2022-07-29 13:23:08 +02:00
|
|
|
package server
|
|
|
|
|
|
|
|
import (
|
|
|
|
"compress/gzip"
|
|
|
|
"embed"
|
|
|
|
"io"
|
|
|
|
"io/fs"
|
|
|
|
"net/http"
|
|
|
|
"os"
|
|
|
|
"strings"
|
|
|
|
|
|
|
|
"github.com/axllent/mailpit/config"
|
2022-10-07 08:46:39 +02:00
|
|
|
"github.com/axllent/mailpit/server/apiv1"
|
2022-07-29 13:23:08 +02:00
|
|
|
"github.com/axllent/mailpit/server/websockets"
|
2022-10-28 23:52:22 +02:00
|
|
|
"github.com/axllent/mailpit/utils/logger"
|
2022-07-29 13:23:08 +02:00
|
|
|
"github.com/gorilla/mux"
|
|
|
|
)
|
|
|
|
|
|
|
|
//go:embed ui
|
|
|
|
var embeddedFS embed.FS
|
|
|
|
|
|
|
|
// Listen will start the httpd
|
|
|
|
func Listen() {
|
|
|
|
serverRoot, err := fs.Sub(embeddedFS, "ui")
|
|
|
|
if err != nil {
|
|
|
|
logger.Log().Errorf("[http] %s", err)
|
|
|
|
os.Exit(1)
|
|
|
|
}
|
|
|
|
|
|
|
|
websockets.MessageHub = websockets.NewHub()
|
|
|
|
|
|
|
|
go websockets.MessageHub.Run()
|
|
|
|
|
2022-10-07 08:46:39 +02:00
|
|
|
r := defaultRoutes()
|
|
|
|
|
|
|
|
// web UI websocket
|
2022-10-31 11:13:41 +02:00
|
|
|
r.HandleFunc(config.Webroot+"api/events", apiWebsocket).Methods("GET")
|
2022-10-07 08:46:39 +02:00
|
|
|
|
|
|
|
// virtual filesystem for others
|
2022-10-31 11:13:41 +02:00
|
|
|
r.PathPrefix(config.Webroot).Handler(middlewareHandler(http.StripPrefix(config.Webroot, http.FileServer(http.FS(serverRoot)))))
|
|
|
|
|
|
|
|
// redirect to webroot if no trailing slash
|
|
|
|
if config.Webroot != "/" {
|
|
|
|
redir := strings.TrimRight(config.Webroot, "/")
|
|
|
|
r.HandleFunc(redir, middleWareFunc(addSlashToWebroot)).Methods("GET")
|
|
|
|
}
|
|
|
|
|
2022-07-29 13:23:08 +02:00
|
|
|
http.Handle("/", r)
|
|
|
|
|
2022-08-06 10:00:05 +02:00
|
|
|
if config.UIAuthFile != "" {
|
|
|
|
logger.Log().Info("[http] enabling web UI basic authentication")
|
|
|
|
}
|
|
|
|
|
|
|
|
if config.UISSLCert != "" && config.UISSLKey != "" {
|
2022-10-31 11:13:41 +02:00
|
|
|
logger.Log().Infof("[http] starting secure server on https://%s%s", config.HTTPListen, config.Webroot)
|
2022-10-12 15:53:53 +02:00
|
|
|
logger.Log().Fatal(http.ListenAndServeTLS(config.HTTPListen, config.UISSLCert, config.UISSLKey, nil))
|
2022-07-29 13:23:08 +02:00
|
|
|
} else {
|
2022-10-31 11:13:41 +02:00
|
|
|
logger.Log().Infof("[http] starting server on http://%s%s", config.HTTPListen, config.Webroot)
|
2022-10-12 15:53:53 +02:00
|
|
|
logger.Log().Fatal(http.ListenAndServe(config.HTTPListen, nil))
|
2022-07-29 13:23:08 +02:00
|
|
|
}
|
2022-08-04 07:18:07 +02:00
|
|
|
}
|
2022-07-29 13:23:08 +02:00
|
|
|
|
2022-10-07 08:46:39 +02:00
|
|
|
func defaultRoutes() *mux.Router {
|
|
|
|
r := mux.NewRouter()
|
|
|
|
|
|
|
|
// API V1
|
2022-10-31 11:13:41 +02:00
|
|
|
r.HandleFunc(config.Webroot+"api/v1/messages", middleWareFunc(apiv1.GetMessages)).Methods("GET")
|
|
|
|
r.HandleFunc(config.Webroot+"api/v1/messages", middleWareFunc(apiv1.SetReadStatus)).Methods("PUT")
|
|
|
|
r.HandleFunc(config.Webroot+"api/v1/messages", middleWareFunc(apiv1.DeleteMessages)).Methods("DELETE")
|
|
|
|
r.HandleFunc(config.Webroot+"api/v1/search", middleWareFunc(apiv1.Search)).Methods("GET")
|
|
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/part/{partID}", middleWareFunc(apiv1.DownloadAttachment)).Methods("GET")
|
|
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/part/{partID}/thumb", middleWareFunc(apiv1.Thumbnail)).Methods("GET")
|
|
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/raw", middleWareFunc(apiv1.DownloadRaw)).Methods("GET")
|
|
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/headers", middleWareFunc(apiv1.Headers)).Methods("GET")
|
|
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}", middleWareFunc(apiv1.GetMessage)).Methods("GET")
|
|
|
|
r.HandleFunc(config.Webroot+"api/v1/info", middleWareFunc(apiv1.AppInfo)).Methods("GET")
|
2022-10-07 08:46:39 +02:00
|
|
|
|
|
|
|
return r
|
|
|
|
}
|
|
|
|
|
2022-08-04 07:18:07 +02:00
|
|
|
// BasicAuthResponse returns an basic auth response to the browser
|
|
|
|
func basicAuthResponse(w http.ResponseWriter) {
|
|
|
|
w.Header().Set("WWW-Authenticate", `Basic realm="Login"`)
|
|
|
|
w.WriteHeader(http.StatusUnauthorized)
|
2022-08-06 14:09:32 +02:00
|
|
|
_, _ = w.Write([]byte("Unauthorised.\n"))
|
2022-07-29 13:23:08 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
type gzipResponseWriter struct {
|
|
|
|
io.Writer
|
|
|
|
http.ResponseWriter
|
|
|
|
}
|
|
|
|
|
|
|
|
func (w gzipResponseWriter) Write(b []byte) (int, error) {
|
|
|
|
return w.Writer.Write(b)
|
|
|
|
}
|
|
|
|
|
2022-08-04 07:18:07 +02:00
|
|
|
// MiddleWareFunc http middleware adds optional basic authentication
|
|
|
|
// and gzip compression.
|
|
|
|
func middleWareFunc(fn http.HandlerFunc) http.HandlerFunc {
|
2022-07-29 13:23:08 +02:00
|
|
|
return func(w http.ResponseWriter, r *http.Request) {
|
2022-09-15 11:23:27 +02:00
|
|
|
w.Header().Set("Referrer-Policy", "no-referrer")
|
2022-10-07 08:46:39 +02:00
|
|
|
w.Header().Set("Content-Security-Policy", config.ContentSecurityPolicy)
|
2022-09-15 11:23:27 +02:00
|
|
|
|
2022-08-06 10:00:05 +02:00
|
|
|
if config.UIAuthFile != "" {
|
2022-08-04 07:18:07 +02:00
|
|
|
user, pass, ok := r.BasicAuth()
|
|
|
|
|
|
|
|
if !ok {
|
|
|
|
basicAuthResponse(w)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2022-08-06 10:00:05 +02:00
|
|
|
if !config.UIAuth.Match(user, pass) {
|
2022-08-04 07:18:07 +02:00
|
|
|
basicAuthResponse(w)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2022-07-29 13:23:08 +02:00
|
|
|
if !strings.Contains(r.Header.Get("Accept-Encoding"), "gzip") {
|
|
|
|
fn(w, r)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
w.Header().Set("Content-Encoding", "gzip")
|
|
|
|
gz := gzip.NewWriter(w)
|
|
|
|
defer gz.Close()
|
|
|
|
gzr := gzipResponseWriter{Writer: gz, ResponseWriter: w}
|
|
|
|
fn(gzr, r)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2022-08-04 07:18:07 +02:00
|
|
|
// MiddlewareHandler http middleware adds optional basic authentication
|
|
|
|
// and gzip compression
|
|
|
|
func middlewareHandler(h http.Handler) http.Handler {
|
2022-07-29 13:23:08 +02:00
|
|
|
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
2022-09-15 11:23:27 +02:00
|
|
|
w.Header().Set("Referrer-Policy", "no-referrer")
|
2022-10-07 08:46:39 +02:00
|
|
|
w.Header().Set("Content-Security-Policy", config.ContentSecurityPolicy)
|
2022-08-04 07:18:07 +02:00
|
|
|
|
2022-08-06 10:00:05 +02:00
|
|
|
if config.UIAuthFile != "" {
|
2022-08-04 07:18:07 +02:00
|
|
|
user, pass, ok := r.BasicAuth()
|
|
|
|
|
|
|
|
if !ok {
|
|
|
|
basicAuthResponse(w)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2022-08-06 10:00:05 +02:00
|
|
|
if !config.UIAuth.Match(user, pass) {
|
2022-08-04 07:18:07 +02:00
|
|
|
basicAuthResponse(w)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2022-07-29 13:23:08 +02:00
|
|
|
if !strings.Contains(r.Header.Get("Accept-Encoding"), "gzip") {
|
|
|
|
h.ServeHTTP(w, r)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
w.Header().Set("Content-Encoding", "gzip")
|
|
|
|
gz := gzip.NewWriter(w)
|
|
|
|
defer gz.Close()
|
|
|
|
h.ServeHTTP(gzipResponseWriter{Writer: gz, ResponseWriter: w}, r)
|
|
|
|
})
|
|
|
|
}
|
|
|
|
|
2022-10-31 11:13:41 +02:00
|
|
|
// Redirect to webroot
|
|
|
|
func addSlashToWebroot(w http.ResponseWriter, r *http.Request) {
|
|
|
|
http.Redirect(w, r, config.Webroot, http.StatusFound)
|
|
|
|
}
|
|
|
|
|
2022-10-07 08:46:39 +02:00
|
|
|
// Websocket to broadcast changes
|
|
|
|
func apiWebsocket(w http.ResponseWriter, r *http.Request) {
|
|
|
|
websockets.ServeWs(websockets.MessageHub, w, r)
|
2022-07-29 13:23:08 +02:00
|
|
|
}
|