imgproxy/server.go

package main

import (
	"bytes"
	"context"
	"crypto/subtle"
	"fmt"
	"net/http"
	"net/url"
	"path/filepath"
	"regexp"
	"strings"
	"time"

	nanoid "github.com/matoous/go-nanoid"
	"github.com/valyala/fasthttp"
)

const (
	contextDispositionFilenameFallback = "image"
	xRequestIDHeader                   = "X-Request-ID"
)

var (
	mimes = map[imageType]string{
		imageTypeJPEG: "image/jpeg",
		imageTypePNG:  "image/png",
		imageTypeWEBP: "image/webp",
		imageTypeGIF:  "image/gif",
		imageTypeICO:  "image/x-icon",
	}

	contentDispositionsFmt = map[imageType]string{
		imageTypeJPEG: "inline; filename=\"%s.jpg\"",
		imageTypePNG:  "inline; filename=\"%s.png\"",
		imageTypeWEBP: "inline; filename=\"%s.webp\"",
		imageTypeGIF:  "inline; filename=\"%s.gif\"",
		imageTypeICO:  "inline; filename=\"%s.ico\"",
	}

	authHeaderMust []byte

	healthPath = []byte("/health")

	imgproxyIsRunningMsg = []byte("imgproxy is running")

	errInvalidMethod = newError(422, "Invalid request method", "Method doesn't allowed")
	errInvalidSecret = newError(403, "Invalid secret", "Forbidden")

	responseGzipPool *gzipPool

	requestIDRe = regexp.MustCompile(`^[A-Za-z0-9_\-]+$`)
)

type httpHandler struct {
	sem chan struct{}
}

func newHTTPHandler() *httpHandler {
	return &httpHandler{make(chan struct{}, conf.Concurrency)}
}

func startServer() *fasthttp.Server {
	handler := newHTTPHandler()

	server := &fasthttp.Server{
		Name:        "imgproxy",
		Handler:     handler.ServeHTTP,
		Concurrency: conf.MaxClients,
		ReadTimeout: time.Duration(conf.ReadTimeout) * time.Second,
	}

	if conf.GZipCompression > 0 {
		responseGzipPool = newGzipPool(conf.Concurrency)
	}

	if conf.ETagEnabled {
		eTagCalcPool = newEtagPool(conf.Concurrency)
	}

	go func() {
		logNotice("Starting server at %s", conf.Bind)
		if err := server.ListenAndServe(conf.Bind); err != nil {
			logFatal(err.Error())
		}
	}()

	return server
}

func shutdownServer(s *fasthttp.Server) {
	logNotice("Shutting down the server...")
	s.Shutdown()
}

func writeCORS(rctx *fasthttp.RequestCtx) {
	if len(conf.AllowOrigin) > 0 {
		rctx.Response.Header.Set("Access-Control-Allow-Origin", conf.AllowOrigin)
		rctx.Response.Header.Set("Access-Control-Allow-Methods", "GET, OPTIONS")
	}
}

func contentDisposition(imageURL string, imgtype imageType) string {
	url, err := url.Parse(imageURL)
	if err != nil {
		return fmt.Sprintf(contentDispositionsFmt[imgtype], contextDispositionFilenameFallback)
	}

	_, filename := filepath.Split(url.Path)
	if len(filename) == 0 {
		return fmt.Sprintf(contentDispositionsFmt[imgtype], contextDispositionFilenameFallback)
	}

	return fmt.Sprintf(contentDispositionsFmt[imgtype], strings.TrimSuffix(filename, filepath.Ext(filename)))
}

func respondWithImage(ctx context.Context, reqID string, rctx *fasthttp.RequestCtx, data []byte) {
	po := getProcessingOptions(ctx)

	rctx.SetStatusCode(200)

	rctx.Response.Header.Set("Expires", time.Now().Add(time.Second*time.Duration(conf.TTL)).Format(http.TimeFormat))
	rctx.Response.Header.Set("Cache-Control", fmt.Sprintf("max-age=%d, public", conf.TTL))
	rctx.Response.Header.Set("Content-Type", mimes[po.Format])
	rctx.Response.Header.Set("Content-Disposition", contentDisposition(getImageURL(ctx), po.Format))

	addVaryHeader(rctx)

	if conf.GZipCompression > 0 && rctx.Request.Header.HasAcceptEncoding("gzip") {
		gz := responseGzipPool.Get(rctx)
		defer responseGzipPool.Put(gz)

		gz.Write(data)
		gz.Close()

		rctx.Response.Header.Set("Content-Encoding", "gzip")
	} else {
		rctx.SetBody(data)
	}

	logResponse(reqID, 200, fmt.Sprintf("Processed in %s: %s; %+v", getTimerSince(ctx), getImageURL(ctx), po))
}

func addVaryHeader(rctx *fasthttp.RequestCtx) {
	vary := make([]string, 0, 5)

	if conf.EnableWebpDetection || conf.EnforceWebp {
		vary = append(vary, "Accept")
	}

	if conf.GZipCompression > 0 {
		vary = append(vary, "Accept-Encoding")
	}

	if conf.EnableClientHints {
		vary = append(vary, "DPR", "Viewport-Width", "Width")
	}

	if len(vary) > 0 {
		rctx.Response.Header.Set("Vary", strings.Join(vary, ", "))
	}
}

func respondWithError(reqID string, rctx *fasthttp.RequestCtx, err *imgproxyError) {
	logResponse(reqID, err.StatusCode, err.Message)

	rctx.SetStatusCode(err.StatusCode)
	rctx.SetBodyString(err.PublicMessage)
}

func respondWithOptions(reqID string, rctx *fasthttp.RequestCtx) {
	logResponse(reqID, 200, "Respond with options")
	rctx.SetStatusCode(200)
}

func respondWithNotModified(reqID string, rctx *fasthttp.RequestCtx) {
	logResponse(reqID, 304, "Not modified")
	rctx.SetStatusCode(304)
}

func generateRequestID(rctx *fasthttp.RequestCtx) (reqID string) {
	reqIDb := rctx.Request.Header.Peek(xRequestIDHeader)

	if len(reqIDb) > 0 && requestIDRe.Match(reqIDb) {
		reqID = string(reqIDb)
	} else {
		reqID, _ = nanoid.Nanoid()
	}

	rctx.Response.Header.Set(xRequestIDHeader, reqID)

	return
}

func prepareAuthHeaderMust() []byte {
	if len(authHeaderMust) == 0 {
		authHeaderMust = []byte(fmt.Sprintf("Bearer %s", conf.Secret))
	}

	return authHeaderMust
}

func checkSecret(rctx *fasthttp.RequestCtx) bool {
	if len(conf.Secret) == 0 {
		return true
	}

	return subtle.ConstantTimeCompare(
		rctx.Request.Header.Peek("Authorization"),
		prepareAuthHeaderMust(),
	) == 1
}

func requestCtxToRequest(rctx *fasthttp.RequestCtx) *http.Request {
	if r, ok := rctx.UserValue("httpRequest").(*http.Request); ok {
		return r
	}

	reqURL, _ := url.Parse(rctx.Request.URI().String())

	r := &http.Request{
		Method:     http.MethodGet, // Only GET is supported
		URL:        reqURL,
		Proto:      "HTTP/1.0",
		ProtoMajor: 1,
		ProtoMinor: 0,
		Header:     make(http.Header),
		Body:       http.NoBody,
		Host:       reqURL.Host,
		RequestURI: reqURL.RequestURI(),
		RemoteAddr: rctx.RemoteAddr().String(),
	}

	rctx.Request.Header.VisitAll(func(key, value []byte) {
		r.Header.Add(string(key), string(value))
	})

	rctx.SetUserValue("httpRequest", r)

	return r
}

func (h *httpHandler) lock() {
	h.sem <- struct{}{}
}

func (h *httpHandler) unlock() {
	<-h.sem
}

func (h *httpHandler) ServeHTTP(rctx *fasthttp.RequestCtx) {
	reqID := generateRequestID(rctx)

	defer func() {
		if rerr := recover(); rerr != nil {
			if err, ok := rerr.(error); ok {
				reportError(err, requestCtxToRequest(rctx))

				if ierr, ok := err.(*imgproxyError); ok {
					respondWithError(reqID, rctx, ierr)
				} else {
					respondWithError(reqID, rctx, newUnexpectedError(err, 4))
				}
			} else {
				panic(rerr)
			}
		}
	}()

	logRequest(reqID, rctx)

	writeCORS(rctx)

	if rctx.Request.Header.IsOptions() {
		respondWithOptions(reqID, rctx)
		return
	}

	if !rctx.Request.Header.IsGet() {
		panic(errInvalidMethod)
	}

	if bytes.Equal(rctx.RequestURI(), healthPath) {
		rctx.SetStatusCode(200)
		rctx.SetBody(imgproxyIsRunningMsg)
		return
	}

	if !checkSecret(rctx) {
		panic(errInvalidSecret)
	}

	ctx := context.Background()

	if newRelicEnabled {
		var newRelicCancel context.CancelFunc
		ctx, newRelicCancel = startNewRelicTransaction(ctx, requestCtxToRequest(rctx))
		defer newRelicCancel()
	}

	if prometheusEnabled {
		prometheusRequestsTotal.Inc()
		defer startPrometheusDuration(prometheusRequestDuration)()
	}

	h.lock()
	defer h.unlock()

	ctx, timeoutCancel := startTimer(ctx, time.Duration(conf.WriteTimeout)*time.Second)
	defer timeoutCancel()

	ctx, err := parsePath(ctx, rctx)
	if err != nil {
		panic(err)
	}

	ctx, downloadcancel, err := downloadImage(ctx)
	defer downloadcancel()
	if err != nil {
		if newRelicEnabled {
			sendErrorToNewRelic(ctx, err)
		}
		if prometheusEnabled {
			incrementPrometheusErrorsTotal("download")
		}
		panic(err)
	}

	checkTimeout(ctx)

	if conf.ETagEnabled {
		eTag, etagcancel := calcETag(ctx)
		defer etagcancel()

		rctx.Response.Header.SetBytesV("ETag", eTag)

		if bytes.Equal(eTag, rctx.Request.Header.Peek("If-None-Match")) {
			respondWithNotModified(reqID, rctx)
			return
		}
	}

	checkTimeout(ctx)

	imageData, processcancel, err := processImage(ctx)
	defer processcancel()
	if err != nil {
		if newRelicEnabled {
			sendErrorToNewRelic(ctx, err)
		}
		if prometheusEnabled {
			incrementPrometheusErrorsTotal("processing")
		}
		panic(err)
	}

	checkTimeout(ctx)

	respondWithImage(ctx, reqID, rctx, imageData)
}
Move server funcs to separate file 2017-06-27 11:00:33 +02:00			`package main`

			`import (`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`"bytes"`
Drop Go <1.8 support 2018-09-10 08:17:00 +02:00			`"context"`
Prevent direct requests with X-Imgproxy-Secret header 2017-07-01 23:25:08 +02:00			`"crypto/subtle"`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00			`"fmt"`
			`"net/http"`
Proper filename in Content-Disposition 2019-01-10 07:49:17 +02:00			`"net/url"`
			`"path/filepath"`
Send and receive X-Reqiest-ID header 2019-05-06 10:42:30 +02:00			`"regexp"`
Back to net/http because of fasthttps incompatibiliti with almost everything 2018-10-25 13:31:31 +02:00			`"strings"`
Log processing time 2017-07-03 06:08:47 +02:00			`"time"`
Add request ID 2018-03-15 18:58:11 +02:00
			`nanoid "github.com/matoous/go-nanoid"`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`"github.com/valyala/fasthttp"`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00			`)`

Proper filename in Content-Disposition 2019-01-10 07:49:17 +02:00			`const (`
			`contextDispositionFilenameFallback = "image"`
Send and receive X-Reqiest-ID header 2019-05-06 10:42:30 +02:00			`xRequestIDHeader = "X-Request-ID"`
Proper filename in Content-Disposition 2019-01-10 07:49:17 +02:00			`)`
Back to net/http because of fasthttps incompatibiliti with almost everything 2018-10-25 13:31:31 +02:00
fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`var (`
			`mimes = map[imageType]string{`
			`imageTypeJPEG: "image/jpeg",`
			`imageTypePNG: "image/png",`
			`imageTypeWEBP: "image/webp",`
GIF output support 2018-11-08 12:34:21 +02:00			`imageTypeGIF: "image/gif",`
ICO support 2018-12-02 15:02:19 +02:00			`imageTypeICO: "image/x-icon",`
fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`}`
Content type based on processiong options 2017-07-05 23:09:41 +02:00
Proper filename in Content-Disposition 2019-01-10 07:49:17 +02:00			`contentDispositionsFmt = map[imageType]string{`
			`imageTypeJPEG: "inline; filename=\"%s.jpg\"",`
			`imageTypePNG: "inline; filename=\"%s.png\"",`
			`imageTypeWEBP: "inline; filename=\"%s.webp\"",`
			`imageTypeGIF: "inline; filename=\"%s.gif\"",`
			`imageTypeICO: "inline; filename=\"%s.ico\"",`
Add Content-Disposition header 2018-11-01 16:34:28 +02:00			`}`

fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`authHeaderMust []byte`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`healthPath = []byte("/health")`

Back to net/http because of fasthttps incompatibiliti with almost everything 2018-10-25 13:31:31 +02:00			`imgproxyIsRunningMsg = []byte("imgproxy is running")`
Predefine static errors 2018-10-05 22:29:55 +02:00
			`errInvalidMethod = newError(422, "Invalid request method", "Method doesn't allowed")`
			`errInvalidSecret = newError(403, "Invalid secret", "Forbidden")`
fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`responseGzipPool *gzipPool`
Send and receive X-Reqiest-ID header 2019-05-06 10:42:30 +02:00
			requestIDRe = regexp.MustCompile(`^[A-Za-z0-9_\-]+$`)
Optimized memory usage; Reducing memory fragmentation 2019-01-17 10:51:19 +02:00			`)`
Back to net/http because of fasthttps incompatibiliti with almost everything 2018-10-25 13:31:31 +02:00
			`type httpHandler struct {`
			`sem chan struct{}`
			`}`
Drop Go <1.8 support 2018-09-10 08:17:00 +02:00
Back to net/http because of fasthttps incompatibiliti with almost everything 2018-10-25 13:31:31 +02:00			`func newHTTPHandler() *httpHandler {`
			`return &httpHandler{make(chan struct{}, conf.Concurrency)}`
			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`func startServer() *fasthttp.Server {`
			`handler := newHTTPHandler()`

			`server := &fasthttp.Server{`
			`Name: "imgproxy",`
			`Handler: handler.ServeHTTP,`
			`Concurrency: conf.MaxClients,`
			`ReadTimeout: time.Duration(conf.ReadTimeout) * time.Second,`
Drop Go <1.8 support 2018-09-10 08:17:00 +02:00			`}`

Optimized memory usage; Reducing memory fragmentation 2019-01-17 10:51:19 +02:00			`if conf.GZipCompression > 0 {`
			`responseGzipPool = newGzipPool(conf.Concurrency)`
			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`if conf.ETagEnabled {`
			`eTagCalcPool = newEtagPool(conf.Concurrency)`
			`}`

Drop Go <1.8 support 2018-09-10 08:17:00 +02:00			`go func() {`
Refactored logging; Syslog support 2019-01-11 17:01:48 +02:00			`logNotice("Starting server at %s", conf.Bind)`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`if err := server.ListenAndServe(conf.Bind); err != nil {`
Refactored logging; Syslog support 2019-01-11 17:01:48 +02:00			`logFatal(err.Error())`
fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`}`
Drop Go <1.8 support 2018-09-10 08:17:00 +02:00			`}()`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`return server`
Drop Go <1.8 support 2018-09-10 08:17:00 +02:00			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`func shutdownServer(s *fasthttp.Server) {`
Refactored logging; Syslog support 2019-01-11 17:01:48 +02:00			`logNotice("Shutting down the server...")`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`s.Shutdown()`
Drop Go <1.8 support 2018-09-10 08:17:00 +02:00			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`func writeCORS(rctx *fasthttp.RequestCtx) {`
Add CORS headers 2018-04-26 13:22:31 +02:00			`if len(conf.AllowOrigin) > 0 {`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`rctx.Response.Header.Set("Access-Control-Allow-Origin", conf.AllowOrigin)`
Typo 2019-05-06 12:57:44 +02:00			`rctx.Response.Header.Set("Access-Control-Allow-Methods", "GET, OPTIONS")`
Add CORS headers 2018-04-26 13:22:31 +02:00			`}`
			`}`

Proper filename in Content-Disposition 2019-01-10 07:49:17 +02:00			`func contentDisposition(imageURL string, imgtype imageType) string {`
			`url, err := url.Parse(imageURL)`
			`if err != nil {`
			`return fmt.Sprintf(contentDispositionsFmt[imgtype], contextDispositionFilenameFallback)`
			`}`

			`_, filename := filepath.Split(url.Path)`
			`if len(filename) == 0 {`
			`return fmt.Sprintf(contentDispositionsFmt[imgtype], contextDispositionFilenameFallback)`
			`}`

			`return fmt.Sprintf(contentDispositionsFmt[imgtype], strings.TrimSuffix(filename, filepath.Ext(filename)))`
			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`func respondWithImage(ctx context.Context, reqID string, rctx *fasthttp.RequestCtx, data []byte) {`
return ETag support 2018-10-05 18:20:29 +02:00			`po := getProcessingOptions(ctx)`
Add Content-Length header 2018-04-26 14:17:08 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`rctx.SetStatusCode(200)`
Add Content-Length header 2018-04-26 14:17:08 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`rctx.Response.Header.Set("Expires", time.Now().Add(time.Second*time.Duration(conf.TTL)).Format(http.TimeFormat))`
			`rctx.Response.Header.Set("Cache-Control", fmt.Sprintf("max-age=%d, public", conf.TTL))`
			`rctx.Response.Header.Set("Content-Type", mimes[po.Format])`
			`rctx.Response.Header.Set("Content-Disposition", contentDisposition(getImageURL(ctx), po.Format))`
Add Vary response header (#119) 2019-01-17 15:00:33 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`addVaryHeader(rctx)`
Back to net/http because of fasthttps incompatibiliti with almost everything 2018-10-25 13:31:31 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`if conf.GZipCompression > 0 && rctx.Request.Header.HasAcceptEncoding("gzip") {`
			`gz := responseGzipPool.Get(rctx)`
Better buffers calibration 2019-01-30 12:31:00 +02:00			`defer responseGzipPool.Put(gz)`
Some optimizations 2019-01-09 14:41:00 +02:00
Optimized memory usage; Reducing memory fragmentation 2019-01-17 10:51:19 +02:00			`gz.Write(data)`
			`gz.Close()`
Log processing time 2017-07-03 06:08:47 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`rctx.Response.Header.Set("Content-Encoding", "gzip")`
Some optimizations 2019-01-09 14:41:00 +02:00			`} else {`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`rctx.SetBody(data)`
Some optimizations 2019-01-09 14:41:00 +02:00			`}`
Back to net/http because of fasthttps incompatibiliti with almost everything 2018-10-25 13:31:31 +02:00
Refactored logging; Syslog support 2019-01-11 17:01:48 +02:00			`logResponse(reqID, 200, fmt.Sprintf("Processed in %s: %s; %+v", getTimerSince(ctx), getImageURL(ctx), po))`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`func addVaryHeader(rctx *fasthttp.RequestCtx) {`
			`vary := make([]string, 0, 5)`
Add Vary response header (#119) 2019-01-17 15:00:33 +02:00
			`if conf.EnableWebpDetection \|\| conf.EnforceWebp {`
			`vary = append(vary, "Accept")`
			`}`

			`if conf.GZipCompression > 0 {`
			`vary = append(vary, "Accept-Encoding")`
			`}`

			`if conf.EnableClientHints {`
			`vary = append(vary, "DPR", "Viewport-Width", "Width")`
			`}`

			`if len(vary) > 0 {`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`rctx.Response.Header.Set("Vary", strings.Join(vary, ", "))`
Add Vary response header (#119) 2019-01-17 15:00:33 +02:00			`}`
			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`func respondWithError(reqID string, rctx fasthttp.RequestCtx, err imgproxyError) {`
Refactored logging; Syslog support 2019-01-11 17:01:48 +02:00			`logResponse(reqID, err.StatusCode, err.Message)`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`rctx.SetStatusCode(err.StatusCode)`
			`rctx.SetBodyString(err.PublicMessage)`
Prevent direct requests with X-Imgproxy-Secret header 2017-07-01 23:25:08 +02:00			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`func respondWithOptions(reqID string, rctx *fasthttp.RequestCtx) {`
Refactored logging; Syslog support 2019-01-11 17:01:48 +02:00			`logResponse(reqID, 200, "Respond with options")`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`rctx.SetStatusCode(200)`
Add CORS headers 2018-04-26 13:22:31 +02:00			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`func respondWithNotModified(reqID string, rctx *fasthttp.RequestCtx) {`
			`logResponse(reqID, 304, "Not modified")`
			`rctx.SetStatusCode(304)`
Better expected errors handling 2018-11-20 14:53:44 +02:00			`}`

Send and receive X-Reqiest-ID header 2019-05-06 10:42:30 +02:00			`func generateRequestID(rctx *fasthttp.RequestCtx) (reqID string) {`
			`reqIDb := rctx.Request.Header.Peek(xRequestIDHeader)`

			`if len(reqIDb) > 0 && requestIDRe.Match(reqIDb) {`
			`reqID = string(reqIDb)`
			`} else {`
			`reqID, _ = nanoid.Nanoid()`
			`}`

			`rctx.Response.Header.Set(xRequestIDHeader, reqID)`

			`return`
			`}`

fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`func prepareAuthHeaderMust() []byte {`
			`if len(authHeaderMust) == 0 {`
Fix secret checking 2018-10-05 18:10:17 +02:00			`authHeaderMust = []byte(fmt.Sprintf("Bearer %s", conf.Secret))`
Use Authorization header for secret 2017-07-03 11:36:37 +02:00			`}`
Prevent direct requests with X-Imgproxy-Secret header 2017-07-01 23:25:08 +02:00
fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`return authHeaderMust`
Add concurrency 2017-07-04 16:05:53 +02:00			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`func checkSecret(rctx *fasthttp.RequestCtx) bool {`
fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`if len(conf.Secret) == 0 {`
			`return true`
			`}`

			`return subtle.ConstantTimeCompare(`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`rctx.Request.Header.Peek("Authorization"),`
fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`prepareAuthHeaderMust(),`
			`) == 1`
Add concurrency 2017-07-04 16:05:53 +02:00			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`func requestCtxToRequest(rctx fasthttp.RequestCtx) http.Request {`
			`if r, ok := rctx.UserValue("httpRequest").(*http.Request); ok {`
			`return r`
			`}`

			`reqURL, _ := url.Parse(rctx.Request.URI().String())`

			`r := &http.Request{`
			`Method: http.MethodGet, // Only GET is supported`
			`URL: reqURL,`
			`Proto: "HTTP/1.0",`
			`ProtoMajor: 1,`
			`ProtoMinor: 0,`
			`Header: make(http.Header),`
			`Body: http.NoBody,`
			`Host: reqURL.Host,`
			`RequestURI: reqURL.RequestURI(),`
			`RemoteAddr: rctx.RemoteAddr().String(),`
			`}`

			`rctx.Request.Header.VisitAll(func(key, value []byte) {`
			`r.Header.Add(string(key), string(value))`
			`})`

			`rctx.SetUserValue("httpRequest", r)`

			`return r`
			`}`

Back to net/http because of fasthttps incompatibiliti with almost everything 2018-10-25 13:31:31 +02:00			`func (h *httpHandler) lock() {`
			`h.sem <- struct{}{}`
			`}`

			`func (h *httpHandler) unlock() {`
			`<-h.sem`
			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`func (h httpHandler) ServeHTTP(rctx fasthttp.RequestCtx) {`
Send and receive X-Reqiest-ID header 2019-05-06 10:42:30 +02:00			`reqID := generateRequestID(rctx)`
Add request ID 2018-03-15 18:58:11 +02:00
Fair timeout; Better errors handling 2017-10-04 21:44:58 +02:00			`defer func() {`
Errors reporting 2018-11-14 15:41:16 +02:00			`if rerr := recover(); rerr != nil {`
			`if err, ok := rerr.(error); ok {`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`reportError(err, requestCtxToRequest(rctx))`
Errors reporting 2018-11-14 15:41:16 +02:00
Better expected errors handling 2018-11-20 14:53:44 +02:00			`if ierr, ok := err.(*imgproxyError); ok {`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`respondWithError(reqID, rctx, ierr)`
Errors reporting 2018-11-14 15:41:16 +02:00			`} else {`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`respondWithError(reqID, rctx, newUnexpectedError(err, 4))`
Errors reporting 2018-11-14 15:41:16 +02:00			`}`
Fair timeout; Better errors handling 2017-10-04 21:44:58 +02:00			`} else {`
Errors reporting 2018-11-14 15:41:16 +02:00			`panic(rerr)`
Fair timeout; Better errors handling 2017-10-04 21:44:58 +02:00			`}`
			`}`
			`}()`
Add concurrency 2017-07-04 16:05:53 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`logRequest(reqID, rctx)`
Add CORS headers 2018-04-26 13:22:31 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`writeCORS(rctx)`
Add CORS headers 2018-04-26 13:22:31 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`if rctx.Request.Header.IsOptions() {`
			`respondWithOptions(reqID, rctx)`
Add CORS headers 2018-04-26 13:22:31 +02:00			`return`
			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`if !rctx.Request.Header.IsGet() {`
Predefine static errors 2018-10-05 22:29:55 +02:00			`panic(errInvalidMethod)`
Add CORS headers 2018-04-26 13:22:31 +02:00			`}`

Lint with golangci-lint; Fix linter issues; Add Go 1.12 to CircleCI 2019-04-11 16:07:09 +02:00			`if bytes.Equal(rctx.RequestURI(), healthPath) {`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`rctx.SetStatusCode(200)`
			`rctx.SetBody(imgproxyIsRunningMsg)`
Move health response before semaphore 2018-11-16 12:07:30 +02:00			`return`
			`}`

Back to fasthttp 2019-02-25 14:26:51 +02:00			`if !checkSecret(rctx) {`
move healthcheck before the secret checking (#130) since health checks on AWS target groups do not support sending headers, it's impossible to use the health check when a secret is configured. 2019-01-17 15:01:15 +02:00			`panic(errInvalidSecret)`
			`}`

New Relic support 2018-10-25 15:24:34 +02:00			`ctx := context.Background()`

			`if newRelicEnabled {`
			`var newRelicCancel context.CancelFunc`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`ctx, newRelicCancel = startNewRelicTransaction(ctx, requestCtxToRequest(rctx))`
New Relic support 2018-10-25 15:24:34 +02:00			`defer newRelicCancel()`
			`}`

Prometheus metrics 2018-10-29 14:04:47 +02:00			`if prometheusEnabled {`
			`prometheusRequestsTotal.Inc()`
			`defer startPrometheusDuration(prometheusRequestDuration)()`
			`}`

Back to net/http because of fasthttps incompatibiliti with almost everything 2018-10-25 13:31:31 +02:00			`h.lock()`
			`defer h.unlock()`
Log processing time 2017-07-03 06:08:47 +02:00
New Relic support 2018-10-25 15:24:34 +02:00			`ctx, timeoutCancel := startTimer(ctx, time.Duration(conf.WriteTimeout)*time.Second)`
fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`defer timeoutCancel()`
Remove wait timeout 2018-03-19 10:58:52 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`ctx, err := parsePath(ctx, rctx)`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00			`if err != nil {`
Better expected errors handling 2018-11-20 14:53:44 +02:00			`panic(err)`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00			`}`

fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`ctx, downloadcancel, err := downloadImage(ctx)`
			`defer downloadcancel()`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00			`if err != nil {`
New Relic support 2018-10-25 15:24:34 +02:00			`if newRelicEnabled {`
			`sendErrorToNewRelic(ctx, err)`
			`}`
Prometheus metrics 2018-10-29 14:04:47 +02:00			`if prometheusEnabled {`
			`incrementPrometheusErrorsTotal("download")`
			`}`
Better expected errors handling 2018-11-20 14:53:44 +02:00			`panic(err)`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00			`}`

fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`checkTimeout(ctx)`
Fair timeout; Better errors handling 2017-10-04 21:44:58 +02:00
return ETag support 2018-10-05 18:20:29 +02:00			`if conf.ETagEnabled {`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`eTag, etagcancel := calcETag(ctx)`
			`defer etagcancel()`

			`rctx.Response.Header.SetBytesV("ETag", eTag)`
Refactor ETag support 2018-02-26 11:41:37 +02:00
Lint with golangci-lint; Fix linter issues; Add Go 1.12 to CircleCI 2019-04-11 16:07:09 +02:00			`if bytes.Equal(eTag, rctx.Request.Header.Peek("If-None-Match")) {`
Back to fasthttp 2019-02-25 14:26:51 +02:00			`respondWithNotModified(reqID, rctx)`
Better expected errors handling 2018-11-20 14:53:44 +02:00			`return`
return ETag support 2018-10-05 18:20:29 +02:00			`}`
			`}`
Add support of ETag caching (#47) * Add ETag caching support * Update the readme file * Typo * Calculate ETag before image processing, rename Env Var * Make PO struct field public * Generate random value on server startup to be used in ETag calculation * Minor refactoring * Adjust boolean value parsing as discussed in GitHub PR page * Move random value generation to the config * Update README * Revert changes * Use footprint to calculate the hash of an image 2018-02-26 10:45:52 +02:00
fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`checkTimeout(ctx)`
Refactor ETag support 2018-02-26 11:41:37 +02:00
Optimized memory usage; Reducing memory fragmentation 2019-01-17 10:51:19 +02:00			`imageData, processcancel, err := processImage(ctx)`
			`defer processcancel()`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00			`if err != nil {`
New Relic support 2018-10-25 15:24:34 +02:00			`if newRelicEnabled {`
			`sendErrorToNewRelic(ctx, err)`
			`}`
Prometheus metrics 2018-10-29 14:04:47 +02:00			`if prometheusEnabled {`
			`incrementPrometheusErrorsTotal("processing")`
			`}`
Better expected errors handling 2018-11-20 14:53:44 +02:00			`panic(err)`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00			`}`

fasthttp; Optimized memory allocation 2018-10-05 17:17:36 +02:00			`checkTimeout(ctx)`
Fair timeout; Better errors handling 2017-10-04 21:44:58 +02:00
Back to fasthttp 2019-02-25 14:26:51 +02:00			`respondWithImage(ctx, reqID, rctx, imageData)`
Move server funcs to separate file 2017-06-27 11:00:33 +02:00			`}`