mirror of
https://github.com/fatedier/frp.git
synced 2025-01-13 00:04:49 +07:00
parent
a821db3f45
commit
3621aad1c1
@ -62,7 +62,7 @@ func (svr *Service) apiReload(w http.ResponseWriter, r *http.Request) {
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
pxyCfgs, visitorCfgs, err := config.LoadAllConfFromIni(svr.cfg.User, content, newCommonCfg.Start)
|
pxyCfgs, visitorCfgs, err := config.LoadAllProxyConfsFromIni(svr.cfg.User, content, newCommonCfg.Start)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
res.Code = 400
|
res.Code = 400
|
||||||
res.Msg = err.Error()
|
res.Msg = err.Error()
|
||||||
@ -243,7 +243,7 @@ func (svr *Service) apiGetConfig(w http.ResponseWriter, r *http.Request) {
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
rows := strings.Split(content, "\n")
|
rows := strings.Split(string(content), "\n")
|
||||||
newRows := make([]string, 0, len(rows))
|
newRows := make([]string, 0, len(rows))
|
||||||
for _, row := range rows {
|
for _, row := range rows {
|
||||||
row = strings.TrimSpace(row)
|
row = strings.TrimSpace(row)
|
||||||
|
@ -148,7 +148,7 @@ func (pxy *TCPProxy) Close() {
|
|||||||
}
|
}
|
||||||
|
|
||||||
func (pxy *TCPProxy) InWorkConn(conn net.Conn, m *msg.StartWorkConn) {
|
func (pxy *TCPProxy) InWorkConn(conn net.Conn, m *msg.StartWorkConn) {
|
||||||
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, &pxy.cfg.BaseProxyConf, pxy.limiter,
|
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, pxy.cfg.GetBaseInfo(), pxy.limiter,
|
||||||
conn, []byte(pxy.clientCfg.Token), m)
|
conn, []byte(pxy.clientCfg.Token), m)
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -177,7 +177,7 @@ func (pxy *TCPMuxProxy) Close() {
|
|||||||
}
|
}
|
||||||
|
|
||||||
func (pxy *TCPMuxProxy) InWorkConn(conn net.Conn, m *msg.StartWorkConn) {
|
func (pxy *TCPMuxProxy) InWorkConn(conn net.Conn, m *msg.StartWorkConn) {
|
||||||
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, &pxy.cfg.BaseProxyConf, pxy.limiter,
|
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, pxy.cfg.GetBaseInfo(), pxy.limiter,
|
||||||
conn, []byte(pxy.clientCfg.Token), m)
|
conn, []byte(pxy.clientCfg.Token), m)
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -206,7 +206,7 @@ func (pxy *HTTPProxy) Close() {
|
|||||||
}
|
}
|
||||||
|
|
||||||
func (pxy *HTTPProxy) InWorkConn(conn net.Conn, m *msg.StartWorkConn) {
|
func (pxy *HTTPProxy) InWorkConn(conn net.Conn, m *msg.StartWorkConn) {
|
||||||
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, &pxy.cfg.BaseProxyConf, pxy.limiter,
|
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, pxy.cfg.GetBaseInfo(), pxy.limiter,
|
||||||
conn, []byte(pxy.clientCfg.Token), m)
|
conn, []byte(pxy.clientCfg.Token), m)
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -235,7 +235,7 @@ func (pxy *HTTPSProxy) Close() {
|
|||||||
}
|
}
|
||||||
|
|
||||||
func (pxy *HTTPSProxy) InWorkConn(conn net.Conn, m *msg.StartWorkConn) {
|
func (pxy *HTTPSProxy) InWorkConn(conn net.Conn, m *msg.StartWorkConn) {
|
||||||
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, &pxy.cfg.BaseProxyConf, pxy.limiter,
|
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, pxy.cfg.GetBaseInfo(), pxy.limiter,
|
||||||
conn, []byte(pxy.clientCfg.Token), m)
|
conn, []byte(pxy.clientCfg.Token), m)
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -264,7 +264,7 @@ func (pxy *STCPProxy) Close() {
|
|||||||
}
|
}
|
||||||
|
|
||||||
func (pxy *STCPProxy) InWorkConn(conn net.Conn, m *msg.StartWorkConn) {
|
func (pxy *STCPProxy) InWorkConn(conn net.Conn, m *msg.StartWorkConn) {
|
||||||
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, &pxy.cfg.BaseProxyConf, pxy.limiter,
|
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, pxy.cfg.GetBaseInfo(), pxy.limiter,
|
||||||
conn, []byte(pxy.clientCfg.Token), m)
|
conn, []byte(pxy.clientCfg.Token), m)
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -410,7 +410,7 @@ func (pxy *XTCPProxy) InWorkConn(conn net.Conn, m *msg.StartWorkConn) {
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, &pxy.cfg.BaseProxyConf, pxy.limiter,
|
HandleTCPWorkConnection(pxy.ctx, &pxy.cfg.LocalSvrConf, pxy.proxyPlugin, pxy.cfg.GetBaseInfo(), pxy.limiter,
|
||||||
muxConn, []byte(pxy.cfg.Sk), m)
|
muxConn, []byte(pxy.cfg.Sk), m)
|
||||||
}
|
}
|
||||||
|
|
||||||
|
@ -47,7 +47,7 @@ var httpCmd = &cobra.Command{
|
|||||||
Use: "http",
|
Use: "http",
|
||||||
Short: "Run frpc with a single http proxy",
|
Short: "Run frpc with a single http proxy",
|
||||||
RunE: func(cmd *cobra.Command, args []string) error {
|
RunE: func(cmd *cobra.Command, args []string) error {
|
||||||
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, "")
|
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, nil)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fmt.Println(err)
|
fmt.Println(err)
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
|
@ -43,7 +43,7 @@ var httpsCmd = &cobra.Command{
|
|||||||
Use: "https",
|
Use: "https",
|
||||||
Short: "Run frpc with a single https proxy",
|
Short: "Run frpc with a single https proxy",
|
||||||
RunE: func(cmd *cobra.Command, args []string) error {
|
RunE: func(cmd *cobra.Command, args []string) error {
|
||||||
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, "")
|
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, nil)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fmt.Println(err)
|
fmt.Println(err)
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
|
@ -129,9 +129,9 @@ func handleSignal(svr *client.Service) {
|
|||||||
close(kcpDoneCh)
|
close(kcpDoneCh)
|
||||||
}
|
}
|
||||||
|
|
||||||
func parseClientCommonCfg(fileType int, content string) (cfg config.ClientCommonConf, err error) {
|
func parseClientCommonCfg(fileType int, source []byte) (cfg config.ClientCommonConf, err error) {
|
||||||
if fileType == CfgFileTypeIni {
|
if fileType == CfgFileTypeIni {
|
||||||
cfg, err = parseClientCommonCfgFromIni(content)
|
cfg, err = config.UnmarshalClientConfFromIni(source)
|
||||||
} else if fileType == CfgFileTypeCmd {
|
} else if fileType == CfgFileTypeCmd {
|
||||||
cfg, err = parseClientCommonCfgFromCmd()
|
cfg, err = parseClientCommonCfgFromCmd()
|
||||||
}
|
}
|
||||||
@ -146,14 +146,6 @@ func parseClientCommonCfg(fileType int, content string) (cfg config.ClientCommon
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
func parseClientCommonCfgFromIni(content string) (config.ClientCommonConf, error) {
|
|
||||||
cfg, err := config.UnmarshalClientConfFromIni(content)
|
|
||||||
if err != nil {
|
|
||||||
return config.ClientCommonConf{}, err
|
|
||||||
}
|
|
||||||
return cfg, err
|
|
||||||
}
|
|
||||||
|
|
||||||
func parseClientCommonCfgFromCmd() (cfg config.ClientCommonConf, err error) {
|
func parseClientCommonCfgFromCmd() (cfg config.ClientCommonConf, err error) {
|
||||||
cfg = config.GetDefaultClientConf()
|
cfg = config.GetDefaultClientConf()
|
||||||
|
|
||||||
@ -191,7 +183,7 @@ func parseClientCommonCfgFromCmd() (cfg config.ClientCommonConf, err error) {
|
|||||||
}
|
}
|
||||||
|
|
||||||
func runClient(cfgFilePath string) (err error) {
|
func runClient(cfgFilePath string) (err error) {
|
||||||
var content string
|
var content []byte
|
||||||
content, err = config.GetRenderedConfFromFile(cfgFilePath)
|
content, err = config.GetRenderedConfFromFile(cfgFilePath)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return
|
return
|
||||||
@ -202,9 +194,9 @@ func runClient(cfgFilePath string) (err error) {
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
pxyCfgs, visitorCfgs, err := config.LoadAllConfFromIni(cfg.User, content, cfg.Start)
|
pxyCfgs, visitorCfgs, err := config.LoadAllProxyConfsFromIni(cfg.User, content, cfg.Start)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
err = startService(cfg, pxyCfgs, visitorCfgs, cfgFilePath)
|
err = startService(cfg, pxyCfgs, visitorCfgs, cfgFilePath)
|
||||||
|
@ -45,7 +45,7 @@ var stcpCmd = &cobra.Command{
|
|||||||
Use: "stcp",
|
Use: "stcp",
|
||||||
Short: "Run frpc with a single stcp proxy",
|
Short: "Run frpc with a single stcp proxy",
|
||||||
RunE: func(cmd *cobra.Command, args []string) error {
|
RunE: func(cmd *cobra.Command, args []string) error {
|
||||||
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, "")
|
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, nil)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fmt.Println(err)
|
fmt.Println(err)
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
|
@ -45,7 +45,7 @@ var sudpCmd = &cobra.Command{
|
|||||||
Use: "sudp",
|
Use: "sudp",
|
||||||
Short: "Run frpc with a single sudp proxy",
|
Short: "Run frpc with a single sudp proxy",
|
||||||
RunE: func(cmd *cobra.Command, args []string) error {
|
RunE: func(cmd *cobra.Command, args []string) error {
|
||||||
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, "")
|
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, nil)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fmt.Println(err)
|
fmt.Println(err)
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
|
@ -41,7 +41,7 @@ var tcpCmd = &cobra.Command{
|
|||||||
Use: "tcp",
|
Use: "tcp",
|
||||||
Short: "Run frpc with a single tcp proxy",
|
Short: "Run frpc with a single tcp proxy",
|
||||||
RunE: func(cmd *cobra.Command, args []string) error {
|
RunE: func(cmd *cobra.Command, args []string) error {
|
||||||
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, "")
|
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, nil)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fmt.Println(err)
|
fmt.Println(err)
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
|
@ -44,7 +44,7 @@ var tcpMuxCmd = &cobra.Command{
|
|||||||
Use: "tcpmux",
|
Use: "tcpmux",
|
||||||
Short: "Run frpc with a single tcpmux proxy",
|
Short: "Run frpc with a single tcpmux proxy",
|
||||||
RunE: func(cmd *cobra.Command, args []string) error {
|
RunE: func(cmd *cobra.Command, args []string) error {
|
||||||
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, "")
|
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, nil)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fmt.Println(err)
|
fmt.Println(err)
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
|
@ -41,7 +41,7 @@ var udpCmd = &cobra.Command{
|
|||||||
Use: "udp",
|
Use: "udp",
|
||||||
Short: "Run frpc with a single udp proxy",
|
Short: "Run frpc with a single udp proxy",
|
||||||
RunE: func(cmd *cobra.Command, args []string) error {
|
RunE: func(cmd *cobra.Command, args []string) error {
|
||||||
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, "")
|
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, nil)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fmt.Println(err)
|
fmt.Println(err)
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
|
@ -45,7 +45,7 @@ var xtcpCmd = &cobra.Command{
|
|||||||
Use: "xtcp",
|
Use: "xtcp",
|
||||||
Short: "Run frpc with a single xtcp proxy",
|
Short: "Run frpc with a single xtcp proxy",
|
||||||
RunE: func(cmd *cobra.Command, args []string) error {
|
RunE: func(cmd *cobra.Command, args []string) error {
|
||||||
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, "")
|
clientCfg, err := parseClientCommonCfg(CfgFileTypeCmd, nil)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
fmt.Println(err)
|
fmt.Println(err)
|
||||||
os.Exit(1)
|
os.Exit(1)
|
||||||
|
@ -106,7 +106,7 @@ var rootCmd = &cobra.Command{
|
|||||||
var err error
|
var err error
|
||||||
if cfgFile != "" {
|
if cfgFile != "" {
|
||||||
log.Info("frps uses config file: %s", cfgFile)
|
log.Info("frps uses config file: %s", cfgFile)
|
||||||
var content string
|
var content []byte
|
||||||
content, err = config.GetRenderedConfFromFile(cfgFile)
|
content, err = config.GetRenderedConfFromFile(cfgFile)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
@ -114,7 +114,7 @@ var rootCmd = &cobra.Command{
|
|||||||
cfg, err = parseServerCommonCfg(CfgFileTypeIni, content)
|
cfg, err = parseServerCommonCfg(CfgFileTypeIni, content)
|
||||||
} else {
|
} else {
|
||||||
log.Info("frps uses command line arguments for config")
|
log.Info("frps uses command line arguments for config")
|
||||||
cfg, err = parseServerCommonCfg(CfgFileTypeCmd, "")
|
cfg, err = parseServerCommonCfg(CfgFileTypeCmd, nil)
|
||||||
}
|
}
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
@ -135,9 +135,9 @@ func Execute() {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func parseServerCommonCfg(fileType int, content string) (cfg config.ServerCommonConf, err error) {
|
func parseServerCommonCfg(fileType int, source []byte) (cfg config.ServerCommonConf, err error) {
|
||||||
if fileType == CfgFileTypeIni {
|
if fileType == CfgFileTypeIni {
|
||||||
cfg, err = parseServerCommonCfgFromIni(content)
|
cfg, err = config.UnmarshalServerConfFromIni(source)
|
||||||
} else if fileType == CfgFileTypeCmd {
|
} else if fileType == CfgFileTypeCmd {
|
||||||
cfg, err = parseServerCommonCfgFromCmd()
|
cfg, err = parseServerCommonCfgFromCmd()
|
||||||
}
|
}
|
||||||
@ -152,14 +152,6 @@ func parseServerCommonCfg(fileType int, content string) (cfg config.ServerCommon
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
func parseServerCommonCfgFromIni(content string) (config.ServerCommonConf, error) {
|
|
||||||
cfg, err := config.UnmarshalServerConfFromIni(content)
|
|
||||||
if err != nil {
|
|
||||||
return config.ServerCommonConf{}, err
|
|
||||||
}
|
|
||||||
return cfg, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
func parseServerCommonCfgFromCmd() (cfg config.ServerCommonConf, err error) {
|
func parseServerCommonCfgFromCmd() (cfg config.ServerCommonConf, err error) {
|
||||||
cfg = config.GetDefaultServerConf()
|
cfg = config.GetDefaultServerConf()
|
||||||
|
|
||||||
|
2
go.mod
2
go.mod
@ -23,6 +23,7 @@ require (
|
|||||||
github.com/prometheus/client_golang v1.4.1
|
github.com/prometheus/client_golang v1.4.1
|
||||||
github.com/rakyll/statik v0.1.1
|
github.com/rakyll/statik v0.1.1
|
||||||
github.com/rodaine/table v1.0.0
|
github.com/rodaine/table v1.0.0
|
||||||
|
github.com/smartystreets/goconvey v1.6.4 // indirect
|
||||||
github.com/spf13/cobra v0.0.3
|
github.com/spf13/cobra v0.0.3
|
||||||
github.com/stretchr/testify v1.4.0
|
github.com/stretchr/testify v1.4.0
|
||||||
github.com/templexxx/cpufeat v0.0.0-20170927014610-3794dfbfb047 // indirect
|
github.com/templexxx/cpufeat v0.0.0-20170927014610-3794dfbfb047 // indirect
|
||||||
@ -34,6 +35,7 @@ require (
|
|||||||
golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d
|
golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d
|
||||||
golang.org/x/sys v0.0.0-20200602225109-6fdc65e7d980 // indirect
|
golang.org/x/sys v0.0.0-20200602225109-6fdc65e7d980 // indirect
|
||||||
golang.org/x/time v0.0.0-20191024005414-555d28b269f0
|
golang.org/x/time v0.0.0-20191024005414-555d28b269f0
|
||||||
|
gopkg.in/ini.v1 v1.62.0
|
||||||
gopkg.in/square/go-jose.v2 v2.4.1 // indirect
|
gopkg.in/square/go-jose.v2 v2.4.1 // indirect
|
||||||
k8s.io/apimachinery v0.18.3
|
k8s.io/apimachinery v0.18.3
|
||||||
)
|
)
|
12
go.sum
12
go.sum
@ -72,6 +72,8 @@ github.com/google/uuid v1.1.1 h1:Gkbcsh/GbpXz7lPftLA3P6TYMwjCLYm83jiFQZF/3gY=
|
|||||||
github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
|
github.com/google/uuid v1.1.1/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
|
||||||
github.com/googleapis/gnostic v0.0.0-20170729233727-0c5108395e2d/go.mod h1:sJBsCZ4ayReDTBIg8b9dl28c5xFWyhBTVRp3pOg5EKY=
|
github.com/googleapis/gnostic v0.0.0-20170729233727-0c5108395e2d/go.mod h1:sJBsCZ4ayReDTBIg8b9dl28c5xFWyhBTVRp3pOg5EKY=
|
||||||
github.com/googleapis/gnostic v0.1.0/go.mod h1:sJBsCZ4ayReDTBIg8b9dl28c5xFWyhBTVRp3pOg5EKY=
|
github.com/googleapis/gnostic v0.1.0/go.mod h1:sJBsCZ4ayReDTBIg8b9dl28c5xFWyhBTVRp3pOg5EKY=
|
||||||
|
github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1 h1:EGx4pi6eqNxGaHF6qqu48+N2wcFQ5qg5FXgOdqsJ5d8=
|
||||||
|
github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
|
||||||
github.com/gorilla/mux v1.7.3 h1:gnP5JzjVOuiZD07fKKToCAOjS0yOpj/qPETTXCCS6hw=
|
github.com/gorilla/mux v1.7.3 h1:gnP5JzjVOuiZD07fKKToCAOjS0yOpj/qPETTXCCS6hw=
|
||||||
github.com/gorilla/mux v1.7.3/go.mod h1:1lud6UwP+6orDFRuTfBEV8e9/aOM/c4fVVCaMa2zaAs=
|
github.com/gorilla/mux v1.7.3/go.mod h1:1lud6UwP+6orDFRuTfBEV8e9/aOM/c4fVVCaMa2zaAs=
|
||||||
github.com/gorilla/websocket v1.4.0 h1:WDFjx/TMzVgy9VdMMQi2K2Emtwi2QcUQsztZ/zLaH/Q=
|
github.com/gorilla/websocket v1.4.0 h1:WDFjx/TMzVgy9VdMMQi2K2Emtwi2QcUQsztZ/zLaH/Q=
|
||||||
@ -85,6 +87,8 @@ github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANyt
|
|||||||
github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
|
github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
|
||||||
github.com/json-iterator/go v1.1.8/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
|
github.com/json-iterator/go v1.1.8/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
|
||||||
github.com/json-iterator/go v1.1.9/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
|
github.com/json-iterator/go v1.1.9/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
|
||||||
|
github.com/jtolds/gls v4.20.0+incompatible h1:xdiiI2gbIgH/gLH7ADydsJ1uDOEzR8yvV7C0MuV77Wo=
|
||||||
|
github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU=
|
||||||
github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w=
|
github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w=
|
||||||
github.com/kisielk/errcheck v1.2.0/go.mod h1:/BMXB+zMLi60iA8Vv6Ksmxu/1UDYcXs4uQLJ+jE2L00=
|
github.com/kisielk/errcheck v1.2.0/go.mod h1:/BMXB+zMLi60iA8Vv6Ksmxu/1UDYcXs4uQLJ+jE2L00=
|
||||||
github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
|
github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
|
||||||
@ -154,6 +158,10 @@ github.com/rodaine/table v1.0.0 h1:UaCJG5Axc/cNXVGXqnCrffm1KxP0OfYLe1HuJLf5sFY=
|
|||||||
github.com/rodaine/table v1.0.0/go.mod h1:YAUzwPOji0DUJNEvggdxyQcUAl4g3hDRcFlyjnnR51I=
|
github.com/rodaine/table v1.0.0/go.mod h1:YAUzwPOji0DUJNEvggdxyQcUAl4g3hDRcFlyjnnR51I=
|
||||||
github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
|
github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
|
||||||
github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
|
github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
|
||||||
|
github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d h1:zE9ykElWQ6/NYmHa3jpm/yHnI4xSofP+UP6SpjHcSeM=
|
||||||
|
github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc=
|
||||||
|
github.com/smartystreets/goconvey v1.6.4 h1:fv0U8FUIMPNf1L9lnHLvLhgicrIVChEkdzIKYqbNC9s=
|
||||||
|
github.com/smartystreets/goconvey v1.6.4/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA=
|
||||||
github.com/spf13/cobra v0.0.3 h1:ZlrZ4XsMRm04Fr5pSFxBgfND2EBVa1nLpiy1stUsX/8=
|
github.com/spf13/cobra v0.0.3 h1:ZlrZ4XsMRm04Fr5pSFxBgfND2EBVa1nLpiy1stUsX/8=
|
||||||
github.com/spf13/cobra v0.0.3/go.mod h1:1l0Ry5zgKvJasoi3XT1TypsSe7PqH0Sj9dhYf7v3XqQ=
|
github.com/spf13/cobra v0.0.3/go.mod h1:1l0Ry5zgKvJasoi3XT1TypsSe7PqH0Sj9dhYf7v3XqQ=
|
||||||
github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
|
github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
|
||||||
@ -185,6 +193,7 @@ golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73r
|
|||||||
golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
|
golang.org/x/net v0.0.0-20181114220301-adae6a3d119a/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
|
||||||
golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
|
golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
|
||||||
golang.org/x/net v0.0.0-20190228165749-92fc7df08ae7/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
|
golang.org/x/net v0.0.0-20190228165749-92fc7df08ae7/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
|
||||||
|
golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
|
||||||
golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
|
golang.org/x/net v0.0.0-20190613194153-d28f0bde5980/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
|
||||||
golang.org/x/net v0.0.0-20191004110552-13f9640d40b9/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
|
golang.org/x/net v0.0.0-20191004110552-13f9640d40b9/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
|
||||||
golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7 h1:AeiKBIuRw3UomYXSbLy0Mc2dDLfdtbT/IVn4keq83P0=
|
golang.org/x/net v0.0.0-20200520004742-59133d7f0dd7 h1:AeiKBIuRw3UomYXSbLy0Mc2dDLfdtbT/IVn4keq83P0=
|
||||||
@ -221,6 +230,7 @@ golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxb
|
|||||||
golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
|
golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
|
||||||
golang.org/x/tools v0.0.0-20181011042414-1f849cf54d09/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
|
golang.org/x/tools v0.0.0-20181011042414-1f849cf54d09/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
|
||||||
golang.org/x/tools v0.0.0-20181030221726-6c7e314b6563/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
|
golang.org/x/tools v0.0.0-20181030221726-6c7e314b6563/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
|
||||||
|
golang.org/x/tools v0.0.0-20190328211700-ab21143f2384/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
|
||||||
golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543 h1:E7g+9GITq07hpfrRu66IVDexMakfv52eLZ2CXBWiKr4=
|
golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543 h1:E7g+9GITq07hpfrRu66IVDexMakfv52eLZ2CXBWiKr4=
|
||||||
golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
|
golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
|
||||||
google.golang.org/appengine v1.4.0 h1:/wp5JvzpHIxhs/dumFmF7BXTf3Z+dd4uXta4kVyO508=
|
google.golang.org/appengine v1.4.0 h1:/wp5JvzpHIxhs/dumFmF7BXTf3Z+dd4uXta4kVyO508=
|
||||||
@ -239,6 +249,8 @@ gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15 h1:YR8cESwS4TdDjEe65xsg0ogR
|
|||||||
gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
|
gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
|
||||||
gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
|
gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMys=
|
||||||
gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
|
gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
|
||||||
|
gopkg.in/ini.v1 v1.62.0 h1:duBzk771uxoUuOlyRLkHsygud9+5lrlGjdFBb4mSKDU=
|
||||||
|
gopkg.in/ini.v1 v1.62.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
|
||||||
gopkg.in/square/go-jose.v2 v2.4.1 h1:H0TmLt7/KmzlrDOpa1F+zr0Tk90PbJYBfsVUmRLrf9Y=
|
gopkg.in/square/go-jose.v2 v2.4.1 h1:H0TmLt7/KmzlrDOpa1F+zr0Tk90PbJYBfsVUmRLrf9Y=
|
||||||
gopkg.in/square/go-jose.v2 v2.4.1/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
|
gopkg.in/square/go-jose.v2 v2.4.1/go.mod h1:M9dMgbHiYLoDGQrXy7OpJDJWiKiU//h+vD76mk0e1AI=
|
||||||
gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
|
gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
|
||||||
|
@ -19,101 +19,58 @@ import (
|
|||||||
|
|
||||||
"github.com/fatedier/frp/pkg/consts"
|
"github.com/fatedier/frp/pkg/consts"
|
||||||
"github.com/fatedier/frp/pkg/msg"
|
"github.com/fatedier/frp/pkg/msg"
|
||||||
|
|
||||||
"github.com/vaughan0/go-ini"
|
|
||||||
)
|
)
|
||||||
|
|
||||||
type baseConfig struct {
|
type BaseConfig struct {
|
||||||
// AuthenticationMethod specifies what authentication method to use to
|
// AuthenticationMethod specifies what authentication method to use to
|
||||||
// authenticate frpc with frps. If "token" is specified - token will be
|
// authenticate frpc with frps. If "token" is specified - token will be
|
||||||
// read into login message. If "oidc" is specified - OIDC (Open ID Connect)
|
// read into login message. If "oidc" is specified - OIDC (Open ID Connect)
|
||||||
// token will be issued using OIDC settings. By default, this value is "token".
|
// token will be issued using OIDC settings. By default, this value is "token".
|
||||||
AuthenticationMethod string `json:"authentication_method"`
|
AuthenticationMethod string `ini:"authentication_method" json:"authentication_method"`
|
||||||
// AuthenticateHeartBeats specifies whether to include authentication token in
|
// AuthenticateHeartBeats specifies whether to include authentication token in
|
||||||
// heartbeats sent to frps. By default, this value is false.
|
// heartbeats sent to frps. By default, this value is false.
|
||||||
AuthenticateHeartBeats bool `json:"authenticate_heartbeats"`
|
AuthenticateHeartBeats bool `ini:"authenticate_heartbeats" json:"authenticate_heartbeats"`
|
||||||
// AuthenticateNewWorkConns specifies whether to include authentication token in
|
// AuthenticateNewWorkConns specifies whether to include authentication token in
|
||||||
// new work connections sent to frps. By default, this value is false.
|
// new work connections sent to frps. By default, this value is false.
|
||||||
AuthenticateNewWorkConns bool `json:"authenticate_new_work_conns"`
|
AuthenticateNewWorkConns bool `ini:"authenticate_new_work_conns" json:"authenticate_new_work_conns"`
|
||||||
}
|
}
|
||||||
|
|
||||||
func getDefaultBaseConf() baseConfig {
|
func getDefaultBaseConf() BaseConfig {
|
||||||
return baseConfig{
|
return BaseConfig{
|
||||||
AuthenticationMethod: "token",
|
AuthenticationMethod: "token",
|
||||||
AuthenticateHeartBeats: false,
|
AuthenticateHeartBeats: false,
|
||||||
AuthenticateNewWorkConns: false,
|
AuthenticateNewWorkConns: false,
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func unmarshalBaseConfFromIni(conf ini.File) baseConfig {
|
|
||||||
var (
|
|
||||||
tmpStr string
|
|
||||||
ok bool
|
|
||||||
)
|
|
||||||
|
|
||||||
cfg := getDefaultBaseConf()
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "authentication_method"); ok {
|
|
||||||
cfg.AuthenticationMethod = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "authenticate_heartbeats"); ok && tmpStr == "true" {
|
|
||||||
cfg.AuthenticateHeartBeats = true
|
|
||||||
} else {
|
|
||||||
cfg.AuthenticateHeartBeats = false
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "authenticate_new_work_conns"); ok && tmpStr == "true" {
|
|
||||||
cfg.AuthenticateNewWorkConns = true
|
|
||||||
} else {
|
|
||||||
cfg.AuthenticateNewWorkConns = false
|
|
||||||
}
|
|
||||||
|
|
||||||
return cfg
|
|
||||||
}
|
|
||||||
|
|
||||||
type ClientConfig struct {
|
type ClientConfig struct {
|
||||||
baseConfig
|
BaseConfig `ini:",extends"`
|
||||||
oidcClientConfig
|
OidcClientConfig `ini:",extends"`
|
||||||
tokenConfig
|
TokenConfig `ini:",extends"`
|
||||||
}
|
}
|
||||||
|
|
||||||
func GetDefaultClientConf() ClientConfig {
|
func GetDefaultClientConf() ClientConfig {
|
||||||
return ClientConfig{
|
return ClientConfig{
|
||||||
baseConfig: getDefaultBaseConf(),
|
BaseConfig: getDefaultBaseConf(),
|
||||||
oidcClientConfig: getDefaultOidcClientConf(),
|
OidcClientConfig: getDefaultOidcClientConf(),
|
||||||
tokenConfig: getDefaultTokenConf(),
|
TokenConfig: getDefaultTokenConf(),
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func UnmarshalClientConfFromIni(conf ini.File) (cfg ClientConfig) {
|
|
||||||
cfg.baseConfig = unmarshalBaseConfFromIni(conf)
|
|
||||||
cfg.oidcClientConfig = unmarshalOidcClientConfFromIni(conf)
|
|
||||||
cfg.tokenConfig = unmarshalTokenConfFromIni(conf)
|
|
||||||
return cfg
|
|
||||||
}
|
|
||||||
|
|
||||||
type ServerConfig struct {
|
type ServerConfig struct {
|
||||||
baseConfig
|
BaseConfig `ini:",extends"`
|
||||||
oidcServerConfig
|
OidcServerConfig `ini:",extends"`
|
||||||
tokenConfig
|
TokenConfig `ini:",extends"`
|
||||||
}
|
}
|
||||||
|
|
||||||
func GetDefaultServerConf() ServerConfig {
|
func GetDefaultServerConf() ServerConfig {
|
||||||
return ServerConfig{
|
return ServerConfig{
|
||||||
baseConfig: getDefaultBaseConf(),
|
BaseConfig: getDefaultBaseConf(),
|
||||||
oidcServerConfig: getDefaultOidcServerConf(),
|
OidcServerConfig: getDefaultOidcServerConf(),
|
||||||
tokenConfig: getDefaultTokenConf(),
|
TokenConfig: getDefaultTokenConf(),
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func UnmarshalServerConfFromIni(conf ini.File) (cfg ServerConfig) {
|
|
||||||
cfg.baseConfig = unmarshalBaseConfFromIni(conf)
|
|
||||||
cfg.oidcServerConfig = unmarshalOidcServerConfFromIni(conf)
|
|
||||||
cfg.tokenConfig = unmarshalTokenConfFromIni(conf)
|
|
||||||
return cfg
|
|
||||||
}
|
|
||||||
|
|
||||||
type Setter interface {
|
type Setter interface {
|
||||||
SetLogin(*msg.Login) error
|
SetLogin(*msg.Login) error
|
||||||
SetPing(*msg.Ping) error
|
SetPing(*msg.Ping) error
|
||||||
@ -123,9 +80,9 @@ type Setter interface {
|
|||||||
func NewAuthSetter(cfg ClientConfig) (authProvider Setter) {
|
func NewAuthSetter(cfg ClientConfig) (authProvider Setter) {
|
||||||
switch cfg.AuthenticationMethod {
|
switch cfg.AuthenticationMethod {
|
||||||
case consts.TokenAuthMethod:
|
case consts.TokenAuthMethod:
|
||||||
authProvider = NewTokenAuth(cfg.baseConfig, cfg.tokenConfig)
|
authProvider = NewTokenAuth(cfg.BaseConfig, cfg.TokenConfig)
|
||||||
case consts.OidcAuthMethod:
|
case consts.OidcAuthMethod:
|
||||||
authProvider = NewOidcAuthSetter(cfg.baseConfig, cfg.oidcClientConfig)
|
authProvider = NewOidcAuthSetter(cfg.BaseConfig, cfg.OidcClientConfig)
|
||||||
default:
|
default:
|
||||||
panic(fmt.Sprintf("wrong authentication method: '%s'", cfg.AuthenticationMethod))
|
panic(fmt.Sprintf("wrong authentication method: '%s'", cfg.AuthenticationMethod))
|
||||||
}
|
}
|
||||||
@ -142,9 +99,9 @@ type Verifier interface {
|
|||||||
func NewAuthVerifier(cfg ServerConfig) (authVerifier Verifier) {
|
func NewAuthVerifier(cfg ServerConfig) (authVerifier Verifier) {
|
||||||
switch cfg.AuthenticationMethod {
|
switch cfg.AuthenticationMethod {
|
||||||
case consts.TokenAuthMethod:
|
case consts.TokenAuthMethod:
|
||||||
authVerifier = NewTokenAuth(cfg.baseConfig, cfg.tokenConfig)
|
authVerifier = NewTokenAuth(cfg.BaseConfig, cfg.TokenConfig)
|
||||||
case consts.OidcAuthMethod:
|
case consts.OidcAuthMethod:
|
||||||
authVerifier = NewOidcAuthVerifier(cfg.baseConfig, cfg.oidcServerConfig)
|
authVerifier = NewOidcAuthVerifier(cfg.BaseConfig, cfg.OidcServerConfig)
|
||||||
}
|
}
|
||||||
|
|
||||||
return authVerifier
|
return authVerifier
|
||||||
|
@ -21,30 +21,29 @@ import (
|
|||||||
"github.com/fatedier/frp/pkg/msg"
|
"github.com/fatedier/frp/pkg/msg"
|
||||||
|
|
||||||
"github.com/coreos/go-oidc"
|
"github.com/coreos/go-oidc"
|
||||||
"github.com/vaughan0/go-ini"
|
|
||||||
"golang.org/x/oauth2/clientcredentials"
|
"golang.org/x/oauth2/clientcredentials"
|
||||||
)
|
)
|
||||||
|
|
||||||
type oidcClientConfig struct {
|
type OidcClientConfig struct {
|
||||||
// OidcClientID specifies the client ID to use to get a token in OIDC
|
// OidcClientID specifies the client ID to use to get a token in OIDC
|
||||||
// authentication if AuthenticationMethod == "oidc". By default, this value
|
// authentication if AuthenticationMethod == "oidc". By default, this value
|
||||||
// is "".
|
// is "".
|
||||||
OidcClientID string `json:"oidc_client_id"`
|
OidcClientID string `ini:"oidc_client_id" json:"oidc_client_id"`
|
||||||
// OidcClientSecret specifies the client secret to use to get a token in OIDC
|
// OidcClientSecret specifies the client secret to use to get a token in OIDC
|
||||||
// authentication if AuthenticationMethod == "oidc". By default, this value
|
// authentication if AuthenticationMethod == "oidc". By default, this value
|
||||||
// is "".
|
// is "".
|
||||||
OidcClientSecret string `json:"oidc_client_secret"`
|
OidcClientSecret string `ini:"oidc_client_secret" json:"oidc_client_secret"`
|
||||||
// OidcAudience specifies the audience of the token in OIDC authentication
|
// OidcAudience specifies the audience of the token in OIDC authentication
|
||||||
//if AuthenticationMethod == "oidc". By default, this value is "".
|
//if AuthenticationMethod == "oidc". By default, this value is "".
|
||||||
OidcAudience string `json:"oidc_audience"`
|
OidcAudience string `ini:"oidc_audience" json:"oidc_audience"`
|
||||||
// OidcTokenEndpointURL specifies the URL which implements OIDC Token Endpoint.
|
// OidcTokenEndpointURL specifies the URL which implements OIDC Token Endpoint.
|
||||||
// It will be used to get an OIDC token if AuthenticationMethod == "oidc".
|
// It will be used to get an OIDC token if AuthenticationMethod == "oidc".
|
||||||
// By default, this value is "".
|
// By default, this value is "".
|
||||||
OidcTokenEndpointURL string `json:"oidc_token_endpoint_url"`
|
OidcTokenEndpointURL string `ini:"oidc_token_endpoint_url" json:"oidc_token_endpoint_url"`
|
||||||
}
|
}
|
||||||
|
|
||||||
func getDefaultOidcClientConf() oidcClientConfig {
|
func getDefaultOidcClientConf() OidcClientConfig {
|
||||||
return oidcClientConfig{
|
return OidcClientConfig{
|
||||||
OidcClientID: "",
|
OidcClientID: "",
|
||||||
OidcClientSecret: "",
|
OidcClientSecret: "",
|
||||||
OidcAudience: "",
|
OidcAudience: "",
|
||||||
@ -52,56 +51,29 @@ func getDefaultOidcClientConf() oidcClientConfig {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func unmarshalOidcClientConfFromIni(conf ini.File) oidcClientConfig {
|
type OidcServerConfig struct {
|
||||||
var (
|
|
||||||
tmpStr string
|
|
||||||
ok bool
|
|
||||||
)
|
|
||||||
|
|
||||||
cfg := getDefaultOidcClientConf()
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "oidc_client_id"); ok {
|
|
||||||
cfg.OidcClientID = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "oidc_client_secret"); ok {
|
|
||||||
cfg.OidcClientSecret = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "oidc_audience"); ok {
|
|
||||||
cfg.OidcAudience = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "oidc_token_endpoint_url"); ok {
|
|
||||||
cfg.OidcTokenEndpointURL = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
return cfg
|
|
||||||
}
|
|
||||||
|
|
||||||
type oidcServerConfig struct {
|
|
||||||
// OidcIssuer specifies the issuer to verify OIDC tokens with. This issuer
|
// OidcIssuer specifies the issuer to verify OIDC tokens with. This issuer
|
||||||
// will be used to load public keys to verify signature and will be compared
|
// will be used to load public keys to verify signature and will be compared
|
||||||
// with the issuer claim in the OIDC token. It will be used if
|
// with the issuer claim in the OIDC token. It will be used if
|
||||||
// AuthenticationMethod == "oidc". By default, this value is "".
|
// AuthenticationMethod == "oidc". By default, this value is "".
|
||||||
OidcIssuer string `json:"oidc_issuer"`
|
OidcIssuer string `ini:"oidc_issuer" json:"oidc_issuer"`
|
||||||
// OidcAudience specifies the audience OIDC tokens should contain when validated.
|
// OidcAudience specifies the audience OIDC tokens should contain when validated.
|
||||||
// If this value is empty, audience ("client ID") verification will be skipped.
|
// If this value is empty, audience ("client ID") verification will be skipped.
|
||||||
// It will be used when AuthenticationMethod == "oidc". By default, this
|
// It will be used when AuthenticationMethod == "oidc". By default, this
|
||||||
// value is "".
|
// value is "".
|
||||||
OidcAudience string `json:"oidc_audience"`
|
OidcAudience string `ini:"oidc_audience" json:"oidc_audience"`
|
||||||
// OidcSkipExpiryCheck specifies whether to skip checking if the OIDC token is
|
// OidcSkipExpiryCheck specifies whether to skip checking if the OIDC token is
|
||||||
// expired. It will be used when AuthenticationMethod == "oidc". By default, this
|
// expired. It will be used when AuthenticationMethod == "oidc". By default, this
|
||||||
// value is false.
|
// value is false.
|
||||||
OidcSkipExpiryCheck bool `json:"oidc_skip_expiry_check"`
|
OidcSkipExpiryCheck bool `ini:"oidc_skip_expiry_check" json:"oidc_skip_expiry_check"`
|
||||||
// OidcSkipIssuerCheck specifies whether to skip checking if the OIDC token's
|
// OidcSkipIssuerCheck specifies whether to skip checking if the OIDC token's
|
||||||
// issuer claim matches the issuer specified in OidcIssuer. It will be used when
|
// issuer claim matches the issuer specified in OidcIssuer. It will be used when
|
||||||
// AuthenticationMethod == "oidc". By default, this value is false.
|
// AuthenticationMethod == "oidc". By default, this value is false.
|
||||||
OidcSkipIssuerCheck bool `json:"oidc_skip_issuer_check"`
|
OidcSkipIssuerCheck bool `ini:"oidc_skip_issuer_check" json:"oidc_skip_issuer_check"`
|
||||||
}
|
}
|
||||||
|
|
||||||
func getDefaultOidcServerConf() oidcServerConfig {
|
func getDefaultOidcServerConf() OidcServerConfig {
|
||||||
return oidcServerConfig{
|
return OidcServerConfig{
|
||||||
OidcIssuer: "",
|
OidcIssuer: "",
|
||||||
OidcAudience: "",
|
OidcAudience: "",
|
||||||
OidcSkipExpiryCheck: false,
|
OidcSkipExpiryCheck: false,
|
||||||
@ -109,44 +81,13 @@ func getDefaultOidcServerConf() oidcServerConfig {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func unmarshalOidcServerConfFromIni(conf ini.File) oidcServerConfig {
|
|
||||||
var (
|
|
||||||
tmpStr string
|
|
||||||
ok bool
|
|
||||||
)
|
|
||||||
|
|
||||||
cfg := getDefaultOidcServerConf()
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "oidc_issuer"); ok {
|
|
||||||
cfg.OidcIssuer = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "oidc_audience"); ok {
|
|
||||||
cfg.OidcAudience = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "oidc_skip_expiry_check"); ok && tmpStr == "true" {
|
|
||||||
cfg.OidcSkipExpiryCheck = true
|
|
||||||
} else {
|
|
||||||
cfg.OidcSkipExpiryCheck = false
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "oidc_skip_issuer_check"); ok && tmpStr == "true" {
|
|
||||||
cfg.OidcSkipIssuerCheck = true
|
|
||||||
} else {
|
|
||||||
cfg.OidcSkipIssuerCheck = false
|
|
||||||
}
|
|
||||||
|
|
||||||
return cfg
|
|
||||||
}
|
|
||||||
|
|
||||||
type OidcAuthProvider struct {
|
type OidcAuthProvider struct {
|
||||||
baseConfig
|
BaseConfig
|
||||||
|
|
||||||
tokenGenerator *clientcredentials.Config
|
tokenGenerator *clientcredentials.Config
|
||||||
}
|
}
|
||||||
|
|
||||||
func NewOidcAuthSetter(baseCfg baseConfig, cfg oidcClientConfig) *OidcAuthProvider {
|
func NewOidcAuthSetter(baseCfg BaseConfig, cfg OidcClientConfig) *OidcAuthProvider {
|
||||||
tokenGenerator := &clientcredentials.Config{
|
tokenGenerator := &clientcredentials.Config{
|
||||||
ClientID: cfg.OidcClientID,
|
ClientID: cfg.OidcClientID,
|
||||||
ClientSecret: cfg.OidcClientSecret,
|
ClientSecret: cfg.OidcClientSecret,
|
||||||
@ -155,7 +96,7 @@ func NewOidcAuthSetter(baseCfg baseConfig, cfg oidcClientConfig) *OidcAuthProvid
|
|||||||
}
|
}
|
||||||
|
|
||||||
return &OidcAuthProvider{
|
return &OidcAuthProvider{
|
||||||
baseConfig: baseCfg,
|
BaseConfig: baseCfg,
|
||||||
tokenGenerator: tokenGenerator,
|
tokenGenerator: tokenGenerator,
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
@ -192,13 +133,13 @@ func (auth *OidcAuthProvider) SetNewWorkConn(newWorkConnMsg *msg.NewWorkConn) (e
|
|||||||
}
|
}
|
||||||
|
|
||||||
type OidcAuthConsumer struct {
|
type OidcAuthConsumer struct {
|
||||||
baseConfig
|
BaseConfig
|
||||||
|
|
||||||
verifier *oidc.IDTokenVerifier
|
verifier *oidc.IDTokenVerifier
|
||||||
subjectFromLogin string
|
subjectFromLogin string
|
||||||
}
|
}
|
||||||
|
|
||||||
func NewOidcAuthVerifier(baseCfg baseConfig, cfg oidcServerConfig) *OidcAuthConsumer {
|
func NewOidcAuthVerifier(baseCfg BaseConfig, cfg OidcServerConfig) *OidcAuthConsumer {
|
||||||
provider, err := oidc.NewProvider(context.Background(), cfg.OidcIssuer)
|
provider, err := oidc.NewProvider(context.Background(), cfg.OidcIssuer)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
panic(err)
|
panic(err)
|
||||||
@ -210,7 +151,7 @@ func NewOidcAuthVerifier(baseCfg baseConfig, cfg oidcServerConfig) *OidcAuthCons
|
|||||||
SkipIssuerCheck: cfg.OidcSkipIssuerCheck,
|
SkipIssuerCheck: cfg.OidcSkipIssuerCheck,
|
||||||
}
|
}
|
||||||
return &OidcAuthConsumer{
|
return &OidcAuthConsumer{
|
||||||
baseConfig: baseCfg,
|
BaseConfig: baseCfg,
|
||||||
verifier: provider.Verifier(&verifierConf),
|
verifier: provider.Verifier(&verifierConf),
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
@ -20,47 +20,30 @@ import (
|
|||||||
|
|
||||||
"github.com/fatedier/frp/pkg/msg"
|
"github.com/fatedier/frp/pkg/msg"
|
||||||
"github.com/fatedier/frp/pkg/util/util"
|
"github.com/fatedier/frp/pkg/util/util"
|
||||||
|
|
||||||
"github.com/vaughan0/go-ini"
|
|
||||||
)
|
)
|
||||||
|
|
||||||
type tokenConfig struct {
|
type TokenConfig struct {
|
||||||
// Token specifies the authorization token used to create keys to be sent
|
// Token specifies the authorization token used to create keys to be sent
|
||||||
// to the server. The server must have a matching token for authorization
|
// to the server. The server must have a matching token for authorization
|
||||||
// to succeed. By default, this value is "".
|
// to succeed. By default, this value is "".
|
||||||
Token string `json:"token"`
|
Token string `ini:"token" json:"token"`
|
||||||
}
|
}
|
||||||
|
|
||||||
func getDefaultTokenConf() tokenConfig {
|
func getDefaultTokenConf() TokenConfig {
|
||||||
return tokenConfig{
|
return TokenConfig{
|
||||||
Token: "",
|
Token: "",
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func unmarshalTokenConfFromIni(conf ini.File) tokenConfig {
|
|
||||||
var (
|
|
||||||
tmpStr string
|
|
||||||
ok bool
|
|
||||||
)
|
|
||||||
|
|
||||||
cfg := getDefaultTokenConf()
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "token"); ok {
|
|
||||||
cfg.Token = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
return cfg
|
|
||||||
}
|
|
||||||
|
|
||||||
type TokenAuthSetterVerifier struct {
|
type TokenAuthSetterVerifier struct {
|
||||||
baseConfig
|
BaseConfig
|
||||||
|
|
||||||
token string
|
token string
|
||||||
}
|
}
|
||||||
|
|
||||||
func NewTokenAuth(baseCfg baseConfig, cfg tokenConfig) *TokenAuthSetterVerifier {
|
func NewTokenAuth(baseCfg BaseConfig, cfg TokenConfig) *TokenAuthSetterVerifier {
|
||||||
return &TokenAuthSetterVerifier{
|
return &TokenAuthSetterVerifier{
|
||||||
baseConfig: baseCfg,
|
BaseConfig: baseCfg,
|
||||||
token: cfg.Token,
|
token: cfg.Token,
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
12
pkg/config/README.md
Normal file
12
pkg/config/README.md
Normal file
@ -0,0 +1,12 @@
|
|||||||
|
So far, there is no mature Go project that does well in parsing `*.ini` files.
|
||||||
|
|
||||||
|
By comparison, we have selected an open source project: `https://github.com/go-ini/ini`.
|
||||||
|
|
||||||
|
This library helped us solve most of the key-value matching, but there are still some problems, such as not supporting parsing `map`.
|
||||||
|
|
||||||
|
We add our own logic on the basis of this library. In the current situationwhich, we need to complete the entire `Unmarshal` in two steps:
|
||||||
|
|
||||||
|
* Step#1, use `go-ini` to complete the basic parameter matching;
|
||||||
|
* Step#2, parse our custom parameters to realize parsing special structure, like `map`, `array`.
|
||||||
|
|
||||||
|
Some of the keywords in `tag`(like inline, extends, etc.) may be different from standard libraries such as `json` and `protobuf` in Go. For details, please refer to the library documentation: https://ini.unknwon.io/docs/intro.
|
@ -1,4 +1,4 @@
|
|||||||
// Copyright 2016 fatedier, fatedier@gmail.com
|
// Copyright 2020 The frp Authors
|
||||||
//
|
//
|
||||||
// Licensed under the Apache License, Version 2.0 (the "License");
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
||||||
// you may not use this file except in compliance with the License.
|
// you may not use this file except in compliance with the License.
|
||||||
@ -17,125 +17,128 @@ package config
|
|||||||
import (
|
import (
|
||||||
"fmt"
|
"fmt"
|
||||||
"os"
|
"os"
|
||||||
"strconv"
|
|
||||||
"strings"
|
"strings"
|
||||||
|
|
||||||
"github.com/fatedier/frp/pkg/auth"
|
"github.com/fatedier/frp/pkg/auth"
|
||||||
|
"github.com/fatedier/frp/pkg/util/util"
|
||||||
|
|
||||||
ini "github.com/vaughan0/go-ini"
|
"gopkg.in/ini.v1"
|
||||||
)
|
)
|
||||||
|
|
||||||
// ClientCommonConf contains information for a client service. It is
|
// ClientCommonConf contains information for a client service. It is
|
||||||
// recommended to use GetDefaultClientConf instead of creating this object
|
// recommended to use GetDefaultClientConf instead of creating this object
|
||||||
// directly, so that all unspecified fields have reasonable default values.
|
// directly, so that all unspecified fields have reasonable default values.
|
||||||
type ClientCommonConf struct {
|
type ClientCommonConf struct {
|
||||||
auth.ClientConfig
|
auth.ClientConfig `ini:",extends" json:"inline"`
|
||||||
|
|
||||||
// ServerAddr specifies the address of the server to connect to. By
|
// ServerAddr specifies the address of the server to connect to. By
|
||||||
// default, this value is "0.0.0.0".
|
// default, this value is "0.0.0.0".
|
||||||
ServerAddr string `json:"server_addr"`
|
ServerAddr string `ini:"server_addr" josn:"server_addr"`
|
||||||
// ServerPort specifies the port to connect to the server on. By default,
|
// ServerPort specifies the port to connect to the server on. By default,
|
||||||
// this value is 7000.
|
// this value is 7000.
|
||||||
ServerPort int `json:"server_port"`
|
ServerPort int `ini:"server_port" json:"server_port"`
|
||||||
// HTTPProxy specifies a proxy address to connect to the server through. If
|
// HTTPProxy specifies a proxy address to connect to the server through. If
|
||||||
// this value is "", the server will be connected to directly. By default,
|
// this value is "", the server will be connected to directly. By default,
|
||||||
// this value is read from the "http_proxy" environment variable.
|
// this value is read from the "http_proxy" environment variable.
|
||||||
HTTPProxy string `json:"http_proxy"`
|
HTTPProxy string `ini:"http_proxy" json:"http_proxy"`
|
||||||
// LogFile specifies a file where logs will be written to. This value will
|
// LogFile specifies a file where logs will be written to. This value will
|
||||||
// only be used if LogWay is set appropriately. By default, this value is
|
// only be used if LogWay is set appropriately. By default, this value is
|
||||||
// "console".
|
// "console".
|
||||||
LogFile string `json:"log_file"`
|
LogFile string `ini:"log_file" json:"log_file"`
|
||||||
// LogWay specifies the way logging is managed. Valid values are "console"
|
// LogWay specifies the way logging is managed. Valid values are "console"
|
||||||
// or "file". If "console" is used, logs will be printed to stdout. If
|
// or "file". If "console" is used, logs will be printed to stdout. If
|
||||||
// "file" is used, logs will be printed to LogFile. By default, this value
|
// "file" is used, logs will be printed to LogFile. By default, this value
|
||||||
// is "console".
|
// is "console".
|
||||||
LogWay string `json:"log_way"`
|
LogWay string `ini:"log_way" json:"log_way"`
|
||||||
// LogLevel specifies the minimum log level. Valid values are "trace",
|
// LogLevel specifies the minimum log level. Valid values are "trace",
|
||||||
// "debug", "info", "warn", and "error". By default, this value is "info".
|
// "debug", "info", "warn", and "error". By default, this value is "info".
|
||||||
LogLevel string `json:"log_level"`
|
LogLevel string `ini:"log_level" json:"log_level"`
|
||||||
// LogMaxDays specifies the maximum number of days to store log information
|
// LogMaxDays specifies the maximum number of days to store log information
|
||||||
// before deletion. This is only used if LogWay == "file". By default, this
|
// before deletion. This is only used if LogWay == "file". By default, this
|
||||||
// value is 0.
|
// value is 0.
|
||||||
LogMaxDays int64 `json:"log_max_days"`
|
LogMaxDays int64 `ini:"log_max_days" json:"log_max_days"`
|
||||||
// DisableLogColor disables log colors when LogWay == "console" when set to
|
// DisableLogColor disables log colors when LogWay == "console" when set to
|
||||||
// true. By default, this value is false.
|
// true. By default, this value is false.
|
||||||
DisableLogColor bool `json:"disable_log_color"`
|
DisableLogColor bool `ini:"disable_log_color" json:"disable_log_color"`
|
||||||
// AdminAddr specifies the address that the admin server binds to. By
|
// AdminAddr specifies the address that the admin server binds to. By
|
||||||
// default, this value is "127.0.0.1".
|
// default, this value is "127.0.0.1".
|
||||||
AdminAddr string `json:"admin_addr"`
|
AdminAddr string `ini:"admin_addr" json:"admin_addr"`
|
||||||
// AdminPort specifies the port for the admin server to listen on. If this
|
// AdminPort specifies the port for the admin server to listen on. If this
|
||||||
// value is 0, the admin server will not be started. By default, this value
|
// value is 0, the admin server will not be started. By default, this value
|
||||||
// is 0.
|
// is 0.
|
||||||
AdminPort int `json:"admin_port"`
|
AdminPort int `ini:"admin_port" json:"admin_port"`
|
||||||
// AdminUser specifies the username that the admin server will use for
|
// AdminUser specifies the username that the admin server will use for
|
||||||
// login. By default, this value is "admin".
|
// login. By default, this value is "admin".
|
||||||
AdminUser string `json:"admin_user"`
|
AdminUser string `ini:"admin_user" json:"admin_user"`
|
||||||
// AdminPwd specifies the password that the admin server will use for
|
// AdminPwd specifies the password that the admin server will use for
|
||||||
// login. By default, this value is "admin".
|
// login. By default, this value is "admin".
|
||||||
AdminPwd string `json:"admin_pwd"`
|
AdminPwd string `ini:"admin_pwd" json:"admin_pwd"`
|
||||||
// AssetsDir specifies the local directory that the admin server will load
|
// AssetsDir specifies the local directory that the admin server will load
|
||||||
// resources from. If this value is "", assets will be loaded from the
|
// resources from. If this value is "", assets will be loaded from the
|
||||||
// bundled executable using statik. By default, this value is "".
|
// bundled executable using statik. By default, this value is "".
|
||||||
AssetsDir string `json:"assets_dir"`
|
AssetsDir string `ini:"assets_dir" json:"assets_dir"`
|
||||||
// PoolCount specifies the number of connections the client will make to
|
// PoolCount specifies the number of connections the client will make to
|
||||||
// the server in advance. By default, this value is 0.
|
// the server in advance. By default, this value is 0.
|
||||||
PoolCount int `json:"pool_count"`
|
PoolCount int `ini:"pool_count" json:"pool_count"`
|
||||||
// TCPMux toggles TCP stream multiplexing. This allows multiple requests
|
// TCPMux toggles TCP stream multiplexing. This allows multiple requests
|
||||||
// from a client to share a single TCP connection. If this value is true,
|
// from a client to share a single TCP connection. If this value is true,
|
||||||
// the server must have TCP multiplexing enabled as well. By default, this
|
// the server must have TCP multiplexing enabled as well. By default, this
|
||||||
// value is true.
|
// value is true.
|
||||||
TCPMux bool `json:"tcp_mux"`
|
TCPMux bool `ini:"tcp_mux" json:"tcp_mux"`
|
||||||
// User specifies a prefix for proxy names to distinguish them from other
|
// User specifies a prefix for proxy names to distinguish them from other
|
||||||
// clients. If this value is not "", proxy names will automatically be
|
// clients. If this value is not "", proxy names will automatically be
|
||||||
// changed to "{user}.{proxy_name}". By default, this value is "".
|
// changed to "{user}.{proxy_name}". By default, this value is "".
|
||||||
User string `json:"user"`
|
User string `ini:"user" json:"user"`
|
||||||
// DNSServer specifies a DNS server address for FRPC to use. If this value
|
// DNSServer specifies a DNS server address for FRPC to use. If this value
|
||||||
// is "", the default DNS will be used. By default, this value is "".
|
// is "", the default DNS will be used. By default, this value is "".
|
||||||
DNSServer string `json:"dns_server"`
|
DNSServer string `ini:"dns_server" json:"dns_server"`
|
||||||
// LoginFailExit controls whether or not the client should exit after a
|
// LoginFailExit controls whether or not the client should exit after a
|
||||||
// failed login attempt. If false, the client will retry until a login
|
// failed login attempt. If false, the client will retry until a login
|
||||||
// attempt succeeds. By default, this value is true.
|
// attempt succeeds. By default, this value is true.
|
||||||
LoginFailExit bool `json:"login_fail_exit"`
|
LoginFailExit bool `ini:"login_fail_exit" json:"login_fail_exit"`
|
||||||
// Start specifies a set of enabled proxies by name. If this set is empty,
|
// Start specifies a set of enabled proxies by name. If this set is empty,
|
||||||
// all supplied proxies are enabled. By default, this value is an empty
|
// all supplied proxies are enabled. By default, this value is an empty
|
||||||
// set.
|
// set.
|
||||||
Start map[string]struct{} `json:"start"`
|
Start []string `ini:"start" json:"start"`
|
||||||
|
//Start map[string]struct{} `json:"start"`
|
||||||
// Protocol specifies the protocol to use when interacting with the server.
|
// Protocol specifies the protocol to use when interacting with the server.
|
||||||
// Valid values are "tcp", "kcp" and "websocket". By default, this value
|
// Valid values are "tcp", "kcp" and "websocket". By default, this value
|
||||||
// is "tcp".
|
// is "tcp".
|
||||||
Protocol string `json:"protocol"`
|
Protocol string `ini:"protocol" json:"protocol"`
|
||||||
// TLSEnable specifies whether or not TLS should be used when communicating
|
// TLSEnable specifies whether or not TLS should be used when communicating
|
||||||
// with the server. If "tls_cert_file" and "tls_key_file" are valid,
|
// with the server. If "tls_cert_file" and "tls_key_file" are valid,
|
||||||
// client will load the supplied tls configuration.
|
// client will load the supplied tls configuration.
|
||||||
TLSEnable bool `json:"tls_enable"`
|
TLSEnable bool `ini:"tls_enable" json:"tls_enable"`
|
||||||
// ClientTLSCertPath specifies the path of the cert file that client will
|
// ClientTLSCertPath specifies the path of the cert file that client will
|
||||||
// load. It only works when "tls_enable" is true and "tls_key_file" is valid.
|
// load. It only works when "tls_enable" is true and "tls_key_file" is valid.
|
||||||
TLSCertFile string `json:"tls_cert_file"`
|
TLSCertFile string `ini:"tls_cert_file" json:"tls_cert_file"`
|
||||||
// ClientTLSKeyPath specifies the path of the secret key file that client
|
// ClientTLSKeyPath specifies the path of the secret key file that client
|
||||||
// will load. It only works when "tls_enable" is true and "tls_cert_file"
|
// will load. It only works when "tls_enable" is true and "tls_cert_file"
|
||||||
// are valid.
|
// are valid.
|
||||||
TLSKeyFile string `json:"tls_key_file"`
|
TLSKeyFile string `ini:"tls_key_file" json:"tls_key_file"`
|
||||||
// TrustedCaFile specifies the path of the trusted ca file that will load.
|
// TrustedCaFile specifies the path of the trusted ca file that will load.
|
||||||
// It only works when "tls_enable" is valid and tls configuration of server
|
// It only works when "tls_enable" is valid and tls configuration of server
|
||||||
// has been specified.
|
// has been specified.
|
||||||
TLSTrustedCaFile string `json:"tls_trusted_ca_file"`
|
TLSTrustedCaFile string `ini:"tls_trusted_ca_file" json:"tls_trusted_ca_file"`
|
||||||
// HeartBeatInterval specifies at what interval heartbeats are sent to the
|
// HeartBeatInterval specifies at what interval heartbeats are sent to the
|
||||||
// server, in seconds. It is not recommended to change this value. By
|
// server, in seconds. It is not recommended to change this value. By
|
||||||
// default, this value is 30.
|
// default, this value is 30.
|
||||||
HeartbeatInterval int64 `json:"heartbeat_interval"`
|
HeartbeatInterval int64 `ini:"heartbeat_interval" json:"heartbeat_interval"`
|
||||||
// HeartBeatTimeout specifies the maximum allowed heartbeat response delay
|
// HeartBeatTimeout specifies the maximum allowed heartbeat response delay
|
||||||
// before the connection is terminated, in seconds. It is not recommended
|
// before the connection is terminated, in seconds. It is not recommended
|
||||||
// to change this value. By default, this value is 90.
|
// to change this value. By default, this value is 90.
|
||||||
HeartbeatTimeout int64 `json:"heartbeat_timeout"`
|
HeartbeatTimeout int64 `ini:"heartbeat_timeout" json:"heartbeat_timeout"`
|
||||||
// Client meta info
|
// Client meta info
|
||||||
Metas map[string]string `json:"metas"`
|
Metas map[string]string `ini:"-" json:"metas"`
|
||||||
// UDPPacketSize specifies the udp packet size
|
// UDPPacketSize specifies the udp packet size
|
||||||
// By default, this value is 1500
|
// By default, this value is 1500
|
||||||
UDPPacketSize int64 `json:"udp_packet_size"`
|
UDPPacketSize int64 `ini:"udp_packet_size" json:"udp_packet_size"`
|
||||||
}
|
}
|
||||||
|
|
||||||
// GetDefaultClientConf returns a client configuration with default values.
|
// GetDefaultClientConf returns a client configuration with default values.
|
||||||
func GetDefaultClientConf() ClientCommonConf {
|
func GetDefaultClientConf() ClientCommonConf {
|
||||||
return ClientCommonConf{
|
return ClientCommonConf{
|
||||||
|
ClientConfig: auth.GetDefaultClientConf(),
|
||||||
ServerAddr: "0.0.0.0",
|
ServerAddr: "0.0.0.0",
|
||||||
ServerPort: 7000,
|
ServerPort: 7000,
|
||||||
HTTPProxy: os.Getenv("http_proxy"),
|
HTTPProxy: os.Getenv("http_proxy"),
|
||||||
@ -154,7 +157,7 @@ func GetDefaultClientConf() ClientCommonConf {
|
|||||||
User: "",
|
User: "",
|
||||||
DNSServer: "",
|
DNSServer: "",
|
||||||
LoginFailExit: true,
|
LoginFailExit: true,
|
||||||
Start: make(map[string]struct{}),
|
Start: make([]string, 0),
|
||||||
Protocol: "tcp",
|
Protocol: "tcp",
|
||||||
TLSEnable: false,
|
TLSEnable: false,
|
||||||
TLSCertFile: "",
|
TLSCertFile: "",
|
||||||
@ -167,185 +170,13 @@ func GetDefaultClientConf() ClientCommonConf {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func UnmarshalClientConfFromIni(content string) (cfg ClientCommonConf, err error) {
|
func (cfg *ClientCommonConf) Check() error {
|
||||||
cfg = GetDefaultClientConf()
|
|
||||||
|
|
||||||
conf, err := ini.Load(strings.NewReader(content))
|
|
||||||
if err != nil {
|
|
||||||
return ClientCommonConf{}, fmt.Errorf("parse ini conf file error: %v", err)
|
|
||||||
}
|
|
||||||
|
|
||||||
cfg.ClientConfig = auth.UnmarshalClientConfFromIni(conf)
|
|
||||||
|
|
||||||
var (
|
|
||||||
tmpStr string
|
|
||||||
ok bool
|
|
||||||
v int64
|
|
||||||
)
|
|
||||||
if tmpStr, ok = conf.Get("common", "server_addr"); ok {
|
|
||||||
cfg.ServerAddr = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "server_port"); ok {
|
|
||||||
v, err = strconv.ParseInt(tmpStr, 10, 64)
|
|
||||||
if err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid server_port")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.ServerPort = int(v)
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "disable_log_color"); ok && tmpStr == "true" {
|
|
||||||
cfg.DisableLogColor = true
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "http_proxy"); ok {
|
|
||||||
cfg.HTTPProxy = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "log_file"); ok {
|
|
||||||
cfg.LogFile = tmpStr
|
|
||||||
if cfg.LogFile == "console" {
|
|
||||||
cfg.LogWay = "console"
|
|
||||||
} else {
|
|
||||||
cfg.LogWay = "file"
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "log_level"); ok {
|
|
||||||
cfg.LogLevel = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "log_max_days"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err == nil {
|
|
||||||
cfg.LogMaxDays = v
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "admin_addr"); ok {
|
|
||||||
cfg.AdminAddr = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "admin_port"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err == nil {
|
|
||||||
cfg.AdminPort = int(v)
|
|
||||||
} else {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid admin_port")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "admin_user"); ok {
|
|
||||||
cfg.AdminUser = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "admin_pwd"); ok {
|
|
||||||
cfg.AdminPwd = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "assets_dir"); ok {
|
|
||||||
cfg.AssetsDir = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "pool_count"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err == nil {
|
|
||||||
cfg.PoolCount = int(v)
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "tcp_mux"); ok && tmpStr == "false" {
|
|
||||||
cfg.TCPMux = false
|
|
||||||
} else {
|
|
||||||
cfg.TCPMux = true
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "user"); ok {
|
|
||||||
cfg.User = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "dns_server"); ok {
|
|
||||||
cfg.DNSServer = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "start"); ok {
|
|
||||||
proxyNames := strings.Split(tmpStr, ",")
|
|
||||||
for _, name := range proxyNames {
|
|
||||||
cfg.Start[strings.TrimSpace(name)] = struct{}{}
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "login_fail_exit"); ok && tmpStr == "false" {
|
|
||||||
cfg.LoginFailExit = false
|
|
||||||
} else {
|
|
||||||
cfg.LoginFailExit = true
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "protocol"); ok {
|
|
||||||
// Now it only support tcp and kcp and websocket.
|
|
||||||
if tmpStr != "tcp" && tmpStr != "kcp" && tmpStr != "websocket" {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid protocol")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.Protocol = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "tls_enable"); ok && tmpStr == "true" {
|
|
||||||
cfg.TLSEnable = true
|
|
||||||
} else {
|
|
||||||
cfg.TLSEnable = false
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "tls_cert_file"); ok {
|
|
||||||
cfg.TLSCertFile = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok := conf.Get("common", "tls_key_file"); ok {
|
|
||||||
cfg.TLSKeyFile = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok := conf.Get("common", "tls_trusted_ca_file"); ok {
|
|
||||||
cfg.TLSTrustedCaFile = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "heartbeat_timeout"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid heartbeat_timeout")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.HeartbeatTimeout = v
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "heartbeat_interval"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid heartbeat_interval")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.HeartbeatInterval = v
|
|
||||||
}
|
|
||||||
for k, v := range conf.Section("common") {
|
|
||||||
if strings.HasPrefix(k, "meta_") {
|
|
||||||
cfg.Metas[strings.TrimPrefix(k, "meta_")] = v
|
|
||||||
}
|
|
||||||
}
|
|
||||||
if tmpStr, ok = conf.Get("common", "udp_packet_size"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid udp_packet_size")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.UDPPacketSize = v
|
|
||||||
}
|
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
func (cfg *ClientCommonConf) Check() (err error) {
|
|
||||||
if cfg.HeartbeatInterval <= 0 {
|
if cfg.HeartbeatInterval <= 0 {
|
||||||
err = fmt.Errorf("Parse conf error: invalid heartbeat_interval")
|
return fmt.Errorf("Parse conf error: invalid heartbeat_interval")
|
||||||
return
|
|
||||||
}
|
}
|
||||||
|
|
||||||
if cfg.HeartbeatTimeout < cfg.HeartbeatInterval {
|
if cfg.HeartbeatTimeout < cfg.HeartbeatInterval {
|
||||||
err = fmt.Errorf("Parse conf error: invalid heartbeat_timeout, heartbeat_timeout is less than heartbeat_interval")
|
return fmt.Errorf("Parse conf error: invalid heartbeat_timeout, heartbeat_timeout is less than heartbeat_interval")
|
||||||
return
|
|
||||||
}
|
}
|
||||||
|
|
||||||
if cfg.TLSEnable == false {
|
if cfg.TLSEnable == false {
|
||||||
@ -361,5 +192,178 @@ func (cfg *ClientCommonConf) Check() (err error) {
|
|||||||
fmt.Println("WARNING! tls_trusted_ca_file is invalid when tls_enable is false")
|
fmt.Println("WARNING! tls_trusted_ca_file is invalid when tls_enable is false")
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
return
|
|
||||||
|
return nil
|
||||||
|
}
|
||||||
|
|
||||||
|
// Supported sources including: string(file path), []byte, Reader interface.
|
||||||
|
func UnmarshalClientConfFromIni(source interface{}) (ClientCommonConf, error) {
|
||||||
|
f, err := ini.LoadSources(ini.LoadOptions{
|
||||||
|
Insensitive: false,
|
||||||
|
InsensitiveSections: false,
|
||||||
|
InsensitiveKeys: false,
|
||||||
|
IgnoreInlineComment: true,
|
||||||
|
AllowBooleanKeys: true,
|
||||||
|
}, source)
|
||||||
|
if err != nil {
|
||||||
|
return ClientCommonConf{}, err
|
||||||
|
}
|
||||||
|
|
||||||
|
s, err := f.GetSection("common")
|
||||||
|
if err != nil {
|
||||||
|
return ClientCommonConf{}, fmt.Errorf("invalid configuration file, not found [common] section")
|
||||||
|
}
|
||||||
|
|
||||||
|
common := GetDefaultClientConf()
|
||||||
|
err = s.MapTo(&common)
|
||||||
|
if err != nil {
|
||||||
|
return ClientCommonConf{}, err
|
||||||
|
}
|
||||||
|
|
||||||
|
common.Metas = GetMapWithoutPrefix(s.KeysHash(), "meta_")
|
||||||
|
|
||||||
|
return common, nil
|
||||||
|
}
|
||||||
|
|
||||||
|
// if len(startProxy) is 0, start all
|
||||||
|
// otherwise just start proxies in startProxy map
|
||||||
|
func LoadAllProxyConfsFromIni(
|
||||||
|
prefix string,
|
||||||
|
source interface{},
|
||||||
|
start []string,
|
||||||
|
) (map[string]ProxyConf, map[string]VisitorConf, error) {
|
||||||
|
|
||||||
|
f, err := ini.LoadSources(ini.LoadOptions{
|
||||||
|
Insensitive: false,
|
||||||
|
InsensitiveSections: false,
|
||||||
|
InsensitiveKeys: false,
|
||||||
|
IgnoreInlineComment: true,
|
||||||
|
AllowBooleanKeys: true,
|
||||||
|
}, source)
|
||||||
|
if err != nil {
|
||||||
|
return nil, nil, err
|
||||||
|
}
|
||||||
|
|
||||||
|
proxyConfs := make(map[string]ProxyConf)
|
||||||
|
visitorConfs := make(map[string]VisitorConf)
|
||||||
|
|
||||||
|
if prefix != "" {
|
||||||
|
prefix += "."
|
||||||
|
}
|
||||||
|
|
||||||
|
startProxy := make(map[string]struct{})
|
||||||
|
for _, s := range start {
|
||||||
|
startProxy[s] = struct{}{}
|
||||||
|
}
|
||||||
|
|
||||||
|
startAll := true
|
||||||
|
if len(startProxy) > 0 {
|
||||||
|
startAll = false
|
||||||
|
}
|
||||||
|
|
||||||
|
// Build template sections from range section And append to ini.File.
|
||||||
|
rangeSections := make([]*ini.Section, 0)
|
||||||
|
for _, section := range f.Sections() {
|
||||||
|
|
||||||
|
if !strings.HasPrefix(section.Name(), "range:") {
|
||||||
|
continue
|
||||||
|
}
|
||||||
|
|
||||||
|
rangeSections = append(rangeSections, section)
|
||||||
|
}
|
||||||
|
|
||||||
|
for _, section := range rangeSections {
|
||||||
|
err = renderRangeProxyTemplates(f, section)
|
||||||
|
if err != nil {
|
||||||
|
return nil, nil, fmt.Errorf("fail to render range-section[%s] with error: %v", section.Name(), err)
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
for _, section := range f.Sections() {
|
||||||
|
name := section.Name()
|
||||||
|
|
||||||
|
if name == ini.DefaultSection || name == "common" || strings.HasPrefix(name, "range:") {
|
||||||
|
continue
|
||||||
|
}
|
||||||
|
|
||||||
|
_, shouldStart := startProxy[name]
|
||||||
|
if !startAll && !shouldStart {
|
||||||
|
continue
|
||||||
|
}
|
||||||
|
|
||||||
|
roleType := section.Key("role").String()
|
||||||
|
if roleType == "" {
|
||||||
|
roleType = "server"
|
||||||
|
}
|
||||||
|
|
||||||
|
switch roleType {
|
||||||
|
case "server":
|
||||||
|
newConf, newErr := NewProxyConfFromIni(prefix, name, section)
|
||||||
|
if newErr != nil {
|
||||||
|
return nil, nil, fmt.Errorf("fail to parse section[%s], err: %v", name, newErr)
|
||||||
|
}
|
||||||
|
proxyConfs[prefix+name] = newConf
|
||||||
|
case "visitor":
|
||||||
|
newConf, newErr := NewVisitorConfFromIni(prefix, name, section)
|
||||||
|
if newErr != nil {
|
||||||
|
return nil, nil, newErr
|
||||||
|
}
|
||||||
|
visitorConfs[prefix+name] = newConf
|
||||||
|
default:
|
||||||
|
return nil, nil, fmt.Errorf("section[%s] role should be 'server' or 'visitor'", name)
|
||||||
|
}
|
||||||
|
}
|
||||||
|
return proxyConfs, visitorConfs, nil
|
||||||
|
}
|
||||||
|
|
||||||
|
func renderRangeProxyTemplates(f *ini.File, section *ini.Section) error {
|
||||||
|
|
||||||
|
// Validation
|
||||||
|
localPortStr := section.Key("local_port").String()
|
||||||
|
remotePortStr := section.Key("remote_port").String()
|
||||||
|
if localPortStr == "" || remotePortStr == "" {
|
||||||
|
return fmt.Errorf("local_port or remote_port is empty")
|
||||||
|
}
|
||||||
|
|
||||||
|
localPorts, err := util.ParseRangeNumbers(localPortStr)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
|
||||||
|
remotePorts, err := util.ParseRangeNumbers(remotePortStr)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
|
||||||
|
if len(localPorts) != len(remotePorts) {
|
||||||
|
return fmt.Errorf("local ports number should be same with remote ports number")
|
||||||
|
}
|
||||||
|
|
||||||
|
if len(localPorts) == 0 {
|
||||||
|
return fmt.Errorf("local_port and remote_port is necessary")
|
||||||
|
}
|
||||||
|
|
||||||
|
// Templates
|
||||||
|
prefix := strings.TrimSpace(strings.TrimPrefix(section.Name(), "range:"))
|
||||||
|
|
||||||
|
for i := range localPorts {
|
||||||
|
tmpname := fmt.Sprintf("%s_%d", prefix, i)
|
||||||
|
|
||||||
|
tmpsection, err := f.NewSection(tmpname)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
|
||||||
|
copySection(section, tmpsection)
|
||||||
|
tmpsection.NewKey("local_port", fmt.Sprintf("%d", localPorts[i]))
|
||||||
|
tmpsection.NewKey("remote_port", fmt.Sprintf("%d", remotePorts[i]))
|
||||||
|
}
|
||||||
|
|
||||||
|
return nil
|
||||||
|
}
|
||||||
|
|
||||||
|
func copySection(source, target *ini.Section) {
|
||||||
|
for key, value := range source.KeysHash() {
|
||||||
|
target.NewKey(key, value)
|
||||||
|
}
|
||||||
}
|
}
|
643
pkg/config/client_test.go
Normal file
643
pkg/config/client_test.go
Normal file
@ -0,0 +1,643 @@
|
|||||||
|
// Copyright 2020 The frp Authors
|
||||||
|
//
|
||||||
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
||||||
|
// you may not use this file except in compliance with the License.
|
||||||
|
// You may obtain a copy of the License at
|
||||||
|
//
|
||||||
|
// http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
//
|
||||||
|
// Unless required by applicable law or agreed to in writing, software
|
||||||
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
// See the License for the specific language governing permissions and
|
||||||
|
// limitations under the License.
|
||||||
|
|
||||||
|
package config
|
||||||
|
|
||||||
|
import (
|
||||||
|
"testing"
|
||||||
|
|
||||||
|
"github.com/fatedier/frp/pkg/auth"
|
||||||
|
"github.com/fatedier/frp/pkg/consts"
|
||||||
|
|
||||||
|
"github.com/stretchr/testify/assert"
|
||||||
|
)
|
||||||
|
|
||||||
|
const (
|
||||||
|
testUser = "test"
|
||||||
|
)
|
||||||
|
|
||||||
|
var (
|
||||||
|
testClientBytesWithFull = []byte(`
|
||||||
|
# [common] is integral section
|
||||||
|
[common]
|
||||||
|
server_addr = 0.0.0.9
|
||||||
|
server_port = 7009
|
||||||
|
http_proxy = http://user:passwd@192.168.1.128:8080
|
||||||
|
log_file = ./frpc.log9
|
||||||
|
log_way = file
|
||||||
|
log_level = info9
|
||||||
|
log_max_days = 39
|
||||||
|
disable_log_color = false
|
||||||
|
authenticate_heartbeats = false
|
||||||
|
authenticate_new_work_conns = false
|
||||||
|
token = 12345678
|
||||||
|
oidc_client_id = client-id
|
||||||
|
oidc_client_secret = client-secret
|
||||||
|
oidc_audience = audience
|
||||||
|
oidc_token_endpoint_url = endpoint_url
|
||||||
|
admin_addr = 127.0.0.9
|
||||||
|
admin_port = 7409
|
||||||
|
admin_user = admin9
|
||||||
|
admin_pwd = admin9
|
||||||
|
assets_dir = ./static9
|
||||||
|
pool_count = 59
|
||||||
|
tcp_mux
|
||||||
|
user = your_name
|
||||||
|
login_fail_exit
|
||||||
|
protocol = tcp
|
||||||
|
tls_enable = true
|
||||||
|
tls_cert_file = client.crt
|
||||||
|
tls_key_file = client.key
|
||||||
|
tls_trusted_ca_file = ca.crt
|
||||||
|
dns_server = 8.8.8.9
|
||||||
|
start = ssh,dns
|
||||||
|
heartbeat_interval = 39
|
||||||
|
heartbeat_timeout = 99
|
||||||
|
meta_var1 = 123
|
||||||
|
meta_var2 = 234
|
||||||
|
udp_packet_size = 1509
|
||||||
|
|
||||||
|
# all proxy
|
||||||
|
[ssh]
|
||||||
|
type = tcp
|
||||||
|
local_ip = 127.0.0.9
|
||||||
|
local_port = 29
|
||||||
|
bandwidth_limit = 19MB
|
||||||
|
use_encryption
|
||||||
|
use_compression
|
||||||
|
remote_port = 6009
|
||||||
|
group = test_group
|
||||||
|
group_key = 123456
|
||||||
|
health_check_type = tcp
|
||||||
|
health_check_timeout_s = 3
|
||||||
|
health_check_max_failed = 3
|
||||||
|
health_check_interval_s = 19
|
||||||
|
meta_var1 = 123
|
||||||
|
meta_var2 = 234
|
||||||
|
|
||||||
|
[ssh_random]
|
||||||
|
type = tcp
|
||||||
|
local_ip = 127.0.0.9
|
||||||
|
local_port = 29
|
||||||
|
remote_port = 9
|
||||||
|
|
||||||
|
[range:tcp_port]
|
||||||
|
type = tcp
|
||||||
|
local_ip = 127.0.0.9
|
||||||
|
local_port = 6010-6011,6019
|
||||||
|
remote_port = 6010-6011,6019
|
||||||
|
use_encryption = false
|
||||||
|
use_compression = false
|
||||||
|
|
||||||
|
[dns]
|
||||||
|
type = udp
|
||||||
|
local_ip = 114.114.114.114
|
||||||
|
local_port = 59
|
||||||
|
remote_port = 6009
|
||||||
|
use_encryption
|
||||||
|
use_compression
|
||||||
|
|
||||||
|
[range:udp_port]
|
||||||
|
type = udp
|
||||||
|
local_ip = 114.114.114.114
|
||||||
|
local_port = 6000,6010-6011
|
||||||
|
remote_port = 6000,6010-6011
|
||||||
|
use_encryption
|
||||||
|
use_compression
|
||||||
|
|
||||||
|
[web01]
|
||||||
|
type = http
|
||||||
|
local_ip = 127.0.0.9
|
||||||
|
local_port = 89
|
||||||
|
use_encryption
|
||||||
|
use_compression
|
||||||
|
http_user = admin
|
||||||
|
http_pwd = admin
|
||||||
|
subdomain = web01
|
||||||
|
custom_domains = web02.yourdomain.com
|
||||||
|
locations = /,/pic
|
||||||
|
host_header_rewrite = example.com
|
||||||
|
header_X-From-Where = frp
|
||||||
|
health_check_type = http
|
||||||
|
health_check_url = /status
|
||||||
|
health_check_interval_s = 19
|
||||||
|
health_check_max_failed = 3
|
||||||
|
health_check_timeout_s = 3
|
||||||
|
|
||||||
|
[web02]
|
||||||
|
type = https
|
||||||
|
local_ip = 127.0.0.9
|
||||||
|
local_port = 8009
|
||||||
|
use_encryption
|
||||||
|
use_compression
|
||||||
|
subdomain = web01
|
||||||
|
custom_domains = web02.yourdomain.com
|
||||||
|
proxy_protocol_version = v2
|
||||||
|
|
||||||
|
[secret_tcp]
|
||||||
|
type = stcp
|
||||||
|
sk = abcdefg
|
||||||
|
local_ip = 127.0.0.1
|
||||||
|
local_port = 22
|
||||||
|
use_encryption = false
|
||||||
|
use_compression = false
|
||||||
|
|
||||||
|
[p2p_tcp]
|
||||||
|
type = xtcp
|
||||||
|
sk = abcdefg
|
||||||
|
local_ip = 127.0.0.1
|
||||||
|
local_port = 22
|
||||||
|
use_encryption = false
|
||||||
|
use_compression = false
|
||||||
|
|
||||||
|
[tcpmuxhttpconnect]
|
||||||
|
type = tcpmux
|
||||||
|
multiplexer = httpconnect
|
||||||
|
local_ip = 127.0.0.1
|
||||||
|
local_port = 10701
|
||||||
|
custom_domains = tunnel1
|
||||||
|
|
||||||
|
[plugin_unix_domain_socket]
|
||||||
|
type = tcp
|
||||||
|
remote_port = 6003
|
||||||
|
plugin = unix_domain_socket
|
||||||
|
plugin_unix_path = /var/run/docker.sock
|
||||||
|
|
||||||
|
[plugin_http_proxy]
|
||||||
|
type = tcp
|
||||||
|
remote_port = 6004
|
||||||
|
plugin = http_proxy
|
||||||
|
plugin_http_user = abc
|
||||||
|
plugin_http_passwd = abc
|
||||||
|
|
||||||
|
[plugin_socks5]
|
||||||
|
type = tcp
|
||||||
|
remote_port = 6005
|
||||||
|
plugin = socks5
|
||||||
|
plugin_user = abc
|
||||||
|
plugin_passwd = abc
|
||||||
|
|
||||||
|
[plugin_static_file]
|
||||||
|
type = tcp
|
||||||
|
remote_port = 6006
|
||||||
|
plugin = static_file
|
||||||
|
plugin_local_path = /var/www/blog
|
||||||
|
plugin_strip_prefix = static
|
||||||
|
plugin_http_user = abc
|
||||||
|
plugin_http_passwd = abc
|
||||||
|
|
||||||
|
[plugin_https2http]
|
||||||
|
type = https
|
||||||
|
custom_domains = test.yourdomain.com
|
||||||
|
plugin = https2http
|
||||||
|
plugin_local_addr = 127.0.0.1:80
|
||||||
|
plugin_crt_path = ./server.crt
|
||||||
|
plugin_key_path = ./server.key
|
||||||
|
plugin_host_header_rewrite = 127.0.0.1
|
||||||
|
plugin_header_X-From-Where = frp
|
||||||
|
|
||||||
|
[plugin_http2https]
|
||||||
|
type = http
|
||||||
|
custom_domains = test.yourdomain.com
|
||||||
|
plugin = http2https
|
||||||
|
plugin_local_addr = 127.0.0.1:443
|
||||||
|
plugin_host_header_rewrite = 127.0.0.1
|
||||||
|
plugin_header_X-From-Where = frp
|
||||||
|
|
||||||
|
# visitor
|
||||||
|
[secret_tcp_visitor]
|
||||||
|
role = visitor
|
||||||
|
type = stcp
|
||||||
|
server_name = secret_tcp
|
||||||
|
sk = abcdefg
|
||||||
|
bind_addr = 127.0.0.1
|
||||||
|
bind_port = 9000
|
||||||
|
use_encryption = false
|
||||||
|
use_compression = false
|
||||||
|
|
||||||
|
[p2p_tcp_visitor]
|
||||||
|
role = visitor
|
||||||
|
type = xtcp
|
||||||
|
server_name = p2p_tcp
|
||||||
|
sk = abcdefg
|
||||||
|
bind_addr = 127.0.0.1
|
||||||
|
bind_port = 9001
|
||||||
|
use_encryption = false
|
||||||
|
use_compression = false
|
||||||
|
`)
|
||||||
|
)
|
||||||
|
|
||||||
|
func Test_LoadClientCommonConf(t *testing.T) {
|
||||||
|
assert := assert.New(t)
|
||||||
|
|
||||||
|
expected := ClientCommonConf{
|
||||||
|
ClientConfig: auth.ClientConfig{
|
||||||
|
BaseConfig: auth.BaseConfig{
|
||||||
|
AuthenticationMethod: "token",
|
||||||
|
AuthenticateHeartBeats: false,
|
||||||
|
AuthenticateNewWorkConns: false,
|
||||||
|
},
|
||||||
|
TokenConfig: auth.TokenConfig{
|
||||||
|
Token: "12345678",
|
||||||
|
},
|
||||||
|
OidcClientConfig: auth.OidcClientConfig{
|
||||||
|
OidcClientID: "client-id",
|
||||||
|
OidcClientSecret: "client-secret",
|
||||||
|
OidcAudience: "audience",
|
||||||
|
OidcTokenEndpointURL: "endpoint_url",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
ServerAddr: "0.0.0.9",
|
||||||
|
ServerPort: 7009,
|
||||||
|
HTTPProxy: "http://user:passwd@192.168.1.128:8080",
|
||||||
|
LogFile: "./frpc.log9",
|
||||||
|
LogWay: "file",
|
||||||
|
LogLevel: "info9",
|
||||||
|
LogMaxDays: 39,
|
||||||
|
DisableLogColor: false,
|
||||||
|
AdminAddr: "127.0.0.9",
|
||||||
|
AdminPort: 7409,
|
||||||
|
AdminUser: "admin9",
|
||||||
|
AdminPwd: "admin9",
|
||||||
|
AssetsDir: "./static9",
|
||||||
|
PoolCount: 59,
|
||||||
|
TCPMux: true,
|
||||||
|
User: "your_name",
|
||||||
|
LoginFailExit: true,
|
||||||
|
Protocol: "tcp",
|
||||||
|
TLSEnable: true,
|
||||||
|
TLSCertFile: "client.crt",
|
||||||
|
TLSKeyFile: "client.key",
|
||||||
|
TLSTrustedCaFile: "ca.crt",
|
||||||
|
DNSServer: "8.8.8.9",
|
||||||
|
Start: []string{"ssh", "dns"},
|
||||||
|
HeartbeatInterval: 39,
|
||||||
|
HeartbeatTimeout: 99,
|
||||||
|
Metas: map[string]string{
|
||||||
|
"var1": "123",
|
||||||
|
"var2": "234",
|
||||||
|
},
|
||||||
|
UDPPacketSize: 1509,
|
||||||
|
}
|
||||||
|
|
||||||
|
common, err := UnmarshalClientConfFromIni(testClientBytesWithFull)
|
||||||
|
assert.NoError(err)
|
||||||
|
assert.Equal(expected, common)
|
||||||
|
}
|
||||||
|
|
||||||
|
func Test_LoadClientBasicConf(t *testing.T) {
|
||||||
|
assert := assert.New(t)
|
||||||
|
|
||||||
|
proxyExpected := map[string]ProxyConf{
|
||||||
|
testUser + ".ssh": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".ssh",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
UseCompression: true,
|
||||||
|
UseEncryption: true,
|
||||||
|
Group: "test_group",
|
||||||
|
GroupKey: "123456",
|
||||||
|
BandwidthLimit: MustBandwidthQuantity("19MB"),
|
||||||
|
Metas: map[string]string{
|
||||||
|
"var1": "123",
|
||||||
|
"var2": "234",
|
||||||
|
},
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 29,
|
||||||
|
},
|
||||||
|
HealthCheckConf: HealthCheckConf{
|
||||||
|
HealthCheckType: consts.TCPProxy,
|
||||||
|
HealthCheckTimeoutS: 3,
|
||||||
|
HealthCheckMaxFailed: 3,
|
||||||
|
HealthCheckIntervalS: 19,
|
||||||
|
HealthCheckAddr: "127.0.0.9:29",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6009,
|
||||||
|
},
|
||||||
|
testUser + ".ssh_random": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".ssh_random",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 29,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 9,
|
||||||
|
},
|
||||||
|
testUser + ".tcp_port_0": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".tcp_port_0",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 6010,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6010,
|
||||||
|
},
|
||||||
|
testUser + ".tcp_port_1": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".tcp_port_1",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 6011,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6011,
|
||||||
|
},
|
||||||
|
testUser + ".tcp_port_2": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".tcp_port_2",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 6019,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6019,
|
||||||
|
},
|
||||||
|
testUser + ".dns": &UDPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".dns",
|
||||||
|
ProxyType: consts.UDPProxy,
|
||||||
|
UseEncryption: true,
|
||||||
|
UseCompression: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "114.114.114.114",
|
||||||
|
LocalPort: 59,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6009,
|
||||||
|
},
|
||||||
|
testUser + ".udp_port_0": &UDPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".udp_port_0",
|
||||||
|
ProxyType: consts.UDPProxy,
|
||||||
|
UseEncryption: true,
|
||||||
|
UseCompression: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "114.114.114.114",
|
||||||
|
LocalPort: 6000,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6000,
|
||||||
|
},
|
||||||
|
testUser + ".udp_port_1": &UDPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".udp_port_1",
|
||||||
|
ProxyType: consts.UDPProxy,
|
||||||
|
UseEncryption: true,
|
||||||
|
UseCompression: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "114.114.114.114",
|
||||||
|
LocalPort: 6010,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6010,
|
||||||
|
},
|
||||||
|
testUser + ".udp_port_2": &UDPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".udp_port_2",
|
||||||
|
ProxyType: consts.UDPProxy,
|
||||||
|
UseEncryption: true,
|
||||||
|
UseCompression: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "114.114.114.114",
|
||||||
|
LocalPort: 6011,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6011,
|
||||||
|
},
|
||||||
|
testUser + ".web01": &HTTPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".web01",
|
||||||
|
ProxyType: consts.HTTPProxy,
|
||||||
|
UseCompression: true,
|
||||||
|
UseEncryption: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 89,
|
||||||
|
},
|
||||||
|
HealthCheckConf: HealthCheckConf{
|
||||||
|
HealthCheckType: consts.HTTPProxy,
|
||||||
|
HealthCheckTimeoutS: 3,
|
||||||
|
HealthCheckMaxFailed: 3,
|
||||||
|
HealthCheckIntervalS: 19,
|
||||||
|
HealthCheckURL: "http://127.0.0.9:89/status",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
DomainConf: DomainConf{
|
||||||
|
CustomDomains: []string{"web02.yourdomain.com"},
|
||||||
|
SubDomain: "web01",
|
||||||
|
},
|
||||||
|
Locations: []string{"/", "/pic"},
|
||||||
|
HTTPUser: "admin",
|
||||||
|
HTTPPwd: "admin",
|
||||||
|
HostHeaderRewrite: "example.com",
|
||||||
|
Headers: map[string]string{
|
||||||
|
"X-From-Where": "frp",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
testUser + ".web02": &HTTPSProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".web02",
|
||||||
|
ProxyType: consts.HTTPSProxy,
|
||||||
|
UseCompression: true,
|
||||||
|
UseEncryption: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 8009,
|
||||||
|
},
|
||||||
|
ProxyProtocolVersion: "v2",
|
||||||
|
},
|
||||||
|
DomainConf: DomainConf{
|
||||||
|
CustomDomains: []string{"web02.yourdomain.com"},
|
||||||
|
SubDomain: "web01",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
testUser + ".secret_tcp": &STCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".secret_tcp",
|
||||||
|
ProxyType: consts.STCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
LocalPort: 22,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
Role: "server",
|
||||||
|
Sk: "abcdefg",
|
||||||
|
},
|
||||||
|
testUser + ".p2p_tcp": &XTCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".p2p_tcp",
|
||||||
|
ProxyType: consts.XTCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
LocalPort: 22,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
Role: "server",
|
||||||
|
Sk: "abcdefg",
|
||||||
|
},
|
||||||
|
testUser + ".tcpmuxhttpconnect": &TCPMuxProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".tcpmuxhttpconnect",
|
||||||
|
ProxyType: consts.TCPMuxProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
LocalPort: 10701,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
DomainConf: DomainConf{
|
||||||
|
CustomDomains: []string{"tunnel1"},
|
||||||
|
SubDomain: "",
|
||||||
|
},
|
||||||
|
Multiplexer: "httpconnect",
|
||||||
|
},
|
||||||
|
testUser + ".plugin_unix_domain_socket": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".plugin_unix_domain_socket",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
Plugin: "unix_domain_socket",
|
||||||
|
PluginParams: map[string]string{
|
||||||
|
"plugin_unix_path": "/var/run/docker.sock",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6003,
|
||||||
|
},
|
||||||
|
testUser + ".plugin_http_proxy": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".plugin_http_proxy",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
Plugin: "http_proxy",
|
||||||
|
PluginParams: map[string]string{
|
||||||
|
"plugin_http_user": "abc",
|
||||||
|
"plugin_http_passwd": "abc",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6004,
|
||||||
|
},
|
||||||
|
testUser + ".plugin_socks5": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".plugin_socks5",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
Plugin: "socks5",
|
||||||
|
PluginParams: map[string]string{
|
||||||
|
"plugin_user": "abc",
|
||||||
|
"plugin_passwd": "abc",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6005,
|
||||||
|
},
|
||||||
|
testUser + ".plugin_static_file": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".plugin_static_file",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
Plugin: "static_file",
|
||||||
|
PluginParams: map[string]string{
|
||||||
|
"plugin_local_path": "/var/www/blog",
|
||||||
|
"plugin_strip_prefix": "static",
|
||||||
|
"plugin_http_user": "abc",
|
||||||
|
"plugin_http_passwd": "abc",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6006,
|
||||||
|
},
|
||||||
|
testUser + ".plugin_https2http": &HTTPSProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".plugin_https2http",
|
||||||
|
ProxyType: consts.HTTPSProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
Plugin: "https2http",
|
||||||
|
PluginParams: map[string]string{
|
||||||
|
"plugin_local_addr": "127.0.0.1:80",
|
||||||
|
"plugin_crt_path": "./server.crt",
|
||||||
|
"plugin_key_path": "./server.key",
|
||||||
|
"plugin_host_header_rewrite": "127.0.0.1",
|
||||||
|
"plugin_header_X-From-Where": "frp",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
DomainConf: DomainConf{
|
||||||
|
CustomDomains: []string{"test.yourdomain.com"},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
testUser + ".plugin_http2https": &HTTPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testUser + ".plugin_http2https",
|
||||||
|
ProxyType: consts.HTTPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
Plugin: "http2https",
|
||||||
|
PluginParams: map[string]string{
|
||||||
|
"plugin_local_addr": "127.0.0.1:443",
|
||||||
|
"plugin_host_header_rewrite": "127.0.0.1",
|
||||||
|
"plugin_header_X-From-Where": "frp",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
DomainConf: DomainConf{
|
||||||
|
CustomDomains: []string{"test.yourdomain.com"},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
}
|
||||||
|
|
||||||
|
visitorExpected := map[string]VisitorConf{
|
||||||
|
testUser + ".secret_tcp_visitor": &STCPVisitorConf{
|
||||||
|
BaseVisitorConf: BaseVisitorConf{
|
||||||
|
ProxyName: testUser + ".secret_tcp_visitor",
|
||||||
|
ProxyType: consts.STCPProxy,
|
||||||
|
Role: "visitor",
|
||||||
|
Sk: "abcdefg",
|
||||||
|
ServerName: testVisitorPrefix + "secret_tcp",
|
||||||
|
BindAddr: "127.0.0.1",
|
||||||
|
BindPort: 9000,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
testUser + ".p2p_tcp_visitor": &XTCPVisitorConf{
|
||||||
|
BaseVisitorConf: BaseVisitorConf{
|
||||||
|
ProxyName: testUser + ".p2p_tcp_visitor",
|
||||||
|
ProxyType: consts.XTCPProxy,
|
||||||
|
Role: "visitor",
|
||||||
|
Sk: "abcdefg",
|
||||||
|
ServerName: testProxyPrefix + "p2p_tcp",
|
||||||
|
BindAddr: "127.0.0.1",
|
||||||
|
BindPort: 9001,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
}
|
||||||
|
|
||||||
|
proxyActual, visitorActual, err := LoadAllProxyConfsFromIni(testUser, testClientBytesWithFull, nil)
|
||||||
|
assert.NoError(err)
|
||||||
|
assert.Equal(proxyExpected, proxyActual)
|
||||||
|
assert.Equal(visitorExpected, visitorActual)
|
||||||
|
|
||||||
|
}
|
1259
pkg/config/proxy.go
1259
pkg/config/proxy.go
File diff suppressed because it is too large
Load Diff
461
pkg/config/proxy_test.go
Normal file
461
pkg/config/proxy_test.go
Normal file
@ -0,0 +1,461 @@
|
|||||||
|
// Copyright 2020 The frp Authors
|
||||||
|
//
|
||||||
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
||||||
|
// you may not use this file except in compliance with the License.
|
||||||
|
// You may obtain a copy of the License at
|
||||||
|
//
|
||||||
|
// http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
//
|
||||||
|
// Unless required by applicable law or agreed to in writing, software
|
||||||
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
// See the License for the specific language governing permissions and
|
||||||
|
// limitations under the License.
|
||||||
|
|
||||||
|
package config
|
||||||
|
|
||||||
|
import (
|
||||||
|
"testing"
|
||||||
|
|
||||||
|
"github.com/fatedier/frp/pkg/consts"
|
||||||
|
"github.com/stretchr/testify/assert"
|
||||||
|
|
||||||
|
"gopkg.in/ini.v1"
|
||||||
|
)
|
||||||
|
|
||||||
|
var (
|
||||||
|
testLoadOptions = ini.LoadOptions{
|
||||||
|
Insensitive: false,
|
||||||
|
InsensitiveSections: false,
|
||||||
|
InsensitiveKeys: false,
|
||||||
|
IgnoreInlineComment: true,
|
||||||
|
AllowBooleanKeys: true,
|
||||||
|
}
|
||||||
|
|
||||||
|
testProxyPrefix = "test."
|
||||||
|
)
|
||||||
|
|
||||||
|
func Test_Proxy_Interface(t *testing.T) {
|
||||||
|
for name := range proxyConfTypeMap {
|
||||||
|
NewConfByType(name)
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
func Test_Proxy_UnmarshalFromIni(t *testing.T) {
|
||||||
|
assert := assert.New(t)
|
||||||
|
|
||||||
|
testcases := []struct {
|
||||||
|
sname string
|
||||||
|
source []byte
|
||||||
|
expected ProxyConf
|
||||||
|
}{
|
||||||
|
|
||||||
|
{
|
||||||
|
sname: "ssh",
|
||||||
|
source: []byte(`
|
||||||
|
[ssh]
|
||||||
|
# tcp | udp | http | https | stcp | xtcp, default is tcp
|
||||||
|
type = tcp
|
||||||
|
local_ip = 127.0.0.9
|
||||||
|
local_port = 29
|
||||||
|
bandwidth_limit = 19MB
|
||||||
|
use_encryption
|
||||||
|
use_compression
|
||||||
|
remote_port = 6009
|
||||||
|
group = test_group
|
||||||
|
group_key = 123456
|
||||||
|
health_check_type = tcp
|
||||||
|
health_check_timeout_s = 3
|
||||||
|
health_check_max_failed = 3
|
||||||
|
health_check_interval_s = 19
|
||||||
|
meta_var1 = 123
|
||||||
|
meta_var2 = 234`),
|
||||||
|
expected: &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "ssh",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
UseCompression: true,
|
||||||
|
UseEncryption: true,
|
||||||
|
Group: "test_group",
|
||||||
|
GroupKey: "123456",
|
||||||
|
BandwidthLimit: MustBandwidthQuantity("19MB"),
|
||||||
|
Metas: map[string]string{
|
||||||
|
"var1": "123",
|
||||||
|
"var2": "234",
|
||||||
|
},
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 29,
|
||||||
|
},
|
||||||
|
HealthCheckConf: HealthCheckConf{
|
||||||
|
HealthCheckType: consts.TCPProxy,
|
||||||
|
HealthCheckTimeoutS: 3,
|
||||||
|
HealthCheckMaxFailed: 3,
|
||||||
|
HealthCheckIntervalS: 19,
|
||||||
|
HealthCheckAddr: "127.0.0.9:29",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6009,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
{
|
||||||
|
sname: "ssh_random",
|
||||||
|
source: []byte(`
|
||||||
|
[ssh_random]
|
||||||
|
type = tcp
|
||||||
|
local_ip = 127.0.0.9
|
||||||
|
local_port = 29
|
||||||
|
remote_port = 9
|
||||||
|
`),
|
||||||
|
expected: &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "ssh_random",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 29,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 9,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
{
|
||||||
|
sname: "dns",
|
||||||
|
source: []byte(`
|
||||||
|
[dns]
|
||||||
|
type = udp
|
||||||
|
local_ip = 114.114.114.114
|
||||||
|
local_port = 59
|
||||||
|
remote_port = 6009
|
||||||
|
use_encryption
|
||||||
|
use_compression
|
||||||
|
`),
|
||||||
|
expected: &UDPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "dns",
|
||||||
|
ProxyType: consts.UDPProxy,
|
||||||
|
UseEncryption: true,
|
||||||
|
UseCompression: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "114.114.114.114",
|
||||||
|
LocalPort: 59,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6009,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
{
|
||||||
|
sname: "web01",
|
||||||
|
source: []byte(`
|
||||||
|
[web01]
|
||||||
|
type = http
|
||||||
|
local_ip = 127.0.0.9
|
||||||
|
local_port = 89
|
||||||
|
use_encryption
|
||||||
|
use_compression
|
||||||
|
http_user = admin
|
||||||
|
http_pwd = admin
|
||||||
|
subdomain = web01
|
||||||
|
custom_domains = web02.yourdomain.com
|
||||||
|
locations = /,/pic
|
||||||
|
host_header_rewrite = example.com
|
||||||
|
header_X-From-Where = frp
|
||||||
|
health_check_type = http
|
||||||
|
health_check_url = /status
|
||||||
|
health_check_interval_s = 19
|
||||||
|
health_check_max_failed = 3
|
||||||
|
health_check_timeout_s = 3
|
||||||
|
`),
|
||||||
|
expected: &HTTPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "web01",
|
||||||
|
ProxyType: consts.HTTPProxy,
|
||||||
|
UseCompression: true,
|
||||||
|
UseEncryption: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 89,
|
||||||
|
},
|
||||||
|
HealthCheckConf: HealthCheckConf{
|
||||||
|
HealthCheckType: consts.HTTPProxy,
|
||||||
|
HealthCheckTimeoutS: 3,
|
||||||
|
HealthCheckMaxFailed: 3,
|
||||||
|
HealthCheckIntervalS: 19,
|
||||||
|
HealthCheckURL: "http://127.0.0.9:89/status",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
DomainConf: DomainConf{
|
||||||
|
CustomDomains: []string{"web02.yourdomain.com"},
|
||||||
|
SubDomain: "web01",
|
||||||
|
},
|
||||||
|
Locations: []string{"/", "/pic"},
|
||||||
|
HTTPUser: "admin",
|
||||||
|
HTTPPwd: "admin",
|
||||||
|
HostHeaderRewrite: "example.com",
|
||||||
|
Headers: map[string]string{
|
||||||
|
"X-From-Where": "frp",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
{
|
||||||
|
sname: "web02",
|
||||||
|
source: []byte(`
|
||||||
|
[web02]
|
||||||
|
type = https
|
||||||
|
local_ip = 127.0.0.9
|
||||||
|
local_port = 8009
|
||||||
|
use_encryption
|
||||||
|
use_compression
|
||||||
|
subdomain = web01
|
||||||
|
custom_domains = web02.yourdomain.com
|
||||||
|
proxy_protocol_version = v2
|
||||||
|
`),
|
||||||
|
expected: &HTTPSProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "web02",
|
||||||
|
ProxyType: consts.HTTPSProxy,
|
||||||
|
UseCompression: true,
|
||||||
|
UseEncryption: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 8009,
|
||||||
|
},
|
||||||
|
ProxyProtocolVersion: "v2",
|
||||||
|
},
|
||||||
|
DomainConf: DomainConf{
|
||||||
|
CustomDomains: []string{"web02.yourdomain.com"},
|
||||||
|
SubDomain: "web01",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
{
|
||||||
|
sname: "secret_tcp",
|
||||||
|
source: []byte(`
|
||||||
|
[secret_tcp]
|
||||||
|
type = stcp
|
||||||
|
sk = abcdefg
|
||||||
|
local_ip = 127.0.0.1
|
||||||
|
local_port = 22
|
||||||
|
use_encryption = false
|
||||||
|
use_compression = false
|
||||||
|
`),
|
||||||
|
expected: &STCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "secret_tcp",
|
||||||
|
ProxyType: consts.STCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
LocalPort: 22,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
Role: "server",
|
||||||
|
Sk: "abcdefg",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
{
|
||||||
|
sname: "p2p_tcp",
|
||||||
|
source: []byte(`
|
||||||
|
[p2p_tcp]
|
||||||
|
type = xtcp
|
||||||
|
sk = abcdefg
|
||||||
|
local_ip = 127.0.0.1
|
||||||
|
local_port = 22
|
||||||
|
use_encryption = false
|
||||||
|
use_compression = false
|
||||||
|
`),
|
||||||
|
expected: &XTCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "p2p_tcp",
|
||||||
|
ProxyType: consts.XTCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
LocalPort: 22,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
Role: "server",
|
||||||
|
Sk: "abcdefg",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
{
|
||||||
|
sname: "tcpmuxhttpconnect",
|
||||||
|
source: []byte(`
|
||||||
|
[tcpmuxhttpconnect]
|
||||||
|
type = tcpmux
|
||||||
|
multiplexer = httpconnect
|
||||||
|
local_ip = 127.0.0.1
|
||||||
|
local_port = 10701
|
||||||
|
custom_domains = tunnel1
|
||||||
|
`),
|
||||||
|
expected: &TCPMuxProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "tcpmuxhttpconnect",
|
||||||
|
ProxyType: consts.TCPMuxProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.1",
|
||||||
|
LocalPort: 10701,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
DomainConf: DomainConf{
|
||||||
|
CustomDomains: []string{"tunnel1"},
|
||||||
|
SubDomain: "",
|
||||||
|
},
|
||||||
|
Multiplexer: "httpconnect",
|
||||||
|
},
|
||||||
|
},
|
||||||
|
}
|
||||||
|
|
||||||
|
for _, c := range testcases {
|
||||||
|
f, err := ini.LoadSources(testLoadOptions, c.source)
|
||||||
|
assert.NoError(err)
|
||||||
|
|
||||||
|
proxyType := f.Section(c.sname).Key("type").String()
|
||||||
|
assert.NotEmpty(proxyType)
|
||||||
|
|
||||||
|
actual := DefaultProxyConf(proxyType)
|
||||||
|
assert.NotNil(actual)
|
||||||
|
|
||||||
|
err = actual.UnmarshalFromIni(testProxyPrefix, c.sname, f.Section(c.sname))
|
||||||
|
assert.NoError(err)
|
||||||
|
assert.Equal(c.expected, actual)
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
func Test_RangeProxy_UnmarshalFromIni(t *testing.T) {
|
||||||
|
assert := assert.New(t)
|
||||||
|
|
||||||
|
testcases := []struct {
|
||||||
|
sname string
|
||||||
|
source []byte
|
||||||
|
expected map[string]ProxyConf
|
||||||
|
}{
|
||||||
|
{
|
||||||
|
sname: "range:tcp_port",
|
||||||
|
source: []byte(`
|
||||||
|
[range:tcp_port]
|
||||||
|
type = tcp
|
||||||
|
local_ip = 127.0.0.9
|
||||||
|
local_port = 6010-6011,6019
|
||||||
|
remote_port = 6010-6011,6019
|
||||||
|
use_encryption = false
|
||||||
|
use_compression = false
|
||||||
|
`),
|
||||||
|
expected: map[string]ProxyConf{
|
||||||
|
"tcp_port_0": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "tcp_port_0",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 6010,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6010,
|
||||||
|
},
|
||||||
|
"tcp_port_1": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "tcp_port_1",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 6011,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6011,
|
||||||
|
},
|
||||||
|
"tcp_port_2": &TCPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "tcp_port_2",
|
||||||
|
ProxyType: consts.TCPProxy,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "127.0.0.9",
|
||||||
|
LocalPort: 6019,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6019,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
{
|
||||||
|
sname: "range:udp_port",
|
||||||
|
source: []byte(`
|
||||||
|
[range:udp_port]
|
||||||
|
type = udp
|
||||||
|
local_ip = 114.114.114.114
|
||||||
|
local_port = 6000,6010-6011
|
||||||
|
remote_port = 6000,6010-6011
|
||||||
|
use_encryption
|
||||||
|
use_compression
|
||||||
|
`),
|
||||||
|
expected: map[string]ProxyConf{
|
||||||
|
"udp_port_0": &UDPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "udp_port_0",
|
||||||
|
ProxyType: consts.UDPProxy,
|
||||||
|
UseEncryption: true,
|
||||||
|
UseCompression: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "114.114.114.114",
|
||||||
|
LocalPort: 6000,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6000,
|
||||||
|
},
|
||||||
|
"udp_port_1": &UDPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "udp_port_1",
|
||||||
|
ProxyType: consts.UDPProxy,
|
||||||
|
UseEncryption: true,
|
||||||
|
UseCompression: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "114.114.114.114",
|
||||||
|
LocalPort: 6010,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6010,
|
||||||
|
},
|
||||||
|
"udp_port_2": &UDPProxyConf{
|
||||||
|
BaseProxyConf: BaseProxyConf{
|
||||||
|
ProxyName: testProxyPrefix + "udp_port_2",
|
||||||
|
ProxyType: consts.UDPProxy,
|
||||||
|
UseEncryption: true,
|
||||||
|
UseCompression: true,
|
||||||
|
LocalSvrConf: LocalSvrConf{
|
||||||
|
LocalIP: "114.114.114.114",
|
||||||
|
LocalPort: 6011,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
RemotePort: 6011,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
}
|
||||||
|
|
||||||
|
for _, c := range testcases {
|
||||||
|
|
||||||
|
f, err := ini.LoadSources(testLoadOptions, c.source)
|
||||||
|
assert.NoError(err)
|
||||||
|
|
||||||
|
actual := make(map[string]ProxyConf)
|
||||||
|
s := f.Section(c.sname)
|
||||||
|
|
||||||
|
err = renderRangeProxyTemplates(f, s)
|
||||||
|
assert.NoError(err)
|
||||||
|
|
||||||
|
f.DeleteSection(ini.DefaultSection)
|
||||||
|
f.DeleteSection(c.sname)
|
||||||
|
|
||||||
|
for _, section := range f.Sections() {
|
||||||
|
proxyType := section.Key("type").String()
|
||||||
|
newsname := section.Name()
|
||||||
|
|
||||||
|
tmp := DefaultProxyConf(proxyType)
|
||||||
|
err = tmp.UnmarshalFromIni(testProxyPrefix, newsname, section)
|
||||||
|
assert.NoError(err)
|
||||||
|
|
||||||
|
actual[newsname] = tmp
|
||||||
|
}
|
||||||
|
|
||||||
|
assert.Equal(c.expected, actual)
|
||||||
|
}
|
||||||
|
|
||||||
|
}
|
284
pkg/config/server.go
Normal file
284
pkg/config/server.go
Normal file
@ -0,0 +1,284 @@
|
|||||||
|
// Copyright 2020 The frp Authors
|
||||||
|
//
|
||||||
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
||||||
|
// you may not use this file except in compliance with the License.
|
||||||
|
// You may obtain a copy of the License at
|
||||||
|
//
|
||||||
|
// http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
//
|
||||||
|
// Unless required by applicable law or agreed to in writing, software
|
||||||
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
// See the License for the specific language governing permissions and
|
||||||
|
// limitations under the License.
|
||||||
|
|
||||||
|
package config
|
||||||
|
|
||||||
|
import (
|
||||||
|
"fmt"
|
||||||
|
"strings"
|
||||||
|
|
||||||
|
"github.com/fatedier/frp/pkg/auth"
|
||||||
|
plugin "github.com/fatedier/frp/pkg/plugin/server"
|
||||||
|
"github.com/fatedier/frp/pkg/util/util"
|
||||||
|
|
||||||
|
"gopkg.in/ini.v1"
|
||||||
|
)
|
||||||
|
|
||||||
|
// ServerCommonConf contains information for a server service. It is
|
||||||
|
// recommended to use GetDefaultServerConf instead of creating this object
|
||||||
|
// directly, so that all unspecified fields have reasonable default values.
|
||||||
|
type ServerCommonConf struct {
|
||||||
|
auth.ServerConfig `ini:",extends" json:"inline"`
|
||||||
|
|
||||||
|
// BindAddr specifies the address that the server binds to. By default,
|
||||||
|
// this value is "0.0.0.0".
|
||||||
|
BindAddr string `ini:"bind_addr" json:"bind_addr"`
|
||||||
|
// BindPort specifies the port that the server listens on. By default, this
|
||||||
|
// value is 7000.
|
||||||
|
BindPort int `ini:"bind_port" json:"bind_port"`
|
||||||
|
// BindUDPPort specifies the UDP port that the server listens on. If this
|
||||||
|
// value is 0, the server will not listen for UDP connections. By default,
|
||||||
|
// this value is 0
|
||||||
|
BindUDPPort int `ini:"bind_udp_port" json:"bind_udp_port"`
|
||||||
|
// KCPBindPort specifies the KCP port that the server listens on. If this
|
||||||
|
// value is 0, the server will not listen for KCP connections. By default,
|
||||||
|
// this value is 0.
|
||||||
|
KCPBindPort int `ini:"kcp_bind_port" json:"kcp_bind_port"`
|
||||||
|
// ProxyBindAddr specifies the address that the proxy binds to. This value
|
||||||
|
// may be the same as BindAddr. By default, this value is "0.0.0.0".
|
||||||
|
ProxyBindAddr string `ini:"proxy_bind_addr" json:"proxy_bind_addr"`
|
||||||
|
// VhostHTTPPort specifies the port that the server listens for HTTP Vhost
|
||||||
|
// requests. If this value is 0, the server will not listen for HTTP
|
||||||
|
// requests. By default, this value is 0.
|
||||||
|
VhostHTTPPort int `ini:"vhost_http_port" json:"vhost_http_port"`
|
||||||
|
// VhostHTTPSPort specifies the port that the server listens for HTTPS
|
||||||
|
// Vhost requests. If this value is 0, the server will not listen for HTTPS
|
||||||
|
// requests. By default, this value is 0.
|
||||||
|
VhostHTTPSPort int `ini:"vhost_https_port" json:"vhost_https_port"`
|
||||||
|
// TCPMuxHTTPConnectPort specifies the port that the server listens for TCP
|
||||||
|
// HTTP CONNECT requests. If the value is 0, the server will not multiplex TCP
|
||||||
|
// requests on one single port. If it's not - it will listen on this value for
|
||||||
|
// HTTP CONNECT requests. By default, this value is 0.
|
||||||
|
TCPMuxHTTPConnectPort int `ini:"tcpmux_httpconnect_port" json:"tcpmux_httpconnect_port"`
|
||||||
|
// VhostHTTPTimeout specifies the response header timeout for the Vhost
|
||||||
|
// HTTP server, in seconds. By default, this value is 60.
|
||||||
|
VhostHTTPTimeout int64 `ini:"vhost_http_timeout" json:"vhost_http_timeout"`
|
||||||
|
// DashboardAddr specifies the address that the dashboard binds to. By
|
||||||
|
// default, this value is "0.0.0.0".
|
||||||
|
DashboardAddr string `ini:"dashboard_addr" json:"dashboard_addr"`
|
||||||
|
// DashboardPort specifies the port that the dashboard listens on. If this
|
||||||
|
// value is 0, the dashboard will not be started. By default, this value is
|
||||||
|
// 0.
|
||||||
|
DashboardPort int `ini:"dashboard_port" json:"dashboard_port"`
|
||||||
|
// DashboardUser specifies the username that the dashboard will use for
|
||||||
|
// login. By default, this value is "admin".
|
||||||
|
DashboardUser string `ini:"dashboard_user" json:"dashboard_user"`
|
||||||
|
// DashboardUser specifies the password that the dashboard will use for
|
||||||
|
// login. By default, this value is "admin".
|
||||||
|
DashboardPwd string `ini:"dashboard_pwd" json:"dashboard_pwd"`
|
||||||
|
// EnablePrometheus will export prometheus metrics on {dashboard_addr}:{dashboard_port}
|
||||||
|
// in /metrics api.
|
||||||
|
EnablePrometheus bool `ini:"enable_prometheus" json:"enable_prometheus"`
|
||||||
|
// AssetsDir specifies the local directory that the dashboard will load
|
||||||
|
// resources from. If this value is "", assets will be loaded from the
|
||||||
|
// bundled executable using statik. By default, this value is "".
|
||||||
|
AssetsDir string `ini:"assets_dir" json:"assets_dir"`
|
||||||
|
// LogFile specifies a file where logs will be written to. This value will
|
||||||
|
// only be used if LogWay is set appropriately. By default, this value is
|
||||||
|
// "console".
|
||||||
|
LogFile string `ini:"log_file" json:"log_file"`
|
||||||
|
// LogWay specifies the way logging is managed. Valid values are "console"
|
||||||
|
// or "file". If "console" is used, logs will be printed to stdout. If
|
||||||
|
// "file" is used, logs will be printed to LogFile. By default, this value
|
||||||
|
// is "console".
|
||||||
|
LogWay string `ini:"log_way" json:"log_way"`
|
||||||
|
// LogLevel specifies the minimum log level. Valid values are "trace",
|
||||||
|
// "debug", "info", "warn", and "error". By default, this value is "info".
|
||||||
|
LogLevel string `ini:"log_level" json:"log_level"`
|
||||||
|
// LogMaxDays specifies the maximum number of days to store log information
|
||||||
|
// before deletion. This is only used if LogWay == "file". By default, this
|
||||||
|
// value is 0.
|
||||||
|
LogMaxDays int64 `ini:"log_max_days" json:"log_max_days"`
|
||||||
|
// DisableLogColor disables log colors when LogWay == "console" when set to
|
||||||
|
// true. By default, this value is false.
|
||||||
|
DisableLogColor bool `ini:"disable_log_color" json:"disable_log_color"`
|
||||||
|
// DetailedErrorsToClient defines whether to send the specific error (with
|
||||||
|
// debug info) to frpc. By default, this value is true.
|
||||||
|
DetailedErrorsToClient bool `ini:"detailed_errors_to_client" json:"detailed_errors_to_client"`
|
||||||
|
|
||||||
|
// SubDomainHost specifies the domain that will be attached to sub-domains
|
||||||
|
// requested by the client when using Vhost proxying. For example, if this
|
||||||
|
// value is set to "frps.com" and the client requested the subdomain
|
||||||
|
// "test", the resulting URL would be "test.frps.com". By default, this
|
||||||
|
// value is "".
|
||||||
|
SubDomainHost string `ini:"subdomain_host" json:"subdomain_host"`
|
||||||
|
// TCPMux toggles TCP stream multiplexing. This allows multiple requests
|
||||||
|
// from a client to share a single TCP connection. By default, this value
|
||||||
|
// is true.
|
||||||
|
TCPMux bool `ini:"tcp_mux" json:"tcp_mux"`
|
||||||
|
// Custom404Page specifies a path to a custom 404 page to display. If this
|
||||||
|
// value is "", a default page will be displayed. By default, this value is
|
||||||
|
// "".
|
||||||
|
Custom404Page string `ini:"custom_404_page" json:"custom_404_page"`
|
||||||
|
|
||||||
|
// AllowPorts specifies a set of ports that clients are able to proxy to.
|
||||||
|
// If the length of this value is 0, all ports are allowed. By default,
|
||||||
|
// this value is an empty set.
|
||||||
|
AllowPorts map[int]struct{} `ini:"-" json:"-"`
|
||||||
|
// MaxPoolCount specifies the maximum pool size for each proxy. By default,
|
||||||
|
// this value is 5.
|
||||||
|
MaxPoolCount int64 `ini:"max_pool_count" json:"max_pool_count"`
|
||||||
|
// MaxPortsPerClient specifies the maximum number of ports a single client
|
||||||
|
// may proxy to. If this value is 0, no limit will be applied. By default,
|
||||||
|
// this value is 0.
|
||||||
|
MaxPortsPerClient int64 `ini:"max_ports_per_client" json:"max_ports_per_client"`
|
||||||
|
// TLSOnly specifies whether to only accept TLS-encrypted connections.
|
||||||
|
// By default, the value is false.
|
||||||
|
TLSOnly bool `ini:"tls_only" json:"tls_only"`
|
||||||
|
// TLSCertFile specifies the path of the cert file that the server will
|
||||||
|
// load. If "tls_cert_file", "tls_key_file" are valid, the server will use this
|
||||||
|
// supplied tls configuration. Otherwise, the server will use the tls
|
||||||
|
// configuration generated by itself.
|
||||||
|
TLSCertFile string `ini:"tls_cert_file" json:"tls_cert_file"`
|
||||||
|
// TLSKeyFile specifies the path of the secret key that the server will
|
||||||
|
// load. If "tls_cert_file", "tls_key_file" are valid, the server will use this
|
||||||
|
// supplied tls configuration. Otherwise, the server will use the tls
|
||||||
|
// configuration generated by itself.
|
||||||
|
TLSKeyFile string `ini:"tls_key_file" json:"tls_key_file"`
|
||||||
|
// TLSTrustedCaFile specifies the paths of the client cert files that the
|
||||||
|
// server will load. It only works when "tls_only" is true. If
|
||||||
|
// "tls_trusted_ca_file" is valid, the server will verify each client's
|
||||||
|
// certificate.
|
||||||
|
TLSTrustedCaFile string `ini:"tls_trusted_ca_file" json:"tls_trusted_ca_file"`
|
||||||
|
// HeartBeatTimeout specifies the maximum time to wait for a heartbeat
|
||||||
|
// before terminating the connection. It is not recommended to change this
|
||||||
|
// value. By default, this value is 90.
|
||||||
|
HeartbeatTimeout int64 `ini:"heartbeat_timeout" json:"heartbeat_timeout"`
|
||||||
|
// UserConnTimeout specifies the maximum time to wait for a work
|
||||||
|
// connection. By default, this value is 10.
|
||||||
|
UserConnTimeout int64 `ini:"user_conn_timeout" json:"user_conn_timeout"`
|
||||||
|
// HTTPPlugins specify the server plugins support HTTP protocol.
|
||||||
|
HTTPPlugins map[string]plugin.HTTPPluginOptions `ini:"-" json:"http_plugins"`
|
||||||
|
// UDPPacketSize specifies the UDP packet size
|
||||||
|
// By default, this value is 1500
|
||||||
|
UDPPacketSize int64 `ini:"udp_packet_size" json:"udp_packet_size"`
|
||||||
|
}
|
||||||
|
|
||||||
|
// GetDefaultServerConf returns a server configuration with reasonable
|
||||||
|
// defaults.
|
||||||
|
func GetDefaultServerConf() ServerCommonConf {
|
||||||
|
return ServerCommonConf{
|
||||||
|
ServerConfig: auth.GetDefaultServerConf(),
|
||||||
|
BindAddr: "0.0.0.0",
|
||||||
|
BindPort: 7000,
|
||||||
|
BindUDPPort: 0,
|
||||||
|
KCPBindPort: 0,
|
||||||
|
ProxyBindAddr: "0.0.0.0",
|
||||||
|
VhostHTTPPort: 0,
|
||||||
|
VhostHTTPSPort: 0,
|
||||||
|
TCPMuxHTTPConnectPort: 0,
|
||||||
|
VhostHTTPTimeout: 60,
|
||||||
|
DashboardAddr: "0.0.0.0",
|
||||||
|
DashboardPort: 0,
|
||||||
|
DashboardUser: "admin",
|
||||||
|
DashboardPwd: "admin",
|
||||||
|
EnablePrometheus: false,
|
||||||
|
AssetsDir: "",
|
||||||
|
LogFile: "console",
|
||||||
|
LogWay: "console",
|
||||||
|
LogLevel: "info",
|
||||||
|
LogMaxDays: 3,
|
||||||
|
DisableLogColor: false,
|
||||||
|
DetailedErrorsToClient: true,
|
||||||
|
SubDomainHost: "",
|
||||||
|
TCPMux: true,
|
||||||
|
AllowPorts: make(map[int]struct{}),
|
||||||
|
MaxPoolCount: 5,
|
||||||
|
MaxPortsPerClient: 0,
|
||||||
|
TLSOnly: false,
|
||||||
|
TLSCertFile: "",
|
||||||
|
TLSKeyFile: "",
|
||||||
|
TLSTrustedCaFile: "",
|
||||||
|
HeartbeatTimeout: 90,
|
||||||
|
UserConnTimeout: 10,
|
||||||
|
Custom404Page: "",
|
||||||
|
HTTPPlugins: make(map[string]plugin.HTTPPluginOptions),
|
||||||
|
UDPPacketSize: 1500,
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
func (cfg *ServerCommonConf) Check() error {
|
||||||
|
return nil
|
||||||
|
}
|
||||||
|
|
||||||
|
func UnmarshalServerConfFromIni(source interface{}) (ServerCommonConf, error) {
|
||||||
|
|
||||||
|
f, err := ini.LoadSources(ini.LoadOptions{
|
||||||
|
Insensitive: false,
|
||||||
|
InsensitiveSections: false,
|
||||||
|
InsensitiveKeys: false,
|
||||||
|
IgnoreInlineComment: true,
|
||||||
|
AllowBooleanKeys: true,
|
||||||
|
}, source)
|
||||||
|
if err != nil {
|
||||||
|
return ServerCommonConf{}, err
|
||||||
|
}
|
||||||
|
|
||||||
|
s, err := f.GetSection("common")
|
||||||
|
if err != nil {
|
||||||
|
// TODO: add error info
|
||||||
|
return ServerCommonConf{}, err
|
||||||
|
}
|
||||||
|
|
||||||
|
common := GetDefaultServerConf()
|
||||||
|
err = s.MapTo(&common)
|
||||||
|
if err != nil {
|
||||||
|
return ServerCommonConf{}, err
|
||||||
|
}
|
||||||
|
|
||||||
|
// allow_ports
|
||||||
|
allowPortStr := s.Key("allow_ports").String()
|
||||||
|
if allowPortStr != "" {
|
||||||
|
allowPorts, err := util.ParseRangeNumbers(allowPortStr)
|
||||||
|
if err != nil {
|
||||||
|
return ServerCommonConf{}, fmt.Errorf("Parse conf error: allow_ports: %v", err)
|
||||||
|
}
|
||||||
|
for _, port := range allowPorts {
|
||||||
|
common.AllowPorts[int(port)] = struct{}{}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
// plugin.xxx
|
||||||
|
pluginOpts := make(map[string]plugin.HTTPPluginOptions)
|
||||||
|
for _, section := range f.Sections() {
|
||||||
|
name := section.Name()
|
||||||
|
if !strings.HasPrefix(name, "plugin.") {
|
||||||
|
continue
|
||||||
|
}
|
||||||
|
|
||||||
|
opt, err := loadHTTPPluginOpt(section)
|
||||||
|
if err != nil {
|
||||||
|
return ServerCommonConf{}, err
|
||||||
|
}
|
||||||
|
|
||||||
|
pluginOpts[opt.Name] = *opt
|
||||||
|
}
|
||||||
|
common.HTTPPlugins = pluginOpts
|
||||||
|
|
||||||
|
return common, nil
|
||||||
|
}
|
||||||
|
|
||||||
|
func loadHTTPPluginOpt(section *ini.Section) (*plugin.HTTPPluginOptions, error) {
|
||||||
|
name := strings.TrimSpace(strings.TrimPrefix(section.Name(), "plugin."))
|
||||||
|
|
||||||
|
opt := new(plugin.HTTPPluginOptions)
|
||||||
|
err := section.MapTo(opt)
|
||||||
|
if err != nil {
|
||||||
|
return nil, err
|
||||||
|
}
|
||||||
|
|
||||||
|
opt.Name = name
|
||||||
|
|
||||||
|
return opt, nil
|
||||||
|
}
|
@ -1,482 +0,0 @@
|
|||||||
// Copyright 2016 fatedier, fatedier@gmail.com
|
|
||||||
//
|
|
||||||
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
||||||
// you may not use this file except in compliance with the License.
|
|
||||||
// You may obtain a copy of the License at
|
|
||||||
//
|
|
||||||
// http://www.apache.org/licenses/LICENSE-2.0
|
|
||||||
//
|
|
||||||
// Unless required by applicable law or agreed to in writing, software
|
|
||||||
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
||||||
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
||||||
// See the License for the specific language governing permissions and
|
|
||||||
// limitations under the License.
|
|
||||||
|
|
||||||
package config
|
|
||||||
|
|
||||||
import (
|
|
||||||
"fmt"
|
|
||||||
"strconv"
|
|
||||||
"strings"
|
|
||||||
|
|
||||||
"github.com/fatedier/frp/pkg/auth"
|
|
||||||
plugin "github.com/fatedier/frp/pkg/plugin/server"
|
|
||||||
"github.com/fatedier/frp/pkg/util/util"
|
|
||||||
|
|
||||||
ini "github.com/vaughan0/go-ini"
|
|
||||||
)
|
|
||||||
|
|
||||||
// ServerCommonConf contains information for a server service. It is
|
|
||||||
// recommended to use GetDefaultServerConf instead of creating this object
|
|
||||||
// directly, so that all unspecified fields have reasonable default values.
|
|
||||||
type ServerCommonConf struct {
|
|
||||||
auth.ServerConfig
|
|
||||||
// BindAddr specifies the address that the server binds to. By default,
|
|
||||||
// this value is "0.0.0.0".
|
|
||||||
BindAddr string `json:"bind_addr"`
|
|
||||||
// BindPort specifies the port that the server listens on. By default, this
|
|
||||||
// value is 7000.
|
|
||||||
BindPort int `json:"bind_port"`
|
|
||||||
// BindUDPPort specifies the UDP port that the server listens on. If this
|
|
||||||
// value is 0, the server will not listen for UDP connections. By default,
|
|
||||||
// this value is 0
|
|
||||||
BindUDPPort int `json:"bind_udp_port"`
|
|
||||||
// KCPBindPort specifies the KCP port that the server listens on. If this
|
|
||||||
// value is 0, the server will not listen for KCP connections. By default,
|
|
||||||
// this value is 0.
|
|
||||||
KCPBindPort int `json:"kcp_bind_port"`
|
|
||||||
// ProxyBindAddr specifies the address that the proxy binds to. This value
|
|
||||||
// may be the same as BindAddr. By default, this value is "0.0.0.0".
|
|
||||||
ProxyBindAddr string `json:"proxy_bind_addr"`
|
|
||||||
// VhostHTTPPort specifies the port that the server listens for HTTP Vhost
|
|
||||||
// requests. If this value is 0, the server will not listen for HTTP
|
|
||||||
// requests. By default, this value is 0.
|
|
||||||
VhostHTTPPort int `json:"vhost_http_port"`
|
|
||||||
// VhostHTTPSPort specifies the port that the server listens for HTTPS
|
|
||||||
// Vhost requests. If this value is 0, the server will not listen for HTTPS
|
|
||||||
// requests. By default, this value is 0.
|
|
||||||
VhostHTTPSPort int `json:"vhost_https_port"`
|
|
||||||
// TCPMuxHTTPConnectPort specifies the port that the server listens for TCP
|
|
||||||
// HTTP CONNECT requests. If the value is 0, the server will not multiplex TCP
|
|
||||||
// requests on one single port. If it's not - it will listen on this value for
|
|
||||||
// HTTP CONNECT requests. By default, this value is 0.
|
|
||||||
TCPMuxHTTPConnectPort int `json:"tcpmux_httpconnect_port"`
|
|
||||||
// VhostHTTPTimeout specifies the response header timeout for the Vhost
|
|
||||||
// HTTP server, in seconds. By default, this value is 60.
|
|
||||||
VhostHTTPTimeout int64 `json:"vhost_http_timeout"`
|
|
||||||
// DashboardAddr specifies the address that the dashboard binds to. By
|
|
||||||
// default, this value is "0.0.0.0".
|
|
||||||
DashboardAddr string `json:"dashboard_addr"`
|
|
||||||
// DashboardPort specifies the port that the dashboard listens on. If this
|
|
||||||
// value is 0, the dashboard will not be started. By default, this value is
|
|
||||||
// 0.
|
|
||||||
DashboardPort int `json:"dashboard_port"`
|
|
||||||
// DashboardUser specifies the username that the dashboard will use for
|
|
||||||
// login. By default, this value is "admin".
|
|
||||||
DashboardUser string `json:"dashboard_user"`
|
|
||||||
// DashboardUser specifies the password that the dashboard will use for
|
|
||||||
// login. By default, this value is "admin".
|
|
||||||
DashboardPwd string `json:"dashboard_pwd"`
|
|
||||||
// EnablePrometheus will export prometheus metrics on {dashboard_addr}:{dashboard_port}
|
|
||||||
// in /metrics api.
|
|
||||||
EnablePrometheus bool `json:"enable_prometheus"`
|
|
||||||
// AssetsDir specifies the local directory that the dashboard will load
|
|
||||||
// resources from. If this value is "", assets will be loaded from the
|
|
||||||
// bundled executable using statik. By default, this value is "".
|
|
||||||
AssetsDir string `json:"assets_dir"`
|
|
||||||
// LogFile specifies a file where logs will be written to. This value will
|
|
||||||
// only be used if LogWay is set appropriately. By default, this value is
|
|
||||||
// "console".
|
|
||||||
LogFile string `json:"log_file"`
|
|
||||||
// LogWay specifies the way logging is managed. Valid values are "console"
|
|
||||||
// or "file". If "console" is used, logs will be printed to stdout. If
|
|
||||||
// "file" is used, logs will be printed to LogFile. By default, this value
|
|
||||||
// is "console".
|
|
||||||
LogWay string `json:"log_way"`
|
|
||||||
// LogLevel specifies the minimum log level. Valid values are "trace",
|
|
||||||
// "debug", "info", "warn", and "error". By default, this value is "info".
|
|
||||||
LogLevel string `json:"log_level"`
|
|
||||||
// LogMaxDays specifies the maximum number of days to store log information
|
|
||||||
// before deletion. This is only used if LogWay == "file". By default, this
|
|
||||||
// value is 0.
|
|
||||||
LogMaxDays int64 `json:"log_max_days"`
|
|
||||||
// DisableLogColor disables log colors when LogWay == "console" when set to
|
|
||||||
// true. By default, this value is false.
|
|
||||||
DisableLogColor bool `json:"disable_log_color"`
|
|
||||||
// DetailedErrorsToClient defines whether to send the specific error (with
|
|
||||||
// debug info) to frpc. By default, this value is true.
|
|
||||||
DetailedErrorsToClient bool `json:"detailed_errors_to_client"`
|
|
||||||
|
|
||||||
// SubDomainHost specifies the domain that will be attached to sub-domains
|
|
||||||
// requested by the client when using Vhost proxying. For example, if this
|
|
||||||
// value is set to "frps.com" and the client requested the subdomain
|
|
||||||
// "test", the resulting URL would be "test.frps.com". By default, this
|
|
||||||
// value is "".
|
|
||||||
SubDomainHost string `json:"subdomain_host"`
|
|
||||||
// TCPMux toggles TCP stream multiplexing. This allows multiple requests
|
|
||||||
// from a client to share a single TCP connection. By default, this value
|
|
||||||
// is true.
|
|
||||||
TCPMux bool `json:"tcp_mux"`
|
|
||||||
// Custom404Page specifies a path to a custom 404 page to display. If this
|
|
||||||
// value is "", a default page will be displayed. By default, this value is
|
|
||||||
// "".
|
|
||||||
Custom404Page string `json:"custom_404_page"`
|
|
||||||
|
|
||||||
// AllowPorts specifies a set of ports that clients are able to proxy to.
|
|
||||||
// If the length of this value is 0, all ports are allowed. By default,
|
|
||||||
// this value is an empty set.
|
|
||||||
AllowPorts map[int]struct{}
|
|
||||||
// MaxPoolCount specifies the maximum pool size for each proxy. By default,
|
|
||||||
// this value is 5.
|
|
||||||
MaxPoolCount int64 `json:"max_pool_count"`
|
|
||||||
// MaxPortsPerClient specifies the maximum number of ports a single client
|
|
||||||
// may proxy to. If this value is 0, no limit will be applied. By default,
|
|
||||||
// this value is 0.
|
|
||||||
MaxPortsPerClient int64 `json:"max_ports_per_client"`
|
|
||||||
// TLSOnly specifies whether to only accept TLS-encrypted connections.
|
|
||||||
// By default, the value is false.
|
|
||||||
TLSOnly bool `json:"tls_only"`
|
|
||||||
// TLSCertFile specifies the path of the cert file that the server will
|
|
||||||
// load. If "tls_cert_file", "tls_key_file" are valid, the server will use this
|
|
||||||
// supplied tls configuration. Otherwise, the server will use the tls
|
|
||||||
// configuration generated by itself.
|
|
||||||
TLSCertFile string `json:"tls_cert_file"`
|
|
||||||
// TLSKeyFile specifies the path of the secret key that the server will
|
|
||||||
// load. If "tls_cert_file", "tls_key_file" are valid, the server will use this
|
|
||||||
// supplied tls configuration. Otherwise, the server will use the tls
|
|
||||||
// configuration generated by itself.
|
|
||||||
TLSKeyFile string `json:"tls_key_file"`
|
|
||||||
// TLSTrustedCaFile specifies the paths of the client cert files that the
|
|
||||||
// server will load. It only works when "tls_only" is true. If
|
|
||||||
// "tls_trusted_ca_file" is valid, the server will verify each client's
|
|
||||||
// certificate.
|
|
||||||
TLSTrustedCaFile string `json:"tls_trusted_ca_file"`
|
|
||||||
// HeartBeatTimeout specifies the maximum time to wait for a heartbeat
|
|
||||||
// before terminating the connection. It is not recommended to change this
|
|
||||||
// value. By default, this value is 90.
|
|
||||||
HeartbeatTimeout int64 `json:"heartbeat_timeout"`
|
|
||||||
// UserConnTimeout specifies the maximum time to wait for a work
|
|
||||||
// connection. By default, this value is 10.
|
|
||||||
UserConnTimeout int64 `json:"user_conn_timeout"`
|
|
||||||
// HTTPPlugins specify the server plugins support HTTP protocol.
|
|
||||||
HTTPPlugins map[string]plugin.HTTPPluginOptions `json:"http_plugins"`
|
|
||||||
// UDPPacketSize specifies the UDP packet size
|
|
||||||
// By default, this value is 1500
|
|
||||||
UDPPacketSize int64 `json:"udp_packet_size"`
|
|
||||||
}
|
|
||||||
|
|
||||||
// GetDefaultServerConf returns a server configuration with reasonable
|
|
||||||
// defaults.
|
|
||||||
func GetDefaultServerConf() ServerCommonConf {
|
|
||||||
return ServerCommonConf{
|
|
||||||
BindAddr: "0.0.0.0",
|
|
||||||
BindPort: 7000,
|
|
||||||
BindUDPPort: 0,
|
|
||||||
KCPBindPort: 0,
|
|
||||||
ProxyBindAddr: "0.0.0.0",
|
|
||||||
VhostHTTPPort: 0,
|
|
||||||
VhostHTTPSPort: 0,
|
|
||||||
TCPMuxHTTPConnectPort: 0,
|
|
||||||
VhostHTTPTimeout: 60,
|
|
||||||
DashboardAddr: "0.0.0.0",
|
|
||||||
DashboardPort: 0,
|
|
||||||
DashboardUser: "admin",
|
|
||||||
DashboardPwd: "admin",
|
|
||||||
EnablePrometheus: false,
|
|
||||||
AssetsDir: "",
|
|
||||||
LogFile: "console",
|
|
||||||
LogWay: "console",
|
|
||||||
LogLevel: "info",
|
|
||||||
LogMaxDays: 3,
|
|
||||||
DisableLogColor: false,
|
|
||||||
DetailedErrorsToClient: true,
|
|
||||||
SubDomainHost: "",
|
|
||||||
TCPMux: true,
|
|
||||||
AllowPorts: make(map[int]struct{}),
|
|
||||||
MaxPoolCount: 5,
|
|
||||||
MaxPortsPerClient: 0,
|
|
||||||
TLSOnly: false,
|
|
||||||
TLSCertFile: "",
|
|
||||||
TLSKeyFile: "",
|
|
||||||
TLSTrustedCaFile: "",
|
|
||||||
HeartbeatTimeout: 90,
|
|
||||||
UserConnTimeout: 10,
|
|
||||||
Custom404Page: "",
|
|
||||||
HTTPPlugins: make(map[string]plugin.HTTPPluginOptions),
|
|
||||||
UDPPacketSize: 1500,
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
// UnmarshalServerConfFromIni parses the contents of a server configuration ini
|
|
||||||
// file and returns the resulting server configuration.
|
|
||||||
func UnmarshalServerConfFromIni(content string) (cfg ServerCommonConf, err error) {
|
|
||||||
cfg = GetDefaultServerConf()
|
|
||||||
|
|
||||||
conf, err := ini.Load(strings.NewReader(content))
|
|
||||||
if err != nil {
|
|
||||||
err = fmt.Errorf("parse ini conf file error: %v", err)
|
|
||||||
return ServerCommonConf{}, err
|
|
||||||
}
|
|
||||||
|
|
||||||
UnmarshalPluginsFromIni(conf, &cfg)
|
|
||||||
|
|
||||||
cfg.ServerConfig = auth.UnmarshalServerConfFromIni(conf)
|
|
||||||
|
|
||||||
var (
|
|
||||||
tmpStr string
|
|
||||||
ok bool
|
|
||||||
v int64
|
|
||||||
)
|
|
||||||
if tmpStr, ok = conf.Get("common", "bind_addr"); ok {
|
|
||||||
cfg.BindAddr = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "bind_port"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid bind_port")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.BindPort = int(v)
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "bind_udp_port"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid bind_udp_port")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.BindUDPPort = int(v)
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "kcp_bind_port"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid kcp_bind_port")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.KCPBindPort = int(v)
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "proxy_bind_addr"); ok {
|
|
||||||
cfg.ProxyBindAddr = tmpStr
|
|
||||||
} else {
|
|
||||||
cfg.ProxyBindAddr = cfg.BindAddr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "vhost_http_port"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid vhost_http_port")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.VhostHTTPPort = int(v)
|
|
||||||
} else {
|
|
||||||
cfg.VhostHTTPPort = 0
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "vhost_https_port"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid vhost_https_port")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.VhostHTTPSPort = int(v)
|
|
||||||
} else {
|
|
||||||
cfg.VhostHTTPSPort = 0
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "tcpmux_httpconnect_port"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid tcpmux_httpconnect_port")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.TCPMuxHTTPConnectPort = int(v)
|
|
||||||
} else {
|
|
||||||
cfg.TCPMuxHTTPConnectPort = 0
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "vhost_http_timeout"); ok {
|
|
||||||
v, errRet := strconv.ParseInt(tmpStr, 10, 64)
|
|
||||||
if errRet != nil || v < 0 {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid vhost_http_timeout")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.VhostHTTPTimeout = v
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "dashboard_addr"); ok {
|
|
||||||
cfg.DashboardAddr = tmpStr
|
|
||||||
} else {
|
|
||||||
cfg.DashboardAddr = cfg.BindAddr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "dashboard_port"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid dashboard_port")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.DashboardPort = int(v)
|
|
||||||
} else {
|
|
||||||
cfg.DashboardPort = 0
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "dashboard_user"); ok {
|
|
||||||
cfg.DashboardUser = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "dashboard_pwd"); ok {
|
|
||||||
cfg.DashboardPwd = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "enable_prometheus"); ok && tmpStr == "true" {
|
|
||||||
cfg.EnablePrometheus = true
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "assets_dir"); ok {
|
|
||||||
cfg.AssetsDir = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "log_file"); ok {
|
|
||||||
cfg.LogFile = tmpStr
|
|
||||||
if cfg.LogFile == "console" {
|
|
||||||
cfg.LogWay = "console"
|
|
||||||
} else {
|
|
||||||
cfg.LogWay = "file"
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "log_level"); ok {
|
|
||||||
cfg.LogLevel = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "log_max_days"); ok {
|
|
||||||
v, err = strconv.ParseInt(tmpStr, 10, 64)
|
|
||||||
if err == nil {
|
|
||||||
cfg.LogMaxDays = v
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "disable_log_color"); ok && tmpStr == "true" {
|
|
||||||
cfg.DisableLogColor = true
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "detailed_errors_to_client"); ok && tmpStr == "false" {
|
|
||||||
cfg.DetailedErrorsToClient = false
|
|
||||||
} else {
|
|
||||||
cfg.DetailedErrorsToClient = true
|
|
||||||
}
|
|
||||||
|
|
||||||
if allowPortsStr, ok := conf.Get("common", "allow_ports"); ok {
|
|
||||||
// e.g. 1000-2000,2001,2002,3000-4000
|
|
||||||
ports, errRet := util.ParseRangeNumbers(allowPortsStr)
|
|
||||||
if errRet != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: allow_ports: %v", errRet)
|
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
for _, port := range ports {
|
|
||||||
cfg.AllowPorts[int(port)] = struct{}{}
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "max_pool_count"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid max_pool_count")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
if v < 0 {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid max_pool_count")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.MaxPoolCount = v
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "max_ports_per_client"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid max_ports_per_client")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
if v < 0 {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid max_ports_per_client")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.MaxPortsPerClient = v
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "subdomain_host"); ok {
|
|
||||||
cfg.SubDomainHost = strings.ToLower(strings.TrimSpace(tmpStr))
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "tcp_mux"); ok && tmpStr == "false" {
|
|
||||||
cfg.TCPMux = false
|
|
||||||
} else {
|
|
||||||
cfg.TCPMux = true
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "custom_404_page"); ok {
|
|
||||||
cfg.Custom404Page = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "heartbeat_timeout"); ok {
|
|
||||||
v, errRet := strconv.ParseInt(tmpStr, 10, 64)
|
|
||||||
if errRet != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: heartbeat_timeout is incorrect")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.HeartbeatTimeout = v
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "tls_only"); ok && tmpStr == "true" {
|
|
||||||
cfg.TLSOnly = true
|
|
||||||
} else {
|
|
||||||
cfg.TLSOnly = false
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok = conf.Get("common", "udp_packet_size"); ok {
|
|
||||||
if v, err = strconv.ParseInt(tmpStr, 10, 64); err != nil {
|
|
||||||
err = fmt.Errorf("Parse conf error: invalid udp_packet_size")
|
|
||||||
return
|
|
||||||
}
|
|
||||||
cfg.UDPPacketSize = v
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok := conf.Get("common", "tls_cert_file"); ok {
|
|
||||||
cfg.TLSCertFile = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok := conf.Get("common", "tls_key_file"); ok {
|
|
||||||
cfg.TLSKeyFile = tmpStr
|
|
||||||
}
|
|
||||||
|
|
||||||
if tmpStr, ok := conf.Get("common", "tls_trusted_ca_file"); ok {
|
|
||||||
cfg.TLSTrustedCaFile = tmpStr
|
|
||||||
cfg.TLSOnly = true
|
|
||||||
}
|
|
||||||
|
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
func UnmarshalPluginsFromIni(sections ini.File, cfg *ServerCommonConf) {
|
|
||||||
for name, section := range sections {
|
|
||||||
if strings.HasPrefix(name, "plugin.") {
|
|
||||||
name = strings.TrimSpace(strings.TrimPrefix(name, "plugin."))
|
|
||||||
var tls_verify, err = strconv.ParseBool(section["tls_verify"])
|
|
||||||
if err != nil {
|
|
||||||
tls_verify = true
|
|
||||||
}
|
|
||||||
options := plugin.HTTPPluginOptions{
|
|
||||||
Name: name,
|
|
||||||
Addr: section["addr"],
|
|
||||||
Path: section["path"],
|
|
||||||
Ops: strings.Split(section["ops"], ","),
|
|
||||||
TLSVerify: tls_verify,
|
|
||||||
}
|
|
||||||
for i := range options.Ops {
|
|
||||||
options.Ops[i] = strings.TrimSpace(options.Ops[i])
|
|
||||||
}
|
|
||||||
cfg.HTTPPlugins[name] = options
|
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
func (cfg *ServerCommonConf) Check() error {
|
|
||||||
return nil
|
|
||||||
}
|
|
207
pkg/config/server_test.go
Normal file
207
pkg/config/server_test.go
Normal file
@ -0,0 +1,207 @@
|
|||||||
|
// Copyright 2020 The frp Authors
|
||||||
|
//
|
||||||
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
||||||
|
// you may not use this file except in compliance with the License.
|
||||||
|
// You may obtain a copy of the License at
|
||||||
|
//
|
||||||
|
// http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
//
|
||||||
|
// Unless required by applicable law or agreed to in writing, software
|
||||||
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
// See the License for the specific language governing permissions and
|
||||||
|
// limitations under the License.
|
||||||
|
|
||||||
|
package config
|
||||||
|
|
||||||
|
import (
|
||||||
|
"testing"
|
||||||
|
|
||||||
|
"github.com/fatedier/frp/pkg/auth"
|
||||||
|
"github.com/fatedier/frp/pkg/plugin/server"
|
||||||
|
|
||||||
|
"github.com/stretchr/testify/assert"
|
||||||
|
)
|
||||||
|
|
||||||
|
func Test_LoadServerCommonConf(t *testing.T) {
|
||||||
|
assert := assert.New(t)
|
||||||
|
|
||||||
|
testcases := []struct {
|
||||||
|
source []byte
|
||||||
|
expected ServerCommonConf
|
||||||
|
}{
|
||||||
|
{
|
||||||
|
source: []byte(`
|
||||||
|
# [common] is integral section
|
||||||
|
[common]
|
||||||
|
bind_addr = 0.0.0.9
|
||||||
|
bind_port = 7009
|
||||||
|
bind_udp_port = 7008
|
||||||
|
kcp_bind_port = 7007
|
||||||
|
proxy_bind_addr = 127.0.0.9
|
||||||
|
vhost_http_port = 89
|
||||||
|
vhost_https_port = 449
|
||||||
|
vhost_http_timeout = 69
|
||||||
|
tcpmux_httpconnect_port = 1339
|
||||||
|
dashboard_addr = 0.0.0.9
|
||||||
|
dashboard_port = 7509
|
||||||
|
dashboard_user = admin9
|
||||||
|
dashboard_pwd = admin9
|
||||||
|
enable_prometheus
|
||||||
|
assets_dir = ./static9
|
||||||
|
log_file = ./frps.log9
|
||||||
|
log_way = file
|
||||||
|
log_level = info9
|
||||||
|
log_max_days = 39
|
||||||
|
disable_log_color = false
|
||||||
|
detailed_errors_to_client
|
||||||
|
authentication_method = token
|
||||||
|
authenticate_heartbeats = false
|
||||||
|
authenticate_new_work_conns = false
|
||||||
|
token = 123456789
|
||||||
|
oidc_issuer = test9
|
||||||
|
oidc_audience = test9
|
||||||
|
oidc_skip_expiry_check
|
||||||
|
oidc_skip_issuer_check
|
||||||
|
heartbeat_timeout = 99
|
||||||
|
user_conn_timeout = 9
|
||||||
|
allow_ports = 10-12,99
|
||||||
|
max_pool_count = 59
|
||||||
|
max_ports_per_client = 9
|
||||||
|
tls_only = false
|
||||||
|
tls_cert_file = server.crt
|
||||||
|
tls_key_file = server.key
|
||||||
|
tls_trusted_ca_file = ca.crt
|
||||||
|
subdomain_host = frps.com
|
||||||
|
tcp_mux
|
||||||
|
udp_packet_size = 1509
|
||||||
|
[plugin.user-manager]
|
||||||
|
addr = 127.0.0.1:9009
|
||||||
|
path = /handler
|
||||||
|
ops = Login
|
||||||
|
[plugin.port-manager]
|
||||||
|
addr = 127.0.0.1:9009
|
||||||
|
path = /handler
|
||||||
|
ops = NewProxy
|
||||||
|
tls_verify
|
||||||
|
`),
|
||||||
|
expected: ServerCommonConf{
|
||||||
|
ServerConfig: auth.ServerConfig{
|
||||||
|
BaseConfig: auth.BaseConfig{
|
||||||
|
AuthenticationMethod: "token",
|
||||||
|
AuthenticateHeartBeats: false,
|
||||||
|
AuthenticateNewWorkConns: false,
|
||||||
|
},
|
||||||
|
TokenConfig: auth.TokenConfig{
|
||||||
|
Token: "123456789",
|
||||||
|
},
|
||||||
|
OidcServerConfig: auth.OidcServerConfig{
|
||||||
|
OidcIssuer: "test9",
|
||||||
|
OidcAudience: "test9",
|
||||||
|
OidcSkipExpiryCheck: true,
|
||||||
|
OidcSkipIssuerCheck: true,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
BindAddr: "0.0.0.9",
|
||||||
|
BindPort: 7009,
|
||||||
|
BindUDPPort: 7008,
|
||||||
|
KCPBindPort: 7007,
|
||||||
|
ProxyBindAddr: "127.0.0.9",
|
||||||
|
VhostHTTPPort: 89,
|
||||||
|
VhostHTTPSPort: 449,
|
||||||
|
VhostHTTPTimeout: 69,
|
||||||
|
TCPMuxHTTPConnectPort: 1339,
|
||||||
|
DashboardAddr: "0.0.0.9",
|
||||||
|
DashboardPort: 7509,
|
||||||
|
DashboardUser: "admin9",
|
||||||
|
DashboardPwd: "admin9",
|
||||||
|
EnablePrometheus: true,
|
||||||
|
AssetsDir: "./static9",
|
||||||
|
LogFile: "./frps.log9",
|
||||||
|
LogWay: "file",
|
||||||
|
LogLevel: "info9",
|
||||||
|
LogMaxDays: 39,
|
||||||
|
DisableLogColor: false,
|
||||||
|
DetailedErrorsToClient: true,
|
||||||
|
HeartbeatTimeout: 99,
|
||||||
|
UserConnTimeout: 9,
|
||||||
|
AllowPorts: map[int]struct{}{
|
||||||
|
10: struct{}{},
|
||||||
|
11: struct{}{},
|
||||||
|
12: struct{}{},
|
||||||
|
99: struct{}{},
|
||||||
|
},
|
||||||
|
MaxPoolCount: 59,
|
||||||
|
MaxPortsPerClient: 9,
|
||||||
|
TLSOnly: false,
|
||||||
|
TLSCertFile: "server.crt",
|
||||||
|
TLSKeyFile: "server.key",
|
||||||
|
TLSTrustedCaFile: "ca.crt",
|
||||||
|
SubDomainHost: "frps.com",
|
||||||
|
TCPMux: true,
|
||||||
|
UDPPacketSize: 1509,
|
||||||
|
|
||||||
|
HTTPPlugins: map[string]plugin.HTTPPluginOptions{
|
||||||
|
"user-manager": {
|
||||||
|
Name: "user-manager",
|
||||||
|
Addr: "127.0.0.1:9009",
|
||||||
|
Path: "/handler",
|
||||||
|
Ops: []string{"Login"},
|
||||||
|
},
|
||||||
|
"port-manager": {
|
||||||
|
Name: "port-manager",
|
||||||
|
Addr: "127.0.0.1:9009",
|
||||||
|
Path: "/handler",
|
||||||
|
Ops: []string{"NewProxy"},
|
||||||
|
TLSVerify: true,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
{
|
||||||
|
source: []byte(`
|
||||||
|
# [common] is integral section
|
||||||
|
[common]
|
||||||
|
bind_addr = 0.0.0.9
|
||||||
|
bind_port = 7009
|
||||||
|
bind_udp_port = 7008
|
||||||
|
`),
|
||||||
|
expected: ServerCommonConf{
|
||||||
|
ServerConfig: auth.ServerConfig{
|
||||||
|
BaseConfig: auth.BaseConfig{
|
||||||
|
AuthenticationMethod: "token",
|
||||||
|
AuthenticateHeartBeats: false,
|
||||||
|
AuthenticateNewWorkConns: false,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
BindAddr: "0.0.0.9",
|
||||||
|
BindPort: 7009,
|
||||||
|
BindUDPPort: 7008,
|
||||||
|
ProxyBindAddr: "0.0.0.0",
|
||||||
|
VhostHTTPTimeout: 60,
|
||||||
|
DashboardAddr: "0.0.0.0",
|
||||||
|
DashboardUser: "admin",
|
||||||
|
DashboardPwd: "admin",
|
||||||
|
EnablePrometheus: false,
|
||||||
|
LogFile: "console",
|
||||||
|
LogWay: "console",
|
||||||
|
LogLevel: "info",
|
||||||
|
LogMaxDays: 3,
|
||||||
|
DetailedErrorsToClient: true,
|
||||||
|
TCPMux: true,
|
||||||
|
AllowPorts: make(map[int]struct{}),
|
||||||
|
MaxPoolCount: 5,
|
||||||
|
HeartbeatTimeout: 90,
|
||||||
|
UserConnTimeout: 10,
|
||||||
|
HTTPPlugins: make(map[string]plugin.HTTPPluginOptions),
|
||||||
|
UDPPacketSize: 1500,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
}
|
||||||
|
|
||||||
|
for _, c := range testcases {
|
||||||
|
actual, err := UnmarshalServerConfFromIni(c.source)
|
||||||
|
assert.NoError(err)
|
||||||
|
assert.Equal(c.expected, actual)
|
||||||
|
}
|
||||||
|
}
|
@ -41,6 +41,15 @@ func NewBandwidthQuantity(s string) (BandwidthQuantity, error) {
|
|||||||
return q, nil
|
return q, nil
|
||||||
}
|
}
|
||||||
|
|
||||||
|
func MustBandwidthQuantity(s string) BandwidthQuantity {
|
||||||
|
q := BandwidthQuantity{}
|
||||||
|
err := q.UnmarshalString(s)
|
||||||
|
if err != nil {
|
||||||
|
panic(err)
|
||||||
|
}
|
||||||
|
return q
|
||||||
|
}
|
||||||
|
|
||||||
func (q *BandwidthQuantity) Equal(u *BandwidthQuantity) bool {
|
func (q *BandwidthQuantity) Equal(u *BandwidthQuantity) bool {
|
||||||
if q == nil && u == nil {
|
if q == nil && u == nil {
|
||||||
return true
|
return true
|
||||||
|
51
pkg/config/utils.go
Normal file
51
pkg/config/utils.go
Normal file
@ -0,0 +1,51 @@
|
|||||||
|
// Copyright 2020 The frp Authors
|
||||||
|
//
|
||||||
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
||||||
|
// you may not use this file except in compliance with the License.
|
||||||
|
// You may obtain a copy of the License at
|
||||||
|
//
|
||||||
|
// http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
//
|
||||||
|
// Unless required by applicable law or agreed to in writing, software
|
||||||
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
// See the License for the specific language governing permissions and
|
||||||
|
// limitations under the License.
|
||||||
|
|
||||||
|
package config
|
||||||
|
|
||||||
|
import (
|
||||||
|
"strings"
|
||||||
|
)
|
||||||
|
|
||||||
|
func GetMapWithoutPrefix(set map[string]string, prefix string) map[string]string {
|
||||||
|
m := make(map[string]string)
|
||||||
|
|
||||||
|
for key, value := range set {
|
||||||
|
if strings.HasPrefix(key, prefix) {
|
||||||
|
m[strings.TrimPrefix(key, prefix)] = value
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
if len(m) == 0 {
|
||||||
|
return nil
|
||||||
|
}
|
||||||
|
|
||||||
|
return m
|
||||||
|
}
|
||||||
|
|
||||||
|
func GetMapByPrefix(set map[string]string, prefix string) map[string]string {
|
||||||
|
m := make(map[string]string)
|
||||||
|
|
||||||
|
for key, value := range set {
|
||||||
|
if strings.HasPrefix(key, prefix) {
|
||||||
|
m[key] = value
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
if len(m) == 0 {
|
||||||
|
return nil
|
||||||
|
}
|
||||||
|
|
||||||
|
return m
|
||||||
|
}
|
@ -1,3 +1,17 @@
|
|||||||
|
// Copyright 2020 The frp Authors
|
||||||
|
//
|
||||||
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
||||||
|
// you may not use this file except in compliance with the License.
|
||||||
|
// You may obtain a copy of the License at
|
||||||
|
//
|
||||||
|
// http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
//
|
||||||
|
// Unless required by applicable law or agreed to in writing, software
|
||||||
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
// See the License for the specific language governing permissions and
|
||||||
|
// limitations under the License.
|
||||||
|
|
||||||
package config
|
package config
|
||||||
|
|
||||||
import (
|
import (
|
||||||
@ -34,8 +48,8 @@ func GetValues() *Values {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
func RenderContent(in string) (out string, err error) {
|
func RenderContent(in []byte) (out []byte, err error) {
|
||||||
tmpl, errRet := template.New("frp").Parse(in)
|
tmpl, errRet := template.New("frp").Parse(string(in))
|
||||||
if errRet != nil {
|
if errRet != nil {
|
||||||
err = errRet
|
err = errRet
|
||||||
return
|
return
|
||||||
@ -47,18 +61,17 @@ func RenderContent(in string) (out string, err error) {
|
|||||||
if err != nil {
|
if err != nil {
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
out = buffer.String()
|
out = buffer.Bytes()
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
func GetRenderedConfFromFile(path string) (out string, err error) {
|
func GetRenderedConfFromFile(path string) (out []byte, err error) {
|
||||||
var b []byte
|
var b []byte
|
||||||
b, err = ioutil.ReadFile(path)
|
b, err = ioutil.ReadFile(path)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
content := string(b)
|
|
||||||
|
|
||||||
out, err = RenderContent(content)
|
out, err = RenderContent(b)
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
@ -17,72 +17,91 @@ package config
|
|||||||
import (
|
import (
|
||||||
"fmt"
|
"fmt"
|
||||||
"reflect"
|
"reflect"
|
||||||
"strconv"
|
|
||||||
|
|
||||||
"github.com/fatedier/frp/pkg/consts"
|
"github.com/fatedier/frp/pkg/consts"
|
||||||
|
|
||||||
ini "github.com/vaughan0/go-ini"
|
"gopkg.in/ini.v1"
|
||||||
)
|
)
|
||||||
|
|
||||||
|
|
||||||
|
// Visitor
|
||||||
var (
|
var (
|
||||||
visitorConfTypeMap map[string]reflect.Type
|
visitorConfTypeMap = map[string]reflect.Type{
|
||||||
|
consts.STCPProxy: reflect.TypeOf(STCPVisitorConf{}),
|
||||||
|
consts.XTCPProxy: reflect.TypeOf(XTCPVisitorConf{}),
|
||||||
|
consts.SUDPProxy: reflect.TypeOf(SUDPVisitorConf{}),
|
||||||
|
}
|
||||||
)
|
)
|
||||||
|
|
||||||
func init() {
|
|
||||||
visitorConfTypeMap = make(map[string]reflect.Type)
|
|
||||||
visitorConfTypeMap[consts.STCPProxy] = reflect.TypeOf(STCPVisitorConf{})
|
|
||||||
visitorConfTypeMap[consts.XTCPProxy] = reflect.TypeOf(XTCPVisitorConf{})
|
|
||||||
visitorConfTypeMap[consts.SUDPProxy] = reflect.TypeOf(SUDPVisitorConf{})
|
|
||||||
}
|
|
||||||
|
|
||||||
type VisitorConf interface {
|
type VisitorConf interface {
|
||||||
GetBaseInfo() *BaseVisitorConf
|
GetBaseInfo() *BaseVisitorConf
|
||||||
Compare(cmp VisitorConf) bool
|
Compare(cmp VisitorConf) bool
|
||||||
UnmarshalFromIni(prefix string, name string, section ini.Section) error
|
UnmarshalFromIni(prefix string, name string, section *ini.Section) error
|
||||||
Check() error
|
Check() error
|
||||||
}
|
}
|
||||||
|
|
||||||
func NewVisitorConfByType(cfgType string) VisitorConf {
|
type BaseVisitorConf struct {
|
||||||
v, ok := visitorConfTypeMap[cfgType]
|
ProxyName string `ini:"name" json:"name"`
|
||||||
|
ProxyType string `ini:"type" json:"type"`
|
||||||
|
UseEncryption bool `ini:"use_encryption" json:"use_encryption"`
|
||||||
|
UseCompression bool `ini:"use_compression" json:"use_compression"`
|
||||||
|
Role string `ini:"role" json:"role"`
|
||||||
|
Sk string `ini:"sk" json:"sk"`
|
||||||
|
ServerName string `ini:"server_name" json:"server_name"`
|
||||||
|
BindAddr string `ini:"bind_addr" json:"bind_addr"`
|
||||||
|
BindPort int `ini:"bind_port" json:"bind_port"`
|
||||||
|
}
|
||||||
|
|
||||||
|
type SUDPVisitorConf struct {
|
||||||
|
BaseVisitorConf `ini:",extends" json:"inline"`
|
||||||
|
}
|
||||||
|
|
||||||
|
type STCPVisitorConf struct {
|
||||||
|
BaseVisitorConf `ini:",extends" json:"inline"`
|
||||||
|
}
|
||||||
|
|
||||||
|
type XTCPVisitorConf struct {
|
||||||
|
BaseVisitorConf `ini:",extends" json:"inline"`
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
|
// DefaultVisitorConf creates a empty VisitorConf object by visitorType.
|
||||||
|
// If visitorType doesn't exist, return nil.
|
||||||
|
func DefaultVisitorConf(visitorType string) VisitorConf {
|
||||||
|
v, ok := visitorConfTypeMap[visitorType]
|
||||||
if !ok {
|
if !ok {
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
cfg := reflect.New(v).Interface().(VisitorConf)
|
|
||||||
return cfg
|
return reflect.New(v).Interface().(VisitorConf)
|
||||||
}
|
}
|
||||||
|
|
||||||
func NewVisitorConfFromIni(prefix string, name string, section ini.Section) (cfg VisitorConf, err error) {
|
// Visitor loaded from ini
|
||||||
cfgType := section["type"]
|
func NewVisitorConfFromIni(prefix string, name string, section *ini.Section) (VisitorConf, error) {
|
||||||
if cfgType == "" {
|
// section.Key: if key not exists, section will set it with default value.
|
||||||
err = fmt.Errorf("visitor [%s] type shouldn't be empty", name)
|
visitorType := section.Key("type").String()
|
||||||
return
|
|
||||||
|
if visitorType == "" {
|
||||||
|
return nil, fmt.Errorf("visitor [%s] type shouldn't be empty", name)
|
||||||
}
|
}
|
||||||
cfg = NewVisitorConfByType(cfgType)
|
|
||||||
if cfg == nil {
|
conf := DefaultVisitorConf(visitorType)
|
||||||
err = fmt.Errorf("visitor [%s] type [%s] error", name, cfgType)
|
if conf == nil {
|
||||||
return
|
return nil, fmt.Errorf("visitor [%s] type [%s] error", name, visitorType)
|
||||||
}
|
}
|
||||||
if err = cfg.UnmarshalFromIni(prefix, name, section); err != nil {
|
|
||||||
return
|
if err := conf.UnmarshalFromIni(prefix, name, section); err != nil {
|
||||||
|
return nil, fmt.Errorf("visitor [%s] type [%s] error", name, visitorType)
|
||||||
}
|
}
|
||||||
if err = cfg.Check(); err != nil {
|
|
||||||
return
|
if err := conf.Check(); err != nil {
|
||||||
|
return nil, err
|
||||||
}
|
}
|
||||||
return
|
|
||||||
}
|
return conf, nil
|
||||||
|
|
||||||
type BaseVisitorConf struct {
|
|
||||||
ProxyName string `json:"proxy_name"`
|
|
||||||
ProxyType string `json:"proxy_type"`
|
|
||||||
UseEncryption bool `json:"use_encryption"`
|
|
||||||
UseCompression bool `json:"use_compression"`
|
|
||||||
Role string `json:"role"`
|
|
||||||
Sk string `json:"sk"`
|
|
||||||
ServerName string `json:"server_name"`
|
|
||||||
BindAddr string `json:"bind_addr"`
|
|
||||||
BindPort int `json:"bind_port"`
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Base
|
||||||
func (cfg *BaseVisitorConf) GetBaseInfo() *BaseVisitorConf {
|
func (cfg *BaseVisitorConf) GetBaseInfo() *BaseVisitorConf {
|
||||||
return cfg
|
return cfg
|
||||||
}
|
}
|
||||||
@ -118,45 +137,40 @@ func (cfg *BaseVisitorConf) check() (err error) {
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
func (cfg *BaseVisitorConf) UnmarshalFromIni(prefix string, name string, section ini.Section) (err error) {
|
func (cfg *BaseVisitorConf) unmarshalFromIni(prefix string, name string, section *ini.Section) error {
|
||||||
var (
|
|
||||||
tmpStr string
|
// Custom decoration after basic unmarshal:
|
||||||
ok bool
|
// proxy name
|
||||||
)
|
|
||||||
cfg.ProxyName = prefix + name
|
cfg.ProxyName = prefix + name
|
||||||
cfg.ProxyType = section["type"]
|
|
||||||
|
|
||||||
if tmpStr, ok = section["use_encryption"]; ok && tmpStr == "true" {
|
// server_name
|
||||||
cfg.UseEncryption = true
|
cfg.ServerName = prefix + cfg.ServerName
|
||||||
}
|
|
||||||
if tmpStr, ok = section["use_compression"]; ok && tmpStr == "true" {
|
|
||||||
cfg.UseCompression = true
|
|
||||||
}
|
|
||||||
|
|
||||||
cfg.Role = section["role"]
|
// bind_addr
|
||||||
if cfg.Role != "visitor" {
|
if cfg.BindAddr == "" {
|
||||||
return fmt.Errorf("Parse conf error: proxy [%s] incorrect role [%s]", name, cfg.Role)
|
|
||||||
}
|
|
||||||
cfg.Sk = section["sk"]
|
|
||||||
cfg.ServerName = prefix + section["server_name"]
|
|
||||||
if cfg.BindAddr = section["bind_addr"]; cfg.BindAddr == "" {
|
|
||||||
cfg.BindAddr = "127.0.0.1"
|
cfg.BindAddr = "127.0.0.1"
|
||||||
}
|
}
|
||||||
|
|
||||||
if tmpStr, ok = section["bind_port"]; ok {
|
|
||||||
if cfg.BindPort, err = strconv.Atoi(tmpStr); err != nil {
|
|
||||||
return fmt.Errorf("Parse conf error: proxy [%s] bind_port incorrect", name)
|
|
||||||
}
|
|
||||||
} else {
|
|
||||||
return fmt.Errorf("Parse conf error: proxy [%s] bind_port not found", name)
|
|
||||||
}
|
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|
||||||
type SUDPVisitorConf struct {
|
func preVisitorUnmarshalFromIni(cfg VisitorConf, prefix string, name string, section *ini.Section) error {
|
||||||
BaseVisitorConf
|
err := section.MapTo(cfg)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
|
||||||
|
err = cfg.GetBaseInfo().unmarshalFromIni(prefix, name, section)
|
||||||
|
if err != nil {
|
||||||
|
return err
|
||||||
|
}
|
||||||
|
|
||||||
|
return nil
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// SUDP
|
||||||
|
var _ VisitorConf = &SUDPVisitorConf{}
|
||||||
|
|
||||||
func (cfg *SUDPVisitorConf) Compare(cmp VisitorConf) bool {
|
func (cfg *SUDPVisitorConf) Compare(cmp VisitorConf) bool {
|
||||||
cmpConf, ok := cmp.(*SUDPVisitorConf)
|
cmpConf, ok := cmp.(*SUDPVisitorConf)
|
||||||
if !ok {
|
if !ok {
|
||||||
@ -166,13 +180,20 @@ func (cfg *SUDPVisitorConf) Compare(cmp VisitorConf) bool {
|
|||||||
if !cfg.BaseVisitorConf.compare(&cmpConf.BaseVisitorConf) {
|
if !cfg.BaseVisitorConf.compare(&cmpConf.BaseVisitorConf) {
|
||||||
return false
|
return false
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Add custom login equal, if exists
|
||||||
|
|
||||||
return true
|
return true
|
||||||
}
|
}
|
||||||
|
|
||||||
func (cfg *SUDPVisitorConf) UnmarshalFromIni(prefix string, name string, section ini.Section) (err error) {
|
func (cfg *SUDPVisitorConf) UnmarshalFromIni(prefix string, name string, section *ini.Section) (err error) {
|
||||||
if err = cfg.BaseVisitorConf.UnmarshalFromIni(prefix, name, section); err != nil {
|
err = preVisitorUnmarshalFromIni(cfg, prefix, name, section)
|
||||||
|
if err != nil {
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Add custom logic unmarshal, if exists
|
||||||
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -180,12 +201,14 @@ func (cfg *SUDPVisitorConf) Check() (err error) {
|
|||||||
if err = cfg.BaseVisitorConf.check(); err != nil {
|
if err = cfg.BaseVisitorConf.check(); err != nil {
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Add custom logic validate, if exists
|
||||||
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
type STCPVisitorConf struct {
|
// STCP
|
||||||
BaseVisitorConf
|
var _ VisitorConf = &STCPVisitorConf{}
|
||||||
}
|
|
||||||
|
|
||||||
func (cfg *STCPVisitorConf) Compare(cmp VisitorConf) bool {
|
func (cfg *STCPVisitorConf) Compare(cmp VisitorConf) bool {
|
||||||
cmpConf, ok := cmp.(*STCPVisitorConf)
|
cmpConf, ok := cmp.(*STCPVisitorConf)
|
||||||
@ -196,13 +219,20 @@ func (cfg *STCPVisitorConf) Compare(cmp VisitorConf) bool {
|
|||||||
if !cfg.BaseVisitorConf.compare(&cmpConf.BaseVisitorConf) {
|
if !cfg.BaseVisitorConf.compare(&cmpConf.BaseVisitorConf) {
|
||||||
return false
|
return false
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Add custom login equal, if exists
|
||||||
|
|
||||||
return true
|
return true
|
||||||
}
|
}
|
||||||
|
|
||||||
func (cfg *STCPVisitorConf) UnmarshalFromIni(prefix string, name string, section ini.Section) (err error) {
|
func (cfg *STCPVisitorConf) UnmarshalFromIni(prefix string, name string, section *ini.Section) (err error) {
|
||||||
if err = cfg.BaseVisitorConf.UnmarshalFromIni(prefix, name, section); err != nil {
|
err = preVisitorUnmarshalFromIni(cfg, prefix, name, section)
|
||||||
|
if err != nil {
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Add custom logic unmarshal, if exists
|
||||||
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -210,12 +240,14 @@ func (cfg *STCPVisitorConf) Check() (err error) {
|
|||||||
if err = cfg.BaseVisitorConf.check(); err != nil {
|
if err = cfg.BaseVisitorConf.check(); err != nil {
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Add custom logic validate, if exists
|
||||||
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
type XTCPVisitorConf struct {
|
// XTCP
|
||||||
BaseVisitorConf
|
var _ VisitorConf = &XTCPVisitorConf{}
|
||||||
}
|
|
||||||
|
|
||||||
func (cfg *XTCPVisitorConf) Compare(cmp VisitorConf) bool {
|
func (cfg *XTCPVisitorConf) Compare(cmp VisitorConf) bool {
|
||||||
cmpConf, ok := cmp.(*XTCPVisitorConf)
|
cmpConf, ok := cmp.(*XTCPVisitorConf)
|
||||||
@ -226,13 +258,20 @@ func (cfg *XTCPVisitorConf) Compare(cmp VisitorConf) bool {
|
|||||||
if !cfg.BaseVisitorConf.compare(&cmpConf.BaseVisitorConf) {
|
if !cfg.BaseVisitorConf.compare(&cmpConf.BaseVisitorConf) {
|
||||||
return false
|
return false
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Add custom login equal, if exists
|
||||||
|
|
||||||
return true
|
return true
|
||||||
}
|
}
|
||||||
|
|
||||||
func (cfg *XTCPVisitorConf) UnmarshalFromIni(prefix string, name string, section ini.Section) (err error) {
|
func (cfg *XTCPVisitorConf) UnmarshalFromIni(prefix string, name string, section *ini.Section) (err error) {
|
||||||
if err = cfg.BaseVisitorConf.UnmarshalFromIni(prefix, name, section); err != nil {
|
err = preVisitorUnmarshalFromIni(cfg, prefix, name, section)
|
||||||
|
if err != nil {
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Add custom logic unmarshal, if exists
|
||||||
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
@ -240,5 +279,8 @@ func (cfg *XTCPVisitorConf) Check() (err error) {
|
|||||||
if err = cfg.BaseVisitorConf.check(); err != nil {
|
if err = cfg.BaseVisitorConf.check(); err != nil {
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// Add custom logic validate, if exists
|
||||||
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
108
pkg/config/visitor_test.go
Normal file
108
pkg/config/visitor_test.go
Normal file
@ -0,0 +1,108 @@
|
|||||||
|
// Copyright 2020 The frp Authors
|
||||||
|
//
|
||||||
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
||||||
|
// you may not use this file except in compliance with the License.
|
||||||
|
// You may obtain a copy of the License at
|
||||||
|
//
|
||||||
|
// http://www.apache.org/licenses/LICENSE-2.0
|
||||||
|
//
|
||||||
|
// Unless required by applicable law or agreed to in writing, software
|
||||||
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
||||||
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
||||||
|
// See the License for the specific language governing permissions and
|
||||||
|
// limitations under the License.
|
||||||
|
|
||||||
|
package config
|
||||||
|
|
||||||
|
import (
|
||||||
|
"testing"
|
||||||
|
|
||||||
|
"github.com/fatedier/frp/pkg/consts"
|
||||||
|
|
||||||
|
"gopkg.in/ini.v1"
|
||||||
|
"github.com/stretchr/testify/assert"
|
||||||
|
)
|
||||||
|
|
||||||
|
const testVisitorPrefix = "test."
|
||||||
|
|
||||||
|
func Test_Visitor_Interface(t *testing.T) {
|
||||||
|
for name := range visitorConfTypeMap {
|
||||||
|
DefaultVisitorConf(name)
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
func Test_Visitor_UnmarshalFromIni(t *testing.T) {
|
||||||
|
assert := assert.New(t)
|
||||||
|
|
||||||
|
testcases := []struct {
|
||||||
|
sname string
|
||||||
|
source []byte
|
||||||
|
expected VisitorConf
|
||||||
|
}{
|
||||||
|
{
|
||||||
|
sname: "secret_tcp_visitor",
|
||||||
|
source: []byte(`
|
||||||
|
[secret_tcp_visitor]
|
||||||
|
role = visitor
|
||||||
|
type = stcp
|
||||||
|
server_name = secret_tcp
|
||||||
|
sk = abcdefg
|
||||||
|
bind_addr = 127.0.0.1
|
||||||
|
bind_port = 9000
|
||||||
|
use_encryption = false
|
||||||
|
use_compression = false
|
||||||
|
`),
|
||||||
|
expected: &STCPVisitorConf{
|
||||||
|
BaseVisitorConf: BaseVisitorConf{
|
||||||
|
ProxyName: testVisitorPrefix + "secret_tcp_visitor",
|
||||||
|
ProxyType: consts.STCPProxy,
|
||||||
|
Role: "visitor",
|
||||||
|
Sk: "abcdefg",
|
||||||
|
ServerName: testVisitorPrefix + "secret_tcp",
|
||||||
|
BindAddr: "127.0.0.1",
|
||||||
|
BindPort: 9000,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
{
|
||||||
|
sname: "p2p_tcp_visitor",
|
||||||
|
source: []byte(`
|
||||||
|
[p2p_tcp_visitor]
|
||||||
|
role = visitor
|
||||||
|
type = xtcp
|
||||||
|
server_name = p2p_tcp
|
||||||
|
sk = abcdefg
|
||||||
|
bind_addr = 127.0.0.1
|
||||||
|
bind_port = 9001
|
||||||
|
use_encryption = false
|
||||||
|
use_compression = false
|
||||||
|
`),
|
||||||
|
expected: &XTCPVisitorConf{
|
||||||
|
BaseVisitorConf: BaseVisitorConf{
|
||||||
|
ProxyName: testVisitorPrefix + "p2p_tcp_visitor",
|
||||||
|
ProxyType: consts.XTCPProxy,
|
||||||
|
Role: "visitor",
|
||||||
|
Sk: "abcdefg",
|
||||||
|
ServerName: testProxyPrefix + "p2p_tcp",
|
||||||
|
BindAddr: "127.0.0.1",
|
||||||
|
BindPort: 9001,
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
|
}
|
||||||
|
|
||||||
|
for _, c := range testcases {
|
||||||
|
f, err := ini.LoadSources(testLoadOptions, c.source)
|
||||||
|
assert.NoError(err)
|
||||||
|
|
||||||
|
visitorType := f.Section(c.sname).Key("type").String()
|
||||||
|
assert.NotEmpty(visitorType)
|
||||||
|
|
||||||
|
actual := DefaultVisitorConf(visitorType)
|
||||||
|
assert.NotNil(actual)
|
||||||
|
|
||||||
|
err = actual.UnmarshalFromIni(testVisitorPrefix, c.sname, f.Section(c.sname))
|
||||||
|
assert.NoError(err)
|
||||||
|
assert.Equal(c.expected, actual)
|
||||||
|
}
|
||||||
|
}
|
@ -28,11 +28,11 @@ import (
|
|||||||
)
|
)
|
||||||
|
|
||||||
type HTTPPluginOptions struct {
|
type HTTPPluginOptions struct {
|
||||||
Name string
|
Name string `ini:"name"`
|
||||||
Addr string
|
Addr string `ini:"addr"`
|
||||||
Path string
|
Path string `ini:"path"`
|
||||||
Ops []string
|
Ops []string `ini:"ops"`
|
||||||
TLSVerify bool
|
TLSVerify bool `ini:"tls_verify"`
|
||||||
}
|
}
|
||||||
|
|
||||||
type httpPlugin struct {
|
type httpPlugin struct {
|
||||||
|
Loading…
Reference in New Issue
Block a user