stillbox/pkg/server/routes.go

package server

import (
	"errors"
	"io/fs"
	"net/http"
	"path"
	"strings"

	"dynatron.me/x/stillbox/client"
	"dynatron.me/x/stillbox/internal/version"
	"dynatron.me/x/stillbox/pkg/config"
	"github.com/go-chi/chi/v5"
	"github.com/go-chi/httprate"
	"github.com/go-chi/render"
)

const (
	serverHeader = "Server"
)

func (s *Server) setupRoutes() {
	clientRoot, err := fs.Sub(client.Client, client.Prefix)
	if err != nil {
		panic(err)
	}

	r := s.r
	r.Use(s.WithCtxStores())

	s.installPprof()

	r.Group(func(r chi.Router) {
		// authenticated routes
		r.Use(s.auth.VerifyMiddleware(), s.auth.AuthMiddleware())
		s.nex.PrivateRoutes(r)
		s.auth.PrivateRoutes(r)
		s.alerter.PrivateRoutes(r)
		r.Mount("/api", s.rest.Subrouter())
	})

	r.Group(func(r chi.Router) {
		s.rateLimit(r)
		r.Use(render.SetContentType(render.ContentTypeJSON))
		// public routes
		s.sources.PublicRoutes(r)
	})

	r.Group(func(r chi.Router) {
		// auth/share routes get rate-limited heavily, but not using middleware
		s.rateLimit(r)
		r.Use(render.SetContentType(render.ContentTypeJSON))
		s.auth.PublicRoutes(r)
		r.Mount("/share", s.rest.ShareRouter())
	})

	r.Group(func(r chi.Router) {
		s.rateLimit(r)
		r.Use(s.auth.VerifyMiddleware())

		// optional auth routes

		s.clientRoute(r, clientRoot)
	})
}

// WithCtxStores is a middleware that installs all stores in the request context.
func (s *Server) WithCtxStores() func(next http.Handler) http.Handler {
	return func(next http.Handler) http.Handler {
		fn := func(w http.ResponseWriter, r *http.Request) {
			r = r.WithContext(s.fillCtx(r.Context()))
			next.ServeHTTP(w, r)
		}
		return http.HandlerFunc(fn)
	}
}

func (s *Server) rateLimit(r chi.Router) {
	if s.conf.RateLimit.Verify() {
		r.Use(rateLimiter(&s.conf.RateLimit))
	}
}

func rateLimiter(cfg *config.RateLimit) func(http.Handler) http.Handler {
	return httprate.LimitByRealIP(cfg.Requests, cfg.Over)
}

func (s *Server) clientRoute(r chi.Router, clientRoot fs.FS) {
	r.Get("/*", func(w http.ResponseWriter, r *http.Request) {
		hfs := http.FS(clientRoot)
		var pe *fs.PathError

		pc := path.Clean(r.URL.Path)
		f, err := hfs.Open(pc)
		if err != nil {
			if errors.As(err, &pe) {
				http.ServeFileFS(w, r, clientRoot, "/index.html")
				return
			}
		} else {
			f.Close()
		}

		rctx := chi.RouteContext(r.Context())
		pathPrefix := strings.TrimSuffix(rctx.RoutePattern(), "/*")
		fs := http.StripPrefix(pathPrefix, http.FileServer(http.FS(clientRoot)))
		fs.ServeHTTP(w, r)
	})
}

func ServerHeaderAdd(next http.Handler) http.Handler {
	serverString := version.HttpString(version.Name)
	hfn := func(w http.ResponseWriter, r *http.Request) {
		w.Header().Set(serverHeader, serverString)
		next.ServeHTTP(w, r)
	}
	return http.HandlerFunc(hfn)
}
Initial server 2024-07-14 13:47:48 -04:00			`package server`

			`import (`
Prepare to integrate 2024-11-22 12:32:22 -05:00			`"errors"`
Add root route 2024-08-08 22:01:03 -04:00			`"io/fs"`
Initial server 2024-07-14 13:47:48 -04:00			`"net/http"`
Prepare to integrate 2024-11-22 12:32:22 -05:00			`"path"`
Add root route 2024-08-08 22:01:03 -04:00			`"strings"`
Initial server 2024-07-14 13:47:48 -04:00
Add root route 2024-08-08 22:01:03 -04:00			`"dynatron.me/x/stillbox/client"`
Server header 2024-10-22 10:21:11 -04:00			`"dynatron.me/x/stillbox/internal/version"`
gordio is now just stillbox 2024-11-03 07:19:03 -05:00			`"dynatron.me/x/stillbox/pkg/config"`
Initial server 2024-07-14 13:47:48 -04:00			`"github.com/go-chi/chi/v5"`
further 2024-07-14 17:39:03 -04:00			`"github.com/go-chi/httprate"`
			`"github.com/go-chi/render"`
Initial server 2024-07-14 13:47:48 -04:00			`)`

Server header 2024-10-22 10:21:11 -04:00			`const (`
			`serverHeader = "Server"`
			`)`

Initial server 2024-07-14 13:47:48 -04:00			`func (s *Server) setupRoutes() {`
Prepare to integrate 2024-11-22 12:32:22 -05:00			`clientRoot, err := fs.Sub(client.Client, client.Prefix)`
Add root route 2024-08-08 22:01:03 -04:00			`if err != nil {`
			`panic(err)`
			`}`

Initial server 2024-07-14 13:47:48 -04:00			`r := s.r`
Rate limit login keyed by username 2025-01-06 08:22:51 -05:00			`r.Use(s.WithCtxStores())`
Initial server 2024-07-14 13:47:48 -04:00
Add simulation tuning UI 2024-10-30 09:49:45 -04:00			`s.installPprof()`

Initial server 2024-07-14 13:47:48 -04:00			`r.Group(func(r chi.Router) {`
Add some godoc comments 2024-07-29 00:29:16 -04:00			`// authenticated routes`
Connect works 2024-08-04 01:53:19 -04:00			`r.Use(s.auth.VerifyMiddleware(), s.auth.AuthMiddleware())`
Clean up 2024-08-04 07:39:52 -04:00			`s.nex.PrivateRoutes(r)`
Fix subject, add token refresh route 2024-08-10 18:21:13 -04:00			`s.auth.PrivateRoutes(r)`
Initial alerting wip kind of working wip 2024-10-23 08:55:19 -04:00			`s.alerter.PrivateRoutes(r)`
Rename api to rest 2024-11-10 14:44:52 -05:00			`r.Mount("/api", s.rest.Subrouter())`
Initial server 2024-07-14 13:47:48 -04:00			`})`

further 2024-07-14 17:39:03 -04:00			`r.Group(func(r chi.Router) {`
Rate limiting is configurable 2024-10-18 15:21:42 -04:00			`s.rateLimit(r)`
further 2024-07-14 17:39:03 -04:00			`r.Use(render.SetContentType(render.ContentTypeJSON))`
Initial server 2024-07-14 13:47:48 -04:00			`// public routes`
Fix mount 2024-08-03 00:16:23 -04:00			`s.sources.PublicRoutes(r)`
Initial server 2024-07-14 13:47:48 -04:00			`})`

Rate limit login keyed by username 2025-01-06 08:22:51 -05:00			`r.Group(func(r chi.Router) {`
RBAC (#102) Closes #14 Reviewed-on: https://git.dynatron.me/amigan/stillbox/pulls/102 Co-authored-by: Daniel Ponte <amigan@gmail.com> Co-committed-by: Daniel Ponte <amigan@gmail.com> 2025-01-18 17:22:08 -05:00			`// auth/share routes get rate-limited heavily, but not using middleware`
			`s.rateLimit(r)`
Rate limit login keyed by username 2025-01-06 08:22:51 -05:00			`r.Use(render.SetContentType(render.ContentTypeJSON))`
			`s.auth.PublicRoutes(r)`
WIP 2025-01-20 20:28:25 -05:00			`r.Mount("/share", s.rest.ShareRouter())`
Rate limit login keyed by username 2025-01-06 08:22:51 -05:00			`})`

Initial server 2024-07-14 13:47:48 -04:00			`r.Group(func(r chi.Router) {`
Rate limiting is configurable 2024-10-18 15:21:42 -04:00			`s.rateLimit(r)`
			`r.Use(s.auth.VerifyMiddleware())`
Initial server 2024-07-14 13:47:48 -04:00
			`// optional auth routes`

Add root route 2024-08-08 22:01:03 -04:00			`s.clientRoute(r, clientRoot)`
Initial server 2024-07-14 13:47:48 -04:00			`})`
			`}`

Rate limit login keyed by username 2025-01-06 08:22:51 -05:00			`// WithCtxStores is a middleware that installs all stores in the request context.`
			`func (s *Server) WithCtxStores() func(next http.Handler) http.Handler {`
			`return func(next http.Handler) http.Handler {`
			`fn := func(w http.ResponseWriter, r *http.Request) {`
RBAC (#102) Closes #14 Reviewed-on: https://git.dynatron.me/amigan/stillbox/pulls/102 Co-authored-by: Daniel Ponte <amigan@gmail.com> Co-committed-by: Daniel Ponte <amigan@gmail.com> 2025-01-18 17:22:08 -05:00			`r = r.WithContext(s.fillCtx(r.Context()))`
Rate limit login keyed by username 2025-01-06 08:22:51 -05:00			`next.ServeHTTP(w, r)`
			`}`
			`return http.HandlerFunc(fn)`
			`}`
			`}`

Rate limiting is configurable 2024-10-18 15:21:42 -04:00			`func (s *Server) rateLimit(r chi.Router) {`
			`if s.conf.RateLimit.Verify() {`
			`r.Use(rateLimiter(&s.conf.RateLimit))`
			`}`
			`}`
Rate limit login keyed by username 2025-01-06 08:22:51 -05:00
Rate limiting is configurable 2024-10-18 15:21:42 -04:00			`func rateLimiter(cfg *config.RateLimit) func(http.Handler) http.Handler {`
			`return httprate.LimitByRealIP(cfg.Requests, cfg.Over)`
further 2024-07-14 17:39:03 -04:00			`}`

Add root route 2024-08-08 22:01:03 -04:00			`func (s *Server) clientRoute(r chi.Router, clientRoot fs.FS) {`
			`r.Get("/", func(w http.ResponseWriter, r http.Request) {`
Prepare to integrate 2024-11-22 12:32:22 -05:00			`hfs := http.FS(clientRoot)`
			`var pe *fs.PathError`

			`pc := path.Clean(r.URL.Path)`
			`f, err := hfs.Open(pc)`
			`if err != nil {`
			`if errors.As(err, &pe) {`
wip 2024-11-22 14:10:27 -05:00			`http.ServeFileFS(w, r, clientRoot, "/index.html")`
Prepare to integrate 2024-11-22 12:32:22 -05:00			`return`
			`}`
			`} else {`
			`f.Close()`
			`}`

Add root route 2024-08-08 22:01:03 -04:00			`rctx := chi.RouteContext(r.Context())`
			`pathPrefix := strings.TrimSuffix(rctx.RoutePattern(), "/*")`
			`fs := http.StripPrefix(pathPrefix, http.FileServer(http.FS(clientRoot)))`
			`fs.ServeHTTP(w, r)`
			`})`
Initial server 2024-07-14 13:47:48 -04:00			`}`
Server header 2024-10-22 10:21:11 -04:00
			`func ServerHeaderAdd(next http.Handler) http.Handler {`
gordio is now just stillbox 2024-11-03 07:19:03 -05:00			`serverString := version.HttpString(version.Name)`
Server header 2024-10-22 10:21:11 -04:00			`hfn := func(w http.ResponseWriter, r *http.Request) {`
Fix lint 2024-10-31 16:50:08 -04:00			`w.Header().Set(serverHeader, serverString)`
Server header 2024-10-22 10:21:11 -04:00			`next.ServeHTTP(w, r)`
			`}`
			`return http.HandlerFunc(hfn)`
			`}`