We use cookies to ensure you get the best experience on our website
Kezdőlap Felfedezés Súgó
Regisztráció Bejelentkezés
0ct0pu5
/
anubis
1
0
Másolás 0
Fájlok Problémák 0 Beolvasztási kérések 0 Wiki
Fa: 38d62eeb56
Branch-ok Tag-ek
anubis
/
internal
/
headers.go

headers.go 2.1 KB
Előzmények Nyers

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. package internal
    2. 

  2. 

  3. import (
    4. 

  4. 	"log/slog"
    5. 

  5. 	"net"
    6. 

  6. 	"net/http"
    7. 

  7. 	"strings"
    8. 

  8. 

  9. 	"github.com/TecharoHQ/anubis"
    10. 

  10. 	"github.com/sebest/xff"
    11. 

  11. )
    12. 

  12. 

  13. // UnchangingCache sets the Cache-Control header to cache a response for 1 year if
    14. 

  14. // and only if the application is compiled in "release" mode by Docker.
    15. 

  15. func UnchangingCache(next http.Handler) http.Handler {
    16. 

  16. 	if anubis.Version == "devel" {
    17. 

  17. 		return next
    18. 

  18. 	}
    19. 

  19. 

  20. 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
    21. 

  21. 		w.Header().Set("Cache-Control", "public, max-age=31536000")
    22. 

  22. 		next.ServeHTTP(w, r)
    23. 

  23. 	})
    24. 

  24. }
    25. 

  25. 

  26. // RemoteXRealIP sets the X-Real-Ip header to the request's real IP if
    27. 

  27. // the setting is enabled by the user.
    28. 

  28. func RemoteXRealIP(useRemoteAddress bool, bindNetwork string, next http.Handler) http.Handler {
    29. 

  29. 	if useRemoteAddress == false {
    30. 

  30. 		slog.Debug("skipping middleware, useRemoteAddress is empty")
    31. 

  31. 		return next
    32. 

  32. 	}
    33. 

  33. 

  34. 	if bindNetwork == "unix" {
    35. 

  35. 		// For local sockets there is no real remote address but the localhost
    36. 

  36. 		// address should be sensible.
    37. 

  37. 		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
    38. 

  38. 			r.Header.Set("X-Real-Ip", "127.0.0.1")
    39. 

  39. 			next.ServeHTTP(w, r)
    40. 

  40. 		})
    41. 

  41. 	}
    42. 

  42. 

  43. 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
    44. 

  44. 		host, _, err := net.SplitHostPort(r.RemoteAddr)
    45. 

  45. 		if err != nil {
    46. 

  46. 			panic(err) // this should never happen
    47. 

  47. 		}
    48. 

  48. 		r.Header.Set("X-Real-Ip", host)
    49. 

  49. 		next.ServeHTTP(w, r)
    50. 

  50. 	})
    51. 

  51. }
    52. 

  52. 

  53. // XForwardedForToXRealIP sets the X-Real-Ip header based on the contents
    54. 

  54. // of the X-Forwarded-For header.
    55. 

  55. func XForwardedForToXRealIP(next http.Handler) http.Handler {
    56. 

  56. 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
    57. 

  57. 		if xffHeader := r.Header.Get("X-Forwarded-For"); r.Header.Get("X-Real-Ip") == "" && xffHeader != "" {
    58. 

  58. 			ip := xff.Parse(xffHeader)
    59. 

  59. 			slog.Debug("setting x-real-ip", "val", ip)
    60. 

  60. 			r.Header.Set("X-Real-Ip", ip)
    61. 

  61. 		}
    62. 

  62. 

  63. 		next.ServeHTTP(w, r)
    64. 

  64. 	})
    65. 

  65. }
    66. 

  66. 

  67. // Do not allow browsing directory listings in paths that end with /
    68. 

  68. func NoBrowsing(next http.Handler) http.Handler {
    69. 

  69. 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
    70. 

  70. 		if strings.HasSuffix(r.URL.Path, "/") {
    71. 

  71. 			http.NotFound(w, r)
    72. 

  72. 			return
    73. 

  73. 		}
    74. 

  74. 		next.ServeHTTP(w, r)
    75. 

  75. 	})
    76. 

  76. }
    77.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5