Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
slapos-caddy
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
Analytics
Analytics
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Commits
Issue Boards
Open sidebar
Guillaume Hervier
slapos-caddy
Commits
0b53209e
Commit
0b53209e
authored
May 22, 2018
by
Łukasz Nowak
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
caddy-frontend: Implement enable_cache
parent
a040c759
Changes
4
Show whitespace changes
Inline
Side-by-side
Showing
4 changed files
with
78 additions
and
57 deletions
+78
-57
software/caddy-frontend/buildout.hash.cfg
software/caddy-frontend/buildout.hash.cfg
+4
-4
software/caddy-frontend/templates/apache-custom-slave-list.cfg.in
.../caddy-frontend/templates/apache-custom-slave-list.cfg.in
+2
-0
software/caddy-frontend/templates/cached-virtualhost.conf.in
software/caddy-frontend/templates/cached-virtualhost.conf.in
+40
-44
software/caddy-frontend/templates/default-virtualhost.conf.in
...ware/caddy-frontend/templates/default-virtualhost.conf.in
+32
-9
No files found.
software/caddy-frontend/buildout.hash.cfg
View file @
0b53209e
...
@@ -27,7 +27,7 @@ md5sum = 9e76028df7e93d3e32982884d5dc0913
...
@@ -27,7 +27,7 @@ md5sum = 9e76028df7e93d3e32982884d5dc0913
[template-slave-list]
[template-slave-list]
filename = templates/apache-custom-slave-list.cfg.in
filename = templates/apache-custom-slave-list.cfg.in
md5sum =
181631c2acd06dc79508711123ea3b82
md5sum =
0643a19572f65e496e1656df0971d8bd
[template-slave-configuration]
[template-slave-configuration]
filename = templates/custom-virtualhost.conf.in
filename = templates/custom-virtualhost.conf.in
...
@@ -43,7 +43,7 @@ md5sum = d1a7a759aa2801c96ecf4445a33203f2
...
@@ -43,7 +43,7 @@ md5sum = d1a7a759aa2801c96ecf4445a33203f2
[template-custom-slave-list]
[template-custom-slave-list]
filename = templates/apache-custom-slave-list.cfg.in
filename = templates/apache-custom-slave-list.cfg.in
md5sum =
181631c2acd06dc79508711123ea3b82
md5sum =
0643a19572f65e496e1656df0971d8bd
[template-not-found-html]
[template-not-found-html]
filename = templates/notfound.html
filename = templates/notfound.html
...
@@ -55,11 +55,11 @@ md5sum = 4dbb8560e4de1af2a0706b020e713fe7
...
@@ -55,11 +55,11 @@ md5sum = 4dbb8560e4de1af2a0706b020e713fe7
[template-default-slave-virtualhost]
[template-default-slave-virtualhost]
filename = templates/default-virtualhost.conf.in
filename = templates/default-virtualhost.conf.in
md5sum =
07b3a9a0f25d1a173066a39293f09cd6
md5sum =
4e06ce63dfbd38dd855f04aa7d01951f
[template-cached-slave-virtualhost]
[template-cached-slave-virtualhost]
filename = templates/cached-virtualhost.conf.in
filename = templates/cached-virtualhost.conf.in
md5sum =
42a574141f2d8e27669e3848d2e600a1
md5sum =
b66ebb546e1762419a22ac853437a9c2
[template-log-access]
[template-log-access]
filename = templates/template-log-access.conf.in
filename = templates/template-log-access.conf.in
...
...
software/caddy-frontend/templates/apache-custom-slave-list.cfg.in
View file @
0b53209e
...
@@ -323,6 +323,8 @@ extra-context =
...
@@ -323,6 +323,8 @@ extra-context =
section slave_parameter {{ slave_configuration_section_name }}
section slave_parameter {{ slave_configuration_section_name }}
raw cached_port {{ cached_port }}
raw cached_port {{ cached_port }}
raw ssl_cached_port {{ ssl_cached_port }}
raw ssl_cached_port {{ ssl_cached_port }}
raw local_ipv4 {{ local_ipv4 }}
raw local_ipv6 {{ local_ipv6 }}
{{ '\n' }}
{{ '\n' }}
{% endfor %}
{% endfor %}
...
...
software/caddy-frontend/templates/cached-virtualhost.conf.in
View file @
0b53209e
{% set TRUE_VALUES = ['y', 'yes', '1', 'true'] -%}
{% set TRUE_VALUES = ['y', 'yes', '1', 'true'] -%}
{% set server_alias_list = slave_parameter.get('server-alias', '').split() %}
{% set server_alias_list = slave_parameter.get('server-alias', '').split() %}
{% set ssl_proxy_verify = ('' ~ slave_parameter.get('ssl-proxy-verify', '')).lower() in TRUE_VALUES -%}
{% set ssl_proxy_verify = ('' ~ slave_parameter.get('ssl-proxy-verify', '')).lower() in TRUE_VALUES -%}
{%- set host_list = [slave_parameter.get('custom_domain')] + server_alias_list -%}
{%- set http_host_list = [] %}
{%- set https_host_list = [] %}
{%- for host in host_list %}
{%- do http_host_list.append('http://%s:%s' % (host, cached_port)) %}
{%- do https_host_list.append('http://%s:%s' % (host, ssl_cached_port)) %}
{%- endfor %}
#
TODO-Caddy #
Only accept generic (i.e not Zope) backends on http
# Only accept generic (i.e not Zope) backends on http
# TODO-Caddy <VirtualHost *:{{ cached_port }}>
{{ http_host_list|join(', ') }} {
# TODO-Caddy ServerName {{ slave_parameter.get('custom_domain')
}}
bind {{ local_ipv4
}}
# TODO-Caddy
{%- for server_alias in server_alias_list %
}
# TODO-Caddy
bind {{ local_ipv6 }
}
#
TODO-Caddy ServerAlias {{ server_alias }}
#
Rewrite part
# TODO-Caddy {% endfor %}
proxy / {{ slave_parameter.get('backend_url', '') }} {
# TODO-Caddy SSLProxyEngine on
transparent
timeout 600s
# TODO-Caddy {% if ssl_proxy_verify -
%}
{%- if ssl_proxy_verify
%}
# TODO-Caddy {% if 'ssl_proxy_ca_crt' in slave_parameter -
%}
{%- if 'ssl_proxy_ca_crt' in slave_parameter
%}
# TODO-Caddy SSLProxyCACertificateFile {{ slave_parameter.get('path_to_ssl_proxy_ca_crt', '') }}
# TODO-Caddy SSLProxyCACertificateFile {{ slave_parameter.get('path_to_ssl_proxy_ca_crt', '') }}
# TODO-Caddy {% endif %}
# Requires https://github.com/mholt/caddy/issues/1550 or "just adding your CA to the system's trust store"
# TODO-Caddy SSLProxyVerify require
{%- endif %}
# TODO-Caddy #SSLProxyCheckPeerCN on
{%- else %}
# TODO-Caddy SSLProxyCheckPeerExpire on
insecure_skip_verify
# TODO-Caddy {% endif %}
{%- endif %}
# TODO-Caddy # Rewrite part
}
# TODO-Caddy ProxyPreserveHost On
}
# TODO-Caddy ProxyTimeout 600
# TODO-Caddy RewriteEngine On
# TODO-Caddy
# TODO-Caddy RewriteRule ^/(.*)$ {{ slave_parameter.get('backend_url', '') }}/$1 [L,P]
# TODO-Caddy </VirtualHost>
# TODO-Caddy <VirtualHost *:{{ ssl_cached_port }}>
{{ https_host_list|join(', ') }} {
# TODO-Caddy ServerName {{ slave_parameter.get('custom_domain')
}}
bind {{ local_ipv4
}}
# TODO-Caddy
{%- for server_alias in server_alias_list %
}
# TODO-Caddy
bind {{ local_ipv6 }
}
#
TODO-Caddy ServerAlias {{ server_alias
}}
#
# tls {{ slave_parameter.get('path_to_ssl_crt', slave_parameter.get('login_certificate')) }} {{ slave_parameter.get('path_to_ssl_key', slave_parameter.get('login_key'))
}}
# TODO-Caddy {% endfor %}
proxy / {{ slave_parameter.get('https_backend_url', '') }} {
# TODO-Caddy SSLProxyEngine on
transparent
# TODO-Caddy
timeout 600s
# TODO-Caddy {% if ssl_proxy_verify -
%}
{%- if ssl_proxy_verify
%}
# TODO-Caddy {% if 'ssl_proxy_ca_crt' in slave_parameter -
%}
{%- if 'ssl_proxy_ca_crt' in slave_parameter
%}
# TODO-Caddy SSLProxyCACertificateFile {{ slave_parameter.get('path_to_ssl_proxy_ca_crt', '') }}
# TODO-Caddy SSLProxyCACertificateFile {{ slave_parameter.get('path_to_ssl_proxy_ca_crt', '') }}
# TODO-Caddy {% endif %}
# Requires https://github.com/mholt/caddy/issues/1550 or "just adding your CA to the system's trust store"
# TODO-Caddy SSLProxyVerify require
{%- endif %}
# TODO-Caddy #SSLProxyCheckPeerCN on
{%- else %}
# TODO-Caddy SSLProxyCheckPeerExpire on
insecure_skip_verify
# TODO-Caddy {% endif %}
{%- endif %}
# TODO-Caddy # Rewrite part
}
# TODO-Caddy ProxyPreserveHost On
}
# TODO-Caddy ProxyTimeout 600
# TODO-Caddy RewriteEngine On
# TODO-Caddy
# TODO-Caddy RewriteRule ^/(.*)$ {{ slave_parameter.get('https_backend_url', '') }}/$1 [L,P]
# TODO-Caddy </VirtualHost>
# TODO-Caddy
software/caddy-frontend/templates/default-virtualhost.conf.in
View file @
0b53209e
...
@@ -39,15 +39,6 @@
...
@@ -39,15 +39,6 @@
# TODO-Caddy SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:HIGH:!aNULL:!MD5
# TODO-Caddy SSLCipherSuite ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:HIGH:!aNULL:!MD5
# TODO-Caddy SSLHonorCipherOrder on
# TODO-Caddy SSLHonorCipherOrder on
{% if disable_via_header %}
# TODO-Caddy Header unset Via
{% endif -%}
{% if disable_no_cache_header %}
# TODO-Caddy RequestHeader unset Cache-Control
# TODO-Caddy RequestHeader unset Pragma
{% endif -%}
{%- for disabled_cookie in disabled_cookie_list %}
{%- for disabled_cookie in disabled_cookie_list %}
# TODO-Caddy {{' RequestHeader edit Cookie "(^%(disabled_cookie)s=[^;]*; |; %(disabled_cookie)s=[^;]*|^%(disabled_cookie)s=[^;]*$)" ""' % dict(disabled_cookie=disabled_cookie) }}
# TODO-Caddy {{' RequestHeader edit Cookie "(^%(disabled_cookie)s=[^;]*; |; %(disabled_cookie)s=[^;]*|^%(disabled_cookie)s=[^;]*$)" ""' % dict(disabled_cookie=disabled_cookie) }}
{% endfor -%}
{% endfor -%}
...
@@ -58,6 +49,14 @@
...
@@ -58,6 +49,14 @@
{% if slave_type == 'zope' and backend_url -%}
{% if slave_type == 'zope' and backend_url -%}
proxy / {{ backend_url }} {
proxy / {{ backend_url }} {
{% if disable_via_header %}
header_downstream -Via
{% endif -%}
{% if disable_no_cache_header %}
header_upstream -Cache-Control
header_upstream -Pragma
{% endif -%}
transparent
transparent
timeout 600s
timeout 600s
{%- if ssl_proxy_verify %}
{%- if ssl_proxy_verify %}
...
@@ -92,6 +91,14 @@
...
@@ -92,6 +91,14 @@
{% endif -%}
{% endif -%}
{%- if backend_url %}
{%- if backend_url %}
proxy / {{ backend_url }} {
proxy / {{ backend_url }} {
{% if disable_via_header %}
header_downstream -Via
{% endif -%}
{% if disable_no_cache_header %}
header_upstream -Cache-Control
header_upstream -Pragma
{% endif -%}
transparent
transparent
timeout 600s
timeout 600s
{%- if ssl_proxy_verify %}
{%- if ssl_proxy_verify %}
...
@@ -145,6 +152,14 @@
...
@@ -145,6 +152,14 @@
}
}
{% elif slave_type == 'zope' and backend_url -%}
{% elif slave_type == 'zope' and backend_url -%}
proxy / {{ backend_url }} {
proxy / {{ backend_url }} {
{% if disable_via_header %}
header_downstream -Via
{% endif -%}
{% if disable_no_cache_header %}
header_upstream -Cache-Control
header_upstream -Pragma
{% endif -%}
transparent
transparent
timeout 600s
timeout 600s
{%- if ssl_proxy_verify %}
{%- if ssl_proxy_verify %}
...
@@ -175,6 +190,14 @@
...
@@ -175,6 +190,14 @@
{% endif -%}
{% endif -%}
{%- if slave_parameter.get('url', '') %}
{%- if slave_parameter.get('url', '') %}
proxy / {{ slave_parameter.get('url', '') }} {
proxy / {{ slave_parameter.get('url', '') }} {
{% if disable_via_header %}
header_downstream -Via
{% endif -%}
{% if disable_no_cache_header %}
header_upstream -Cache-Control
header_upstream -Pragma
{% endif -%}
transparent
transparent
timeout 600s
timeout 600s
{%- if ssl_proxy_verify %}
{%- if ssl_proxy_verify %}
...
...
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment