mirror of
https://github.com/caddyserver/caddy.git
synced 2024-12-15 08:13:37 +08:00
792f1c7ed7
* caddyhttp: Escaping placeholders in CEL * Simplify some of the test cases * Implement vars and vars_regexp in CEL * dupl lint is dumb * Better consts for the placeholder CEL shortcut * Bump CEL version, register a few extensions * Refactor s390x test script for readability * Add retries for s390x to smooth over flakiness * Switch to `ph` for the CEL shortcut (match it in templates cause why not)
590 lines
16 KiB
Go
590 lines
16 KiB
Go
// Copyright 2015 Matthew Holt and The Caddy Authors
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package templates
|
|
|
|
import (
|
|
"bytes"
|
|
"fmt"
|
|
"io"
|
|
"io/fs"
|
|
"net"
|
|
"net/http"
|
|
"net/url"
|
|
"os"
|
|
"path"
|
|
"reflect"
|
|
"strconv"
|
|
"strings"
|
|
"sync"
|
|
"text/template"
|
|
"time"
|
|
|
|
"github.com/Masterminds/sprig/v3"
|
|
chromahtml "github.com/alecthomas/chroma/v2/formatters/html"
|
|
"github.com/dustin/go-humanize"
|
|
"github.com/yuin/goldmark"
|
|
highlighting "github.com/yuin/goldmark-highlighting/v2"
|
|
"github.com/yuin/goldmark/extension"
|
|
"github.com/yuin/goldmark/parser"
|
|
gmhtml "github.com/yuin/goldmark/renderer/html"
|
|
"go.uber.org/zap"
|
|
|
|
"github.com/caddyserver/caddy/v2"
|
|
"github.com/caddyserver/caddy/v2/modules/caddyhttp"
|
|
)
|
|
|
|
// TemplateContext is the TemplateContext with which HTTP templates are executed.
|
|
type TemplateContext struct {
|
|
Root http.FileSystem
|
|
Req *http.Request
|
|
Args []any // defined by arguments to funcInclude
|
|
RespHeader WrappedHeader
|
|
CustomFuncs []template.FuncMap // functions added by plugins
|
|
|
|
config *Templates
|
|
tpl *template.Template
|
|
}
|
|
|
|
// NewTemplate returns a new template intended to be evaluated with this
|
|
// context, as it is initialized with configuration from this context.
|
|
func (c *TemplateContext) NewTemplate(tplName string) *template.Template {
|
|
c.tpl = template.New(tplName).Option("missingkey=zero")
|
|
|
|
// customize delimiters, if applicable
|
|
if c.config != nil && len(c.config.Delimiters) == 2 {
|
|
c.tpl.Delims(c.config.Delimiters[0], c.config.Delimiters[1])
|
|
}
|
|
|
|
// add sprig library
|
|
c.tpl.Funcs(sprigFuncMap)
|
|
|
|
// add all custom functions
|
|
for _, funcMap := range c.CustomFuncs {
|
|
c.tpl.Funcs(funcMap)
|
|
}
|
|
|
|
// add our own library
|
|
c.tpl.Funcs(template.FuncMap{
|
|
"include": c.funcInclude,
|
|
"readFile": c.funcReadFile,
|
|
"import": c.funcImport,
|
|
"httpInclude": c.funcHTTPInclude,
|
|
"stripHTML": c.funcStripHTML,
|
|
"markdown": c.funcMarkdown,
|
|
"splitFrontMatter": c.funcSplitFrontMatter,
|
|
"listFiles": c.funcListFiles,
|
|
"fileStat": c.funcFileStat,
|
|
"env": c.funcEnv,
|
|
"placeholder": c.funcPlaceholder,
|
|
"ph": c.funcPlaceholder, // shortcut
|
|
"fileExists": c.funcFileExists,
|
|
"httpError": c.funcHTTPError,
|
|
"humanize": c.funcHumanize,
|
|
"maybe": c.funcMaybe,
|
|
"pathEscape": url.PathEscape,
|
|
})
|
|
return c.tpl
|
|
}
|
|
|
|
// OriginalReq returns the original, unmodified, un-rewritten request as
|
|
// it originally came in over the wire.
|
|
func (c TemplateContext) OriginalReq() http.Request {
|
|
or, _ := c.Req.Context().Value(caddyhttp.OriginalRequestCtxKey).(http.Request)
|
|
return or
|
|
}
|
|
|
|
// funcInclude returns the contents of filename relative to the site root and renders it in place.
|
|
// Note that included files are NOT escaped, so you should only include
|
|
// trusted files. If it is not trusted, be sure to use escaping functions
|
|
// in your template.
|
|
func (c TemplateContext) funcInclude(filename string, args ...any) (string, error) {
|
|
bodyBuf := bufPool.Get().(*bytes.Buffer)
|
|
bodyBuf.Reset()
|
|
defer bufPool.Put(bodyBuf)
|
|
|
|
err := c.readFileToBuffer(filename, bodyBuf)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
c.Args = args
|
|
|
|
err = c.executeTemplateInBuffer(filename, bodyBuf)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
return bodyBuf.String(), nil
|
|
}
|
|
|
|
// funcReadFile returns the contents of a filename relative to the site root.
|
|
// Note that included files are NOT escaped, so you should only include
|
|
// trusted files. If it is not trusted, be sure to use escaping functions
|
|
// in your template.
|
|
func (c TemplateContext) funcReadFile(filename string) (string, error) {
|
|
bodyBuf := bufPool.Get().(*bytes.Buffer)
|
|
bodyBuf.Reset()
|
|
defer bufPool.Put(bodyBuf)
|
|
|
|
err := c.readFileToBuffer(filename, bodyBuf)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
return bodyBuf.String(), nil
|
|
}
|
|
|
|
// readFileToBuffer reads a file into a buffer
|
|
func (c TemplateContext) readFileToBuffer(filename string, bodyBuf *bytes.Buffer) error {
|
|
if c.Root == nil {
|
|
return fmt.Errorf("root file system not specified")
|
|
}
|
|
|
|
file, err := c.Root.Open(filename)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer file.Close()
|
|
|
|
_, err = io.Copy(bodyBuf, file)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// funcHTTPInclude returns the body of a virtual (lightweight) request
|
|
// to the given URI on the same server. Note that included bodies
|
|
// are NOT escaped, so you should only include trusted resources.
|
|
// If it is not trusted, be sure to use escaping functions yourself.
|
|
func (c TemplateContext) funcHTTPInclude(uri string) (string, error) {
|
|
// prevent virtual request loops by counting how many levels
|
|
// deep we are; and if we get too deep, return an error
|
|
recursionCount := 1
|
|
if numStr := c.Req.Header.Get(recursionPreventionHeader); numStr != "" {
|
|
num, err := strconv.Atoi(numStr)
|
|
if err != nil {
|
|
return "", fmt.Errorf("parsing %s: %v", recursionPreventionHeader, err)
|
|
}
|
|
if num >= 3 {
|
|
return "", fmt.Errorf("virtual request cycle")
|
|
}
|
|
recursionCount = num + 1
|
|
}
|
|
|
|
buf := bufPool.Get().(*bytes.Buffer)
|
|
buf.Reset()
|
|
defer bufPool.Put(buf)
|
|
|
|
virtReq, err := http.NewRequest("GET", uri, nil)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
virtReq.Host = c.Req.Host
|
|
virtReq.RemoteAddr = "127.0.0.1:10000" // https://github.com/caddyserver/caddy/issues/5835
|
|
virtReq.Header = c.Req.Header.Clone()
|
|
virtReq.Header.Set("Accept-Encoding", "identity") // https://github.com/caddyserver/caddy/issues/4352
|
|
virtReq.Trailer = c.Req.Trailer.Clone()
|
|
virtReq.Header.Set(recursionPreventionHeader, strconv.Itoa(recursionCount))
|
|
|
|
vrw := &virtualResponseWriter{body: buf, header: make(http.Header)}
|
|
server := c.Req.Context().Value(caddyhttp.ServerCtxKey).(http.Handler)
|
|
|
|
server.ServeHTTP(vrw, virtReq)
|
|
if vrw.status >= 400 {
|
|
return "", fmt.Errorf("http %d", vrw.status)
|
|
}
|
|
|
|
err = c.executeTemplateInBuffer(uri, buf)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
return buf.String(), nil
|
|
}
|
|
|
|
// funcImport parses the filename into the current template stack. The imported
|
|
// file will be rendered within the current template by calling {{ block }} or
|
|
// {{ template }} from the standard template library. If the imported file has
|
|
// no {{ define }} blocks, the name of the import will be the path
|
|
func (c *TemplateContext) funcImport(filename string) (string, error) {
|
|
bodyBuf := bufPool.Get().(*bytes.Buffer)
|
|
bodyBuf.Reset()
|
|
defer bufPool.Put(bodyBuf)
|
|
|
|
err := c.readFileToBuffer(filename, bodyBuf)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
_, err = c.tpl.Parse(bodyBuf.String())
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
return "", nil
|
|
}
|
|
|
|
func (c *TemplateContext) executeTemplateInBuffer(tplName string, buf *bytes.Buffer) error {
|
|
c.NewTemplate(tplName)
|
|
|
|
_, err := c.tpl.Parse(buf.String())
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
buf.Reset() // reuse buffer for output
|
|
|
|
return c.tpl.Execute(buf, c)
|
|
}
|
|
|
|
func (c TemplateContext) funcPlaceholder(name string) string {
|
|
repl := c.Req.Context().Value(caddy.ReplacerCtxKey).(*caddy.Replacer)
|
|
|
|
// For safety, we don't want to allow the file placeholder in
|
|
// templates because it could be used to read arbitrary files
|
|
// if the template contents were not trusted.
|
|
repl = repl.WithoutFile()
|
|
|
|
value, _ := repl.GetString(name)
|
|
return value
|
|
}
|
|
|
|
func (TemplateContext) funcEnv(varName string) string {
|
|
return os.Getenv(varName)
|
|
}
|
|
|
|
// Cookie gets the value of a cookie with name.
|
|
func (c TemplateContext) Cookie(name string) string {
|
|
cookies := c.Req.Cookies()
|
|
for _, cookie := range cookies {
|
|
if cookie.Name == name {
|
|
return cookie.Value
|
|
}
|
|
}
|
|
return ""
|
|
}
|
|
|
|
// RemoteIP gets the IP address of the connection's remote IP.
|
|
func (c TemplateContext) RemoteIP() string {
|
|
ip, _, err := net.SplitHostPort(c.Req.RemoteAddr)
|
|
if err != nil {
|
|
return c.Req.RemoteAddr
|
|
}
|
|
return ip
|
|
}
|
|
|
|
// ClientIP gets the IP address of the real client making the request
|
|
// if the request is trusted (see trusted_proxies), otherwise returns
|
|
// the connection's remote IP.
|
|
func (c TemplateContext) ClientIP() string {
|
|
address := caddyhttp.GetVar(c.Req.Context(), caddyhttp.ClientIPVarKey).(string)
|
|
clientIP, _, err := net.SplitHostPort(address)
|
|
if err != nil {
|
|
clientIP = address // no port
|
|
}
|
|
return clientIP
|
|
}
|
|
|
|
// Host returns the hostname portion of the Host header
|
|
// from the HTTP request.
|
|
func (c TemplateContext) Host() (string, error) {
|
|
host, _, err := net.SplitHostPort(c.Req.Host)
|
|
if err != nil {
|
|
if !strings.Contains(c.Req.Host, ":") {
|
|
// common with sites served on the default port 80
|
|
return c.Req.Host, nil
|
|
}
|
|
return "", err
|
|
}
|
|
return host, nil
|
|
}
|
|
|
|
// funcStripHTML returns s without HTML tags. It is fairly naive
|
|
// but works with most valid HTML inputs.
|
|
func (TemplateContext) funcStripHTML(s string) string {
|
|
var buf bytes.Buffer
|
|
var inTag, inQuotes bool
|
|
var tagStart int
|
|
for i, ch := range s {
|
|
if inTag {
|
|
if ch == '>' && !inQuotes {
|
|
inTag = false
|
|
} else if ch == '<' && !inQuotes {
|
|
// false start
|
|
buf.WriteString(s[tagStart:i])
|
|
tagStart = i
|
|
} else if ch == '"' {
|
|
inQuotes = !inQuotes
|
|
}
|
|
continue
|
|
}
|
|
if ch == '<' {
|
|
inTag = true
|
|
tagStart = i
|
|
continue
|
|
}
|
|
buf.WriteRune(ch)
|
|
}
|
|
if inTag {
|
|
// false start
|
|
buf.WriteString(s[tagStart:])
|
|
}
|
|
return buf.String()
|
|
}
|
|
|
|
// funcMarkdown renders the markdown body as HTML. The resulting
|
|
// HTML is NOT escaped so that it can be rendered as HTML.
|
|
func (TemplateContext) funcMarkdown(input any) (string, error) {
|
|
inputStr := caddy.ToString(input)
|
|
|
|
md := goldmark.New(
|
|
goldmark.WithExtensions(
|
|
extension.GFM,
|
|
extension.Footnote,
|
|
highlighting.NewHighlighting(
|
|
highlighting.WithFormatOptions(
|
|
chromahtml.WithClasses(true),
|
|
),
|
|
),
|
|
),
|
|
goldmark.WithParserOptions(
|
|
parser.WithAutoHeadingID(),
|
|
),
|
|
goldmark.WithRendererOptions(
|
|
gmhtml.WithUnsafe(), // TODO: this is not awesome, maybe should be configurable?
|
|
),
|
|
)
|
|
|
|
buf := bufPool.Get().(*bytes.Buffer)
|
|
buf.Reset()
|
|
defer bufPool.Put(buf)
|
|
|
|
err := md.Convert([]byte(inputStr), buf)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
return buf.String(), nil
|
|
}
|
|
|
|
// splitFrontMatter parses front matter out from the beginning of input,
|
|
// and returns the separated key-value pairs and the body/content. input
|
|
// must be a "stringy" value.
|
|
func (TemplateContext) funcSplitFrontMatter(input any) (parsedMarkdownDoc, error) {
|
|
meta, body, err := extractFrontMatter(caddy.ToString(input))
|
|
if err != nil {
|
|
return parsedMarkdownDoc{}, err
|
|
}
|
|
return parsedMarkdownDoc{Meta: meta, Body: body}, nil
|
|
}
|
|
|
|
// funcListFiles reads and returns a slice of names from the given
|
|
// directory relative to the root of c.
|
|
func (c TemplateContext) funcListFiles(name string) ([]string, error) {
|
|
if c.Root == nil {
|
|
return nil, fmt.Errorf("root file system not specified")
|
|
}
|
|
|
|
dir, err := c.Root.Open(path.Clean(name))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer dir.Close()
|
|
|
|
stat, err := dir.Stat()
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
if !stat.IsDir() {
|
|
return nil, fmt.Errorf("%v is not a directory", name)
|
|
}
|
|
|
|
dirInfo, err := dir.Readdir(0)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
names := make([]string, len(dirInfo))
|
|
for i, fileInfo := range dirInfo {
|
|
names[i] = fileInfo.Name()
|
|
}
|
|
|
|
return names, nil
|
|
}
|
|
|
|
// funcFileExists returns true if filename can be opened successfully.
|
|
func (c TemplateContext) funcFileExists(filename string) (bool, error) {
|
|
if c.Root == nil {
|
|
return false, fmt.Errorf("root file system not specified")
|
|
}
|
|
file, err := c.Root.Open(filename)
|
|
if err == nil {
|
|
file.Close()
|
|
return true, nil
|
|
}
|
|
return false, nil
|
|
}
|
|
|
|
// funcFileStat returns Stat of a filename
|
|
func (c TemplateContext) funcFileStat(filename string) (fs.FileInfo, error) {
|
|
if c.Root == nil {
|
|
return nil, fmt.Errorf("root file system not specified")
|
|
}
|
|
|
|
file, err := c.Root.Open(path.Clean(filename))
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
defer file.Close()
|
|
|
|
return file.Stat()
|
|
}
|
|
|
|
// funcHTTPError returns a structured HTTP handler error. EXPERIMENTAL; SUBJECT TO CHANGE.
|
|
// Example usage: `{{if not (fileExists $includeFile)}}{{httpError 404}}{{end}}`
|
|
func (c TemplateContext) funcHTTPError(statusCode int) (bool, error) {
|
|
// Delete some headers that may have been set by the underlying
|
|
// handler (such as file_server) which may break the error response.
|
|
c.RespHeader.Header.Del("Content-Length")
|
|
c.RespHeader.Header.Del("Content-Type")
|
|
c.RespHeader.Header.Del("Etag")
|
|
c.RespHeader.Header.Del("Last-Modified")
|
|
c.RespHeader.Header.Del("Accept-Ranges")
|
|
|
|
return false, caddyhttp.Error(statusCode, nil)
|
|
}
|
|
|
|
// funcHumanize transforms size and time inputs to a human readable format.
|
|
//
|
|
// Size inputs are expected to be integers, and are formatted as a
|
|
// byte size, such as "83 MB".
|
|
//
|
|
// Time inputs are parsed using the given layout (default layout is RFC1123Z)
|
|
// and are formatted as a relative time, such as "2 weeks ago".
|
|
// See https://pkg.go.dev/time#pkg-constants for time layout docs.
|
|
func (c TemplateContext) funcHumanize(formatType, data string) (string, error) {
|
|
// The format type can optionally be followed
|
|
// by a colon to provide arguments for the format
|
|
parts := strings.Split(formatType, ":")
|
|
|
|
switch parts[0] {
|
|
case "size":
|
|
dataint, dataerr := strconv.ParseUint(data, 10, 64)
|
|
if dataerr != nil {
|
|
return "", fmt.Errorf("humanize: size cannot be parsed: %s", dataerr.Error())
|
|
}
|
|
return humanize.Bytes(dataint), nil
|
|
|
|
case "time":
|
|
timelayout := time.RFC1123Z
|
|
if len(parts) > 1 {
|
|
timelayout = parts[1]
|
|
}
|
|
|
|
dataint, dataerr := time.Parse(timelayout, data)
|
|
if dataerr != nil {
|
|
return "", fmt.Errorf("humanize: time cannot be parsed: %s", dataerr.Error())
|
|
}
|
|
return humanize.Time(dataint), nil
|
|
}
|
|
|
|
return "", fmt.Errorf("no know function was given")
|
|
}
|
|
|
|
// funcMaybe invokes the plugged-in function named functionName if it is plugged in
|
|
// (is a module in the 'http.handlers.templates.functions' namespace). If it is not
|
|
// available, a log message is emitted.
|
|
//
|
|
// The first argument is the function name, and the rest of the arguments are
|
|
// passed on to the actual function.
|
|
//
|
|
// This function is useful for executing templates that use components that may be
|
|
// considered as optional in some cases (like during local development) where you do
|
|
// not want to require everyone to have a custom Caddy build to be able to execute
|
|
// your template.
|
|
//
|
|
// NOTE: This function is EXPERIMENTAL and subject to change or removal.
|
|
func (c TemplateContext) funcMaybe(functionName string, args ...any) (any, error) {
|
|
for _, funcMap := range c.CustomFuncs {
|
|
if fn, ok := funcMap[functionName]; ok {
|
|
val := reflect.ValueOf(fn)
|
|
if val.Kind() != reflect.Func {
|
|
continue
|
|
}
|
|
argVals := make([]reflect.Value, len(args))
|
|
for i, arg := range args {
|
|
argVals[i] = reflect.ValueOf(arg)
|
|
}
|
|
returnVals := val.Call(argVals)
|
|
switch len(returnVals) {
|
|
case 0:
|
|
return "", nil
|
|
case 1:
|
|
return returnVals[0].Interface(), nil
|
|
case 2:
|
|
var err error
|
|
if !returnVals[1].IsNil() {
|
|
err = returnVals[1].Interface().(error)
|
|
}
|
|
return returnVals[0].Interface(), err
|
|
default:
|
|
return nil, fmt.Errorf("maybe %s: invalid number of return values: %d", functionName, len(returnVals))
|
|
}
|
|
}
|
|
}
|
|
c.config.logger.Named("maybe").Warn("template function could not be found; ignoring invocation", zap.String("name", functionName))
|
|
return "", nil
|
|
}
|
|
|
|
// WrappedHeader wraps niladic functions so that they
|
|
// can be used in templates. (Template functions must
|
|
// return a value.)
|
|
type WrappedHeader struct{ http.Header }
|
|
|
|
// Add adds a header field value, appending val to
|
|
// existing values for that field. It returns an
|
|
// empty string.
|
|
func (h WrappedHeader) Add(field, val string) string {
|
|
h.Header.Add(field, val)
|
|
return ""
|
|
}
|
|
|
|
// Set sets a header field value, overwriting any
|
|
// other values for that field. It returns an
|
|
// empty string.
|
|
func (h WrappedHeader) Set(field, val string) string {
|
|
h.Header.Set(field, val)
|
|
return ""
|
|
}
|
|
|
|
// Del deletes a header field. It returns an empty string.
|
|
func (h WrappedHeader) Del(field string) string {
|
|
h.Header.Del(field)
|
|
return ""
|
|
}
|
|
|
|
var bufPool = sync.Pool{
|
|
New: func() any {
|
|
return new(bytes.Buffer)
|
|
},
|
|
}
|
|
|
|
// at time of writing, sprig.FuncMap() makes a copy, thus
|
|
// involves iterating the whole map, so do it just once
|
|
var sprigFuncMap = sprig.TxtFuncMap()
|
|
|
|
const recursionPreventionHeader = "Caddy-Templates-Include"
|