8Key(key) => Some(key),`
			`_ => None,`
			`})`
			`.ok_or("No supported private key in file")?;`
feat: support tls 2022-06-02 06:06:41 +03:00
feat: support tls-key in pkcs#8 format (#35) 2022-06-11 10:26:08 +03:00			`Ok(PrivateKey(keys))`
feat: support tls 2022-06-02 06:06:41 +03:00			`}`