live
/
m7s


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167
							package config

import (
	"context"
	"crypto/tls"
	"net/http"
	"time"
	"encoding/hex"
	"fmt"
	"crypto/md5"
	"github.com/logrusorgru/aurora/v4"
	"golang.org/x/sync/errgroup"
	"m7s.live/engine/v4/log"
	"m7s.live/engine/v4/util"
)

var _ HTTPConfig = (*HTTP)(nil)

type Middleware func(string, http.Handler) http.Handler
type HTTP struct {
	ListenAddr    string        `desc:"监听地址"`
	ListenAddrTLS string        `desc:"监听地址HTTPS"`
	CertFile      string        `desc:"HTTPS证书文件"`
	KeyFile       string        `desc:"HTTPS密钥文件"`
	CORS          bool          `default:"true" desc:"是否自动添加CORS头"` //是否自动添加CORS头
	UserName      string        `desc:"基本身份认证用户名"`
	Password      string        `desc:"基本身份认证密码"`
	ReadTimeout   time.Duration `desc:"读取超时"`
	WriteTimeout  time.Duration `desc:"写入超时"`
	IdleTimeout   time.Duration `desc:"空闲超时"`
	mux           *http.ServeMux
	middlewares   []Middleware
	AuthKey string
	AuthSecret string
}
type HTTPConfig interface {
	GetHTTPConfig() *HTTP
	Listen(ctx context.Context) error
	Handle(string, http.Handler)
	Handler(*http.Request) (http.Handler, string)
	AddMiddleware(Middleware)
}
func (config *HTTP)AuthMiddleware(){
	Global.HTTP.AddMiddleware(func(pattern string, handler http.Handler) http.Handler {
		return http.HandlerFunc(func(rw http.ResponseWriter, r *http.Request) {
			if config.AuthKey != ""{
				m := md5.New()
				m.Write([]byte(config.AuthKey+config.AuthSecret+config.AuthSecret+config.AuthKey))
				signStr := hex.EncodeToString(m.Sum(nil))
				sign := r.URL.Query().Get("sign")
				if sign != signStr{
					http.Error(rw, fmt.Errorf("签名未通过").Error(), http.StatusBadRequest)
					return 
				}
			}
			handler.ServeHTTP(rw, r)
		})
	})
}


func (config *HTTP) AddMiddleware(middleware Middleware) {
	//fmt.Println("add AddMiddleware xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",)
	config.middlewares = append(config.middlewares, middleware)
}

func (config *HTTP) Handle(path string, f http.Handler) {
	if config.mux == nil {
		config.mux = http.NewServeMux()
	}
	if config.CORS {
		f = util.CORS(f)
	}
	if config.UserName != "" && config.Password != "" {
		f = util.BasicAuth(config.UserName, config.Password, f)
	}
	for _, middleware := range config.middlewares {
		f = middleware(path, f)
	}
	config.mux.Handle(path, f)
}

func (config *HTTP) GetHTTPConfig() *HTTP {
	return config
}

func (config *HTTP) Handler(r *http.Request) (h http.Handler, pattern string) {
	//fmt.Println("HANDLER111111111111111111111111111111:",r.RequestURI,r.Method)
	return config.mux.Handler(r)
}

// ListenAddrs Listen http and https
func (config *HTTP) Listen(ctx context.Context) error {
	if config.mux == nil {
		return nil
	}
	//fmt.Println("LISTEN 1111111111111111111111111111111111111111111111111 START",*config)
	var g errgroup.Group
	if config.ListenAddrTLS != "" && (config == &Global.HTTP || config.ListenAddrTLS != Global.ListenAddrTLS) {
		g.Go(func() error {
			if Global.LogLang == "zh" {
				log.Info("🌐 https 监听在 ", aurora.Blink(config.ListenAddrTLS))
			} else {
				log.Info("🌐 https listen at ", aurora.Blink(config.ListenAddrTLS))
			}
			cer, _ := tls.X509KeyPair(LocalCert, LocalKey)
			var server = http.Server{
				Addr:         config.ListenAddrTLS,
				ReadTimeout:  config.ReadTimeout,
				WriteTimeout: config.WriteTimeout,
				IdleTimeout:  config.IdleTimeout,
				Handler:      config.mux,
				TLSConfig: &tls.Config{
					Certificates: []tls.Certificate{cer},
					CipherSuites: []uint16{
						tls.TLS_AES_128_GCM_SHA256,
						tls.TLS_CHACHA20_POLY1305_SHA256,
						tls.TLS_AES_256_GCM_SHA384,
						//tls.TLS_RSA_WITH_AES_128_CBC_SHA,
						//tls.TLS_RSA_WITH_AES_256_CBC_SHA,
						//tls.TLS_RSA_WITH_AES_128_GCM_SHA256,
						//tls.TLS_RSA_WITH_AES_256_GCM_SHA384,
						tls.TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305,
						tls.TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,
						tls.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
						tls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
						tls.TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,
						tls.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
						tls.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,
						tls.TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,
						tls.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256,
						tls.TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA,
						tls.TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,
						tls.TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA,
					},
				},
			}
			return server.ListenAndServeTLS(config.CertFile, config.KeyFile)
		})
	}
	
	//fmt.Println("listen http 11111111111111111111111111111111111", config.ListenAddr,Global.ListenAddr,config == &Global.HTTP)
	if config.ListenAddr != "" && (config == &Global.HTTP || config.ListenAddr != Global.ListenAddr) {
		g.Go(func() error {
			if Global.LogLang == "zh" {
				log.Info("🌐 http 监听在 ", aurora.Blink(config.ListenAddr))
			} else {
				log.Info("🌐 http listen at ", aurora.Blink(config.ListenAddr))
			}
			var server = http.Server{
				Addr:         config.ListenAddr,
				ReadTimeout:  config.ReadTimeout,
				WriteTimeout: config.WriteTimeout,
				IdleTimeout:  config.IdleTimeout,
				Handler:      config.mux,
			}

			return server.ListenAndServe()
		})
	}
	g.Go(func() error {
		<-ctx.Done()
		return ctx.Err()
	})
	return g.Wait()
}