mirror/fosrl.pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2025-08-04 01:55:10 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

http only works, and added redirect middleware

Browse source
This commit is contained in:
Milo Schwartz 2024-10-27 23:36:04 -04:00
parent 4a5bd7e18a
commit 5c80f026bc
No known key found for this signature in database
4 changed files with 29 additions and 20 deletions
Download patch file Download diff file Expand all files Collapse all files

7
Makefile
View file

@ -1,8 +1,11 @@
all: build push
build:
docker build -t fossorial/pangolin:latest .
build-arm:
docker buildx build --platform linux/arm64 -t fossorial/pangolin:latest .
build-x86:
docker buildx build --platform linux/amd64 -t fossorial/pangolin:latest .
push:
docker push fossorial/pangolin:latest

1
server/config.ts
View file

@ -29,7 +29,6 @@ const environmentSchema = z.object({
http_entrypoint: z.string(),
https_entrypoint: z.string().optional(),
cert_resolver: z.string().optional(),
prefer_wildcard_cert: z.boolean().optional(),
}),
gerbil: z.object({
start_port: portSchema,

38
server/routers/traefik/getTraefikConfig.ts
View file

@ -1,7 +1,6 @@
import { Request, Response } from "express";
import db from "@server/db";
import * as schema from "@server/db/schema";
import { DynamicTraefikConfig } from "./configSchema";
import { and, eq, isNotNull } from "drizzle-orm";
import logger from "@server/logger";
import HttpCode from "@server/types/HttpCode";
@ -27,32 +26,25 @@ export async function traefikConfigProvider(
);
if (!all.length) {
return { http: {} } as DynamicTraefikConfig;
return res.status(HttpCode.OK).json({});
}
const middlewareName = "badger";
const badgerMiddlewareName = "badger";
const redirectMiddlewareName = "redirect-to-https";
const baseDomain = new URL(config.app.base_url).hostname;
// const baseDomain = new URL(config.app.base_url).hostname;
const tls = {
certResolver: config.traefik.cert_resolver,
...(config.traefik.prefer_wildcard_cert
? {
domains: {
main: baseDomain,
sans: [`*.${baseDomain}`],
},
}
: {}),
};
const http: any = {
routers: {},
services: {},
middlewares: {
[middlewareName]: {
[badgerMiddlewareName]: {
plugin: {
[middlewareName]: {
[badgerMiddlewareName]: {
apiBaseUrl: new URL(
"/api/v1",
`http://${config.server.internal_hostname}:${config.server.internal_port}`
@ -61,6 +53,12 @@ export async function traefikConfigProvider(
},
},
},
[redirectMiddlewareName]: {
redirectScheme: {
scheme: "https",
permanent: true,
},
},
},
};
for (const item of all) {
@ -76,12 +74,22 @@ export async function traefikConfigProvider(
? config.traefik.https_entrypoint
: config.traefik.http_entrypoint,
],
middlewares: [middlewareName],
middlewares: target.ssl ? [badgerMiddlewareName] : [],
service: serviceName,
rule: `Host(\`${resource.fullDomain}\`)`,
...(target.ssl ? { tls } : {}),
};
if (target.ssl) {
// this is a redirect router; all it does is redirect to the https version if tls is enabled
http.routers![routerName + "-redirect"] = {
entryPoints: [config.traefik.http_entrypoint],
middlewares: [redirectMiddlewareName],
service: serviceName,
rule: `Host(\`${resource.fullDomain}\`)`,
};
}
http.services![serviceName] = {
loadBalancer: {
servers: [

3
src/app/page.tsx
View file

@ -28,11 +28,10 @@ export default async function Page(props: {
if (res && res.data.data.orgs) {
orgs = res.data.data.orgs;
}
} catch (e) {
console.error(e);
}
if (!orgs.length) {
redirect("/setup");
}