mirror of
https://github.com/axllent/mailpit.git
synced 2025-01-22 03:39:59 +02:00
324 lines
11 KiB
Go
324 lines
11 KiB
Go
// Package server is the HTTP daemon
|
|
package server
|
|
|
|
import (
|
|
"bytes"
|
|
"compress/gzip"
|
|
"embed"
|
|
"fmt"
|
|
"io"
|
|
"io/fs"
|
|
"net/http"
|
|
"os"
|
|
"strings"
|
|
"sync/atomic"
|
|
"text/template"
|
|
"time"
|
|
|
|
"github.com/axllent/mailpit/config"
|
|
"github.com/axllent/mailpit/internal/auth"
|
|
"github.com/axllent/mailpit/internal/logger"
|
|
"github.com/axllent/mailpit/internal/stats"
|
|
"github.com/axllent/mailpit/internal/storage"
|
|
"github.com/axllent/mailpit/server/apiv1"
|
|
"github.com/axllent/mailpit/server/handlers"
|
|
"github.com/axllent/mailpit/server/pop3"
|
|
"github.com/axllent/mailpit/server/websockets"
|
|
"github.com/gorilla/mux"
|
|
)
|
|
|
|
//go:embed ui
|
|
var embeddedFS embed.FS
|
|
|
|
// AccessControlAllowOrigin CORS policy
|
|
var AccessControlAllowOrigin string
|
|
|
|
// Listen will start the httpd
|
|
func Listen() {
|
|
isReady := &atomic.Value{}
|
|
isReady.Store(false)
|
|
stats.Track()
|
|
|
|
serverRoot, err := fs.Sub(embeddedFS, "ui")
|
|
if err != nil {
|
|
logger.Log().Errorf("[http] %s", err.Error())
|
|
os.Exit(1)
|
|
}
|
|
|
|
websockets.MessageHub = websockets.NewHub()
|
|
|
|
go websockets.MessageHub.Run()
|
|
|
|
go pop3.Run()
|
|
|
|
r := apiRoutes()
|
|
|
|
// kubernetes probes
|
|
r.HandleFunc(config.Webroot+"livez", handlers.HealthzHandler)
|
|
r.HandleFunc(config.Webroot+"readyz", handlers.ReadyzHandler(isReady))
|
|
|
|
// proxy handler for screenshots
|
|
r.HandleFunc(config.Webroot+"proxy", middleWareFunc(handlers.ProxyHandler)).Methods("GET")
|
|
|
|
// virtual filesystem for /dist/ & some individual files
|
|
r.PathPrefix(config.Webroot + "dist/").Handler(middlewareHandler(http.StripPrefix(config.Webroot, http.FileServer(http.FS(serverRoot)))))
|
|
r.PathPrefix(config.Webroot + "api/").Handler(middlewareHandler(http.StripPrefix(config.Webroot, http.FileServer(http.FS(serverRoot)))))
|
|
r.Path(config.Webroot + "favicon.ico").Handler(middlewareHandler(http.StripPrefix(config.Webroot, http.FileServer(http.FS(serverRoot)))))
|
|
r.Path(config.Webroot + "favicon.svg").Handler(middlewareHandler(http.StripPrefix(config.Webroot, http.FileServer(http.FS(serverRoot)))))
|
|
r.Path(config.Webroot + "mailpit.svg").Handler(middlewareHandler(http.StripPrefix(config.Webroot, http.FileServer(http.FS(serverRoot)))))
|
|
r.Path(config.Webroot + "notification.png").Handler(middlewareHandler(http.StripPrefix(config.Webroot, http.FileServer(http.FS(serverRoot)))))
|
|
|
|
// redirect to webroot if no trailing slash
|
|
if config.Webroot != "/" {
|
|
redirect := strings.TrimRight(config.Webroot, "/")
|
|
r.HandleFunc(redirect, middleWareFunc(addSlashToWebroot)).Methods("GET")
|
|
}
|
|
|
|
// UI shortcut
|
|
r.HandleFunc(config.Webroot+"view/latest", handlers.RedirectToLatestMessage).Methods("GET")
|
|
|
|
// frontend testing
|
|
r.HandleFunc(config.Webroot+"view/{id}.html", handlers.GetMessageHTML).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"view/{id}.txt", handlers.GetMessageText).Methods("GET")
|
|
|
|
// web UI via virtual index.html
|
|
r.PathPrefix(config.Webroot + "view/").Handler(middleWareFunc(index)).Methods("GET")
|
|
r.Path(config.Webroot + "search").Handler(middleWareFunc(index)).Methods("GET")
|
|
r.Path(config.Webroot).Handler(middleWareFunc(index)).Methods("GET")
|
|
|
|
// put it all together
|
|
http.Handle("/", r)
|
|
|
|
if auth.UICredentials != nil {
|
|
logger.Log().Info("[http] enabling basic authentication")
|
|
}
|
|
|
|
// Mark the application here as ready
|
|
isReady.Store(true)
|
|
|
|
logger.Log().Infof("[http] starting on %s", config.HTTPListen)
|
|
|
|
server := &http.Server{
|
|
Addr: config.HTTPListen,
|
|
ReadTimeout: 30 * time.Second,
|
|
WriteTimeout: 30 * time.Second,
|
|
}
|
|
|
|
if config.UITLSCert != "" && config.UITLSKey != "" {
|
|
logger.Log().Infof("[http] accessible via https://%s%s", logger.CleanHTTPIP(config.HTTPListen), config.Webroot)
|
|
logger.Log().Fatal(server.ListenAndServeTLS(config.UITLSCert, config.UITLSKey))
|
|
} else {
|
|
logger.Log().Infof("[http] accessible via http://%s%s", logger.CleanHTTPIP(config.HTTPListen), config.Webroot)
|
|
logger.Log().Fatal(server.ListenAndServe())
|
|
}
|
|
}
|
|
|
|
func apiRoutes() *mux.Router {
|
|
r := mux.NewRouter()
|
|
|
|
// API V1
|
|
r.HandleFunc(config.Webroot+"api/v1/messages", middleWareFunc(apiv1.GetMessages)).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"api/v1/messages", middleWareFunc(apiv1.SetReadStatus)).Methods("PUT")
|
|
r.HandleFunc(config.Webroot+"api/v1/messages", middleWareFunc(apiv1.DeleteMessages)).Methods("DELETE")
|
|
r.HandleFunc(config.Webroot+"api/v1/tags", middleWareFunc(apiv1.GetAllTags)).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"api/v1/tags", middleWareFunc(apiv1.SetMessageTags)).Methods("PUT")
|
|
r.HandleFunc(config.Webroot+"api/v1/search", middleWareFunc(apiv1.Search)).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"api/v1/search", middleWareFunc(apiv1.DeleteSearch)).Methods("DELETE")
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/part/{partID}", middleWareFunc(apiv1.DownloadAttachment)).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/part/{partID}/thumb", middleWareFunc(apiv1.Thumbnail)).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/headers", middleWareFunc(apiv1.GetHeaders)).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/raw", middleWareFunc(apiv1.DownloadRaw)).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/release", middleWareFunc(apiv1.ReleaseMessage)).Methods("POST")
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/html-check", middleWareFunc(apiv1.HTMLCheck)).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/link-check", middleWareFunc(apiv1.LinkCheck)).Methods("GET")
|
|
if config.EnableSpamAssassin != "" {
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}/sa-check", middleWareFunc(apiv1.SpamAssassinCheck)).Methods("GET")
|
|
}
|
|
r.HandleFunc(config.Webroot+"api/v1/message/{id}", middleWareFunc(apiv1.GetMessage)).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"api/v1/info", middleWareFunc(apiv1.AppInfo)).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"api/v1/webui", middleWareFunc(apiv1.WebUIConfig)).Methods("GET")
|
|
r.HandleFunc(config.Webroot+"api/v1/swagger.json", middleWareFunc(swaggerBasePath)).Methods("GET")
|
|
|
|
// web UI websocket
|
|
r.HandleFunc(config.Webroot+"api/events", apiWebsocket).Methods("GET")
|
|
|
|
// return blank 200 response for OPTIONS requests for CORS
|
|
r.PathPrefix(config.Webroot + "api/v1/").Handler(middleWareFunc(apiv1.GetOptions)).Methods("OPTIONS")
|
|
|
|
return r
|
|
}
|
|
|
|
// BasicAuthResponse returns an basic auth response to the browser
|
|
func basicAuthResponse(w http.ResponseWriter) {
|
|
w.Header().Set("WWW-Authenticate", `Basic realm="Login"`)
|
|
w.WriteHeader(http.StatusUnauthorized)
|
|
_, _ = w.Write([]byte("Unauthorised.\n"))
|
|
}
|
|
|
|
type gzipResponseWriter struct {
|
|
io.Writer
|
|
http.ResponseWriter
|
|
}
|
|
|
|
func (w gzipResponseWriter) Write(b []byte) (int, error) {
|
|
return w.Writer.Write(b)
|
|
}
|
|
|
|
// MiddleWareFunc http middleware adds optional basic authentication
|
|
// and gzip compression.
|
|
func middleWareFunc(fn http.HandlerFunc) http.HandlerFunc {
|
|
return func(w http.ResponseWriter, r *http.Request) {
|
|
w.Header().Set("Referrer-Policy", "no-referrer")
|
|
w.Header().Set("Content-Security-Policy", config.ContentSecurityPolicy)
|
|
|
|
if AccessControlAllowOrigin != "" && strings.HasPrefix(r.RequestURI, config.Webroot+"api/") {
|
|
w.Header().Set("Access-Control-Allow-Origin", AccessControlAllowOrigin)
|
|
w.Header().Set("Access-Control-Allow-Methods", "GET, POST, DELETE, PUT, OPTIONS")
|
|
w.Header().Set("Access-Control-Allow-Headers", "*")
|
|
}
|
|
|
|
if auth.UICredentials != nil {
|
|
user, pass, ok := r.BasicAuth()
|
|
|
|
if !ok {
|
|
basicAuthResponse(w)
|
|
return
|
|
}
|
|
|
|
if !auth.UICredentials.Match(user, pass) {
|
|
basicAuthResponse(w)
|
|
return
|
|
}
|
|
}
|
|
|
|
if !strings.Contains(r.Header.Get("Accept-Encoding"), "gzip") {
|
|
fn(w, r)
|
|
return
|
|
}
|
|
w.Header().Set("Content-Encoding", "gzip")
|
|
gz := gzip.NewWriter(w)
|
|
defer gz.Close()
|
|
gzr := gzipResponseWriter{Writer: gz, ResponseWriter: w}
|
|
fn(gzr, r)
|
|
}
|
|
}
|
|
|
|
// MiddlewareHandler http middleware adds optional basic authentication
|
|
// and gzip compression
|
|
func middlewareHandler(h http.Handler) http.Handler {
|
|
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
|
w.Header().Set("Referrer-Policy", "no-referrer")
|
|
w.Header().Set("Content-Security-Policy", config.ContentSecurityPolicy)
|
|
|
|
if AccessControlAllowOrigin != "" && strings.HasPrefix(r.RequestURI, config.Webroot+"api/") {
|
|
w.Header().Set("Access-Control-Allow-Origin", AccessControlAllowOrigin)
|
|
w.Header().Set("Access-Control-Allow-Methods", "GET, POST, DELETE, PUT, OPTIONS")
|
|
w.Header().Set("Access-Control-Allow-Headers", "*")
|
|
}
|
|
|
|
if auth.UICredentials != nil {
|
|
user, pass, ok := r.BasicAuth()
|
|
|
|
if !ok {
|
|
basicAuthResponse(w)
|
|
return
|
|
}
|
|
|
|
if !auth.UICredentials.Match(user, pass) {
|
|
basicAuthResponse(w)
|
|
return
|
|
}
|
|
}
|
|
|
|
if !strings.Contains(r.Header.Get("Accept-Encoding"), "gzip") {
|
|
h.ServeHTTP(w, r)
|
|
return
|
|
}
|
|
w.Header().Set("Content-Encoding", "gzip")
|
|
gz := gzip.NewWriter(w)
|
|
defer gz.Close()
|
|
h.ServeHTTP(gzipResponseWriter{Writer: gz, ResponseWriter: w}, r)
|
|
})
|
|
}
|
|
|
|
// Redirect to webroot
|
|
func addSlashToWebroot(w http.ResponseWriter, r *http.Request) {
|
|
http.Redirect(w, r, config.Webroot, http.StatusFound)
|
|
}
|
|
|
|
// Websocket to broadcast changes
|
|
func apiWebsocket(w http.ResponseWriter, r *http.Request) {
|
|
websockets.ServeWs(websockets.MessageHub, w, r)
|
|
storage.BroadcastMailboxStats()
|
|
}
|
|
|
|
// Wrapper to artificially inject a basePath to the swagger.json if a webroot has been specified
|
|
func swaggerBasePath(w http.ResponseWriter, _ *http.Request) {
|
|
f, err := embeddedFS.ReadFile("ui/api/v1/swagger.json")
|
|
if err != nil {
|
|
panic(err)
|
|
}
|
|
|
|
if config.Webroot != "/" {
|
|
// artificially inject a path at the start
|
|
replacement := fmt.Sprintf("{\n \"basePath\": \"%s\",", strings.TrimRight(config.Webroot, "/"))
|
|
|
|
f = bytes.Replace(f, []byte("{"), []byte(replacement), 1)
|
|
}
|
|
|
|
w.Header().Add("Content-Type", "application/json")
|
|
_, _ = w.Write(f)
|
|
}
|
|
|
|
// Just returns the default HTML template
|
|
func index(w http.ResponseWriter, _ *http.Request) {
|
|
|
|
var h = `<!DOCTYPE html>
|
|
<html lang="en" class="h-100">
|
|
|
|
<head>
|
|
<meta charset="utf-8">
|
|
<meta name="viewport" content="width=device-width,initial-scale=1.0">
|
|
<meta name="referrer" content="no-referrer">
|
|
<meta name="robots" content="noindex, nofollow, noarchive">
|
|
<link rel="icon" href="{{ .Webroot }}favicon.svg">
|
|
<title>Mailpit</title>
|
|
<link rel=stylesheet href="{{ .Webroot }}dist/app.css?{{ .Version }}">
|
|
</head>
|
|
|
|
<body class="h-100">
|
|
<div class="container-fluid h-100 d-flex flex-column" id="app" data-webroot="{{ .Webroot }}" data-version="{{ .Version }}">
|
|
<noscript>You require JavaScript to use this app.</noscript>
|
|
</div>
|
|
|
|
<script src="{{ .Webroot }}dist/app.js?{{ .Version }}"></script>
|
|
</body>
|
|
|
|
</html>`
|
|
|
|
t, err := template.New("index").Parse(h)
|
|
if err != nil {
|
|
panic(err)
|
|
}
|
|
|
|
data := struct {
|
|
Webroot string
|
|
Version string
|
|
}{
|
|
Webroot: config.Webroot,
|
|
Version: config.Version,
|
|
}
|
|
|
|
buff := new(bytes.Buffer)
|
|
|
|
err = t.Execute(buff, data)
|
|
if err != nil {
|
|
panic(err)
|
|
}
|
|
|
|
buff.Bytes()
|
|
|
|
w.Header().Add("Content-Type", "text/html")
|
|
_, _ = w.Write(buff.Bytes())
|
|
}
|