1
0
mirror of https://github.com/imgproxy/imgproxy.git synced 2024-11-24 08:12:38 +02:00
imgproxy/server.go

196 lines
4.3 KiB
Go
Raw Normal View History

2017-06-27 11:00:33 +02:00
package main
import (
"compress/gzip"
"crypto/subtle"
2017-06-27 11:00:33 +02:00
"encoding/base64"
"errors"
"fmt"
"log"
"net/http"
"net/url"
"strconv"
"strings"
2017-07-03 06:08:47 +02:00
"time"
2017-06-27 11:00:33 +02:00
)
2017-09-27 10:42:49 +02:00
var mimes = map[imageType]string{
JPEG: "image/jpeg",
PNG: "image/png",
WEBP: "image/webp",
}
2017-07-04 16:05:53 +02:00
type httpHandler struct {
sem chan struct{}
}
2017-09-27 10:42:49 +02:00
func newHTTPHandler() httpHandler {
2017-07-04 16:05:53 +02:00
return httpHandler{make(chan struct{}, conf.Concurrency)}
}
2017-06-27 11:00:33 +02:00
func parsePath(r *http.Request) (string, processingOptions, error) {
var po processingOptions
var err error
path := r.URL.Path
parts := strings.Split(strings.TrimPrefix(path, "/"), "/")
if len(parts) < 7 {
return "", po, errors.New("Invalid path")
}
token := parts[0]
if err = validatePath(token, strings.TrimPrefix(path, fmt.Sprintf("/%s", token))); err != nil {
return "", po, err
}
2017-09-27 10:42:49 +02:00
if r, ok := resizeTypes[parts[1]]; ok {
po.resize = r
} else {
return "", po, fmt.Errorf("Invalid resize type: %s", parts[1])
}
2017-06-27 11:00:33 +02:00
if po.width, err = strconv.Atoi(parts[2]); err != nil {
return "", po, fmt.Errorf("Invalid width: %s", parts[2])
}
if po.height, err = strconv.Atoi(parts[3]); err != nil {
return "", po, fmt.Errorf("Invalid height: %s", parts[3])
}
if g, ok := gravityTypes[parts[4]]; ok {
po.gravity = g
} else {
return "", po, fmt.Errorf("Invalid gravity: %s", parts[4])
}
po.enlarge = parts[5] != "0"
filenameParts := strings.Split(strings.Join(parts[6:], ""), ".")
if len(filenameParts) < 2 {
po.format = imageTypes["jpg"]
} else if f, ok := imageTypes[filenameParts[1]]; ok {
po.format = f
} else {
return "", po, fmt.Errorf("Invalid image format: %s", filenameParts[1])
}
2017-09-27 10:42:49 +02:00
if !vipsTypeSupportedSave(po.format) {
return "", po, errors.New("Resulting image type not supported")
}
2017-06-27 11:00:33 +02:00
filename, err := base64.RawURLEncoding.DecodeString(filenameParts[0])
if err != nil {
return "", po, errors.New("Invalid filename encoding")
}
return string(filename), po, nil
}
func logResponse(status int, msg string) {
var color int
if status > 500 {
color = 31
} else if status > 400 {
color = 33
} else {
color = 32
}
log.Printf("|\033[7;%dm %d \033[0m| %s\n", color, status, msg)
}
2017-07-03 06:08:47 +02:00
func respondWithImage(r *http.Request, rw http.ResponseWriter, data []byte, imgURL string, po processingOptions, startTime time.Time) {
2017-06-27 11:00:33 +02:00
gzipped := strings.Contains(r.Header.Get("Accept-Encoding"), "gzip") && conf.GZipCompression > 0
2017-07-03 12:10:44 +02:00
rw.Header().Set("Expires", time.Now().Add(time.Second*time.Duration(conf.TTL)).Format(http.TimeFormat))
rw.Header().Set("Cache-Control", fmt.Sprintf("Cache-Control: max-age=%d", conf.TTL))
rw.Header().Set("Content-Type", mimes[po.format])
2017-06-27 11:00:33 +02:00
if gzipped {
rw.Header().Set("Content-Encoding", "gzip")
}
rw.WriteHeader(200)
if gzipped {
gz, _ := gzip.NewWriterLevel(rw, conf.GZipCompression)
gz.Write(data)
gz.Close()
} else {
rw.Write(data)
}
2017-07-03 06:08:47 +02:00
logResponse(200, fmt.Sprintf("Processed in %s: %s; %+v", time.Since(startTime), imgURL, po))
2017-06-27 11:00:33 +02:00
}
func respondWithError(rw http.ResponseWriter, status int, err error, msg string) {
logResponse(status, err.Error())
rw.WriteHeader(status)
rw.Write([]byte(msg))
}
func repondWithForbidden(rw http.ResponseWriter) {
logResponse(403, "Invalid secret")
rw.WriteHeader(403)
rw.Write([]byte("Forbidden"))
}
func checkSecret(s string) bool {
2017-07-03 11:36:37 +02:00
if len(conf.Secret) == 0 {
return true
}
return strings.HasPrefix(s, "Bearer ") && subtle.ConstantTimeCompare([]byte(strings.TrimPrefix(s, "Bearer ")), []byte(conf.Secret)) == 1
}
2017-07-04 16:05:53 +02:00
func (h *httpHandler) lock() {
h.sem <- struct{}{}
}
func (h *httpHandler) unlock() {
defer func() { <-h.sem }()
}
2017-06-27 11:00:33 +02:00
func (h httpHandler) ServeHTTP(rw http.ResponseWriter, r *http.Request) {
log.Printf("GET: %s\n", r.URL.RequestURI())
2017-07-04 16:05:53 +02:00
h.lock()
defer h.unlock()
2017-07-03 06:08:47 +02:00
t := time.Now()
2017-07-03 11:36:37 +02:00
if !checkSecret(r.Header.Get("Authorization")) {
repondWithForbidden(rw)
return
}
2017-06-27 11:00:33 +02:00
imgURL, procOpt, err := parsePath(r)
if err != nil {
respondWithError(rw, 404, err, "Invalid image url")
return
}
if _, err = url.ParseRequestURI(imgURL); err != nil {
respondWithError(rw, 404, err, "Invalid image url")
return
}
2017-09-27 10:42:49 +02:00
b, imgtype, err := downloadImage(imgURL)
2017-06-27 11:00:33 +02:00
if err != nil {
2017-07-05 14:28:22 +02:00
respondWithError(rw, 404, err, "Image is unreachable")
2017-06-27 11:00:33 +02:00
return
}
2017-09-27 10:42:49 +02:00
b, err = processImage(b, imgtype, procOpt)
2017-06-27 11:00:33 +02:00
if err != nil {
2017-07-07 10:48:43 +02:00
respondWithError(rw, 500, err, "Error occurred while processing image")
2017-06-27 11:00:33 +02:00
return
}
2017-07-03 06:08:47 +02:00
respondWithImage(r, rw, b, imgURL, procOpt, t)
2017-06-27 11:00:33 +02:00
}