main.go

package main

import (
	"fmt"
	"math/rand"
	"net/http"
	"os"
	"os/signal"
	"runtime"
	"strings"
	"syscall"
	"time"

	"github.com/oauth2-proxy/oauth2-proxy/pkg/apis/options"
	"github.com/oauth2-proxy/oauth2-proxy/pkg/logger"
	"github.com/oauth2-proxy/oauth2-proxy/pkg/validation"
)

func main() {
	logger.SetFlags(logger.Lshortfile)
	flagSet := options.NewFlagSet()

	config := flagSet.String("config", "", "path to config file")
	showVersion := flagSet.Bool("version", false, "print version string")

	flagSet.Parse(os.Args[1:])

	if *showVersion {
		fmt.Printf("oauth2-proxy %s (built with %s)\n", VERSION, runtime.Version())
		return
	}

	opts := options.NewOptions()
	err := options.Load(*config, flagSet, opts)
	if err != nil {
		logger.Printf("ERROR: Failed to load config: %v", err)
		os.Exit(1)
	}

	err = validation.Validate(opts)
	if err != nil {
		logger.Printf("%s", err)
		os.Exit(1)
	}

	validator := NewValidator(opts.EmailDomains, opts.AuthenticatedEmailsFile)
	oauthproxy := NewOAuthProxy(opts, validator)

	if len(opts.Banner) >= 1 {
		if opts.Banner == "-" {
			oauthproxy.SignInMessage = ""
		} else {
			oauthproxy.SignInMessage = opts.Banner
		}
	} else if len(opts.EmailDomains) != 0 && opts.AuthenticatedEmailsFile == "" {
		if len(opts.EmailDomains) > 1 {
			oauthproxy.SignInMessage = fmt.Sprintf("Authenticate using one of the following domains: %v", strings.Join(opts.EmailDomains, ", "))
		} else if opts.EmailDomains[0] != "*" {
			oauthproxy.SignInMessage = fmt.Sprintf("Authenticate using %v", opts.EmailDomains[0])
		}
	}

	if opts.HtpasswdFile != "" {
		logger.Printf("using htpasswd file %s", opts.HtpasswdFile)
		oauthproxy.HtpasswdFile, err = NewHtpasswdFromFile(opts.HtpasswdFile)
		oauthproxy.DisplayHtpasswdForm = opts.DisplayHtpasswdForm
		if err != nil {
			logger.Fatalf("FATAL: unable to open %s %s", opts.HtpasswdFile, err)
		}
	}

	rand.Seed(time.Now().UnixNano())

	var handler http.Handler
	if opts.GCPHealthChecks {
		handler = redirectToHTTPS(opts, gcpHealthcheck(LoggingHandler(oauthproxy)))
	} else {
		handler = redirectToHTTPS(opts, LoggingHandler(oauthproxy))
	}
	s := &Server{
		Handler: handler,
		Opts:    opts,
		stop:    make(chan struct{}, 1),
	}
	// Observe signals in background goroutine.
	go func() {
		sigint := make(chan os.Signal, 1)
		signal.Notify(sigint, os.Interrupt, syscall.SIGTERM)
		<-sigint
		s.stop <- struct{}{} // notify having caught signal
	}()
	s.ListenAndServe()
}
initial code import 2012-12-10 20:59:23 -05:00			`package main`

			`import (`
testing 2012-12-17 13:38:33 -05:00			`"fmt"`
add login.gov provider (#55 ) 2019-03-20 06:44:51 -07:00			`"math/rand"`
added an option to enable GCP healthcheck endpoints 2019-03-20 14:29:44 -07:00			`"net/http"`
update to new scopes 2014-08-07 16:16:39 -04:00			`"os"`
Implement graceful shutdown and propagate request context (#468 ) 2020-04-05 00:12:38 +09:00			`"os/signal"`
show Go version 2015-03-19 23:03:00 -04:00			`"runtime"`
initial code import 2012-12-10 20:59:23 -05:00			`"strings"`
Implement graceful shutdown and propagate request context (#468 ) 2020-04-05 00:12:38 +09:00			`"syscall"`
always set httponly (there is no good reason not to); simplify httponly and expire flags 2014-11-08 13:26:55 -05:00			`"time"`
initial code import 2012-12-10 20:59:23 -05:00
Replace options loading with viper 2020-04-13 11:34:25 +01:00			`"github.com/oauth2-proxy/oauth2-proxy/pkg/apis/options"`
Migrate to oauth2-proxy/oauth2-proxy 2020-03-29 14:54:36 +01:00			`"github.com/oauth2-proxy/oauth2-proxy/pkg/logger"`
Move Options and Validation to package 2020-04-13 13:50:34 +01:00			`"github.com/oauth2-proxy/oauth2-proxy/pkg/validation"`
initial code import 2012-12-10 20:59:23 -05:00			`)`

			`func main() {`
Auth and standard logging with file rolling 2019-02-10 08:37:45 -08:00			`logger.SetFlags(logger.Lshortfile)`
Move FlagSet to Options package 2020-04-13 14:20:04 +01:00			`flagSet := options.NewFlagSet()`
Add config file support 2014-11-09 14:51:10 -05:00
			`config := flagSet.String("config", "", "path to config file")`
			`showVersion := flagSet.Bool("version", false, "print version string")`

Switch flags to PFlag to remove StringArray (#487 ) 2020-05-03 16:55:20 +01:00			`flagSet.Parse(os.Args[1:])`
Add config file support 2014-11-09 14:51:10 -05:00
better environment parsing 2014-11-09 21:07:02 -05:00			`if *showVersion {`
Migrate to oauth2-proxy/oauth2-proxy 2020-03-29 14:54:36 +01:00			`fmt.Printf("oauth2-proxy %s (built with %s)\n", VERSION, runtime.Version())`
better environment parsing 2014-11-09 21:07:02 -05:00			`return`
			`}`

Move Options and Validation to package 2020-04-13 13:50:34 +01:00			`opts := options.NewOptions()`
Switch flags to PFlag to remove StringArray (#487 ) 2020-05-03 16:55:20 +01:00			`err := options.Load(*config, flagSet, opts)`
Replace options loading with viper 2020-04-13 11:34:25 +01:00			`if err != nil {`
			`logger.Printf("ERROR: Failed to load config: %v", err)`
			`os.Exit(1)`
Add config file support 2014-11-09 14:51:10 -05:00			`}`
initial code import 2012-12-10 20:59:23 -05:00
Move Options and Validation to package 2020-04-13 13:50:34 +01:00			`err = validation.Validate(opts)`
initial code import 2012-12-10 20:59:23 -05:00			`if err != nil {`
Auth and standard logging with file rolling 2019-02-10 08:37:45 -08:00			`logger.Printf("%s", err)`
Add config file support 2014-11-09 14:51:10 -05:00			`os.Exit(1)`
initial code import 2012-12-10 20:59:23 -05:00			`}`
Auth and standard logging with file rolling 2019-02-10 08:37:45 -08:00
disable email validation; rename email-domain argument 2015-06-06 14:37:54 -04:00			`validator := NewValidator(opts.EmailDomains, opts.AuthenticatedEmailsFile)`
*: rename Oauth to OAuth 2015-11-09 00:57:01 +01:00			`oauthproxy := NewOAuthProxy(opts, validator)`
Add config file support 2014-11-09 14:51:10 -05:00
Adds banner flag 2019-06-19 15:24:25 +01:00			`if len(opts.Banner) >= 1 {`
			`if opts.Banner == "-" {`
			`oauthproxy.SignInMessage = ""`
			`} else {`
			`oauthproxy.SignInMessage = opts.Banner`
			`}`
			`} else if len(opts.EmailDomains) != 0 && opts.AuthenticatedEmailsFile == "" {`
disable email validation; rename email-domain argument 2015-06-06 14:37:54 -04:00			`if len(opts.EmailDomains) > 1 {`
			`oauthproxy.SignInMessage = fmt.Sprintf("Authenticate using one of the following domains: %v", strings.Join(opts.EmailDomains, ", "))`
			`} else if opts.EmailDomains[0] != "*" {`
			`oauthproxy.SignInMessage = fmt.Sprintf("Authenticate using %v", opts.EmailDomains[0])`
pretty styling of sign in page 2014-11-09 00:26:52 -05:00			`}`
initial code import 2012-12-10 20:59:23 -05:00			`}`
Add config file support 2014-11-09 14:51:10 -05:00
			`if opts.HtpasswdFile != "" {`
Auth and standard logging with file rolling 2019-02-10 08:37:45 -08:00			`logger.Printf("using htpasswd file %s", opts.HtpasswdFile)`
Add config file support 2014-11-09 14:51:10 -05:00			`oauthproxy.HtpasswdFile, err = NewHtpasswdFromFile(opts.HtpasswdFile)`
Allow hiding custom login UI even if an htpasswd file is provided. 2014-12-09 14:38:57 -06:00			`oauthproxy.DisplayHtpasswdForm = opts.DisplayHtpasswdForm`
testing 2012-12-17 13:38:33 -05:00			`if err != nil {`
Auth and standard logging with file rolling 2019-02-10 08:37:45 -08:00			`logger.Fatalf("FATAL: unable to open %s %s", opts.HtpasswdFile, err)`
testing 2012-12-17 13:38:33 -05:00			`}`
initial code import 2012-12-10 20:59:23 -05:00			`}`
Add config file support 2014-11-09 14:51:10 -05:00
add login.gov provider (#55 ) 2019-03-20 06:44:51 -07:00			`rand.Seed(time.Now().UnixNano())`

It's not really mine 2019-03-26 08:59:03 -07:00			`var handler http.Handler`
added an option to enable GCP healthcheck endpoints 2019-03-20 14:29:44 -07:00			`if opts.GCPHealthChecks {`
Add new handler to redirect to HTTPS if flag is set 2019-10-17 16:30:48 +01:00			`handler = redirectToHTTPS(opts, gcpHealthcheck(LoggingHandler(oauthproxy)))`
added an option to enable GCP healthcheck endpoints 2019-03-20 14:29:44 -07:00			`} else {`
Add new handler to redirect to HTTPS if flag is set 2019-10-17 16:30:48 +01:00			`handler = redirectToHTTPS(opts, LoggingHandler(oauthproxy))`
added an option to enable GCP healthcheck endpoints 2019-03-20 14:29:44 -07:00			`}`
support TLS directly 2015-06-07 21:51:47 -04:00			`s := &Server{`
It's not really mine 2019-03-26 08:59:03 -07:00			`Handler: handler,`
support TLS directly 2015-06-07 21:51:47 -04:00			`Opts: opts,`
Implement graceful shutdown and propagate request context (#468 ) 2020-04-05 00:12:38 +09:00			`stop: make(chan struct{}, 1),`
Added scheme parsing to http-address param 2015-02-11 12:07:40 +11:00			`}`
Implement graceful shutdown and propagate request context (#468 ) 2020-04-05 00:12:38 +09:00			`// Observe signals in background goroutine.`
			`go func() {`
			`sigint := make(chan os.Signal, 1)`
			`signal.Notify(sigint, os.Interrupt, syscall.SIGTERM)`
			`<-sigint`
			`s.stop <- struct{}{} // notify having caught signal`
			`}()`
support TLS directly 2015-06-07 21:51:47 -04:00			`s.ListenAndServe()`
initial code import 2012-12-10 20:59:23 -05:00			`}`