package main import ( "context" "fmt" "net/http" "os" "strings" "time" "github.com/go-chi/chi" "github.com/go-chi/chi/middleware" lru "github.com/hashicorp/golang-lru" _ "github.com/joho/godotenv/autoload" "github.com/rs/cors" "github.com/rs/zerolog" "github.com/rs/zerolog/log" "gosrc.io/xmpp" "github.com/sour-is/keyproofs/pkg/cache" "github.com/sour-is/keyproofs/pkg/config" "github.com/sour-is/keyproofs/pkg/graceful" "github.com/sour-is/keyproofs/pkg/httpsrv" app_avatar "github.com/sour-is/keyproofs/pkg/app/avatar" app_dns "github.com/sour-is/keyproofs/pkg/app/dns" app_keyproofs "github.com/sour-is/keyproofs/pkg/app/keyproofs" app_vcard "github.com/sour-is/keyproofs/pkg/app/vcard" app_wkd "github.com/sour-is/keyproofs/pkg/app/wkd" ) var ( // AppName Application Name AppName string = "KeyProofs" // AppVersion Application Version Number AppVersion string // AppBuild Application Build Hash BuildHash string // AppDate Application Build Date BuildDate string ) func main() { log := zerolog.New(zerolog.NewConsoleWriter()). With(). Timestamp(). Caller(). Logger() ctx := context.Background() ctx = log.WithContext(ctx) ctx = graceful.WithInterupt(ctx) ctx, _ = graceful.WithWaitGroup(ctx) cfg := config.New() cfg.Set("app-name", AppName) cfg.Set("app-version", AppVersion) cfg.Set("build-hash", BuildHash) cfg.Set("build-date", BuildDate) ctx = cfg.Apply(ctx) log.Info(). Str("app", AppName). Str("version", AppVersion). Str("build-hash", BuildHash). Str("build-date", BuildDate). Msg("startup...") if err := run(ctx); err != nil { log.Error().Err(err).Msg("Application Failed") os.Exit(1) } } func run(ctx context.Context) error { log := log.Ctx(ctx) wg := graceful.WaitGroup(ctx) cfg := config.FromContext(ctx) // derive baseURL from listener options listen := env("HTTP_LISTEN", ":9061") host, _ := os.Hostname() if strings.HasPrefix(listen, ":") { host += listen } baseURL := fmt.Sprintf("http://%s", host) // Setup router cors := cors.New(cors.Options{ AllowCredentials: true, AllowedMethods: strings.Fields(env("CORS_METHODS", "GET")), AllowedOrigins: strings.Fields(env("CORS_ORIGIN", "*")), }) logFmt := &middleware.DefaultLogFormatter{Logger: accessLog(log.Info)} mux := chi.NewRouter() mux.Use( middleware.RequestID, middleware.RealIP, middleware.Recoverer, middleware.RequestLogger(logFmt), secHeaders, cors.Handler, addLogger(log), cfg.ApplyHTTP, ) if env("DISABLE_KEYPROOF", "false") == "false" { // Set config values cfg.Set("base-url", env("BASE_URL", baseURL)) cfg.Set("dns-url", env("DNS_URL", baseURL)) cfg.Set("xmpp-url", env("XMPP_URL", baseURL)) cfg.Set("reddit.api-key", os.Getenv("REDDIT_APIKEY")) cfg.Set("reddit.secret", os.Getenv("REDDIT_SECRET")) cfg.Set("github.secret", os.Getenv("GITHUB_SECRET")) // Create cache for promise engine arc, _ := lru.NewARC(4096) c := cache.New(arc) app_keyproofs.NewKeyProofApp(ctx, c).Routes(mux) } if env("DISABLE_DNS", "false") == "false" { app_dns.New(ctx).Routes(mux) } if env("DISABLE_AVATAR", "false") == "false" { app, err := app_avatar.New(ctx, env("AVATAR_PATH", "pub")) if err != nil { return err } app.Routes(mux) } if env("DISABLE_WKD", "false") == "false" { app, err := app_wkd.New(ctx, env("WKD_PATH", "pub"), env("WKD_DOMAIN", "sour.is")) if err != nil { return err } app.Routes(mux) } if env("DISABLE_VCARD", "false") == "false" { app, err := app_vcard.New(ctx, &xmpp.Config{ Jid: os.Getenv("XMPP_USERNAME"), Credential: xmpp.Password(os.Getenv("XMPP_PASSWORD")), }) if err != nil { return err } app.Routes(mux) } log.Info(). Str("listen", listen). Int("user", os.Geteuid()). Int("group", os.Getgid()). Msg("running") err := httpsrv.New(&http.Server{ Addr: listen, WriteTimeout: 15 * time.Second, ReadTimeout: 15 * time.Second, Handler: mux, }).Run(ctx) if err != nil { return err } return wg.Wait(5 * time.Second) } func env(name, defaultValue string) string { if value := os.Getenv(name); value != "" { return value } return defaultValue } func secHeaders(h http.Handler) http.Handler { return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { w.Header().Set("X-XSS-Protection", "1; mode=block") w.Header().Set("X-Frame-Options", "DENY") w.Header().Set("X-Content-Type-Options", "nosniff") w.Header().Set("X-Content-Type-Options", "nosniff") w.Header().Set("Content-Security-Policy", "font-src https://pagecdn.io") h.ServeHTTP(w, r) }) } type accessLog func() *zerolog.Event func (a accessLog) Print(v ...interface{}) { a().Msg(fmt.Sprint(v...)) } func addLogger(log *zerolog.Logger) func(next http.Handler) http.Handler { return func(next http.Handler) http.Handler { return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { r = r.WithContext(log.WithContext(r.Context())) next.ServeHTTP(w, r) }) } }