2021-05-03 02:39:06 +08:00
|
|
|
:8884
|
|
|
|
|
|
|
|
|
|
reverse_proxy 127.0.0.1:65535 {
|
2022-05-03 01:44:28 +08:00
|
|
|
@500 status 500
|
|
|
|
|
replace_status @500 400
|
|
|
|
|
|
|
|
|
|
@all status 2xx 3xx 4xx 5xx
|
|
|
|
|
replace_status @all {http.error.status_code}
|
|
|
|
|
|
|
|
|
|
replace_status {http.error.status_code}
|
2022-03-02 05:12:43 +08:00
|
|
|
|
2021-05-03 02:39:06 +08:00
|
|
|
@accel header X-Accel-Redirect *
|
|
|
|
|
handle_response @accel {
|
|
|
|
|
respond "Header X-Accel-Redirect!"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@another {
|
|
|
|
|
header X-Another *
|
|
|
|
|
}
|
|
|
|
|
handle_response @another {
|
|
|
|
|
respond "Header X-Another!"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@401 status 401
|
|
|
|
|
handle_response @401 {
|
|
|
|
|
respond "Status 401!"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
handle_response {
|
|
|
|
|
respond "Any! This should be last in the JSON!"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@403 {
|
|
|
|
|
status 403
|
|
|
|
|
}
|
|
|
|
|
handle_response @403 {
|
|
|
|
|
respond "Status 403!"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@multi {
|
|
|
|
|
status 401 403
|
|
|
|
|
status 404
|
|
|
|
|
header Foo *
|
|
|
|
|
header Bar *
|
|
|
|
|
}
|
|
|
|
|
handle_response @multi {
|
|
|
|
|
respond "Headers Foo, Bar AND statuses 401, 403 and 404!"
|
|
|
|
|
}
|
reverseproxy: copy_response and copy_response_headers for handle_response routes (#4391)
* reverseproxy: New `copy_response` handler for `handle_response` routes
Followup to #4298 and #4388.
This adds a new `copy_response` handler which may only be used in `reverse_proxy`'s `handle_response` routes, which can be used to actually copy the proxy response downstream.
Previously, if `handle_response` was used (with routes, not the status code mode), it was impossible to use the upstream's response body at all, because we would always close the body, expecting the routes to write a new body from scratch.
To implement this, I had to refactor `h.reverseProxy()` to move all the code that came after the `HandleResponse` loop into a new function. This new function `h.finalizeResponse()` takes care of preparing the response by removing extra headers, dealing with trailers, then copying the headers and body downstream.
Since basically what we want `copy_response` to do is invoke `h.finalizeResponse()` at a configurable point in time, we need to pass down the proxy handler, the response, and some other state via a new `req.WithContext(ctx)`. Wrapping a new context is pretty much the only way we have to jump a few layers in the HTTP middleware chain and let a handler pick up this information. Feels a bit dirty, but it works.
Also fixed a bug with the `http.reverse_proxy.upstream.duration` placeholder, it always had the same duration as `http.reverse_proxy.upstream.latency`, but the former was meant to be the time taken for the roundtrip _plus_ copying/writing the response.
* Delete the "Content-Length" header if we aren't copying
Fixes a bug where the Content-Length will mismatch the actual bytes written if we skipped copying the response, so we get a message like this when using curl:
```
curl: (18) transfer closed with 18 bytes remaining to read
```
To replicate:
```
{
admin off
debug
}
:8881 {
reverse_proxy 127.0.0.1:8882 {
@200 status 200
handle_response @200 {
header Foo bar
}
}
}
:8882 {
header Content-Type application/json
respond `{"hello": "world"}` 200
}
```
* Implement `copy_response_headers`, with include/exclude list support
* Apply suggestions from code review
Co-authored-by: Matt Holt <mholt@users.noreply.github.com>
2022-03-10 02:00:51 +08:00
|
|
|
|
|
|
|
|
@200 status 200
|
|
|
|
|
handle_response @200 {
|
|
|
|
|
copy_response_headers {
|
|
|
|
|
include Foo Bar
|
|
|
|
|
}
|
|
|
|
|
respond "Copied headers from the response"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@201 status 201
|
|
|
|
|
handle_response @201 {
|
|
|
|
|
header Foo "Copying the response"
|
|
|
|
|
copy_response 404
|
|
|
|
|
}
|
2021-05-03 02:39:06 +08:00
|
|
|
}
|
|
|
|
|
----------
|
|
|
|
|
{
|
|
|
|
|
"apps": {
|
|
|
|
|
"http": {
|
|
|
|
|
"servers": {
|
|
|
|
|
"srv0": {
|
|
|
|
|
"listen": [
|
|
|
|
|
":8884"
|
|
|
|
|
],
|
|
|
|
|
"routes": [
|
|
|
|
|
{
|
|
|
|
|
"handle": [
|
|
|
|
|
{
|
|
|
|
|
"handle_response": [
|
2022-03-02 05:12:43 +08:00
|
|
|
{
|
|
|
|
|
"match": {
|
|
|
|
|
"status_code": [
|
|
|
|
|
500
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"status_code": 400
|
|
|
|
|
},
|
2022-05-03 01:44:28 +08:00
|
|
|
{
|
|
|
|
|
"match": {
|
|
|
|
|
"status_code": [
|
|
|
|
|
2,
|
|
|
|
|
3,
|
|
|
|
|
4,
|
|
|
|
|
5
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"status_code": "{http.error.status_code}"
|
|
|
|
|
},
|
2021-05-03 02:39:06 +08:00
|
|
|
{
|
|
|
|
|
"match": {
|
|
|
|
|
"headers": {
|
|
|
|
|
"X-Accel-Redirect": [
|
|
|
|
|
"*"
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
"routes": [
|
|
|
|
|
{
|
|
|
|
|
"handle": [
|
|
|
|
|
{
|
|
|
|
|
"body": "Header X-Accel-Redirect!",
|
|
|
|
|
"handler": "static_response"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"match": {
|
|
|
|
|
"headers": {
|
|
|
|
|
"X-Another": [
|
|
|
|
|
"*"
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
"routes": [
|
|
|
|
|
{
|
|
|
|
|
"handle": [
|
|
|
|
|
{
|
|
|
|
|
"body": "Header X-Another!",
|
|
|
|
|
"handler": "static_response"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"match": {
|
|
|
|
|
"status_code": [
|
|
|
|
|
401
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"routes": [
|
|
|
|
|
{
|
|
|
|
|
"handle": [
|
|
|
|
|
{
|
|
|
|
|
"body": "Status 401!",
|
|
|
|
|
"handler": "static_response"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"match": {
|
|
|
|
|
"status_code": [
|
|
|
|
|
403
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"routes": [
|
|
|
|
|
{
|
|
|
|
|
"handle": [
|
|
|
|
|
{
|
|
|
|
|
"body": "Status 403!",
|
|
|
|
|
"handler": "static_response"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"match": {
|
|
|
|
|
"headers": {
|
|
|
|
|
"Bar": [
|
|
|
|
|
"*"
|
|
|
|
|
],
|
|
|
|
|
"Foo": [
|
|
|
|
|
"*"
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"status_code": [
|
|
|
|
|
401,
|
|
|
|
|
403,
|
|
|
|
|
404
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"routes": [
|
|
|
|
|
{
|
|
|
|
|
"handle": [
|
|
|
|
|
{
|
|
|
|
|
"body": "Headers Foo, Bar AND statuses 401, 403 and 404!",
|
|
|
|
|
"handler": "static_response"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
},
|
reverseproxy: copy_response and copy_response_headers for handle_response routes (#4391)
* reverseproxy: New `copy_response` handler for `handle_response` routes
Followup to #4298 and #4388.
This adds a new `copy_response` handler which may only be used in `reverse_proxy`'s `handle_response` routes, which can be used to actually copy the proxy response downstream.
Previously, if `handle_response` was used (with routes, not the status code mode), it was impossible to use the upstream's response body at all, because we would always close the body, expecting the routes to write a new body from scratch.
To implement this, I had to refactor `h.reverseProxy()` to move all the code that came after the `HandleResponse` loop into a new function. This new function `h.finalizeResponse()` takes care of preparing the response by removing extra headers, dealing with trailers, then copying the headers and body downstream.
Since basically what we want `copy_response` to do is invoke `h.finalizeResponse()` at a configurable point in time, we need to pass down the proxy handler, the response, and some other state via a new `req.WithContext(ctx)`. Wrapping a new context is pretty much the only way we have to jump a few layers in the HTTP middleware chain and let a handler pick up this information. Feels a bit dirty, but it works.
Also fixed a bug with the `http.reverse_proxy.upstream.duration` placeholder, it always had the same duration as `http.reverse_proxy.upstream.latency`, but the former was meant to be the time taken for the roundtrip _plus_ copying/writing the response.
* Delete the "Content-Length" header if we aren't copying
Fixes a bug where the Content-Length will mismatch the actual bytes written if we skipped copying the response, so we get a message like this when using curl:
```
curl: (18) transfer closed with 18 bytes remaining to read
```
To replicate:
```
{
admin off
debug
}
:8881 {
reverse_proxy 127.0.0.1:8882 {
@200 status 200
handle_response @200 {
header Foo bar
}
}
}
:8882 {
header Content-Type application/json
respond `{"hello": "world"}` 200
}
```
* Implement `copy_response_headers`, with include/exclude list support
* Apply suggestions from code review
Co-authored-by: Matt Holt <mholt@users.noreply.github.com>
2022-03-10 02:00:51 +08:00
|
|
|
{
|
|
|
|
|
"match": {
|
|
|
|
|
"status_code": [
|
|
|
|
|
200
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"routes": [
|
|
|
|
|
{
|
|
|
|
|
"handle": [
|
|
|
|
|
{
|
|
|
|
|
"handler": "copy_response_headers",
|
|
|
|
|
"include": [
|
|
|
|
|
"Foo",
|
|
|
|
|
"Bar"
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"body": "Copied headers from the response",
|
|
|
|
|
"handler": "static_response"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"match": {
|
|
|
|
|
"status_code": [
|
|
|
|
|
201
|
|
|
|
|
]
|
|
|
|
|
},
|
|
|
|
|
"routes": [
|
|
|
|
|
{
|
|
|
|
|
"handle": [
|
|
|
|
|
{
|
|
|
|
|
"handler": "headers",
|
|
|
|
|
"response": {
|
|
|
|
|
"set": {
|
|
|
|
|
"Foo": [
|
|
|
|
|
"Copying the response"
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"handler": "copy_response",
|
|
|
|
|
"status_code": 404
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
},
|
2022-05-03 01:44:28 +08:00
|
|
|
{
|
|
|
|
|
"status_code": "{http.error.status_code}"
|
|
|
|
|
},
|
2021-05-03 02:39:06 +08:00
|
|
|
{
|
|
|
|
|
"routes": [
|
|
|
|
|
{
|
|
|
|
|
"handle": [
|
|
|
|
|
{
|
|
|
|
|
"body": "Any! This should be last in the JSON!",
|
|
|
|
|
"handler": "static_response"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
],
|
|
|
|
|
"handler": "reverse_proxy",
|
|
|
|
|
"upstreams": [
|
|
|
|
|
{
|
|
|
|
|
"dial": "127.0.0.1:65535"
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
]
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|