starred/godoxy-yusing
1
0
Fork 0
mirror of https://github.com/yusing/godoxy.git synced 2026-03-17 23:03:49 +01:00
Code Issues 18 Packages Projects Releases 10 Wiki Activity
Files
b51d280b29a04b00fbc4bfbb018b7c19ff91e2ae
godoxy-yusing/internal/net/gphttp/middleware/bypass.go
yusing e7c87bae77 refactor(http,rules): move SharedData and ResponseModifier to httputils 
- implemented dependency injection for rule auth handler
2025-12-05 16:27:04 +08:00

86 lines
2.2 KiB
Go
Raw Blame History

package middleware
import (
"net/http"
"strings"
"github.com/rs/zerolog/log"
"github.com/yusing/godoxy/internal/auth"
"github.com/yusing/godoxy/internal/route/rules"
httputils "github.com/yusing/goutils/http"
)
type Bypass []rules.RuleOn
func (b Bypass) ShouldBypass(w http.ResponseWriter, r *http.Request) bool {
for _, rule := range b {
if rule.Check(w, r) {
log.Debug().Str("rule_matched", rule.String()).Str("url", r.Host+r.URL.Path).Msg("bypassing request")
return true
}
}
return false
}
type checkBypass struct {
name string
bypass Bypass
modReq RequestModifier
modRes ResponseModifier
// when request path matches any of these prefixes, bypass is not applied
enforcedPathPrefixes []string
}
func (c *checkBypass) isEnforced(r *http.Request) bool {
for _, prefix := range c.enforcedPathPrefixes {
if strings.HasPrefix(r.URL.Path, prefix) {
return true
}
}
return false
}
func (c *checkBypass) before(w http.ResponseWriter, r *http.Request) (proceedNext bool) {
if c.modReq == nil || (!c.isEnforced(r) && c.bypass.ShouldBypass(w, r)) {
return true
}
log.Debug().Str("middleware", c.name).Str("url", r.Host+r.URL.Path).Msg("modifying request")
return c.modReq.before(w, r)
}
func (c *checkBypass) modifyResponse(resp *http.Response) error {
if c.modRes == nil || (!c.isEnforced(resp.Request) && c.bypass.ShouldBypass(httputils.ResponseAsRW(resp), resp.Request)) {
return nil
}
log.Debug().Str("middleware", c.name).Str("url", resp.Request.Host+resp.Request.URL.Path).Msg("modifying response")
return c.modRes.modifyResponse(resp)
}
func (m *Middleware) withCheckBypass() any {
if len(m.Bypass) > 0 {
modReq, _ := m.impl.(RequestModifier)
modRes, _ := m.impl.(ResponseModifier)
return &checkBypass{
name: m.Name(),
bypass: m.Bypass,
enforcedPathPrefixes: getEnforcedPathPrefixes(modReq, modRes),
modReq: modReq,
modRes: modRes,
}
}
return m.impl
}
func getEnforcedPathPrefixes(modReq RequestModifier, modRes ResponseModifier) []string {
if modReq == nil && modRes == nil {
return nil
}
switch modReq.(type) {
case *oidcMiddleware:
return []string{auth.OIDCAuthBasePath}
}
return nil
}
Reference in New Issue View Git Blame Copy Permalink