mirror of
https://github.com/genuinetools/reg.git
synced 2024-04-27 10:58:33 -04:00
32589e90be
* passing context in layer calls * more contexting * clair folder and context in handlers * fixed token transport to reuse request context * tests * taking out context pass in server handlers
186 lines
5.2 KiB
Go
186 lines
5.2 KiB
Go
package main
|
|
|
|
import (
|
|
"context"
|
|
"flag"
|
|
"fmt"
|
|
"html/template"
|
|
"net/http"
|
|
"os"
|
|
"path/filepath"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/genuinetools/reg/clair"
|
|
"github.com/genuinetools/reg/internal/binutils/static"
|
|
"github.com/genuinetools/reg/internal/binutils/templates"
|
|
"github.com/gorilla/mux"
|
|
wordwrap "github.com/mitchellh/go-wordwrap"
|
|
"github.com/shurcooL/httpfs/html/vfstemplate"
|
|
"github.com/sirupsen/logrus"
|
|
)
|
|
|
|
const serverHelp = `Run a static UI server for a registry.`
|
|
|
|
func (cmd *serverCommand) Name() string { return "server" }
|
|
func (cmd *serverCommand) Args() string { return "[OPTIONS]" }
|
|
func (cmd *serverCommand) ShortHelp() string { return serverHelp }
|
|
func (cmd *serverCommand) LongHelp() string { return serverHelp }
|
|
func (cmd *serverCommand) Hidden() bool { return false }
|
|
|
|
func (cmd *serverCommand) Register(fs *flag.FlagSet) {
|
|
fs.DurationVar(&cmd.interval, "interval", time.Hour, "interval to generate new index.html's at")
|
|
|
|
fs.StringVar(&cmd.registryServer, "registry", "", "URL to the private registry (ex. r.j3ss.co)")
|
|
fs.StringVar(&cmd.registryServer, "r", "", "URL to the private registry (ex. r.j3ss.co)")
|
|
|
|
fs.StringVar(&cmd.clairServer, "clair", "", "url to clair instance")
|
|
|
|
fs.StringVar(&cmd.cert, "cert", "", "path to ssl cert")
|
|
fs.StringVar(&cmd.key, "key", "", "path to ssl key")
|
|
fs.StringVar(&cmd.listenAddress, "listen-address", "", "address to listen on")
|
|
fs.StringVar(&cmd.port, "port", "8080", "port for server to run on")
|
|
fs.StringVar(&cmd.assetPath, "asset-path", "", "Path to assets and templates")
|
|
|
|
fs.BoolVar(&cmd.generateAndExit, "once", false, "generate the templates once and then exit")
|
|
}
|
|
|
|
type serverCommand struct {
|
|
interval time.Duration
|
|
registryServer string
|
|
clairServer string
|
|
|
|
generateAndExit bool
|
|
|
|
cert string
|
|
key string
|
|
listenAddress string
|
|
port string
|
|
assetPath string
|
|
}
|
|
|
|
func (cmd *serverCommand) Run(ctx context.Context, args []string) error {
|
|
// Create the registry client.
|
|
r, err := createRegistryClient(ctx, cmd.registryServer)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
// Create the registry controller for the handlers.
|
|
rc := registryController{
|
|
reg: r,
|
|
generateOnly: cmd.generateAndExit,
|
|
}
|
|
|
|
// Create a clair client if the user passed in a server address.
|
|
if len(cmd.clairServer) > 0 {
|
|
rc.cl, err = clair.New(cmd.clairServer, clair.Opt{
|
|
Insecure: insecure,
|
|
Debug: debug,
|
|
Timeout: timeout,
|
|
})
|
|
if err != nil {
|
|
return fmt.Errorf("creation of clair client at %s failed: %v", cmd.clairServer, err)
|
|
}
|
|
} else {
|
|
rc.cl = nil
|
|
}
|
|
// Get the path to the asset directory.
|
|
assetDir := cmd.assetPath
|
|
if len(cmd.assetPath) <= 0 {
|
|
assetDir, err = os.Getwd()
|
|
if err != nil {
|
|
return err
|
|
}
|
|
}
|
|
|
|
staticDir := filepath.Join(assetDir, "static")
|
|
|
|
funcMap := template.FuncMap{
|
|
"trim": func(s string) string {
|
|
return wordwrap.WrapString(s, 80)
|
|
},
|
|
"color": func(s string) string {
|
|
switch s = strings.ToLower(s); s {
|
|
case "high":
|
|
return "danger"
|
|
case "critical":
|
|
return "danger"
|
|
case "defcon1":
|
|
return "danger"
|
|
case "medium":
|
|
return "warning"
|
|
case "low":
|
|
return "info"
|
|
case "negligible":
|
|
return "info"
|
|
case "unknown":
|
|
return "default"
|
|
default:
|
|
return "default"
|
|
}
|
|
},
|
|
}
|
|
|
|
rc.tmpl = template.New("").Funcs(funcMap)
|
|
rc.tmpl = template.Must(vfstemplate.ParseGlob(templates.Assets, rc.tmpl, "*.html"))
|
|
|
|
// Create the initial index.
|
|
logrus.Info("creating initial static index")
|
|
if err := rc.repositories(ctx, staticDir); err != nil {
|
|
return fmt.Errorf("creating index failed: %v", err)
|
|
}
|
|
|
|
if cmd.generateAndExit {
|
|
logrus.Info("output generated, exiting...")
|
|
return nil
|
|
}
|
|
|
|
rc.interval = cmd.interval
|
|
ticker := time.NewTicker(rc.interval)
|
|
go func() {
|
|
// Create more indexes every X minutes based off interval.
|
|
for range ticker.C {
|
|
logrus.Info("creating timer based static index")
|
|
if err := rc.repositories(ctx, staticDir); err != nil {
|
|
logrus.Warnf("creating static index failed: %v", err)
|
|
}
|
|
}
|
|
}()
|
|
|
|
// Create mux server.
|
|
mux := mux.NewRouter()
|
|
mux.UseEncodedPath()
|
|
|
|
// Static files handler.
|
|
mux.HandleFunc("/repo/{repo}/tags", rc.tagsHandler)
|
|
mux.HandleFunc("/repo/{repo}/tags/", rc.tagsHandler)
|
|
mux.HandleFunc("/repo/{repo}/tag/{tag}", rc.vulnerabilitiesHandler)
|
|
mux.HandleFunc("/repo/{repo}/tag/{tag}/", rc.vulnerabilitiesHandler)
|
|
|
|
// Add the vulns endpoints if we have a client for a clair server.
|
|
if rc.cl != nil {
|
|
logrus.Infof("adding clair handlers...")
|
|
mux.HandleFunc("/repo/{repo}/tag/{tag}/vulns", rc.vulnerabilitiesHandler)
|
|
mux.HandleFunc("/repo/{repo}/tag/{tag}/vulns/", rc.vulnerabilitiesHandler)
|
|
mux.HandleFunc("/repo/{repo}/tag/{tag}/vulns.json", rc.vulnerabilitiesHandler)
|
|
}
|
|
|
|
// Serve the static assets.
|
|
staticAssetsHandler := http.FileServer(static.Assets)
|
|
mux.PathPrefix("/static/").Handler(http.StripPrefix("/static/", staticAssetsHandler))
|
|
staticHandler := http.FileServer(http.Dir(staticDir))
|
|
mux.Handle("/", staticHandler)
|
|
|
|
// Set up the server.
|
|
server := &http.Server{
|
|
Addr: cmd.listenAddress + ":" + cmd.port,
|
|
Handler: mux,
|
|
}
|
|
logrus.Infof("Starting server on port %q", cmd.port)
|
|
if len(cmd.cert) > 0 && len(cmd.key) > 0 {
|
|
return server.ListenAndServeTLS(cmd.cert, cmd.key)
|
|
}
|
|
return server.ListenAndServe()
|
|
}
|