首页 发现 帮助
注册 登录
lqb
/
imgproxy
镜像自地址 https://github.com/imgproxy/imgproxy.git
1
0
派生 0
文件 工单管理 0 Wiki
目录树: 10edac91ae
分支列表 标签列表
imgproxy
/
handlers
/
processing
/
handler.go

handler.go 4.3 KB
文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156 
  1. package processing
    2. 

  2. 

  3. import (
    4. 

  4. 	"context"
    5. 

  5. 	"net/http"
    6. 

  6. 	"net/url"
    7. 

  7. 

  8. 	"github.com/imgproxy/imgproxy/v3/auximageprovider"
    9. 

  9. 	"github.com/imgproxy/imgproxy/v3/cookies"
    10. 

  10. 	"github.com/imgproxy/imgproxy/v3/errorreport"
    11. 

  11. 	"github.com/imgproxy/imgproxy/v3/handlers"
    12. 

  12. 	"github.com/imgproxy/imgproxy/v3/handlers/stream"
    13. 

  13. 	"github.com/imgproxy/imgproxy/v3/ierrors"
    14. 

  14. 	"github.com/imgproxy/imgproxy/v3/imagedata"
    15. 

  15. 	"github.com/imgproxy/imgproxy/v3/monitoring"
    16. 

  16. 	"github.com/imgproxy/imgproxy/v3/options"
    17. 

  17. 	"github.com/imgproxy/imgproxy/v3/options/keys"
    18. 

  18. 	optionsparser "github.com/imgproxy/imgproxy/v3/options/parser"
    19. 

  19. 	"github.com/imgproxy/imgproxy/v3/processing"
    20. 

  20. 	"github.com/imgproxy/imgproxy/v3/security"
    21. 

  21. 	"github.com/imgproxy/imgproxy/v3/server"
    22. 

  22. 	"github.com/imgproxy/imgproxy/v3/workers"
    23. 

  23. )
    24. 

  24. 

  25. // HandlerContext provides access to shared handler dependencies
    26. 

  26. type HandlerContext interface {
    27. 

  27. 	Workers() *workers.Workers
    28. 

  28. 	FallbackImage() auximageprovider.Provider
    29. 

  29. 	ImageDataFactory() *imagedata.Factory
    30. 

  30. 	Security() *security.Checker
    31. 

  31. 	OptionsParser() *optionsparser.Parser
    32. 

  32. 	Processor() *processing.Processor
    33. 

  33. 	Cookies() *cookies.Cookies
    34. 

  34. 	Monitoring() *monitoring.Monitoring
    35. 

  35. 	ErrorReporter() *errorreport.Reporter
    36. 

  36. }
    37. 

  37. 

  38. // Handler handles image processing requests
    39. 

  39. type Handler struct {
    40. 

  40. 	HandlerContext
    41. 

  41. 

  42. 	stream *stream.Handler // Stream handler for raw image streaming
    43. 

  43. 	config *Config         // Handler configuration
    44. 

  44. }
    45. 

  45. 

  46. // New creates new handler object
    47. 

  47. func New(
    48. 

  48. 	hCtx HandlerContext,
    49. 

  49. 	stream *stream.Handler,
    50. 

  50. 	config *Config,
    51. 

  51. ) (*Handler, error) {
    52. 

  52. 	if err := config.Validate(); err != nil {
    53. 

  53. 		return nil, err
    54. 

  54. 	}
    55. 

  55. 

  56. 	return &Handler{
    57. 

  57. 		HandlerContext: hCtx,
    58. 

  58. 		config:         config,
    59. 

  59. 		stream:         stream,
    60. 

  60. 	}, nil
    61. 

  61. }
    62. 

  62. 

  63. // Execute handles the image processing request
    64. 

  64. func (h *Handler) Execute(
    65. 

  65. 	reqID string,
    66. 

  66. 	rw server.ResponseWriter,
    67. 

  67. 	req *http.Request,
    68. 

  68. ) error {
    69. 

  69. 	// Increment the number of requests in progress
    70. 

  70. 	h.Monitoring().Stats().IncRequestsInProgress()
    71. 

  71. 	defer h.Monitoring().Stats().DecRequestsInProgress()
    72. 

  72. 

  73. 	ctx := req.Context()
    74. 

  74. 

  75. 	// Verify URL signature and extract image url and processing options
    76. 

  76. 	imageURL, o, mm, err := h.newRequest(ctx, req)
    77. 

  77. 	if err != nil {
    78. 

  78. 		return err
    79. 

  79. 	}
    80. 

  80. 

  81. 	// if processing options indicate raw image streaming, stream it and return
    82. 

  82. 	if o.GetBool(keys.Raw, false) {
    83. 

  83. 		return h.stream.Execute(ctx, req, imageURL, reqID, o, rw)
    84. 

  84. 	}
    85. 

  85. 

  86. 	hReq := &request{
    87. 

  87. 		HandlerContext: h,
    88. 

  88. 

  89. 		reqID:          reqID,
    90. 

  90. 		req:            req,
    91. 

  91. 		rw:             rw,
    92. 

  92. 		config:         h.config,
    93. 

  93. 		opts:           o,
    94. 

  94. 		secops:         h.Security().NewOptions(o),
    95. 

  95. 		imageURL:       imageURL,
    96. 

  96. 		monitoringMeta: mm,
    97. 

  97. 	}
    98. 

  98. 

  99. 	return hReq.execute(ctx)
    100. 

  100. }
    101. 

  101. 

  102. // newRequest extracts image url and processing options from request URL and verifies them
    103. 

  103. func (h *Handler) newRequest(
    104. 

  104. 	ctx context.Context,
    105. 

  105. 	req *http.Request,
    106. 

  106. ) (string, *options.Options, monitoring.Meta, error) {
    107. 

  107. 	// let's extract signature and valid request path from a request
    108. 

  108. 	path, signature, err := handlers.SplitPathSignature(req)
    109. 

  109. 	if err != nil {
    110. 

  110. 		return "", nil, nil, err
    111. 

  111. 	}
    112. 

  112. 

  113. 	// verify the signature (if any)
    114. 

  114. 	if err = h.Security().VerifySignature(signature, path); err != nil {
    115. 

  115. 		return "", nil, nil, ierrors.Wrap(err, 0, ierrors.WithCategory(handlers.CategorySecurity))
    116. 

  116. 	}
    117. 

  117. 

  118. 	// parse image url and processing options
    119. 

  119. 	o, imageURL, err := h.OptionsParser().ParsePath(path, req.Header)
    120. 

  120. 	if err != nil {
    121. 

  121. 		return "", nil, nil, ierrors.Wrap(err, 0, ierrors.WithCategory(handlers.CategoryPathParsing))
    122. 

  122. 	}
    123. 

  123. 

  124. 	// get image origin and create monitoring meta object
    125. 

  125. 	imageOrigin := imageOrigin(imageURL)
    126. 

  126. 

  127. 	mm := monitoring.Meta{
    128. 

  128. 		monitoring.MetaSourceImageURL:    imageURL,
    129. 

  129. 		monitoring.MetaSourceImageOrigin: imageOrigin,
    130. 

  130. 		monitoring.MetaOptions:           o.Map(),
    131. 

  131. 	}
    132. 

  132. 

  133. 	// set error reporting and monitoring context
    134. 

  134. 	errorreport.SetMetadata(req, "Source Image URL", imageURL)
    135. 

  135. 	errorreport.SetMetadata(req, "Source Image Origin", imageOrigin)
    136. 

  136. 	errorreport.SetMetadata(req, "Options", o.NestedMap())
    137. 

  137. 

  138. 	h.Monitoring().SetMetadata(ctx, mm)
    139. 

  139. 

  140. 	// verify that image URL came from the valid source
    141. 

  141. 	err = h.Security().VerifySourceURL(imageURL)
    142. 

  142. 	if err != nil {
    143. 

  143. 		return "", options.New(), mm, ierrors.Wrap(err, 0, ierrors.WithCategory(handlers.CategorySecurity))
    144. 

  144. 	}
    145. 

  145. 

  146. 	return imageURL, o, mm, nil
    147. 

  147. }
    148. 

  148. 

  149. // imageOrigin extracts image origin from URL
    150. 

  150. func imageOrigin(imageURL string) string {
    151. 

  151. 	if u, uerr := url.Parse(imageURL); uerr == nil {
    152. 

  152. 		return u.Scheme + "://" + u.Host
    153. 

  153. 	}
    154. 

  154. 

  155. 	return ""
    156. 

  156. }
    157.