2021-01-23 19:43:48 +08:00
|
|
|
package weed_server
|
|
|
|
|
|
|
|
import (
|
2022-07-29 15:17:28 +08:00
|
|
|
"github.com/seaweedfs/seaweedfs/weed/glog"
|
2024-04-08 22:27:00 +08:00
|
|
|
"github.com/seaweedfs/seaweedfs/weed/security"
|
2024-08-30 00:52:21 +08:00
|
|
|
util_http "github.com/seaweedfs/seaweedfs/weed/util/http"
|
2022-07-29 15:17:28 +08:00
|
|
|
"github.com/seaweedfs/seaweedfs/weed/util/mem"
|
2021-01-23 19:43:48 +08:00
|
|
|
"io"
|
2024-08-30 00:52:21 +08:00
|
|
|
"math/rand/v2"
|
2021-01-23 19:43:48 +08:00
|
|
|
"net/http"
|
|
|
|
)
|
|
|
|
|
2024-04-08 22:27:00 +08:00
|
|
|
func (fs *FilerServer) maybeAddVolumeJwtAuthorization(r *http.Request, fileId string, isWrite bool) {
|
|
|
|
encodedJwt := fs.maybeGetVolumeJwtAuthorizationToken(fileId, isWrite)
|
|
|
|
|
|
|
|
if encodedJwt == "" {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
r.Header.Set("Authorization", "BEARER "+string(encodedJwt))
|
|
|
|
}
|
|
|
|
|
|
|
|
func (fs *FilerServer) maybeGetVolumeJwtAuthorizationToken(fileId string, isWrite bool) string {
|
|
|
|
var encodedJwt security.EncodedJwt
|
|
|
|
if isWrite {
|
|
|
|
encodedJwt = security.GenJwtForVolumeServer(fs.volumeGuard.SigningKey, fs.volumeGuard.ExpiresAfterSec, fileId)
|
|
|
|
} else {
|
|
|
|
encodedJwt = security.GenJwtForVolumeServer(fs.volumeGuard.ReadSigningKey, fs.volumeGuard.ReadExpiresAfterSec, fileId)
|
|
|
|
}
|
|
|
|
return string(encodedJwt)
|
|
|
|
}
|
|
|
|
|
2021-01-23 19:43:48 +08:00
|
|
|
func (fs *FilerServer) proxyToVolumeServer(w http.ResponseWriter, r *http.Request, fileId string) {
|
|
|
|
|
|
|
|
urlStrings, err := fs.filer.MasterClient.GetLookupFileIdFunction()(fileId)
|
|
|
|
if err != nil {
|
|
|
|
glog.Errorf("locate %s: %v", fileId, err)
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
if len(urlStrings) == 0 {
|
|
|
|
w.WriteHeader(http.StatusNotFound)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
2024-08-30 00:52:21 +08:00
|
|
|
proxyReq, err := http.NewRequest(r.Method, urlStrings[rand.IntN(len(urlStrings))], r.Body)
|
2021-01-23 19:43:48 +08:00
|
|
|
if err != nil {
|
|
|
|
glog.Errorf("NewRequest %s: %v", urlStrings[0], err)
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
proxyReq.Header.Set("Host", r.Host)
|
|
|
|
proxyReq.Header.Set("X-Forwarded-For", r.RemoteAddr)
|
|
|
|
|
|
|
|
for header, values := range r.Header {
|
|
|
|
for _, value := range values {
|
|
|
|
proxyReq.Header.Add(header, value)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2024-07-17 14:14:09 +08:00
|
|
|
proxyResponse, postErr := util_http.GetGlobalHttpClient().Do(proxyReq)
|
2021-01-23 19:43:48 +08:00
|
|
|
|
|
|
|
if postErr != nil {
|
|
|
|
glog.Errorf("post to filer: %v", postErr)
|
|
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
|
|
return
|
|
|
|
}
|
2024-07-17 14:14:09 +08:00
|
|
|
defer util_http.CloseResponse(proxyResponse)
|
2021-01-23 19:43:48 +08:00
|
|
|
|
|
|
|
for k, v := range proxyResponse.Header {
|
|
|
|
w.Header()[k] = v
|
|
|
|
}
|
|
|
|
w.WriteHeader(proxyResponse.StatusCode)
|
2022-03-03 12:15:28 +08:00
|
|
|
|
|
|
|
buf := mem.Allocate(128 * 1024)
|
|
|
|
defer mem.Free(buf)
|
|
|
|
io.CopyBuffer(w, proxyResponse.Body, buf)
|
2021-01-23 19:43:48 +08:00
|
|
|
|
|
|
|
}
|