mirror of https://github.com/portainer/portainer
56 lines
1.6 KiB
Go
56 lines
1.6 KiB
Go
|
package proxy
|
||
|
|
||
|
import (
|
||
|
"net/http"
|
||
|
"net/http/httputil"
|
||
|
"net/url"
|
||
|
|
||
|
"github.com/portainer/portainer"
|
||
|
"github.com/portainer/portainer/crypto"
|
||
|
)
|
||
|
|
||
|
// proxyFactory is a factory to create reverse proxies to Docker endpoints
|
||
|
type proxyFactory struct {
|
||
|
ResourceControlService portainer.ResourceControlService
|
||
|
TeamMembershipService portainer.TeamMembershipService
|
||
|
}
|
||
|
|
||
|
func (factory *proxyFactory) newHTTPProxy(u *url.URL) http.Handler {
|
||
|
u.Scheme = "http"
|
||
|
return factory.createReverseProxy(u)
|
||
|
}
|
||
|
|
||
|
func (factory *proxyFactory) newHTTPSProxy(u *url.URL, endpoint *portainer.Endpoint) (http.Handler, error) {
|
||
|
u.Scheme = "https"
|
||
|
proxy := factory.createReverseProxy(u)
|
||
|
config, err := crypto.CreateTLSConfiguration(endpoint.TLSCACertPath, endpoint.TLSCertPath, endpoint.TLSKeyPath)
|
||
|
if err != nil {
|
||
|
return nil, err
|
||
|
}
|
||
|
|
||
|
proxy.Transport.(*proxyTransport).dockerTransport.TLSClientConfig = config
|
||
|
return proxy, nil
|
||
|
}
|
||
|
|
||
|
func (factory *proxyFactory) newSocketProxy(path string) http.Handler {
|
||
|
proxy := &socketProxy{}
|
||
|
transport := &proxyTransport{
|
||
|
ResourceControlService: factory.ResourceControlService,
|
||
|
TeamMembershipService: factory.TeamMembershipService,
|
||
|
dockerTransport: newSocketTransport(path),
|
||
|
}
|
||
|
proxy.Transport = transport
|
||
|
return proxy
|
||
|
}
|
||
|
|
||
|
func (factory *proxyFactory) createReverseProxy(u *url.URL) *httputil.ReverseProxy {
|
||
|
proxy := newSingleHostReverseProxyWithHostHeader(u)
|
||
|
transport := &proxyTransport{
|
||
|
ResourceControlService: factory.ResourceControlService,
|
||
|
TeamMembershipService: factory.TeamMembershipService,
|
||
|
dockerTransport: newHTTPTransport(),
|
||
|
}
|
||
|
proxy.Transport = transport
|
||
|
return proxy
|
||
|
}
|