caddy/server/config.go

package server

import (
	"net"

	"github.com/mholt/caddy/middleware"
)

// Config configuration for a single server.
type Config struct {
	// The hostname or IP on which to serve
	Host string

	// The host address to bind on - defaults to (virtual) Host if empty
	BindHost string

	// The port to listen on
	Port string

	// The protocol (http/https) to serve with this config; only set if user explicitly specifies it
	Scheme string

	// The directory from which to serve files
	Root string

	// HTTPS configuration
	TLS TLSConfig

	// Middleware stack; map of path scope to middleware -- TODO: Support path scope?
	Middleware map[string][]middleware.Middleware

	// Startup is a list of functions (or methods) to execute at
	// server startup and restart; these are executed before any
	// parts of the server are configured, and the functions are
	// blocking. These are good for setting up middlewares and
	// starting goroutines.
	Startup []func() error

	// FirstStartup is like Startup but these functions only execute
	// during the initial startup, not on subsequent restarts.
	//
	// (Note: The server does not ever run these on its own; it is up
	// to the calling application to do so, and do so only once, as the
	// server itself has no notion whether it's a restart or not.)
	FirstStartup []func() error

	// Functions (or methods) to execute when the server quits;
	// these are executed in response to SIGINT and are blocking
	Shutdown []func() error

	// The path to the configuration file from which this was loaded
	ConfigFile string

	// The name of the application
	AppName string

	// The application's version
	AppVersion string
}

// Address returns the host:port of c as a string.
func (c Config) Address() string {
	return net.JoinHostPort(c.Host, c.Port)
}

// TLSConfig describes how TLS should be configured and used.
type TLSConfig struct {
	Enabled                  bool // will be set to true if TLS is enabled
	LetsEncryptEmail         string
	Manual                   bool // will be set to true if user provides own certs and keys
	Managed                  bool // will be set to true if config qualifies for automatic/managed HTTPS
	OnDemand                 bool // will be set to true if user enables on-demand TLS (obtain certs during handshakes)
	Ciphers                  []uint16
	ProtocolMinVersion       uint16
	ProtocolMaxVersion       uint16
	PreferServerCipherSuites bool
	ClientCerts              []string
}
Major refactoring of middleware and parser in progress 2015-05-05 01:04:17 +08:00			`package server`

			`import (`
			`"net"`

			`"github.com/mholt/caddy/middleware"`
			`)`

			`// Config configuration for a single server.`
			`type Config struct {`
			`// The hostname or IP on which to serve`
			`Host string`

Rename bindaddr to just bind 2015-05-05 13:58:08 +08:00			`// The host address to bind on - defaults to (virtual) Host if empty`
			`BindHost string`
core: add bindaddr directive, allowing you to specify what address to listen on 2015-05-05 12:38:49 +08:00
Major refactoring of middleware and parser in progress 2015-05-05 01:04:17 +08:00			`// The port to listen on`
			`Port string`

Parser separate scheme/port, refactor config loading By separating scheme and port at the parser, we are able to set the port appropriately and also keep the semantics of the scheme being specified by the user later on. The parser also stores an address' original input. Also, the config refactor makes it possible to partially load a config - valuable for determining which ones will need Let's Encrypt integration turned on during a restart. 2016-01-04 07:41:29 +08:00			`// The protocol (http/https) to serve with this config; only set if user explicitly specifies it`
			`Scheme string`

Major refactoring of middleware and parser in progress 2015-05-05 01:04:17 +08:00			`// The directory from which to serve files`
			`Root string`

			`// HTTPS configuration`
			`TLS TLSConfig`

			`// Middleware stack; map of path scope to middleware -- TODO: Support path scope?`
			`Middleware map[string][]middleware.Middleware`

startup: Only run commands at first startup We had to hack some special support into the server and caddy packages for this. There are some middlewares which should only execute commands when the original parent process first starts up. For example, someone using the startup directive to start a backend service would not expect the command to be executed every time the config was reloaded or changed - only once when they first started the original caddy process. This commit adds FirstStartup to the virtualhost config 2015-11-11 10:46:18 +08:00			`// Startup is a list of functions (or methods) to execute at`
			`// server startup and restart; these are executed before any`
			`// parts of the server are configured, and the functions are`
			`// blocking. These are good for setting up middlewares and`
			`// starting goroutines.`
Major refactoring of middleware and parser in progress 2015-05-05 01:04:17 +08:00			`Startup []func() error`

startup: Only run commands at first startup We had to hack some special support into the server and caddy packages for this. There are some middlewares which should only execute commands when the original parent process first starts up. For example, someone using the startup directive to start a backend service would not expect the command to be executed every time the config was reloaded or changed - only once when they first started the original caddy process. This commit adds FirstStartup to the virtualhost config 2015-11-11 10:46:18 +08:00			`// FirstStartup is like Startup but these functions only execute`
			`// during the initial startup, not on subsequent restarts.`
			`//`
			`// (Note: The server does not ever run these on its own; it is up`
			`// to the calling application to do so, and do so only once, as the`
			`// server itself has no notion whether it's a restart or not.)`
			`FirstStartup []func() error`

Major refactoring of middleware and parser in progress 2015-05-05 01:04:17 +08:00			`// Functions (or methods) to execute when the server quits;`
			`// these are executed in response to SIGINT and are blocking`
			`Shutdown []func() error`

			`// The path to the configuration file from which this was loaded`
			`ConfigFile string`
Consistent app name/version info; pipe config data through stdin 2015-05-05 06:23:16 +08:00
			`// The name of the application`
			`AppName string`

			`// The application's version`
			`AppVersion string`
Major refactoring of middleware and parser in progress 2015-05-05 01:04:17 +08:00			`}`

			`// Address returns the host:port of c as a string.`
			`func (c Config) Address() string {`
			`return net.JoinHostPort(c.Host, c.Port)`
			`}`

LE flags, modified tis directive, moved LE stuff to own file 2015-10-17 01:38:56 +08:00			`// TLSConfig describes how TLS should be configured and used.`
Major refactoring of middleware and parser in progress 2015-05-05 01:04:17 +08:00			`type TLSConfig struct {`
Fix HTTPS config for empty/no Caddyfile This fixes a regression introduced in recent commits that enabled TLS on the default ":2015" config. This fix is possible because On-Demand TLS is no longer implicit; it must be explicitly enabled by the user by setting a maximum number of certificates to issue. 2016-02-13 04:04:24 +08:00			`Enabled bool // will be set to true if TLS is enabled`
Major refactor of all HTTPS/TLS/ACME code Biggest change is no longer using standard library's tls.Config.getCertificate function to get a certificate during TLS handshake. Implemented our own cache which can be changed dynamically at runtime, even during TLS handshakes. As such, restarts are no longer required after certificate renewals or OCSP updates. We also allow loading multiple certificates and keys per host, even by specifying a directory (tls got a new 'load' command for that). Renamed the letsencrypt package to https in a gradual effort to become more generic; and https is more fitting for what the package does now. There are still some known bugs, e.g. reloading where a new certificate is required but port 80 isn't currently listening, will cause the challenge to fail. There's still plenty of cleanup to do and tests to write. It is especially confusing right now how we enable "on-demand" TLS during setup and keep track of that. But this change should basically work so far. 2016-02-11 15:06:05 +08:00			`LetsEncryptEmail string`
Fix HTTPS config for empty/no Caddyfile This fixes a regression introduced in recent commits that enabled TLS on the default ":2015" config. This fix is possible because On-Demand TLS is no longer implicit; it must be explicitly enabled by the user by setting a maximum number of certificates to issue. 2016-02-13 04:04:24 +08:00			`Manual bool // will be set to true if user provides own certs and keys`
			`Managed bool // will be set to true if config qualifies for automatic/managed HTTPS`
			`OnDemand bool // will be set to true if user enables on-demand TLS (obtain certs during handshakes)`
tls: Mainstream compatibility improvements, better security rating 2015-05-22 00:37:39 +08:00			`Ciphers []uint16`
			`ProtocolMinVersion uint16`
			`ProtocolMaxVersion uint16`
			`PreferServerCipherSuites bool`
tls: Client authentication 2015-06-02 13:22:11 +08:00			`ClientCerts []string`
Major refactoring of middleware and parser in progress 2015-05-05 01:04:17 +08:00			`}`