gatus/config/web/web.go

package web

import (
	"crypto/tls"
	"errors"
	"fmt"
	"math"
)

const (
	// DefaultAddress is the default address the application will bind to
	DefaultAddress = "0.0.0.0"

	// DefaultPort is the default port the application will listen on
	DefaultPort = 8080

	// DefaultReadBufferSize is the default value for ReadBufferSize
	DefaultReadBufferSize = 8192

	// MinimumReadBufferSize is the minimum value for ReadBufferSize, and also the default value set
	// for fiber.Config.ReadBufferSize
	MinimumReadBufferSize = 4096
)

// Config is the structure which supports the configuration of the server listening to requests
type Config struct {
	// Address to listen on (defaults to 0.0.0.0 specified by DefaultAddress)
	Address string `yaml:"address"`

	// Port to listen on (default to 8080 specified by DefaultPort)
	Port int `yaml:"port"`

	// ReadBufferSize sets fiber.Config.ReadBufferSize, which is the buffer size for reading requests coming from a
	// single connection and also acts as a limit for the maximum header size.
	//
	// If you're getting occasional "Request Header Fields Too Large", you may want to try increasing this value.
	//
	// Defaults to DefaultReadBufferSize
	ReadBufferSize int `yaml:"read-buffer-size,omitempty"`

	// TLS configuration (optional)
	TLS *TLSConfig `yaml:"tls,omitempty"`
}

type TLSConfig struct {
	// CertificateFile is the public certificate for TLS in PEM format.
	CertificateFile string `yaml:"certificate-file,omitempty"`

	// PrivateKeyFile is the private key file for TLS in PEM format.
	PrivateKeyFile string `yaml:"private-key-file,omitempty"`
}

// GetDefaultConfig returns a Config struct with the default values
func GetDefaultConfig() *Config {
	return &Config{
		Address:        DefaultAddress,
		Port:           DefaultPort,
		ReadBufferSize: DefaultReadBufferSize,
	}
}

// ValidateAndSetDefaults validates the web configuration and sets the default values if necessary.
func (web *Config) ValidateAndSetDefaults() error {
	// Validate the Address
	if len(web.Address) == 0 {
		web.Address = DefaultAddress
	}
	// Validate the Port
	if web.Port == 0 {
		web.Port = DefaultPort
	} else if web.Port < 0 || web.Port > math.MaxUint16 {
		return fmt.Errorf("invalid port: value should be between %d and %d", 0, math.MaxUint16)
	}
	// Validate ReadBufferSize
	if web.ReadBufferSize == 0 {
		web.ReadBufferSize = DefaultReadBufferSize // Not set? Use the default value.
	} else if web.ReadBufferSize < MinimumReadBufferSize {
		web.ReadBufferSize = MinimumReadBufferSize // Below the minimum? Use the minimum value.
	}
	// Try to load the TLS certificates
	if web.TLS != nil {
		if err := web.TLS.isValid(); err != nil {
			return fmt.Errorf("invalid tls config: %w", err)
		}
	}
	return nil
}

func (web *Config) HasTLS() bool {
	return web.TLS != nil && len(web.TLS.CertificateFile) > 0 && len(web.TLS.PrivateKeyFile) > 0
}

// SocketAddress returns the combination of the Address and the Port
func (web *Config) SocketAddress() string {
	return fmt.Sprintf("%s:%d", web.Address, web.Port)
}

func (t *TLSConfig) isValid() error {
	if len(t.CertificateFile) > 0 && len(t.PrivateKeyFile) > 0 {
		_, err := tls.LoadX509KeyPair(t.CertificateFile, t.PrivateKeyFile)
		if err != nil {
			return err
		}
		return nil
	}
	return errors.New("certificate-file and private-key-file must be specified")
}
Move web and ui configurations in their own packages 2021-09-22 06:47:51 +02:00			`package web`
Minor improvements 2020-11-20 23:40:57 +01:00
			`import (`
feat(web): Support TLS encryption (#322) * Basic setup to serve HTTPS * Correctly handle the case of missing TLS configs * Documenting TLS * Refactor TLS configuration setup * Add TLS Encryption section again to README * Extending TOC in README * Moving TLS settings to subsection of web settings * Adding tests for config/web * Add test for handling TLS * Rename some variables as suggested * Corrected error formatting * Update test module import * Polishing the readme file * Error handling for TLSConfig() --------- Co-authored-by: TwiN <twin@linux.com> 2023-04-22 18:12:56 +02:00			`"crypto/tls"`
refactor: Modify implementation of TLS (#457) * refactor: Don't generate certificates programmatically * build: Add testdata folder to .dockerignore 2023-04-22 21:22:09 +02:00			`"errors"`
Minor improvements 2020-11-20 23:40:57 +01:00			`"fmt"`
			`"math"`
			`)`

Move web and ui configurations in their own packages 2021-09-22 06:47:51 +02:00			`const (`
Rename Service to Endpoint (#192) * Add clarifications in comments * #191: Rename Service to Endpoint 2021-10-23 22:47:12 +02:00			`// DefaultAddress is the default address the application will bind to`
Move web and ui configurations in their own packages 2021-09-22 06:47:51 +02:00			`DefaultAddress = "0.0.0.0"`

Rename Service to Endpoint (#192) * Add clarifications in comments * #191: Rename Service to Endpoint 2021-10-23 22:47:12 +02:00			`// DefaultPort is the default port the application will listen on`
Move web and ui configurations in their own packages 2021-09-22 06:47:51 +02:00			`DefaultPort = 8080`
fix(web): Allow configuration of read-buffer-size (#675) This fixes the `431 Request Header Fields Too Large` error By default, the read-buffer-size is 8192, up from fiber's default of 4096. Fixes #674 Fixes #636 Supersedes #637 Supersedes #663 2024-02-08 00:54:30 +01:00
			`// DefaultReadBufferSize is the default value for ReadBufferSize`
			`DefaultReadBufferSize = 8192`

			`// MinimumReadBufferSize is the minimum value for ReadBufferSize, and also the default value set`
			`// for fiber.Config.ReadBufferSize`
			`MinimumReadBufferSize = 4096`
Move web and ui configurations in their own packages 2021-09-22 06:47:51 +02:00			`)`

fix(web): Allow configuration of read-buffer-size (#675) This fixes the `431 Request Header Fields Too Large` error By default, the read-buffer-size is 8192, up from fiber's default of 4096. Fixes #674 Fixes #636 Supersedes #637 Supersedes #663 2024-02-08 00:54:30 +01:00			`// Config is the structure which supports the configuration of the server listening to requests`
Move web and ui configurations in their own packages 2021-09-22 06:47:51 +02:00			`type Config struct {`
Minor improvements 2020-11-20 23:40:57 +01:00			`// Address to listen on (defaults to 0.0.0.0 specified by DefaultAddress)`
			Address string `yaml:"address"`

			`// Port to listen on (default to 8080 specified by DefaultPort)`
			Port int `yaml:"port"`
feat(web): Support TLS encryption (#322) * Basic setup to serve HTTPS * Correctly handle the case of missing TLS configs * Documenting TLS * Refactor TLS configuration setup * Add TLS Encryption section again to README * Extending TOC in README * Moving TLS settings to subsection of web settings * Adding tests for config/web * Add test for handling TLS * Rename some variables as suggested * Corrected error formatting * Update test module import * Polishing the readme file * Error handling for TLSConfig() --------- Co-authored-by: TwiN <twin@linux.com> 2023-04-22 18:12:56 +02:00
fix(web): Allow configuration of read-buffer-size (#675) This fixes the `431 Request Header Fields Too Large` error By default, the read-buffer-size is 8192, up from fiber's default of 4096. Fixes #674 Fixes #636 Supersedes #637 Supersedes #663 2024-02-08 00:54:30 +01:00			`// ReadBufferSize sets fiber.Config.ReadBufferSize, which is the buffer size for reading requests coming from a`
			`// single connection and also acts as a limit for the maximum header size.`
			`//`
			`// If you're getting occasional "Request Header Fields Too Large", you may want to try increasing this value.`
			`//`
			`// Defaults to DefaultReadBufferSize`
			ReadBufferSize int `yaml:"read-buffer-size,omitempty"`

refactor: Modify implementation of TLS (#457) * refactor: Don't generate certificates programmatically * build: Add testdata folder to .dockerignore 2023-04-22 21:22:09 +02:00			`// TLS configuration (optional)`
			TLS *TLSConfig `yaml:"tls,omitempty"`
feat(web): Support TLS encryption (#322) * Basic setup to serve HTTPS * Correctly handle the case of missing TLS configs * Documenting TLS * Refactor TLS configuration setup * Add TLS Encryption section again to README * Extending TOC in README * Moving TLS settings to subsection of web settings * Adding tests for config/web * Add test for handling TLS * Rename some variables as suggested * Corrected error formatting * Update test module import * Polishing the readme file * Error handling for TLSConfig() --------- Co-authored-by: TwiN <twin@linux.com> 2023-04-22 18:12:56 +02:00			`}`

			`type TLSConfig struct {`
refactor: Modify implementation of TLS (#457) * refactor: Don't generate certificates programmatically * build: Add testdata folder to .dockerignore 2023-04-22 21:22:09 +02:00			`// CertificateFile is the public certificate for TLS in PEM format.`
feat(web): Support TLS encryption (#322) * Basic setup to serve HTTPS * Correctly handle the case of missing TLS configs * Documenting TLS * Refactor TLS configuration setup * Add TLS Encryption section again to README * Extending TOC in README * Moving TLS settings to subsection of web settings * Adding tests for config/web * Add test for handling TLS * Rename some variables as suggested * Corrected error formatting * Update test module import * Polishing the readme file * Error handling for TLSConfig() --------- Co-authored-by: TwiN <twin@linux.com> 2023-04-22 18:12:56 +02:00			CertificateFile string `yaml:"certificate-file,omitempty"`

refactor: Modify implementation of TLS (#457) * refactor: Don't generate certificates programmatically * build: Add testdata folder to .dockerignore 2023-04-22 21:22:09 +02:00			`// PrivateKeyFile is the private key file for TLS in PEM format.`
feat(web): Support TLS encryption (#322) * Basic setup to serve HTTPS * Correctly handle the case of missing TLS configs * Documenting TLS * Refactor TLS configuration setup * Add TLS Encryption section again to README * Extending TOC in README * Moving TLS settings to subsection of web settings * Adding tests for config/web * Add test for handling TLS * Rename some variables as suggested * Corrected error formatting * Update test module import * Polishing the readme file * Error handling for TLSConfig() --------- Co-authored-by: TwiN <twin@linux.com> 2023-04-22 18:12:56 +02:00			PrivateKeyFile string `yaml:"private-key-file,omitempty"`
Minor improvements 2020-11-20 23:40:57 +01:00			`}`

Move web and ui configurations in their own packages 2021-09-22 06:47:51 +02:00			`// GetDefaultConfig returns a Config struct with the default values`
			`func GetDefaultConfig() *Config {`
fix(web): Allow configuration of read-buffer-size (#675) This fixes the `431 Request Header Fields Too Large` error By default, the read-buffer-size is 8192, up from fiber's default of 4096. Fixes #674 Fixes #636 Supersedes #637 Supersedes #663 2024-02-08 00:54:30 +01:00			`return &Config{`
			`Address: DefaultAddress,`
			`Port: DefaultPort,`
			`ReadBufferSize: DefaultReadBufferSize,`
			`}`
#77: Make page title customizable 2021-09-11 07:51:14 +02:00			`}`

Move web and ui configurations in their own packages 2021-09-22 06:47:51 +02:00			`// ValidateAndSetDefaults validates the web configuration and sets the default values if necessary.`
			`func (web *Config) ValidateAndSetDefaults() error {`
Refactor code and update comments 2020-11-21 23:35:08 +01:00			`// Validate the Address`
Minor improvements 2020-11-20 23:40:57 +01:00			`if len(web.Address) == 0 {`
			`web.Address = DefaultAddress`
			`}`
Refactor code and update comments 2020-11-21 23:35:08 +01:00			`// Validate the Port`
Minor improvements 2020-11-20 23:40:57 +01:00			`if web.Port == 0 {`
			`web.Port = DefaultPort`
			`} else if web.Port < 0 \|\| web.Port > math.MaxUint16 {`
#29: Automatically reload on configuration file update 2021-05-19 04:29:15 +02:00			`return fmt.Errorf("invalid port: value should be between %d and %d", 0, math.MaxUint16)`
Minor improvements 2020-11-20 23:40:57 +01:00			`}`
fix(web): Allow configuration of read-buffer-size (#675) This fixes the `431 Request Header Fields Too Large` error By default, the read-buffer-size is 8192, up from fiber's default of 4096. Fixes #674 Fixes #636 Supersedes #637 Supersedes #663 2024-02-08 00:54:30 +01:00			`// Validate ReadBufferSize`
			`if web.ReadBufferSize == 0 {`
			`web.ReadBufferSize = DefaultReadBufferSize // Not set? Use the default value.`
			`} else if web.ReadBufferSize < MinimumReadBufferSize {`
			`web.ReadBufferSize = MinimumReadBufferSize // Below the minimum? Use the minimum value.`
			`}`
feat(web): Support TLS encryption (#322) * Basic setup to serve HTTPS * Correctly handle the case of missing TLS configs * Documenting TLS * Refactor TLS configuration setup * Add TLS Encryption section again to README * Extending TOC in README * Moving TLS settings to subsection of web settings * Adding tests for config/web * Add test for handling TLS * Rename some variables as suggested * Corrected error formatting * Update test module import * Polishing the readme file * Error handling for TLSConfig() --------- Co-authored-by: TwiN <twin@linux.com> 2023-04-22 18:12:56 +02:00			`// Try to load the TLS certificates`
refactor: Modify implementation of TLS (#457) * refactor: Don't generate certificates programmatically * build: Add testdata folder to .dockerignore 2023-04-22 21:22:09 +02:00			`if web.TLS != nil {`
fix(tls): Pass certificate and private key files to listener method (#531) Fixes #530 2023-07-21 01:02:34 +02:00			`if err := web.TLS.isValid(); err != nil {`
refactor: Modify implementation of TLS (#457) * refactor: Don't generate certificates programmatically * build: Add testdata folder to .dockerignore 2023-04-22 21:22:09 +02:00			`return fmt.Errorf("invalid tls config: %w", err)`
			`}`
feat(web): Support TLS encryption (#322) * Basic setup to serve HTTPS * Correctly handle the case of missing TLS configs * Documenting TLS * Refactor TLS configuration setup * Add TLS Encryption section again to README * Extending TOC in README * Moving TLS settings to subsection of web settings * Adding tests for config/web * Add test for handling TLS * Rename some variables as suggested * Corrected error formatting * Update test module import * Polishing the readme file * Error handling for TLSConfig() --------- Co-authored-by: TwiN <twin@linux.com> 2023-04-22 18:12:56 +02:00			`}`
#29: Automatically reload on configuration file update 2021-05-19 04:29:15 +02:00			`return nil`
Minor improvements 2020-11-20 23:40:57 +01:00			`}`

fix(tls): Pass certificate and private key files to listener method (#531) Fixes #530 2023-07-21 01:02:34 +02:00			`func (web *Config) HasTLS() bool {`
			`return web.TLS != nil && len(web.TLS.CertificateFile) > 0 && len(web.TLS.PrivateKeyFile) > 0`
			`}`

Minor improvements 2020-11-20 23:40:57 +01:00			`// SocketAddress returns the combination of the Address and the Port`
Move web and ui configurations in their own packages 2021-09-22 06:47:51 +02:00			`func (web *Config) SocketAddress() string {`
Minor improvements 2020-11-20 23:40:57 +01:00			`return fmt.Sprintf("%s:%d", web.Address, web.Port)`
			`}`
feat(web): Support TLS encryption (#322) * Basic setup to serve HTTPS * Correctly handle the case of missing TLS configs * Documenting TLS * Refactor TLS configuration setup * Add TLS Encryption section again to README * Extending TOC in README * Moving TLS settings to subsection of web settings * Adding tests for config/web * Add test for handling TLS * Rename some variables as suggested * Corrected error formatting * Update test module import * Polishing the readme file * Error handling for TLSConfig() --------- Co-authored-by: TwiN <twin@linux.com> 2023-04-22 18:12:56 +02:00
fix(tls): Pass certificate and private key files to listener method (#531) Fixes #530 2023-07-21 01:02:34 +02:00			`func (t *TLSConfig) isValid() error {`
refactor: Modify implementation of TLS (#457) * refactor: Don't generate certificates programmatically * build: Add testdata folder to .dockerignore 2023-04-22 21:22:09 +02:00			`if len(t.CertificateFile) > 0 && len(t.PrivateKeyFile) > 0 {`
fix(tls): Pass certificate and private key files to listener method (#531) Fixes #530 2023-07-21 01:02:34 +02:00			`_, err := tls.LoadX509KeyPair(t.CertificateFile, t.PrivateKeyFile)`
refactor: Modify implementation of TLS (#457) * refactor: Don't generate certificates programmatically * build: Add testdata folder to .dockerignore 2023-04-22 21:22:09 +02:00			`if err != nil {`
			`return err`
			`}`
			`return nil`
feat(web): Support TLS encryption (#322) * Basic setup to serve HTTPS * Correctly handle the case of missing TLS configs * Documenting TLS * Refactor TLS configuration setup * Add TLS Encryption section again to README * Extending TOC in README * Moving TLS settings to subsection of web settings * Adding tests for config/web * Add test for handling TLS * Rename some variables as suggested * Corrected error formatting * Update test module import * Polishing the readme file * Error handling for TLSConfig() --------- Co-authored-by: TwiN <twin@linux.com> 2023-04-22 18:12:56 +02:00			`}`
refactor: Modify implementation of TLS (#457) * refactor: Don't generate certificates programmatically * build: Add testdata folder to .dockerignore 2023-04-22 21:22:09 +02:00			`return errors.New("certificate-file and private-key-file must be specified")`
feat(web): Support TLS encryption (#322) * Basic setup to serve HTTPS * Correctly handle the case of missing TLS configs * Documenting TLS * Refactor TLS configuration setup * Add TLS Encryption section again to README * Extending TOC in README * Moving TLS settings to subsection of web settings * Adding tests for config/web * Add test for handling TLS * Rename some variables as suggested * Corrected error formatting * Update test module import * Polishing the readme file * Error handling for TLSConfig() --------- Co-authored-by: TwiN <twin@linux.com> 2023-04-22 18:12:56 +02:00			`}`