mirror of
				https://github.com/caddyserver/caddy.git
				synced 2025-10-25 07:49:19 -04:00 
			
		
		
		
	* chore: Upgrade various dependencies * Support CEL file matcher with no args * Document `http.request.orig_uri.path.*`, reorder placeholders in docs --------- Co-authored-by: Matt Holt <mholt@users.noreply.github.com>
		
			
				
	
	
		
			479 lines
		
	
	
		
			13 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			479 lines
		
	
	
		
			13 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| // Copyright 2015 Matthew Holt and The Caddy Authors
 | |
| //
 | |
| // Licensed under the Apache License, Version 2.0 (the "License");
 | |
| // you may not use this file except in compliance with the License.
 | |
| // You may obtain a copy of the License at
 | |
| //
 | |
| //     http://www.apache.org/licenses/LICENSE-2.0
 | |
| //
 | |
| // Unless required by applicable law or agreed to in writing, software
 | |
| // distributed under the License is distributed on an "AS IS" BASIS,
 | |
| // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 | |
| // See the License for the specific language governing permissions and
 | |
| // limitations under the License.
 | |
| 
 | |
| package templates
 | |
| 
 | |
| import (
 | |
| 	"bytes"
 | |
| 	"fmt"
 | |
| 	"io"
 | |
| 	"net"
 | |
| 	"net/http"
 | |
| 	"os"
 | |
| 	"path"
 | |
| 	"strconv"
 | |
| 	"strings"
 | |
| 	"sync"
 | |
| 	"text/template"
 | |
| 	"time"
 | |
| 
 | |
| 	"github.com/Masterminds/sprig/v3"
 | |
| 	"github.com/alecthomas/chroma/v2/formatters/html"
 | |
| 	"github.com/caddyserver/caddy/v2"
 | |
| 	"github.com/caddyserver/caddy/v2/modules/caddyhttp"
 | |
| 	"github.com/dustin/go-humanize"
 | |
| 	"github.com/yuin/goldmark"
 | |
| 	highlighting "github.com/yuin/goldmark-highlighting/v2"
 | |
| 	"github.com/yuin/goldmark/extension"
 | |
| 	"github.com/yuin/goldmark/parser"
 | |
| 	gmhtml "github.com/yuin/goldmark/renderer/html"
 | |
| )
 | |
| 
 | |
| // TemplateContext is the TemplateContext with which HTTP templates are executed.
 | |
| type TemplateContext struct {
 | |
| 	Root        http.FileSystem
 | |
| 	Req         *http.Request
 | |
| 	Args        []any // defined by arguments to funcInclude
 | |
| 	RespHeader  WrappedHeader
 | |
| 	CustomFuncs []template.FuncMap // functions added by plugins
 | |
| 
 | |
| 	config *Templates
 | |
| 	tpl    *template.Template
 | |
| }
 | |
| 
 | |
| // NewTemplate returns a new template intended to be evaluated with this
 | |
| // context, as it is initialized with configuration from this context.
 | |
| func (c *TemplateContext) NewTemplate(tplName string) *template.Template {
 | |
| 	c.tpl = template.New(tplName)
 | |
| 
 | |
| 	// customize delimiters, if applicable
 | |
| 	if c.config != nil && len(c.config.Delimiters) == 2 {
 | |
| 		c.tpl.Delims(c.config.Delimiters[0], c.config.Delimiters[1])
 | |
| 	}
 | |
| 
 | |
| 	// add sprig library
 | |
| 	c.tpl.Funcs(sprigFuncMap)
 | |
| 
 | |
| 	// add all custom functions
 | |
| 	for _, funcMap := range c.CustomFuncs {
 | |
| 		c.tpl.Funcs(funcMap)
 | |
| 	}
 | |
| 
 | |
| 	// add our own library
 | |
| 	c.tpl.Funcs(template.FuncMap{
 | |
| 		"include":          c.funcInclude,
 | |
| 		"import":           c.funcImport,
 | |
| 		"httpInclude":      c.funcHTTPInclude,
 | |
| 		"stripHTML":        c.funcStripHTML,
 | |
| 		"markdown":         c.funcMarkdown,
 | |
| 		"splitFrontMatter": c.funcSplitFrontMatter,
 | |
| 		"listFiles":        c.funcListFiles,
 | |
| 		"env":              c.funcEnv,
 | |
| 		"placeholder":      c.funcPlaceholder,
 | |
| 		"fileExists":       c.funcFileExists,
 | |
| 		"httpError":        c.funcHTTPError,
 | |
| 		"humanize":         c.funcHumanize,
 | |
| 	})
 | |
| 	return c.tpl
 | |
| }
 | |
| 
 | |
| // OriginalReq returns the original, unmodified, un-rewritten request as
 | |
| // it originally came in over the wire.
 | |
| func (c TemplateContext) OriginalReq() http.Request {
 | |
| 	or, _ := c.Req.Context().Value(caddyhttp.OriginalRequestCtxKey).(http.Request)
 | |
| 	return or
 | |
| }
 | |
| 
 | |
| // funcInclude returns the contents of filename relative to the site root and renders it in place.
 | |
| // Note that included files are NOT escaped, so you should only include
 | |
| // trusted files. If it is not trusted, be sure to use escaping functions
 | |
| // in your template.
 | |
| func (c TemplateContext) funcInclude(filename string, args ...any) (string, error) {
 | |
| 
 | |
| 	bodyBuf := bufPool.Get().(*bytes.Buffer)
 | |
| 	bodyBuf.Reset()
 | |
| 	defer bufPool.Put(bodyBuf)
 | |
| 
 | |
| 	err := c.readFileToBuffer(filename, bodyBuf)
 | |
| 
 | |
| 	if err != nil {
 | |
| 		return "", err
 | |
| 	}
 | |
| 
 | |
| 	c.Args = args
 | |
| 
 | |
| 	err = c.executeTemplateInBuffer(filename, bodyBuf)
 | |
| 	if err != nil {
 | |
| 		return "", err
 | |
| 	}
 | |
| 
 | |
| 	return bodyBuf.String(), nil
 | |
| }
 | |
| 
 | |
| // readFileToBuffer reads a file into a buffer
 | |
| func (c TemplateContext) readFileToBuffer(filename string, bodyBuf *bytes.Buffer) error {
 | |
| 	if c.Root == nil {
 | |
| 		return fmt.Errorf("root file system not specified")
 | |
| 	}
 | |
| 
 | |
| 	file, err := c.Root.Open(filename)
 | |
| 	if err != nil {
 | |
| 		return err
 | |
| 	}
 | |
| 	defer file.Close()
 | |
| 
 | |
| 	_, err = io.Copy(bodyBuf, file)
 | |
| 	if err != nil {
 | |
| 		return err
 | |
| 	}
 | |
| 
 | |
| 	return nil
 | |
| }
 | |
| 
 | |
| // funcHTTPInclude returns the body of a virtual (lightweight) request
 | |
| // to the given URI on the same server. Note that included bodies
 | |
| // are NOT escaped, so you should only include trusted resources.
 | |
| // If it is not trusted, be sure to use escaping functions yourself.
 | |
| func (c TemplateContext) funcHTTPInclude(uri string) (string, error) {
 | |
| 	// prevent virtual request loops by counting how many levels
 | |
| 	// deep we are; and if we get too deep, return an error
 | |
| 	recursionCount := 1
 | |
| 	if numStr := c.Req.Header.Get(recursionPreventionHeader); numStr != "" {
 | |
| 		num, err := strconv.Atoi(numStr)
 | |
| 		if err != nil {
 | |
| 			return "", fmt.Errorf("parsing %s: %v", recursionPreventionHeader, err)
 | |
| 		}
 | |
| 		if num >= 3 {
 | |
| 			return "", fmt.Errorf("virtual request cycle")
 | |
| 		}
 | |
| 		recursionCount = num + 1
 | |
| 	}
 | |
| 
 | |
| 	buf := bufPool.Get().(*bytes.Buffer)
 | |
| 	buf.Reset()
 | |
| 	defer bufPool.Put(buf)
 | |
| 
 | |
| 	virtReq, err := http.NewRequest("GET", uri, nil)
 | |
| 	if err != nil {
 | |
| 		return "", err
 | |
| 	}
 | |
| 	virtReq.Host = c.Req.Host
 | |
| 	virtReq.Header = c.Req.Header.Clone()
 | |
| 	virtReq.Header.Set("Accept-Encoding", "identity") // https://github.com/caddyserver/caddy/issues/4352
 | |
| 	virtReq.Trailer = c.Req.Trailer.Clone()
 | |
| 	virtReq.Header.Set(recursionPreventionHeader, strconv.Itoa(recursionCount))
 | |
| 
 | |
| 	vrw := &virtualResponseWriter{body: buf, header: make(http.Header)}
 | |
| 	server := c.Req.Context().Value(caddyhttp.ServerCtxKey).(http.Handler)
 | |
| 
 | |
| 	server.ServeHTTP(vrw, virtReq)
 | |
| 	if vrw.status >= 400 {
 | |
| 		return "", fmt.Errorf("http %d", vrw.status)
 | |
| 	}
 | |
| 
 | |
| 	err = c.executeTemplateInBuffer(uri, buf)
 | |
| 	if err != nil {
 | |
| 		return "", err
 | |
| 	}
 | |
| 
 | |
| 	return buf.String(), nil
 | |
| }
 | |
| 
 | |
| // funcImport parses the filename into the current template stack. The imported
 | |
| // file will be rendered within the current template by calling {{ block }} or
 | |
| // {{ template }} from the standard template library. If the imported file has
 | |
| // no {{ define }} blocks, the name of the import will be the path
 | |
| func (c *TemplateContext) funcImport(filename string) (string, error) {
 | |
| 
 | |
| 	bodyBuf := bufPool.Get().(*bytes.Buffer)
 | |
| 	bodyBuf.Reset()
 | |
| 	defer bufPool.Put(bodyBuf)
 | |
| 
 | |
| 	err := c.readFileToBuffer(filename, bodyBuf)
 | |
| 	if err != nil {
 | |
| 		return "", err
 | |
| 	}
 | |
| 
 | |
| 	_, err = c.tpl.Parse(bodyBuf.String())
 | |
| 	if err != nil {
 | |
| 		return "", err
 | |
| 	}
 | |
| 	return "", nil
 | |
| }
 | |
| 
 | |
| func (c *TemplateContext) executeTemplateInBuffer(tplName string, buf *bytes.Buffer) error {
 | |
| 	c.NewTemplate(tplName)
 | |
| 
 | |
| 	_, err := c.tpl.Parse(buf.String())
 | |
| 	if err != nil {
 | |
| 		return err
 | |
| 	}
 | |
| 
 | |
| 	buf.Reset() // reuse buffer for output
 | |
| 
 | |
| 	return c.tpl.Execute(buf, c)
 | |
| }
 | |
| 
 | |
| func (c TemplateContext) funcPlaceholder(name string) string {
 | |
| 	repl := c.Req.Context().Value(caddy.ReplacerCtxKey).(*caddy.Replacer)
 | |
| 	value, _ := repl.GetString(name)
 | |
| 	return value
 | |
| }
 | |
| 
 | |
| func (TemplateContext) funcEnv(varName string) string {
 | |
| 	return os.Getenv(varName)
 | |
| }
 | |
| 
 | |
| // Cookie gets the value of a cookie with name name.
 | |
| func (c TemplateContext) Cookie(name string) string {
 | |
| 	cookies := c.Req.Cookies()
 | |
| 	for _, cookie := range cookies {
 | |
| 		if cookie.Name == name {
 | |
| 			return cookie.Value
 | |
| 		}
 | |
| 	}
 | |
| 	return ""
 | |
| }
 | |
| 
 | |
| // RemoteIP gets the IP address of the client making the request.
 | |
| func (c TemplateContext) RemoteIP() string {
 | |
| 	ip, _, err := net.SplitHostPort(c.Req.RemoteAddr)
 | |
| 	if err != nil {
 | |
| 		return c.Req.RemoteAddr
 | |
| 	}
 | |
| 	return ip
 | |
| }
 | |
| 
 | |
| // Host returns the hostname portion of the Host header
 | |
| // from the HTTP request.
 | |
| func (c TemplateContext) Host() (string, error) {
 | |
| 	host, _, err := net.SplitHostPort(c.Req.Host)
 | |
| 	if err != nil {
 | |
| 		if !strings.Contains(c.Req.Host, ":") {
 | |
| 			// common with sites served on the default port 80
 | |
| 			return c.Req.Host, nil
 | |
| 		}
 | |
| 		return "", err
 | |
| 	}
 | |
| 	return host, nil
 | |
| }
 | |
| 
 | |
| // funcStripHTML returns s without HTML tags. It is fairly naive
 | |
| // but works with most valid HTML inputs.
 | |
| func (TemplateContext) funcStripHTML(s string) string {
 | |
| 	var buf bytes.Buffer
 | |
| 	var inTag, inQuotes bool
 | |
| 	var tagStart int
 | |
| 	for i, ch := range s {
 | |
| 		if inTag {
 | |
| 			if ch == '>' && !inQuotes {
 | |
| 				inTag = false
 | |
| 			} else if ch == '<' && !inQuotes {
 | |
| 				// false start
 | |
| 				buf.WriteString(s[tagStart:i])
 | |
| 				tagStart = i
 | |
| 			} else if ch == '"' {
 | |
| 				inQuotes = !inQuotes
 | |
| 			}
 | |
| 			continue
 | |
| 		}
 | |
| 		if ch == '<' {
 | |
| 			inTag = true
 | |
| 			tagStart = i
 | |
| 			continue
 | |
| 		}
 | |
| 		buf.WriteRune(ch)
 | |
| 	}
 | |
| 	if inTag {
 | |
| 		// false start
 | |
| 		buf.WriteString(s[tagStart:])
 | |
| 	}
 | |
| 	return buf.String()
 | |
| }
 | |
| 
 | |
| // funcMarkdown renders the markdown body as HTML. The resulting
 | |
| // HTML is NOT escaped so that it can be rendered as HTML.
 | |
| func (TemplateContext) funcMarkdown(input any) (string, error) {
 | |
| 	inputStr := caddy.ToString(input)
 | |
| 
 | |
| 	md := goldmark.New(
 | |
| 		goldmark.WithExtensions(
 | |
| 			extension.GFM,
 | |
| 			extension.Footnote,
 | |
| 			highlighting.NewHighlighting(
 | |
| 				highlighting.WithFormatOptions(
 | |
| 					html.WithClasses(true),
 | |
| 				),
 | |
| 			),
 | |
| 		),
 | |
| 		goldmark.WithParserOptions(
 | |
| 			parser.WithAutoHeadingID(),
 | |
| 		),
 | |
| 		goldmark.WithRendererOptions(
 | |
| 			gmhtml.WithUnsafe(), // TODO: this is not awesome, maybe should be configurable?
 | |
| 		),
 | |
| 	)
 | |
| 
 | |
| 	buf := bufPool.Get().(*bytes.Buffer)
 | |
| 	buf.Reset()
 | |
| 	defer bufPool.Put(buf)
 | |
| 
 | |
| 	err := md.Convert([]byte(inputStr), buf)
 | |
| 	if err != nil {
 | |
| 		return "", err
 | |
| 	}
 | |
| 
 | |
| 	return buf.String(), nil
 | |
| }
 | |
| 
 | |
| // splitFrontMatter parses front matter out from the beginning of input,
 | |
| // and returns the separated key-value pairs and the body/content. input
 | |
| // must be a "stringy" value.
 | |
| func (TemplateContext) funcSplitFrontMatter(input any) (parsedMarkdownDoc, error) {
 | |
| 	meta, body, err := extractFrontMatter(caddy.ToString(input))
 | |
| 	if err != nil {
 | |
| 		return parsedMarkdownDoc{}, err
 | |
| 	}
 | |
| 	return parsedMarkdownDoc{Meta: meta, Body: body}, nil
 | |
| }
 | |
| 
 | |
| // funcListFiles reads and returns a slice of names from the given
 | |
| // directory relative to the root of c.
 | |
| func (c TemplateContext) funcListFiles(name string) ([]string, error) {
 | |
| 	if c.Root == nil {
 | |
| 		return nil, fmt.Errorf("root file system not specified")
 | |
| 	}
 | |
| 
 | |
| 	dir, err := c.Root.Open(path.Clean(name))
 | |
| 	if err != nil {
 | |
| 		return nil, err
 | |
| 	}
 | |
| 	defer dir.Close()
 | |
| 
 | |
| 	stat, err := dir.Stat()
 | |
| 	if err != nil {
 | |
| 		return nil, err
 | |
| 	}
 | |
| 	if !stat.IsDir() {
 | |
| 		return nil, fmt.Errorf("%v is not a directory", name)
 | |
| 	}
 | |
| 
 | |
| 	dirInfo, err := dir.Readdir(0)
 | |
| 	if err != nil {
 | |
| 		return nil, err
 | |
| 	}
 | |
| 
 | |
| 	names := make([]string, len(dirInfo))
 | |
| 	for i, fileInfo := range dirInfo {
 | |
| 		names[i] = fileInfo.Name()
 | |
| 	}
 | |
| 
 | |
| 	return names, nil
 | |
| }
 | |
| 
 | |
| // funcFileExists returns true if filename can be opened successfully.
 | |
| func (c TemplateContext) funcFileExists(filename string) (bool, error) {
 | |
| 	if c.Root == nil {
 | |
| 		return false, fmt.Errorf("root file system not specified")
 | |
| 	}
 | |
| 	file, err := c.Root.Open(filename)
 | |
| 	if err == nil {
 | |
| 		file.Close()
 | |
| 		return true, nil
 | |
| 	}
 | |
| 	return false, nil
 | |
| }
 | |
| 
 | |
| // funcHTTPError returns a structured HTTP handler error. EXPERIMENTAL; SUBJECT TO CHANGE.
 | |
| // Example usage: `{{if not (fileExists $includeFile)}}{{httpError 404}}{{end}}`
 | |
| func (c TemplateContext) funcHTTPError(statusCode int) (bool, error) {
 | |
| 	return false, caddyhttp.Error(statusCode, nil)
 | |
| }
 | |
| 
 | |
| // funcHumanize transforms size and time inputs to a human readable format.
 | |
| //
 | |
| // Size inputs are expected to be integers, and are formatted as a
 | |
| // byte size, such as "83 MB".
 | |
| //
 | |
| // Time inputs are parsed using the given layout (default layout is RFC1123Z)
 | |
| // and are formatted as a relative time, such as "2 weeks ago".
 | |
| // See https://pkg.go.dev/time#pkg-constants for time layout docs.
 | |
| func (c TemplateContext) funcHumanize(formatType, data string) (string, error) {
 | |
| 	// The format type can optionally be followed
 | |
| 	// by a colon to provide arguments for the format
 | |
| 	parts := strings.Split(formatType, ":")
 | |
| 
 | |
| 	switch parts[0] {
 | |
| 	case "size":
 | |
| 		dataint, dataerr := strconv.ParseUint(data, 10, 64)
 | |
| 		if dataerr != nil {
 | |
| 			return "", fmt.Errorf("humanize: size cannot be parsed: %s", dataerr.Error())
 | |
| 		}
 | |
| 		return humanize.Bytes(dataint), nil
 | |
| 
 | |
| 	case "time":
 | |
| 		timelayout := time.RFC1123Z
 | |
| 		if len(parts) > 1 {
 | |
| 			timelayout = parts[1]
 | |
| 		}
 | |
| 
 | |
| 		dataint, dataerr := time.Parse(timelayout, data)
 | |
| 		if dataerr != nil {
 | |
| 			return "", fmt.Errorf("humanize: time cannot be parsed: %s", dataerr.Error())
 | |
| 		}
 | |
| 		return humanize.Time(dataint), nil
 | |
| 	}
 | |
| 
 | |
| 	return "", fmt.Errorf("no know function was given")
 | |
| }
 | |
| 
 | |
| // WrappedHeader wraps niladic functions so that they
 | |
| // can be used in templates. (Template functions must
 | |
| // return a value.)
 | |
| type WrappedHeader struct{ http.Header }
 | |
| 
 | |
| // Add adds a header field value, appending val to
 | |
| // existing values for that field. It returns an
 | |
| // empty string.
 | |
| func (h WrappedHeader) Add(field, val string) string {
 | |
| 	h.Header.Add(field, val)
 | |
| 	return ""
 | |
| }
 | |
| 
 | |
| // Set sets a header field value, overwriting any
 | |
| // other values for that field. It returns an
 | |
| // empty string.
 | |
| func (h WrappedHeader) Set(field, val string) string {
 | |
| 	h.Header.Set(field, val)
 | |
| 	return ""
 | |
| }
 | |
| 
 | |
| // Del deletes a header field. It returns an empty string.
 | |
| func (h WrappedHeader) Del(field string) string {
 | |
| 	h.Header.Del(field)
 | |
| 	return ""
 | |
| }
 | |
| 
 | |
| var bufPool = sync.Pool{
 | |
| 	New: func() any {
 | |
| 		return new(bytes.Buffer)
 | |
| 	},
 | |
| }
 | |
| 
 | |
| // at time of writing, sprig.FuncMap() makes a copy, thus
 | |
| // involves iterating the whole map, so do it just once
 | |
| var sprigFuncMap = sprig.TxtFuncMap()
 | |
| 
 | |
| const recursionPreventionHeader = "Caddy-Templates-Include"
 |