portainer/dockerui.go

package main // import "github.com/crosbymichael/dockerui"

import (
	"flag"
	"io"
	"log"
	"net"
	"net/http"
	"net/http/httputil"
	"net/url"
	"os"
	"strings"
	"github.com/gorilla/csrf"
	"io/ioutil"
	"fmt"
	"github.com/gorilla/securecookie"
)

var (
	endpoint = flag.String("e", "/var/run/docker.sock", "Dockerd endpoint")
	addr     = flag.String("p", ":9000", "Address and port to serve dockerui")
	assets   = flag.String("a", ".", "Path to the assets")
	authKey  []byte
	authKeyFile = "authKey.dat"
)

type UnixHandler struct {
	path string
}

func (h *UnixHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
	conn, err := net.Dial("unix", h.path)
	if err != nil {
		w.WriteHeader(http.StatusInternalServerError)
		log.Println(err)
		return
	}
	c := httputil.NewClientConn(conn, nil)
	defer c.Close()

	res, err := c.Do(r)
	if err != nil {
		w.WriteHeader(http.StatusInternalServerError)
		log.Println(err)
		return
	}
	defer res.Body.Close()

	copyHeader(w.Header(), res.Header)
	if _, err := io.Copy(w, res.Body); err != nil {
		log.Println(err)
	}
}

func copyHeader(dst, src http.Header) {
	for k, vv := range src {
		for _, v := range vv {
			dst.Add(k, v)
		}
	}
}

func createTcpHandler(e string) http.Handler {
	u, err := url.Parse(e)
	if err != nil {
		log.Fatal(err)
	}
	return httputil.NewSingleHostReverseProxy(u)
}

func createUnixHandler(e string) http.Handler {
	return &UnixHandler{e}
}

func createHandler(dir string, e string) http.Handler {
	var (
		mux         = http.NewServeMux()
		fileHandler = http.FileServer(http.Dir(dir))
		h           http.Handler
	)

	if strings.Contains(e, "http") {
		h = createTcpHandler(e)
	} else {
		if _, err := os.Stat(e); err != nil {
			if os.IsNotExist(err) {
				log.Fatalf("unix socket %s does not exist", e)
			}
			log.Fatal(err)
		}
		h = createUnixHandler(e)
	}

	// Use existing csrf authKey if present or generate a new one.
	dat, err := ioutil.ReadFile(authKeyFile)
	if err != nil {
		fmt.Println(err)
		authKey = securecookie.GenerateRandomKey(32)
		err := ioutil.WriteFile(authKeyFile, authKey, 0644)
		if err != nil {
			fmt.Println("unable to persist auth key", err)
		}
	} else {
		authKey = dat
	}

	CSRF := csrf.Protect(
		authKey,
		csrf.HttpOnly(false),
		csrf.Secure(false),
	)

	mux.Handle("/dockerapi/", http.StripPrefix("/dockerapi", h))
	mux.Handle("/", fileHandler)
	return CSRF(csrfWrapper(mux))
}

func csrfWrapper(h http.Handler) http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		w.Header().Set("X-CSRF-Token", csrf.Token(r))
		h.ServeHTTP(w, r)
	})
}

func main() {
	flag.Parse()

	handler := createHandler(*assets, *endpoint)
	if err := http.ListenAndServe(*addr, handler); err != nil {
		log.Fatal(err)
	}
}
Using centurylink's golang-builder to create tiny docker image, going from ~400MB to 5.4MB. 2015-02-13 06:11:50 +00:00			`package main // import "github.com/crosbymichael/dockerui"`
Add dockerui server files and Dockerfile 2013-06-22 19:10:22 +00:00
			`import (`
			`"flag"`
Allow a user to bind to a unix socket 2013-12-30 18:40:08 +00:00			`"io"`
Add dockerui server files and Dockerfile 2013-06-22 19:10:22 +00:00			`"log"`
Allow a user to bind to a unix socket 2013-12-30 18:40:08 +00:00			`"net"`
Add dockerui server files and Dockerfile 2013-06-22 19:10:22 +00:00			`"net/http"`
Refactor dockerui.go 2013-09-10 16:36:37 +00:00			`"net/http/httputil"`
			`"net/url"`
Add error for no socket 2014-02-15 04:38:07 +00:00			`"os"`
Allow a user to bind to a unix socket 2013-12-30 18:40:08 +00:00			`"strings"`
add gorilla/csrf #199 2016-04-01 04:54:12 +00:00			`"github.com/gorilla/csrf"`
Persist csrf authKey in container to allow restarts without breaking existing cookies. 2016-04-02 21:55:06 +00:00			`"io/ioutil"`
			`"fmt"`
			`"github.com/gorilla/securecookie"`
Add dockerui server files and Dockerfile 2013-06-22 19:10:22 +00:00			`)`

			`var (`
Default endpoint to local unix socket 2014-03-10 22:49:40 +00:00			`endpoint = flag.String("e", "/var/run/docker.sock", "Dockerd endpoint")`
Refactor dockerui.go 2013-09-10 16:36:37 +00:00			`addr = flag.String("p", ":9000", "Address and port to serve dockerui")`
Update dockerfile and server 2013-09-03 01:55:00 +00:00			`assets = flag.String("a", ".", "Path to the assets")`
Persist csrf authKey in container to allow restarts without breaking existing cookies. 2016-04-02 21:55:06 +00:00			`authKey []byte`
			`authKeyFile = "authKey.dat"`
Add dockerui server files and Dockerfile 2013-06-22 19:10:22 +00:00			`)`

Allow a user to bind to a unix socket 2013-12-30 18:40:08 +00:00			`type UnixHandler struct {`
			`path string`
			`}`

			`func (h UnixHandler) ServeHTTP(w http.ResponseWriter, r http.Request) {`
			`conn, err := net.Dial("unix", h.path)`
			`if err != nil {`
			`w.WriteHeader(http.StatusInternalServerError)`
			`log.Println(err)`
			`return`
			`}`
			`c := httputil.NewClientConn(conn, nil)`
			`defer c.Close()`

			`res, err := c.Do(r)`
			`if err != nil {`
			`w.WriteHeader(http.StatusInternalServerError)`
			`log.Println(err)`
			`return`
			`}`
			`defer res.Body.Close()`

			`copyHeader(w.Header(), res.Header)`
			`if _, err := io.Copy(w, res.Body); err != nil {`
			`log.Println(err)`
			`}`
			`}`
Add dockerui server files and Dockerfile 2013-06-22 19:10:22 +00:00
Allow a user to bind to a unix socket 2013-12-30 18:40:08 +00:00			`func copyHeader(dst, src http.Header) {`
			`for k, vv := range src {`
			`for _, v := range vv {`
			`dst.Add(k, v)`
			`}`
			`}`
			`}`

			`func createTcpHandler(e string) http.Handler {`
			`u, err := url.Parse(e)`
Refactor dockerui.go 2013-09-10 16:36:37 +00:00			`if err != nil {`
			`log.Fatal(err)`
			`}`
Allow a user to bind to a unix socket 2013-12-30 18:40:08 +00:00			`return httputil.NewSingleHostReverseProxy(u)`
			`}`
Add dockerui server files and Dockerfile 2013-06-22 19:10:22 +00:00
Allow a user to bind to a unix socket 2013-12-30 18:40:08 +00:00			`func createUnixHandler(e string) http.Handler {`
			`return &UnixHandler{e}`
			`}`

			`func createHandler(dir string, e string) http.Handler {`
			`var (`
			`mux = http.NewServeMux()`
			`fileHandler = http.FileServer(http.Dir(dir))`
			`h http.Handler`
			`)`
Add dockerui server files and Dockerfile 2013-06-22 19:10:22 +00:00
Allow a user to bind to a unix socket 2013-12-30 18:40:08 +00:00			`if strings.Contains(e, "http") {`
			`h = createTcpHandler(e)`
			`} else {`
Add error for no socket 2014-02-15 04:38:07 +00:00			`if _, err := os.Stat(e); err != nil {`
			`if os.IsNotExist(err) {`
			`log.Fatalf("unix socket %s does not exist", e)`
			`}`
			`log.Fatal(err)`
			`}`
Allow a user to bind to a unix socket 2013-12-30 18:40:08 +00:00			`h = createUnixHandler(e)`
			`}`

Persist csrf authKey in container to allow restarts without breaking existing cookies. 2016-04-02 21:55:06 +00:00			`// Use existing csrf authKey if present or generate a new one.`
			`dat, err := ioutil.ReadFile(authKeyFile)`
			`if err != nil {`
			`fmt.Println(err)`
			`authKey = securecookie.GenerateRandomKey(32)`
			`err := ioutil.WriteFile(authKeyFile, authKey, 0644)`
			`if err != nil {`
			`fmt.Println("unable to persist auth key", err)`
			`}`
			`} else {`
			`authKey = dat`
			`}`

			`CSRF := csrf.Protect(`
			`authKey,`
			`csrf.HttpOnly(false),`
			`csrf.Secure(false),`
			`)`

Allow a user to bind to a unix socket 2013-12-30 18:40:08 +00:00			`mux.Handle("/dockerapi/", http.StripPrefix("/dockerapi", h))`
			`mux.Handle("/", fileHandler)`
Fix csrf, send tokens back in header, pass token instead of cookie back to server. 2016-04-02 19:39:14 +00:00			`return CSRF(csrfWrapper(mux))`
add gorilla/csrf #199 2016-04-01 04:54:12 +00:00			`}`

Fix csrf, send tokens back in header, pass token instead of cookie back to server. 2016-04-02 19:39:14 +00:00			`func csrfWrapper(h http.Handler) http.Handler {`
add gorilla/csrf #199 2016-04-01 04:54:12 +00:00			`return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {`
Fix csrf, send tokens back in header, pass token instead of cookie back to server. 2016-04-02 19:39:14 +00:00			`w.Header().Set("X-CSRF-Token", csrf.Token(r))`
			`h.ServeHTTP(w, r)`
add gorilla/csrf #199 2016-04-01 04:54:12 +00:00			`})`
Add dockerui server files and Dockerfile 2013-06-22 19:10:22 +00:00			`}`

			`func main() {`
			`flag.Parse()`

Refactor dockerui.go 2013-09-10 16:36:37 +00:00			`handler := createHandler(assets, endpoint)`
			`if err := http.ListenAndServe(*addr, handler); err != nil {`
			`log.Fatal(err)`
			`}`
Add dockerui server files and Dockerfile 2013-06-22 19:10:22 +00:00			`}`