mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-12 19:14:23 +00:00
3549a8b64e
* move mgmt pkg * begin package restructure * rename auth package to authz * begin start api * move auth * move admin * fix merge * configs and interceptors * interceptor * revert generate-grpc.sh * some cleanups * console * move console * fix tests and merging * js linting * merge * merging and configs * change k8s base to current ports * fixes * cleanup * regenerate proto * remove unnecessary whitespace * missing param * go mod tidy * fix merging * move login pkg * cleanup * move api pkgs again * fix pkg naming * fix generate-static.sh for login * update workflow * fixes * logging * remove duplicate * comment for optional gateway interfaces * regenerate protos * fix proto imports for grpc web * protos * grpc web generate * grpc web generate * fix changes * add translation interceptor * fix merging * regenerate mgmt proto
129 lines
3.0 KiB
Go
129 lines
3.0 KiB
Go
package middleware
|
|
|
|
import (
|
|
"fmt"
|
|
"net/http"
|
|
"regexp"
|
|
"strings"
|
|
"time"
|
|
|
|
http_utils "github.com/caos/zitadel/internal/api/http"
|
|
"github.com/caos/zitadel/internal/config/types"
|
|
)
|
|
|
|
type Cache struct {
|
|
Cacheability Cacheability
|
|
NoCache bool
|
|
NoStore bool
|
|
MaxAge time.Duration
|
|
SharedMaxAge time.Duration
|
|
NoTransform bool
|
|
Revalidation Revalidation
|
|
}
|
|
|
|
type Cacheability string
|
|
|
|
const (
|
|
CacheabilityNotSet Cacheability = ""
|
|
CacheabilityPublic = "public"
|
|
CacheabilityPrivate = "private"
|
|
)
|
|
|
|
type Revalidation string
|
|
|
|
const (
|
|
RevalidationNotSet Revalidation = ""
|
|
RevalidationMust = "must-revalidate"
|
|
RevalidationProxy = "proxy-revalidate"
|
|
)
|
|
|
|
type CacheConfig struct {
|
|
MaxAge types.Duration
|
|
SharedMaxAge types.Duration
|
|
}
|
|
|
|
var (
|
|
NeverCacheOptions = &Cache{
|
|
NoStore: true,
|
|
}
|
|
AssetOptions = func(maxAge, SharedMaxAge time.Duration) *Cache {
|
|
return &Cache{
|
|
Cacheability: CacheabilityPublic,
|
|
MaxAge: maxAge,
|
|
SharedMaxAge: SharedMaxAge,
|
|
}
|
|
}
|
|
)
|
|
|
|
func DefaultCacheInterceptor(pattern string, maxAge, sharedMaxAge time.Duration) (func(http.Handler) http.Handler, error) {
|
|
regex, err := regexp.Compile(pattern)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return func(handler http.Handler) http.Handler {
|
|
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
|
if regex.MatchString(r.URL.Path) {
|
|
AssetsCacheInterceptor(maxAge, sharedMaxAge, handler).ServeHTTP(w, r)
|
|
return
|
|
}
|
|
NoCacheInterceptor(handler).ServeHTTP(w, r)
|
|
})
|
|
}, nil
|
|
}
|
|
|
|
func NoCacheInterceptor(h http.Handler) http.Handler {
|
|
return CacheInterceptorOpts(h, NeverCacheOptions)
|
|
}
|
|
|
|
func AssetsCacheInterceptor(maxAge, sharedMaxAge time.Duration, h http.Handler) http.Handler {
|
|
return CacheInterceptorOpts(h, AssetOptions(maxAge, sharedMaxAge))
|
|
}
|
|
|
|
func CacheInterceptorOpts(h http.Handler, cache *Cache) http.Handler {
|
|
return http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
|
|
cache.serializeHeaders(w)
|
|
h.ServeHTTP(w, req)
|
|
})
|
|
}
|
|
|
|
func (c *Cache) serializeHeaders(w http.ResponseWriter) {
|
|
control := make([]string, 0, 6)
|
|
pragma := false
|
|
|
|
if c.Cacheability != CacheabilityNotSet {
|
|
control = append(control, string(c.Cacheability))
|
|
control = append(control, fmt.Sprintf("max-age=%v", c.MaxAge.Seconds()))
|
|
if c.SharedMaxAge != c.MaxAge {
|
|
control = append(control, fmt.Sprintf("s-maxage=%v", c.SharedMaxAge.Seconds()))
|
|
}
|
|
}
|
|
maxAge := c.MaxAge
|
|
if maxAge == 0 {
|
|
maxAge = -time.Hour
|
|
}
|
|
expires := time.Now().UTC().Add(maxAge).Format(http.TimeFormat)
|
|
|
|
if c.NoCache {
|
|
control = append(control, fmt.Sprintf("no-cache"))
|
|
pragma = true
|
|
}
|
|
|
|
if c.NoStore {
|
|
control = append(control, fmt.Sprintf("no-store"))
|
|
pragma = true
|
|
}
|
|
if c.NoTransform {
|
|
control = append(control, fmt.Sprintf("no-transform"))
|
|
}
|
|
|
|
if c.Revalidation != RevalidationNotSet {
|
|
control = append(control, string(c.Revalidation))
|
|
}
|
|
|
|
w.Header().Set(http_utils.CacheControl, strings.Join(control, ", "))
|
|
w.Header().Set(http_utils.Expires, expires)
|
|
if pragma {
|
|
w.Header().Set(http_utils.Pragma, "no-cache")
|
|
}
|
|
}
|