صفحهٔ اصلی گشت‌و‌گذار راهنما
ثبت نام ورود
lqb
/
imgproxy
mirrorاز https://github.com/imgproxy/imgproxy.git
1
0
انشعاب 0
پرونده‌ها مشکلات 0 ویکی
درخت: 05a413b8a2
شاخه‌ها تگ‌ها
imgproxy
/
handlers
/
processing
/
handler.go

handler.go 4.3 KB
تاريخچه خام

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155 
  1. package processing
    2. 

  2. 

  3. import (
    4. 

  4. 	"context"
    5. 

  5. 	"net/http"
    6. 

  6. 	"net/url"
    7. 

  7. 

  8. 	"github.com/imgproxy/imgproxy/v3/auximageprovider"
    9. 

  9. 	"github.com/imgproxy/imgproxy/v3/cookies"
    10. 

  10. 	"github.com/imgproxy/imgproxy/v3/errorreport"
    11. 

  11. 	"github.com/imgproxy/imgproxy/v3/handlers"
    12. 

  12. 	"github.com/imgproxy/imgproxy/v3/handlers/stream"
    13. 

  13. 	"github.com/imgproxy/imgproxy/v3/ierrors"
    14. 

  14. 	"github.com/imgproxy/imgproxy/v3/imagedata"
    15. 

  15. 	"github.com/imgproxy/imgproxy/v3/monitoring"
    16. 

  16. 	"github.com/imgproxy/imgproxy/v3/options"
    17. 

  17. 	"github.com/imgproxy/imgproxy/v3/options/keys"
    18. 

  18. 	optionsparser "github.com/imgproxy/imgproxy/v3/options/parser"
    19. 

  19. 	"github.com/imgproxy/imgproxy/v3/processing"
    20. 

  20. 	"github.com/imgproxy/imgproxy/v3/security"
    21. 

  21. 	"github.com/imgproxy/imgproxy/v3/server"
    22. 

  22. 	"github.com/imgproxy/imgproxy/v3/workers"
    23. 

  23. )
    24. 

  24. 

  25. // HandlerContext provides access to shared handler dependencies
    26. 

  26. type HandlerContext interface {
    27. 

  27. 	Workers() *workers.Workers
    28. 

  28. 	FallbackImage() auximageprovider.Provider
    29. 

  29. 	ImageDataFactory() *imagedata.Factory
    30. 

  30. 	Security() *security.Checker
    31. 

  31. 	OptionsParser() *optionsparser.Parser
    32. 

  32. 	Processor() *processing.Processor
    33. 

  33. 	Cookies() *cookies.Cookies
    34. 

  34. 	Monitoring() *monitoring.Monitoring
    35. 

  35. }
    36. 

  36. 

  37. // Handler handles image processing requests
    38. 

  38. type Handler struct {
    39. 

  39. 	HandlerContext
    40. 

  40. 

  41. 	stream *stream.Handler // Stream handler for raw image streaming
    42. 

  42. 	config *Config         // Handler configuration
    43. 

  43. }
    44. 

  44. 

  45. // New creates new handler object
    46. 

  46. func New(
    47. 

  47. 	hCtx HandlerContext,
    48. 

  48. 	stream *stream.Handler,
    49. 

  49. 	config *Config,
    50. 

  50. ) (*Handler, error) {
    51. 

  51. 	if err := config.Validate(); err != nil {
    52. 

  52. 		return nil, err
    53. 

  53. 	}
    54. 

  54. 

  55. 	return &Handler{
    56. 

  56. 		HandlerContext: hCtx,
    57. 

  57. 		config:         config,
    58. 

  58. 		stream:         stream,
    59. 

  59. 	}, nil
    60. 

  60. }
    61. 

  61. 

  62. // Execute handles the image processing request
    63. 

  63. func (h *Handler) Execute(
    64. 

  64. 	reqID string,
    65. 

  65. 	rw server.ResponseWriter,
    66. 

  66. 	req *http.Request,
    67. 

  67. ) error {
    68. 

  68. 	// Increment the number of requests in progress
    69. 

  69. 	h.Monitoring().Stats().IncRequestsInProgress()
    70. 

  70. 	defer h.Monitoring().Stats().DecRequestsInProgress()
    71. 

  71. 

  72. 	ctx := req.Context()
    73. 

  73. 

  74. 	// Verify URL signature and extract image url and processing options
    75. 

  75. 	imageURL, o, mm, err := h.newRequest(ctx, req)
    76. 

  76. 	if err != nil {
    77. 

  77. 		return err
    78. 

  78. 	}
    79. 

  79. 

  80. 	// if processing options indicate raw image streaming, stream it and return
    81. 

  81. 	if o.GetBool(keys.Raw, false) {
    82. 

  82. 		return h.stream.Execute(ctx, req, imageURL, reqID, o, rw)
    83. 

  83. 	}
    84. 

  84. 

  85. 	hReq := &request{
    86. 

  86. 		HandlerContext: h,
    87. 

  87. 

  88. 		reqID:          reqID,
    89. 

  89. 		req:            req,
    90. 

  90. 		rw:             rw,
    91. 

  91. 		config:         h.config,
    92. 

  92. 		opts:           o,
    93. 

  93. 		secops:         h.Security().NewOptions(o),
    94. 

  94. 		imageURL:       imageURL,
    95. 

  95. 		monitoringMeta: mm,
    96. 

  96. 	}
    97. 

  97. 

  98. 	return hReq.execute(ctx)
    99. 

  99. }
    100. 

  100. 

  101. // newRequest extracts image url and processing options from request URL and verifies them
    102. 

  102. func (h *Handler) newRequest(
    103. 

  103. 	ctx context.Context,
    104. 

  104. 	req *http.Request,
    105. 

  105. ) (string, *options.Options, monitoring.Meta, error) {
    106. 

  106. 	// let's extract signature and valid request path from a request
    107. 

  107. 	path, signature, err := handlers.SplitPathSignature(req)
    108. 

  108. 	if err != nil {
    109. 

  109. 		return "", nil, nil, err
    110. 

  110. 	}
    111. 

  111. 

  112. 	// verify the signature (if any)
    113. 

  113. 	if err = h.Security().VerifySignature(signature, path); err != nil {
    114. 

  114. 		return "", nil, nil, ierrors.Wrap(err, 0, ierrors.WithCategory(handlers.CategorySecurity))
    115. 

  115. 	}
    116. 

  116. 

  117. 	// parse image url and processing options
    118. 

  118. 	o, imageURL, err := h.OptionsParser().ParsePath(path, req.Header)
    119. 

  119. 	if err != nil {
    120. 

  120. 		return "", nil, nil, ierrors.Wrap(err, 0, ierrors.WithCategory(handlers.CategoryPathParsing))
    121. 

  121. 	}
    122. 

  122. 

  123. 	// get image origin and create monitoring meta object
    124. 

  124. 	imageOrigin := imageOrigin(imageURL)
    125. 

  125. 

  126. 	mm := monitoring.Meta{
    127. 

  127. 		monitoring.MetaSourceImageURL:    imageURL,
    128. 

  128. 		monitoring.MetaSourceImageOrigin: imageOrigin,
    129. 

  129. 		monitoring.MetaOptions:           o.Map(),
    130. 

  130. 	}
    131. 

  131. 

  132. 	// set error reporting and monitoring context
    133. 

  133. 	errorreport.SetMetadata(req, "Source Image URL", imageURL)
    134. 

  134. 	errorreport.SetMetadata(req, "Source Image Origin", imageOrigin)
    135. 

  135. 	errorreport.SetMetadata(req, "Options", o.NestedMap())
    136. 

  136. 

  137. 	h.Monitoring().SetMetadata(ctx, mm)
    138. 

  138. 

  139. 	// verify that image URL came from the valid source
    140. 

  140. 	err = h.Security().VerifySourceURL(imageURL)
    141. 

  141. 	if err != nil {
    142. 

  142. 		return "", options.New(), mm, ierrors.Wrap(err, 0, ierrors.WithCategory(handlers.CategorySecurity))
    143. 

  143. 	}
    144. 

  144. 

  145. 	return imageURL, o, mm, nil
    146. 

  146. }
    147. 

  147. 

  148. // imageOrigin extracts image origin from URL
    149. 

  149. func imageOrigin(imageURL string) string {
    150. 

  150. 	if u, uerr := url.Parse(imageURL); uerr == nil {
    151. 

  151. 		return u.Scheme + "://" + u.Host
    152. 

  152. 	}
    153. 

  153. 

  154. 	return ""
    155. 

  155. }
    156.