| 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 |
- package api
- import (
- "log/slog"
- "github.com/ncarlier/webhookd/pkg/auth"
- "github.com/ncarlier/webhookd/pkg/config"
- "github.com/ncarlier/webhookd/pkg/middleware"
- "github.com/ncarlier/webhookd/pkg/truststore"
- )
- var commonMiddlewares = middleware.Middlewares{
- middleware.XFF,
- middleware.Cors,
- middleware.Logger,
- middleware.Tracing(nextRequestID),
- }
- func buildMiddlewares(conf *config.Config) middleware.Middlewares {
- var middlewares = commonMiddlewares
- if conf.TLS.Enabled {
- middlewares = middlewares.UseAfter(middleware.HSTS)
- }
- // Load trust store...
- ts, err := truststore.New(conf.TruststoreFile)
- if err != nil {
- slog.Warn("unable to load trust store", "filename", conf.TruststoreFile, "err", err)
- }
- if ts != nil {
- middlewares = middlewares.UseAfter(middleware.Signature(ts))
- }
- // Load authenticator...
- authenticator, err := auth.NewHtpasswdFromFile(conf.PasswdFile)
- if err != nil {
- slog.Debug("unable to load htpasswd file", "filename", conf.PasswdFile, "err", err)
- }
- if authenticator != nil {
- middlewares = middlewares.UseAfter(middleware.AuthN(authenticator))
- }
- return middlewares
- }
- func routes(conf *config.Config) Routes {
- middlewares := buildMiddlewares(conf)
- staticPath := conf.Static.Path + "/"
- return Routes{
- route(
- "/",
- index,
- middlewares...,
- ),
- route(
- staticPath,
- static(staticPath),
- middlewares.UseBefore(middleware.Methods("GET"))...,
- ),
- route(
- "/healthz",
- healthz,
- commonMiddlewares.UseBefore(middleware.Methods("GET"))...,
- ),
- route(
- "/varz",
- varz,
- middlewares.UseBefore(middleware.Methods("GET"))...,
- ),
- }
- }
|
