mirror of
				https://github.com/caddyserver/caddy.git
				synced 2025-10-26 00:02:45 -04:00 
			
		
		
		
	We'll need that context in v2.1 when the transport can manage its own client certificates; see #3198
		
			
				
	
	
		
			160 lines
		
	
	
		
			4.1 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			160 lines
		
	
	
		
			4.1 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| // Copyright 2015 Matthew Holt and The Caddy Authors
 | |
| //
 | |
| // Licensed under the Apache License, Version 2.0 (the "License");
 | |
| // you may not use this file except in compliance with the License.
 | |
| // You may obtain a copy of the License at
 | |
| //
 | |
| //     http://www.apache.org/licenses/LICENSE-2.0
 | |
| //
 | |
| // Unless required by applicable law or agreed to in writing, software
 | |
| // distributed under the License is distributed on an "AS IS" BASIS,
 | |
| // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 | |
| // See the License for the specific language governing permissions and
 | |
| // limitations under the License.
 | |
| 
 | |
| package reverseproxy
 | |
| 
 | |
| import (
 | |
| 	"encoding/json"
 | |
| 	"flag"
 | |
| 	"fmt"
 | |
| 	"net"
 | |
| 	"net/http"
 | |
| 	"net/url"
 | |
| 	"strings"
 | |
| 
 | |
| 	"github.com/caddyserver/caddy/v2"
 | |
| 	"github.com/caddyserver/caddy/v2/caddyconfig"
 | |
| 	caddycmd "github.com/caddyserver/caddy/v2/cmd"
 | |
| 	"github.com/caddyserver/caddy/v2/modules/caddyhttp"
 | |
| 	"github.com/caddyserver/caddy/v2/modules/caddyhttp/headers"
 | |
| )
 | |
| 
 | |
| func init() {
 | |
| 	caddycmd.RegisterCommand(caddycmd.Command{
 | |
| 		Name:  "reverse-proxy",
 | |
| 		Func:  cmdReverseProxy,
 | |
| 		Usage: "[--from <addr>] [--to <addr>] [--change-host-header]",
 | |
| 		Short: "A quick and production-ready reverse proxy",
 | |
| 		Long: `
 | |
| A simple but production-ready reverse proxy. Useful for quick deployments,
 | |
| demos, and development.
 | |
| 
 | |
| Simply shuttles HTTP traffic from the --from address to the --to address.
 | |
| 
 | |
| If the --from address has a domain name, Caddy will attempt to serve the
 | |
| proxy over HTTPS with a certificate.
 | |
| 
 | |
| If --change-host-header is set, the Host header on the request will be modified
 | |
| from its original incoming value to the address of the upstream. (Otherwise, by
 | |
| default, all incoming headers are passed through unmodified.)
 | |
| `,
 | |
| 		Flags: func() *flag.FlagSet {
 | |
| 			fs := flag.NewFlagSet("file-server", flag.ExitOnError)
 | |
| 			fs.String("from", "localhost:443", "Address on which to receive traffic")
 | |
| 			fs.String("to", "", "Upstream address to which to to proxy traffic")
 | |
| 			fs.Bool("change-host-header", false, "Set upstream Host header to address of upstream")
 | |
| 			return fs
 | |
| 		}(),
 | |
| 	})
 | |
| }
 | |
| 
 | |
| func cmdReverseProxy(fs caddycmd.Flags) (int, error) {
 | |
| 	from := fs.String("from")
 | |
| 	to := fs.String("to")
 | |
| 	changeHost := fs.Bool("change-host-header")
 | |
| 
 | |
| 	if from == "" {
 | |
| 		from = "localhost:443"
 | |
| 	}
 | |
| 
 | |
| 	// URLs need a scheme in order to parse successfully
 | |
| 	if !strings.Contains(from, "://") {
 | |
| 		from = "http://" + from
 | |
| 	}
 | |
| 	if !strings.Contains(to, "://") {
 | |
| 		to = "http://" + to
 | |
| 	}
 | |
| 
 | |
| 	fromURL, err := url.Parse(from)
 | |
| 	if err != nil {
 | |
| 		return caddy.ExitCodeFailedStartup, fmt.Errorf("parsing 'from' URL: %v", err)
 | |
| 	}
 | |
| 	toURL, err := url.Parse(to)
 | |
| 	if err != nil {
 | |
| 		return caddy.ExitCodeFailedStartup, fmt.Errorf("parsing 'to' URL: %v", err)
 | |
| 	}
 | |
| 
 | |
| 	if toURL.Port() == "" {
 | |
| 		toPort := "80"
 | |
| 		if toURL.Scheme == "https" {
 | |
| 			toPort = "443"
 | |
| 		}
 | |
| 		toURL.Host = net.JoinHostPort(toURL.Host, toPort)
 | |
| 	}
 | |
| 
 | |
| 	ht := HTTPTransport{}
 | |
| 	if toURL.Scheme == "https" {
 | |
| 		ht.TLS = new(TLSConfig)
 | |
| 	}
 | |
| 
 | |
| 	handler := Handler{
 | |
| 		TransportRaw: caddyconfig.JSONModuleObject(ht, "protocol", "http", nil),
 | |
| 		Upstreams:    UpstreamPool{{Dial: toURL.Host}},
 | |
| 	}
 | |
| 
 | |
| 	if changeHost {
 | |
| 		handler.Headers = &headers.Handler{
 | |
| 			Request: &headers.HeaderOps{
 | |
| 				Set: http.Header{
 | |
| 					"Host": []string{"{http.reverse_proxy.upstream.hostport}"},
 | |
| 				},
 | |
| 			},
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	route := caddyhttp.Route{
 | |
| 		HandlersRaw: []json.RawMessage{
 | |
| 			caddyconfig.JSONModuleObject(handler, "handler", "reverse_proxy", nil),
 | |
| 		},
 | |
| 	}
 | |
| 	urlHost := fromURL.Hostname()
 | |
| 	if urlHost != "" {
 | |
| 		route.MatcherSetsRaw = []caddy.ModuleMap{
 | |
| 			{
 | |
| 				"host": caddyconfig.JSON(caddyhttp.MatchHost{urlHost}, nil),
 | |
| 			},
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	listen := ":443"
 | |
| 	if urlPort := fromURL.Port(); urlPort != "" {
 | |
| 		listen = ":" + urlPort
 | |
| 	}
 | |
| 
 | |
| 	server := &caddyhttp.Server{
 | |
| 		Routes: caddyhttp.RouteList{route},
 | |
| 		Listen: []string{listen},
 | |
| 	}
 | |
| 
 | |
| 	httpApp := caddyhttp.App{
 | |
| 		Servers: map[string]*caddyhttp.Server{"proxy": server},
 | |
| 	}
 | |
| 
 | |
| 	cfg := &caddy.Config{
 | |
| 		Admin: &caddy.AdminConfig{Disabled: true},
 | |
| 		AppsRaw: caddy.ModuleMap{
 | |
| 			"http": caddyconfig.JSON(httpApp, nil),
 | |
| 		},
 | |
| 	}
 | |
| 
 | |
| 	err = caddy.Run(cfg)
 | |
| 	if err != nil {
 | |
| 		return caddy.ExitCodeFailedStartup, err
 | |
| 	}
 | |
| 
 | |
| 	fmt.Printf("Caddy 2 proxying from %s to %s\n", fromURL, toURL)
 | |
| 
 | |
| 	select {}
 | |
| }
 |