784b7585c1
so we don't have to update all the files every year Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
74 lines
2.1 KiB
Go
74 lines
2.1 KiB
Go
// Copyright (C) 2019 Nicola Murino
|
|
//
|
|
// This program is free software: you can redistribute it and/or modify
|
|
// it under the terms of the GNU Affero General Public License as published
|
|
// by the Free Software Foundation, version 3.
|
|
//
|
|
// This program is distributed in the hope that it will be useful,
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
// GNU Affero General Public License for more details.
|
|
//
|
|
// You should have received a copy of the GNU Affero General Public License
|
|
// along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
|
|
package telemetry
|
|
|
|
import (
|
|
"net/http"
|
|
|
|
"github.com/go-chi/chi/v5"
|
|
"github.com/go-chi/chi/v5/middleware"
|
|
"github.com/go-chi/render"
|
|
|
|
"github.com/drakkan/sftpgo/v2/internal/common"
|
|
"github.com/drakkan/sftpgo/v2/internal/logger"
|
|
"github.com/drakkan/sftpgo/v2/internal/metric"
|
|
)
|
|
|
|
func initializeRouter(enableProfiler bool) {
|
|
router = chi.NewRouter()
|
|
|
|
router.Use(middleware.GetHead)
|
|
router.Use(logger.NewStructuredLogger(logger.GetLogger()))
|
|
router.Use(middleware.Recoverer)
|
|
|
|
router.Group(func(r chi.Router) {
|
|
r.Get("/healthz", func(w http.ResponseWriter, r *http.Request) {
|
|
render.PlainText(w, r, "ok")
|
|
})
|
|
})
|
|
|
|
router.Group(func(router chi.Router) {
|
|
router.Use(checkAuth)
|
|
metric.AddMetricsEndpoint(metricsPath, router)
|
|
|
|
if enableProfiler {
|
|
logger.InfoToConsole("enabling the built-in profiler")
|
|
logger.Info(logSender, "", "enabling the built-in profiler")
|
|
router.Mount(pprofBasePath, middleware.Profiler())
|
|
}
|
|
})
|
|
}
|
|
|
|
func checkAuth(next http.Handler) http.Handler {
|
|
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
|
if !validateCredentials(r) {
|
|
w.Header().Set(common.HTTPAuthenticationHeader, "Basic realm=\"SFTPGo telemetry\"")
|
|
http.Error(w, http.StatusText(http.StatusUnauthorized), http.StatusUnauthorized)
|
|
return
|
|
}
|
|
next.ServeHTTP(w, r)
|
|
})
|
|
}
|
|
|
|
func validateCredentials(r *http.Request) bool {
|
|
if !httpAuth.IsEnabled() {
|
|
return true
|
|
}
|
|
username, password, ok := r.BasicAuth()
|
|
if !ok {
|
|
return false
|
|
}
|
|
return httpAuth.ValidateCredentials(username, password)
|
|
}
|