| // Licensed to the Apache Software Foundation (ASF) under one or more |
| // contributor license agreements. See the NOTICE file distributed with |
| // this work for additional information regarding copyright ownership. |
| // The ASF licenses this file to You under the Apache License, Version 2.0 |
| // (the "License"); you may not use this file except in compliance with |
| // the License. You may obtain a copy of the License at |
| // |
| // http://www.apache.org/licenses/LICENSE-2.0 |
| // |
| // Unless required by applicable law or agreed to in writing, software |
| // distributed under the License is distributed on an "AS IS" BASIS, |
| // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| // See the License for the specific language governing permissions and |
| // limitations under the License. |
| |
| package bufstudioagent |
| |
| import ( |
| "crypto/tls" |
| "net/http" |
| ) |
| |
| import ( |
| "github.com/rs/cors" |
| |
| "go.uber.org/zap" |
| ) |
| |
| // NewHandler creates a new handler that serves the invoke endpoints for the |
| // agent. |
| func NewHandler( |
| logger *zap.Logger, |
| origin string, |
| tlsClientConfig *tls.Config, |
| disallowedHeaders map[string]struct{}, |
| forwardHeaders map[string]string, |
| privateNetwork bool, |
| ) http.Handler { |
| corsHandlerOptions := cors.Options{ |
| AllowedOrigins: []string{origin}, |
| AllowedMethods: []string{http.MethodPost, http.MethodOptions}, |
| AllowCredentials: true, |
| } |
| if privateNetwork { |
| corsHandlerOptions.AllowPrivateNetwork = true |
| } |
| corsHandler := cors.New(corsHandlerOptions) |
| plainHandler := corsHandler.Handler(newPlainPostHandler(logger, disallowedHeaders, forwardHeaders, tlsClientConfig)) |
| mux := http.NewServeMux() |
| mux.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) { |
| switch r.Method { |
| case http.MethodGet: |
| // In the future we could check for an upgrade header here. |
| _, _ = w.Write([]byte("OK")) |
| case http.MethodPost: |
| plainHandler.ServeHTTP(w, r) |
| return |
| case http.MethodOptions: |
| if privateNetwork { |
| corsHandler.HandlerFunc(w, r) |
| return |
| } |
| // If the private network flag is not used, fall through to the default |
| fallthrough |
| default: |
| http.Error(w, "", http.StatusMethodNotAllowed) |
| return |
| } |
| }) |
| return mux |
| } |