mirror of
https://github.com/caddyserver/caddy.git
synced 2025-10-19 15:53:17 +00:00
Initial commit of Storage, TLS, and automatic HTTPS implementations
This commit is contained in:
Matthew Holt
parent
545f28008e
commit
2d056fbe66
16 changed files with 1282 additions and 122 deletions
79
modules/caddytls/matchers.go
Normal file
79
modules/caddytls/matchers.go
Normal file
|
|
@ -0,0 +1,79 @@
|
|||
package caddytls
|
||||
|
||||
import (
|
||||
"crypto/tls"
|
||||
|
||||
"bitbucket.org/lightcodelabs/caddy2"
|
||||
)
|
||||
|
||||
type (
|
||||
MatchServerName []string
|
||||
|
||||
// TODO: these others should be enterprise-only, probably
|
||||
MatchProtocol []string // TODO: version or protocol?
|
||||
MatchClientCert struct{} // TODO: client certificate options
|
||||
MatchRemote []string
|
||||
MatchStarlark string
|
||||
)
|
||||
|
||||
func init() {
|
||||
caddy2.RegisterModule(caddy2.Module{
|
||||
Name: "tls.handshake_match.host",
|
||||
New: func() (interface{}, error) { return MatchServerName{}, nil },
|
||||
})
|
||||
caddy2.RegisterModule(caddy2.Module{
|
||||
Name: "tls.handshake_match.protocol",
|
||||
New: func() (interface{}, error) { return MatchProtocol{}, nil },
|
||||
})
|
||||
caddy2.RegisterModule(caddy2.Module{
|
||||
Name: "tls.handshake_match.client_cert",
|
||||
New: func() (interface{}, error) { return MatchClientCert{}, nil },
|
||||
})
|
||||
caddy2.RegisterModule(caddy2.Module{
|
||||
Name: "tls.handshake_match.remote",
|
||||
New: func() (interface{}, error) { return MatchRemote{}, nil },
|
||||
})
|
||||
caddy2.RegisterModule(caddy2.Module{
|
||||
Name: "tls.handshake_match.starlark",
|
||||
New: func() (interface{}, error) { return new(MatchStarlark), nil },
|
||||
})
|
||||
}
|
||||
|
||||
func (m MatchServerName) Match(hello *tls.ClientHelloInfo) bool {
|
||||
for _, name := range m {
|
||||
// TODO: support wildcards (and regex?)
|
||||
if hello.ServerName == name {
|
||||
return true
|
||||
}
|
||||
}
|
||||
return false
|
||||
}
|
||||
|
||||
func (m MatchProtocol) Match(hello *tls.ClientHelloInfo) bool {
|
||||
// TODO: not implemented
|
||||
return false
|
||||
}
|
||||
|
||||
func (m MatchClientCert) Match(hello *tls.ClientHelloInfo) bool {
|
||||
// TODO: not implemented
|
||||
return false
|
||||
}
|
||||
|
||||
func (m MatchRemote) Match(hello *tls.ClientHelloInfo) bool {
|
||||
// TODO: not implemented
|
||||
return false
|
||||
}
|
||||
|
||||
func (m MatchStarlark) Match(hello *tls.ClientHelloInfo) bool {
|
||||
// TODO: not implemented
|
||||
return false
|
||||
}
|
||||
|
||||
// Interface guards
|
||||
var (
|
||||
_ ConnectionMatcher = MatchServerName{}
|
||||
_ ConnectionMatcher = MatchProtocol{}
|
||||
_ ConnectionMatcher = MatchClientCert{}
|
||||
_ ConnectionMatcher = MatchRemote{}
|
||||
_ ConnectionMatcher = new(MatchStarlark)
|
||||
)
|
||||
Loading…
Add table
Add a link
Reference in a new issue