Domů Procházet Nápověda
Přihlásit se
lqb
/
imgproxy
zrcadlo https://github.com/imgproxy/imgproxy.git
1
0
Rozštěpit 0
Soubory Úkoly 0 Wiki
Strom: 09bfd44c55
Větve Značky
imgproxy
/
server.go

server.go 5.5 KB
Historie Surový

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248 
  1. package main
    2. 

  2. 

  3. import (
    4. 

  4. 	"bytes"
    5. 

  5. 	"compress/gzip"
    6. 

  6. 	"crypto/subtle"
    7. 

  7. 	"encoding/base64"
    8. 

  8. 	"errors"
    9. 

  9. 	"fmt"
    10. 

  10. 	"log"
    11. 

  11. 	"net/http"
    12. 

  12. 	"net/url"
    13. 

  13. 	"strconv"
    14. 

  14. 	"strings"
    15. 

  15. 	"time"
    16. 

  16. 

  17. 	nanoid "github.com/matoous/go-nanoid"
    18. 

  18. )
    19. 

  19. 

  20. var mimes = map[imageType]string{
    21. 

  21. 	JPEG: "image/jpeg",
    22. 

  22. 	PNG:  "image/png",
    23. 

  23. 	WEBP: "image/webp",
    24. 

  24. }
    25. 

  25. 

  26. type httpHandler struct {
    27. 

  27. 	sem chan struct{}
    28. 

  28. }
    29. 

  29. 

  30. func newHTTPHandler() *httpHandler {
    31. 

  31. 	return &httpHandler{make(chan struct{}, conf.Concurrency)}
    32. 

  32. }
    33. 

  33. 

  34. func parsePath(r *http.Request) (string, processingOptions, error) {
    35. 

  35. 	var po processingOptions
    36. 

  36. 	var err error
    37. 

  37. 

  38. 	path := r.URL.Path
    39. 

  39. 	parts := strings.Split(strings.TrimPrefix(path, "/"), "/")
    40. 

  40. 

  41. 	if len(parts) < 7 {
    42. 

  42. 		return "", po, errors.New("Invalid path")
    43. 

  43. 	}
    44. 

  44. 

  45. 	token := parts[0]
    46. 

  46. 

  47. 	if err = validatePath(token, strings.TrimPrefix(path, fmt.Sprintf("/%s", token))); err != nil {
    48. 

  48. 		return "", po, err
    49. 

  49. 	}
    50. 

  50. 

  51. 	if r, ok := resizeTypes[parts[1]]; ok {
    52. 

  52. 		po.Resize = r
    53. 

  53. 	} else {
    54. 

  54. 		return "", po, fmt.Errorf("Invalid resize type: %s", parts[1])
    55. 

  55. 	}
    56. 

  56. 

  57. 	if po.Width, err = strconv.Atoi(parts[2]); err != nil {
    58. 

  58. 		return "", po, fmt.Errorf("Invalid width: %s", parts[2])
    59. 

  59. 	}
    60. 

  60. 

  61. 	if po.Height, err = strconv.Atoi(parts[3]); err != nil {
    62. 

  62. 		return "", po, fmt.Errorf("Invalid height: %s", parts[3])
    63. 

  63. 	}
    64. 

  64. 

  65. 	if g, ok := gravityTypes[parts[4]]; ok {
    66. 

  66. 		po.Gravity = g
    67. 

  67. 	} else {
    68. 

  68. 		return "", po, fmt.Errorf("Invalid gravity: %s", parts[4])
    69. 

  69. 	}
    70. 

  70. 

  71. 	po.Enlarge = parts[5] != "0"
    72. 

  72. 

  73. 	filenameParts := strings.Split(strings.Join(parts[6:], ""), ".")
    74. 

  74. 

  75. 	if len(filenameParts) < 2 {
    76. 

  76. 		po.Format = imageTypes["jpg"]
    77. 

  77. 	} else if f, ok := imageTypes[filenameParts[1]]; ok {
    78. 

  78. 		po.Format = f
    79. 

  79. 	} else {
    80. 

  80. 		return "", po, fmt.Errorf("Invalid image format: %s", filenameParts[1])
    81. 

  81. 	}
    82. 

  82. 

  83. 	if !vipsTypeSupportSave[po.Format] {
    84. 

  84. 		return "", po, errors.New("Resulting image type not supported")
    85. 

  85. 	}
    86. 

  86. 

  87. 	filename, err := base64.RawURLEncoding.DecodeString(filenameParts[0])
    88. 

  88. 	if err != nil {
    89. 

  89. 		return "", po, errors.New("Invalid filename encoding")
    90. 

  90. 	}
    91. 

  91. 

  92. 	return string(filename), po, nil
    93. 

  93. }
    94. 

  94. 

  95. func logResponse(status int, msg string) {
    96. 

  96. 	var color int
    97. 

  97. 

  98. 	if status >= 500 {
    99. 

  99. 		color = 31
    100. 

  100. 	} else if status >= 400 {
    101. 

  101. 		color = 33
    102. 

  102. 	} else {
    103. 

  103. 		color = 32
    104. 

  104. 	}
    105. 

  105. 

  106. 	log.Printf("|\033[7;%dm %d \033[0m| %s\n", color, status, msg)
    107. 

  107. }
    108. 

  108. 

  109. func writeCORS(rw http.ResponseWriter) {
    110. 

  110. 	if len(conf.AllowOrigin) > 0 {
    111. 

  111. 		rw.Header().Set("Access-Control-Allow-Origin", conf.AllowOrigin)
    112. 

  112. 		rw.Header().Set("Access-Control-Allow-Methods", "GET, OPTIONs")
    113. 

  113. 	}
    114. 

  114. }
    115. 

  115. 

  116. func respondWithImage(reqID string, r *http.Request, rw http.ResponseWriter, data []byte, imgURL string, po processingOptions, duration time.Duration) {
    117. 

  117. 	gzipped := strings.Contains(r.Header.Get("Accept-Encoding"), "gzip") && conf.GZipCompression > 0
    118. 

  118. 

  119. 	rw.Header().Set("Expires", time.Now().Add(time.Second*time.Duration(conf.TTL)).Format(http.TimeFormat))
    120. 

  120. 	rw.Header().Set("Cache-Control", fmt.Sprintf("max-age=%d, public", conf.TTL))
    121. 

  121. 	rw.Header().Set("Content-Type", mimes[po.Format])
    122. 

  122. 

  123. 	dataToRespond := data
    124. 

  124. 

  125. 	if gzipped {
    126. 

  126. 		var buf bytes.Buffer
    127. 

  127. 

  128. 		gz, _ := gzip.NewWriterLevel(&buf, conf.GZipCompression)
    129. 

  129. 		gz.Write(data)
    130. 

  130. 		gz.Close()
    131. 

  131. 

  132. 		dataToRespond = buf.Bytes()
    133. 

  133. 

  134. 		rw.Header().Set("Content-Encoding", "gzip")
    135. 

  135. 	}
    136. 

  136. 

  137. 	rw.Header().Set("Content-Length", strconv.Itoa(len(dataToRespond)))
    138. 

  138. 

  139. 	rw.WriteHeader(200)
    140. 

  140. 	rw.Write(dataToRespond)
    141. 

  141. 

  142. 	logResponse(200, fmt.Sprintf("[%s] Processed in %s: %s; %+v", reqID, duration, imgURL, po))
    143. 

  143. }
    144. 

  144. 

  145. func respondWithError(reqID string, rw http.ResponseWriter, err imgproxyError) {
    146. 

  146. 	logResponse(err.StatusCode, fmt.Sprintf("[%s] %s", reqID, err.Message))
    147. 

  147. 

  148. 	rw.WriteHeader(err.StatusCode)
    149. 

  149. 	rw.Write([]byte(err.PublicMessage))
    150. 

  150. }
    151. 

  151. 

  152. func respondWithOptions(reqID string, rw http.ResponseWriter) {
    153. 

  153. 	logResponse(200, fmt.Sprintf("[%s] Respond with options", reqID))
    154. 

  154. 	rw.WriteHeader(200)
    155. 

  155. }
    156. 

  156. 

  157. func checkSecret(s string) bool {
    158. 

  158. 	if len(conf.Secret) == 0 {
    159. 

  159. 		return true
    160. 

  160. 	}
    161. 

  161. 	return strings.HasPrefix(s, "Bearer ") && subtle.ConstantTimeCompare([]byte(strings.TrimPrefix(s, "Bearer ")), []byte(conf.Secret)) == 1
    162. 

  162. }
    163. 

  163. 

  164. func (h *httpHandler) lock() {
    165. 

  165. 	h.sem <- struct{}{}
    166. 

  166. }
    167. 

  167. 

  168. func (h *httpHandler) unlock() {
    169. 

  169. 	<-h.sem
    170. 

  170. }
    171. 

  171. 

  172. func (h *httpHandler) ServeHTTP(rw http.ResponseWriter, r *http.Request) {
    173. 

  173. 	reqID, _ := nanoid.Nanoid()
    174. 

  174. 

  175. 	defer func() {
    176. 

  176. 		if r := recover(); r != nil {
    177. 

  177. 			if err, ok := r.(imgproxyError); ok {
    178. 

  178. 				respondWithError(reqID, rw, err)
    179. 

  179. 			} else {
    180. 

  180. 				respondWithError(reqID, rw, newUnexpectedError(r.(error), 4))
    181. 

  181. 			}
    182. 

  182. 		}
    183. 

  183. 	}()
    184. 

  184. 

  185. 	log.Printf("[%s] %s: %s\n", reqID, r.Method, r.URL.RequestURI())
    186. 

  186. 

  187. 	writeCORS(rw)
    188. 

  188. 

  189. 	if r.Method == http.MethodOptions {
    190. 

  190. 		respondWithOptions(reqID, rw)
    191. 

  191. 		return
    192. 

  192. 	}
    193. 

  193. 

  194. 	if r.Method != http.MethodGet {
    195. 

  195. 		panic(invalidMethodErr)
    196. 

  196. 	}
    197. 

  197. 

  198. 	if !checkSecret(r.Header.Get("Authorization")) {
    199. 

  199. 		panic(invalidSecretErr)
    200. 

  200. 	}
    201. 

  201. 

  202. 	h.lock()
    203. 

  203. 	defer h.unlock()
    204. 

  204. 

  205. 	if r.URL.Path == "/health" {
    206. 

  206. 		rw.WriteHeader(200)
    207. 

  207. 		rw.Write([]byte("imgproxy is running"))
    208. 

  208. 		return
    209. 

  209. 	}
    210. 

  210. 

  211. 	t := startTimer(time.Duration(conf.WriteTimeout)*time.Second, "Processing")
    212. 

  212. 

  213. 	imgURL, procOpt, err := parsePath(r)
    214. 

  214. 	if err != nil {
    215. 

  215. 		panic(newError(404, err.Error(), "Invalid image url"))
    216. 

  216. 	}
    217. 

  217. 

  218. 	if _, err = url.ParseRequestURI(imgURL); err != nil {
    219. 

  219. 		panic(newError(404, err.Error(), "Invalid image url"))
    220. 

  220. 	}
    221. 

  221. 

  222. 	b, imgtype, err := downloadImage(imgURL)
    223. 

  223. 	if err != nil {
    224. 

  224. 		panic(newError(404, err.Error(), "Image is unreachable"))
    225. 

  225. 	}
    226. 

  226. 

  227. 	t.Check()
    228. 

  228. 

  229. 	if conf.ETagEnabled {
    230. 

  230. 		eTag := calcETag(b, &procOpt)
    231. 

  231. 		rw.Header().Set("ETag", eTag)
    232. 

  232. 

  233. 		if eTag == r.Header.Get("If-None-Match") {
    234. 

  234. 			panic(notModifiedErr)
    235. 

  235. 		}
    236. 

  236. 	}
    237. 

  237. 

  238. 	t.Check()
    239. 

  239. 

  240. 	b, err = processImage(b, imgtype, procOpt, t)
    241. 

  241. 	if err != nil {
    242. 

  242. 		panic(newError(500, err.Error(), "Error occurred while processing image"))
    243. 

  243. 	}
    244. 

  244. 

  245. 	t.Check()
    246. 

  246. 

  247. 	respondWithImage(reqID, r, rw, b, imgURL, procOpt, t.Since())
    248. 

  248. }
    249.