itsi-server 0.1.1 → 0.1.18

data/lib/itsi/passfile.rb

@@ -0,0 +1,109 @@
+module Itsi
+  class Server
+
+    module Passfile
+      require 'io/console'
+
+      module_function
+
+      def load(filename)
+        if filename.nil? || filename.strip.empty?
+          puts "Error: a valid filename is required."
+          return nil
+        end
+
+        creds = {}
+        if File.exist?(filename)
+          File.foreach(filename) do |line|
+            line.chomp!
+            next if line.empty?
+
+            user, pass = line.split(':', 2)
+            creds[user] = pass
+          end
+        end
+        creds
+      end
+
+      def save(creds, filename)
+        File.open(filename, 'w', 0o600) do |f|
+          creds.each do |u, p|
+            f.puts "#{u}:#{p}"
+          end
+        end
+      end
+
+      def echo(filename, algorithm)
+        return unless (creds = load(filename))
+        print "Enter username: "
+        username = $stdin.gets.chomp
+
+        print "Enter password: "
+
+        password = $stdin.noecho(&:gets).chomp
+        puts
+
+        print "Confirm password: "
+        password_confirm = $stdin.noecho(&:gets).chomp
+        puts
+
+        if password != password_confirm
+          puts "Error: Passwords do not match!"
+          exit(1)
+        end
+
+        puts "#{username}:#{Itsi.create_password_hash(password, algorithm)}"
+      end
+
+      def add(filename, algorithm)
+        return unless (creds = load(filename))
+        print "Enter username: "
+        username = $stdin.gets.chomp
+
+        print "Enter password: "
+
+        password = $stdin.noecho(&:gets).chomp
+        puts
+
+        print "Confirm password: "
+        password_confirm = $stdin.noecho(&:gets).chomp
+        puts
+
+        if password != password_confirm
+          puts "Error: Passwords do not match!"
+          exit(1)
+        end
+
+        creds[username] = Itsi.create_password_hash(password, algorithm)
+
+        save(creds, filename)
+
+        puts "User '#{username}' added."
+      end
+
+      def remove(filename)
+        return unless (creds = load(filename))
+
+        print "Enter username to remove: "
+        username = $stdin.gets.chomp
+
+        if creds.key?(username)
+          creds.delete(username)
+          save(creds, filename)
+          puts "User '#{username}' removed."
+        else
+          puts "Warning: User '#{username}' not found."
+        end
+      end
+
+      def list(filename)
+        puts "Current credentials in '#{filename}':"
+        return unless (creds = load(filename))
+        creds.each do |u, p|
+          puts "#{u}:#{p}"
+        end
+      end
+
+    end
+  end
+end

data/lib/itsi/server/config/dsl.rb

@@ -0,0 +1,565 @@
+module Itsi
+  class Server
+    module Config
+      class DSL
+        attr_reader :parent, :children, :middleware, :controller_class, :routes, :methods, :protocols,
+                    :hosts, :ports, :extensions, :content_types, :accepts, :options
+
+        def self.evaluate(config = Itsi::Server::Config.config_file_path, &blk)
+          new(routes: ["/"]) do
+            if blk
+              instance_exec(&blk)
+            else
+              code = IO.read(config)
+              instance_eval(code, config.to_s, 1)
+            end
+          end.options
+        end
+
+        def initialize(
+          parent = nil,
+          routes: [],
+          methods: [],
+          protocols: [],
+          hosts: [],
+          ports: [],
+          extensions: [],
+          content_types: [],
+          accepts: [],
+          controller: self,
+          &block
+        )
+          @parent           = parent
+          @children         = []
+          @middleware       = {}
+          @controller_class = nil
+
+          @controller = controller
+          @routes = Array(routes).flatten
+          @methods = methods.map { |s| s.is_a?(Regexp) ? s : s.to_s }
+          @protocols = protocols.map { |s| s.is_a?(Regexp) ? s : s.to_s }
+          @hosts = hosts.map { |s| s.is_a?(Regexp) ? s : s.to_s }
+          @ports = ports.map { |s| s.is_a?(Regexp) ? s : s.to_s }
+          @extensions = extensions.map { |s| s.is_a?(Regexp) ? s : s.to_s }
+          @content_types = content_types.map { |s| s.is_a?(Regexp) ? s : s.to_s }
+          @accepts = accepts.map { |s| s.is_a?(Regexp) ? s : s.to_s }
+
+          @options = {
+            middleware_loaders: [],
+            middleware_loader: lambda do
+              @options[:middleware_loaders].each(&:call)
+              @middleware[:app] ||= {}
+              @middleware[:app][:app_proc] = @middleware[:app]&.[](:preloader)&.call || DEFAULT_APP[]
+              flatten_routes
+            end
+          }
+
+          instance_exec(&block)
+        end
+
+        def workers(workers)
+          raise "Workers must be set at the root" unless @parent.nil?
+
+          @options[:workers] = [workers.to_i, 1].max
+        end
+
+        def threads(threads)
+          raise "Threads must be set at the root" unless @parent.nil?
+
+          @options[:threads] = [threads.to_i, 1].max
+        end
+
+        def oob_gc_responses_threshold(threshold)
+          raise "OOB GC responses threshold must be set at the root" unless @parent.nil?
+
+          @options[:oob_gc_responses_threshold] = threshold.to_i
+        end
+
+        def log_level(level)
+          raise "Log level must be set at the root" unless @parent.nil?
+
+          @options[:log_level] = level.to_s
+        end
+
+        def log_format(format)
+          raise "Log format must be set at the root" unless @parent.nil?
+
+          @options[:log_format] = format.to_s
+        end
+
+        def log_target(target)
+          raise "Log target must be set at the root" unless @parent.nil?
+
+          @options[:log_target] = target.to_s
+        end
+
+        def get(route, app_proc = nil, nonblocking: false, &blk)
+          endpoint(route, [:get], app_proc, nonblocking: nonblocking,  &blk)
+        end
+
+        def post(route, app_proc = nil, nonblocking: false, &blk)
+          endpoint(route, [:post], app_proc, nonblocking: nonblocking,  &blk)
+        end
+
+        def put(route, app_proc = nil, nonblocking: false, &blk)
+          endpoint(route, [:put], app_proc, nonblocking: nonblocking,  &blk)
+        end
+
+        def delete(route, app_proc = nil, nonblocking: false, &blk)
+          endpoint(route, [:delete], app_proc, nonblocking: nonblocking,  &blk)
+        end
+
+        def patch(route, app_proc = nil, nonblocking: false, &blk)
+          endpoint(route, [:patch], app_proc, nonblocking: nonblocking,  &blk)
+        end
+
+        def endpoint(route, methods=[], app_proc = nil, nonblocking: false, &blk)
+          raise "You must provide either a block or an explicit handler for the endpoint" if app_proc.nil? && blk.nil?
+
+          app_proc = @controller.method(app_proc).to_proc if app_proc.is_a?(Symbol)
+
+          app_proc ||= blk
+          num_required, keywords = Itsi::Server::TypedHandlers::SourceParser.extract_expr_from_source_location(app_proc)
+          params_schema = keywords[:params]
+
+          if params_schema && num_required > 1
+            raise "Cannot accept multiple required parameters in a single endpoint. A single typed or untyped params argument is supported"
+          end
+          if num_required > 2
+            raise "Cannot accept more than two required parameters in a single endpoint. An can either accept a single request argument, or a request and a params argument (which may be typed or untyped)"
+          end
+          if num_required == 0
+            raise "Cannot accept zero required parameters in a single endpoint. Endpoint must accept a request parameter"
+          end
+
+          accepts_params = !params_schema.nil? || num_required > 1
+
+          if accepts_params
+            app_proc = Itsi::Server::TypedHandlers.handler_for(app_proc, params_schema)
+          end
+
+
+          if route && methods.any?
+            # For endpoints, it's usually assumed trailing slash and non-trailing slash behaviour is the same
+            routes = route == "/" ? ["", "/"] : [route]
+            location(*routes, methods: methods) do
+              @middleware[:app] = { preloader: -> { app_proc }, nonblocking: nonblocking }
+            end
+          else
+            @middleware[:app] = { preloader: -> { app_proc }, nonblocking: nonblocking }
+          end
+        end
+
+        def grpc(*handlers, reflection: true, nonblocking: false, **, &blk)
+          if @middleware[:app] && @middleware[:app][:request_type].to_s != "grpc"
+            raise "App has already been set. You can use only one of `run` and `rackup_file` or `grpc` per location"
+          end
+
+          grpc_reflection(handlers) if reflection
+
+          handlers.each do |handler|
+            location(Regexp.new("#{Regexp.escape(handler.class.service_name)}/(?:#{handler.class.rpc_descs.keys.map(&:to_s).join("|")})")) do
+              @middleware[:app] = { preloader: -> { Itsi::Server::GrpcInterface.for(handler) }, request_type: "grpc", nonblocking: nonblocking }
+              instance_exec(&blk)
+            end
+          end
+        end
+
+        def grpc_reflection(handlers)
+          @grpc_reflected_services ||= []
+          @grpc_reflected_services.concat(handlers)
+
+          location(["grpc.reflection.v1alpha.ServerReflection/ServerReflectionInfo",
+                    "grpc.reflection.v1.ServerReflection/ServerReflectionInfo"]) do
+            @middleware[:app] = { preloader: lambda {
+              Itsi::Server::GrpcInterface.reflection_for(handlers)
+            }, request_type: "grpc" }
+          end
+        end
+
+        def run(app, sendfile: true, nonblocking: false, path_info: "/")
+          @middleware[:app] = { preloader: -> { Itsi::Server::RackInterface.for(app) }, sendfile: sendfile, base_path: "^(?<base_path>#{paths_from_parent.gsub(/\.\*\)$/, ')')}).*$", path_info: path_info, nonblocking: nonblocking }
+        end
+
+        def rackup_file(rackup_file, nonblocking: false, sendfile: true, path_info: "/")
+          raise "Rackup file #{rackup_file} doesn't exist" unless File.exist?(rackup_file)
+          @middleware[:app] = { preloader: -> { Itsi::Server::RackInterface.for(rackup_file) }, sendfile: sendfile, base_path: "^(?<base_path>#{paths_from_parent.gsub(/\.\*\)$/, ')')}).*$", path_info: path_info, nonblocking: nonblocking }
+        end
+
+        def include(path)
+          code = IO.read("#{path}.rb")
+          instance_eval(code, "#{path}.rb", 1)
+        end
+
+        def bind(bind_str)
+          raise "Bind must be set at the root" unless @parent.nil?
+
+          @options[:binds] ||= []
+          @options[:binds] << bind_str.to_s
+        end
+
+        def after_fork(&block)
+          raise "After fork must be set at the root" unless @parent.nil?
+
+          @options[:hooks] ||= {}
+          @options[:hooks][:after_fork] = block
+        end
+
+        def before_fork(&block)
+          raise "Before fork must be set at the root" unless @parent.nil?
+
+          @options[:hooks] ||= {}
+          @options[:hooks][:before_fork] = block
+        end
+
+        def after_memory_threshold_reached(&block)
+          raise "Before fork must be set at the root" unless @parent.nil?
+
+          @options[:hooks] ||= {}
+          @options[:hooks][:after_memory_threshold_reached] = block
+        end
+
+        def worker_memory_limit(memory_limit)
+          raise "Worker memory limit must be set at the root" unless @parent.nil?
+
+          @options[:worker_memory_limit] = memory_limit
+        end
+
+        def multithreaded_reactor(multithreaded)
+          raise "Multithreaded reactor must be set at the root" unless @parent.nil?
+
+          @options[:multithreaded_reactor] = !!multithreaded
+        end
+
+        def pin_worker_cores(pin_worker_cores)
+          raise "Pin worker cores must be set at the root" unless @parent.nil?
+
+          @options[:pin_worker_cores] = !!pin_worker_cores
+        end
+
+        def auto_reload_config!
+          if ENV["BUNDLE_BIN_PATH"]
+            watch "Itsi.rb", [%w[bundle exec itsi restart]]
+          else
+            watch "Itsi.rb", [%w[itsi restart]]
+          end
+        end
+
+        def watch(path, commands)
+          raise "Watch be set at the root" unless @parent.nil?
+
+          @options[:notify_watchers] ||= []
+          @options[:notify_watchers] << [path, commands]
+        end
+
+        def fiber_scheduler(klass_name = true)
+          raise "Fiber scheduler must be set at the root" unless @parent.nil?
+
+          klass_name = "Itsi::Scheduler" if klass_name == true
+          @options[:scheduler_class] = klass_name if klass_name
+        end
+
+        def scheduler_threads(threads = 1)
+          raise "Scheduler threads must be set at the root" unless @parent.nil?
+
+          @options[:scheduler_threads] = threads
+        end
+
+        def request_timeout(request_timeout)
+          raise "Request timeout must be set at the root" unless @parent.nil?
+
+          @options[:request_timeout] = request_timeout
+        end
+
+        def preload(preload)
+          raise "Preload must be set at the root" unless @parent.nil?
+
+          @options[:preload] = preload
+        end
+
+        def shutdown_timeout(shutdown_timeout)
+          raise "Shutdown timeout must be set at the root" unless @parent.nil?
+
+          @options[:shutdown_timeout] = shutdown_timeout.to_f
+        end
+
+
+        def stream_body(stream_body)
+          raise "Stream body must be set at the root" unless @parent.nil?
+
+          @options[:stream_body] = !!stream_body
+        end
+
+        def location(*routes, methods: [], protocols: [], hosts: [], ports: [], extensions: [], content_types: [],
+                     accepts: [], &block)
+          build_child = lambda {
+            @children << DSL.new(
+              self,
+              routes: routes,
+              methods: Array(methods) | self.methods,
+              protocols: Array(protocols) | self.protocols,
+              hosts: Array(hosts) | self.hosts,
+              ports: Array(ports) | self.ports,
+              extensions: Array(extensions) | self.extensions,
+              content_types: Array(content_types) | self.content_types,
+              accepts: Array(accepts) | self.accepts,
+              controller: @controller,
+              &block
+            )
+          }
+          if @parent.nil?
+            @options[:middleware_loaders] << build_child
+          else
+            build_child[]
+          end
+        end
+
+        def log_requests(**args)
+          @middleware[:log_requests] = args
+        end
+
+        def allow_list(**args)
+          args[:allowed_patterns] = Array(args[:allowed_patterns]).map do |pattern|
+            if pattern.is_a?(Regexp)
+              pattern.source
+            else
+              pattern
+            end
+          end
+          @middleware[:allow_list] = args
+        end
+
+        def deny_list(**args)
+          args[:denied_patterns] = Array(args[:denied_patterns]).map do |pattern|
+            if pattern.is_a?(Regexp)
+              pattern.source
+            else
+              pattern
+            end
+          end
+          @middleware[:deny_list] = args
+        end
+
+        def controller(controller)
+          @controller = controller
+        end
+
+        def auth_basic(**args)
+
+          if File.exist?(".itsi-credentials") && !args[:credential_file]
+            args[:credential_file] = ".itsi-credentials"
+          end
+
+          if args[:credential_file] && File.exist?(args[:credential_file])
+            args[:credential_pairs] = Passfile.load(args[:credential_file])
+          end
+
+          @middleware[:auth_basic] = args
+        end
+
+        def redirect(**args)
+          @middleware[:redirect] = args
+        end
+
+        def proxy(**args)
+          @middleware[:proxy] = args
+        end
+
+        def static_response(**args)
+          args[:body] = args[:body].bytes
+          @middleware[:static_response] = args
+        end
+
+        def auth_jwt(**args)
+          @middleware[:auth_jwt] = args
+        end
+
+        def auth_api_key(**args)
+          if args[:valid_keys] && args[:valid_keys].is_a?(Array)
+            args[:valid_keys] = args[:valid_keys].each_with_index.map { |key, index| [index, key] }.to_h
+            args[:key_id_source] = nil
+          end
+
+          if File.exist?(".itsi-credentials") && !args[:credential_file]
+            args[:credential_file] = ".itsi-credentials"
+          end
+
+          if args[:credential_file] && File.exist?(args[:credential_file])
+            args[:valid_keys] = Passfile.load(args[:credential_file])
+          end
+
+          @middleware[:auth_api_key] = args
+        end
+
+        def compress(**args)
+          @middleware[:compression] = args
+        end
+
+        def request_headers(**args)
+          @middleware[:request_headers] = args
+        end
+
+        def max_body(**args)
+          @middleware[:max_body] = args
+        end
+
+        def response_headers(**args)
+          @middleware[:response_headers] = args
+        end
+
+        def rate_limit(**args)
+          @middleware[:rate_limit] = args
+        end
+
+        def cache_control(**args)
+          @middleware[:cache_control] = args
+        end
+
+        def etag(**args)
+          @middleware[:etag] = args
+        end
+
+        def intrusion_protection(**args)
+          args[:banned_url_patterns] = Array(args[:banned_url_patterns]).map do |pattern|
+            if pattern.is_a?(Regexp)
+              pattern.source
+            else
+              pattern
+            end
+          end
+          @middleware[:intrusion_protection] = args
+        end
+
+        def cors(**args)
+          @middleware[:cors] = args
+        end
+
+        def static_assets(**args)
+          root_dir = args[:root_dir] || "."
+
+          if !File.exist?(root_dir)
+            warn "Warning: static_assets root_dir '#{root_dir}' does not exist!"
+          elsif !File.directory?(root_dir)
+            warn "Warning: static_assets root_dir '#{root_dir}' is not a directory!"
+          end
+
+          args[:relative_path] = true unless args.key?(:relative_path)
+
+          args[:allowed_extensions] ||= []
+
+          if (args[:allowed_extensions].include?("html") || args[:allowed_extensions].include?(:html)) && args[:try_html_extension]
+            args[:allowed_extensions] << ""
+          end
+
+          args[:base_path] = "^(?<base_path>#{paths_from_parent}).*$"
+
+          location("*", extensions: args[:allowed_extensions]) do
+            @middleware[:static_assets] = args
+          end
+        end
+
+        def file_server(**args)
+          # Forward to static_assets for implementation
+          puts "Note: file_server is an alias for static_assets"
+          static_assets(**args)
+        end
+
+        def flatten_routes
+          result = []
+          result.concat(@children.flat_map(&:flatten_routes))
+          route_options = paths_from_parent
+          if route_options
+            result << deep_stringify_keys(
+              {
+                route: Regexp.new("^#{route_options}/?$"),
+                methods: @methods.any? ? @methods : nil,
+                protocols: @protocols.any? ? @protocols : nil,
+                hosts: @hosts.any? ? @hosts : nil,
+                ports: @ports.any? ? @ports : nil,
+                extensions: @extensions.any? ? @extensions : nil,
+                content_types: @content_types.any? ? @content_types : nil,
+                accepts: @accepts.any? ? @accepts : nil,
+                middleware: effective_middleware
+              }
+            )
+          end
+          result
+        end
+
+        def paths_from_parent
+          return nil unless @routes.any?
+
+          route_or_str = @routes.map do |seg|
+            case seg
+            when Regexp
+              seg.source
+            else
+              parts = seg.split('/')
+              parts.map do |part|
+                case part
+                when /^:([A-Za-z_]\w*)(?:\(([^)]*)\))?$/
+                  param_name = Regexp.last_match(1)
+                  custom     = Regexp.last_match(2)
+                  if custom && !custom.empty?
+                    "(?<#{param_name}>#{custom})"
+                  else
+                    "(?<#{param_name}>[^/]+)"
+                  end
+                when /\*/
+                  part.gsub(/\*/, ".*")
+                else
+                  Regexp.escape(part)
+                end
+              end.join("/")
+            end
+          end.join("|")
+          if parent && parent.paths_from_parent && parent.paths_from_parent != "(?:/)"
+            "#{parent.paths_from_parent}#{route_or_str != "" ? "(?:#{route_or_str})" : ""}"
+          else
+            route_or_str = "/#{route_or_str}" unless route_or_str.start_with?("/")
+            "(?:#{route_or_str})"
+          end
+        end
+
+        def effective_middleware
+          merged = merge_ancestor_middleware
+          merged.map { |k, v| { type: k.to_s, parameters: v } }
+        end
+
+        def merge_ancestor_middleware
+          chain = []
+          node = self
+          while node
+            if node.middleware[:app]&.[](:preloader)
+              node.middleware[:app][:app_proc] = node.middleware[:app].delete(:preloader).call
+            end
+            chain << node
+            node = node.parent
+          end
+          chain.reverse!
+
+          merged = {}
+
+          chain.each do |n|
+            n.middleware.each do |k, v|
+              merged[k] = v
+            end
+          end
+          merged
+        end
+
+        def deep_stringify_keys(obj)
+          case obj
+          when Hash
+            obj.transform_keys!(&:to_s)
+            obj.transform_values! { |v| deep_stringify_keys(v) }
+          when Array
+            obj.map { |v| deep_stringify_keys(v) }
+          else
+            obj
+          end
+        end
+      end
+    end
+  end
+end