alps/server.go

package koushin

import (
	"fmt"
	"net/http"
	"net/url"
	"strings"
	"sync"
	"time"

	"github.com/labstack/echo/v4"
)

const cookieName = "koushin_session"

// Server holds all the koushin server state.
type Server struct {
	e        *echo.Echo
	Sessions *SessionManager

	mutex      sync.RWMutex // used for server reload
	plugins    []Plugin
	luaPlugins []Plugin

	imap struct {
		host     string
		tls      bool
		insecure bool
	}
	smtp struct {
		host     string
		tls      bool
		insecure bool
	}
	defaultTheme string
}

func (s *Server) parseIMAPURL(imapURL string) error {
	u, err := url.Parse(imapURL)
	if err != nil {
		return fmt.Errorf("failed to parse IMAP server URL: %v", err)
	}

	s.imap.host = u.Host
	switch u.Scheme {
	case "imap":
		// This space is intentionally left blank
	case "imaps":
		s.imap.tls = true
	case "imap+insecure":
		s.imap.insecure = true
	default:
		return fmt.Errorf("unrecognized IMAP URL scheme: %s", u.Scheme)
	}

	return nil
}

func (s *Server) parseSMTPURL(smtpURL string) error {
	u, err := url.Parse(smtpURL)
	if err != nil {
		return fmt.Errorf("failed to parse SMTP server URL: %v", err)
	}

	s.smtp.host = u.Host
	switch u.Scheme {
	case "smtp":
		// This space is intentionally left blank
	case "smtps":
		s.smtp.tls = true
	case "smtp+insecure":
		s.smtp.insecure = true
	default:
		return fmt.Errorf("unrecognized SMTP URL scheme: %s", u.Scheme)
	}

	return nil
}

func (s *Server) load() error {
	plugins := append([]Plugin(nil), plugins...)
	for _, p := range plugins {
		s.e.Logger.Printf("Registered plugin '%v'", p.Name())
	}

	luaPlugins, err := loadAllLuaPlugins(s.e.Logger)
	if err != nil {
		return fmt.Errorf("failed to load plugins: %v", err)
	}
	plugins = append(plugins, luaPlugins...)

	renderer := newRenderer(s.e.Logger, s.defaultTheme)
	if err := renderer.Load(plugins); err != nil {
		return fmt.Errorf("failed to load templates: %v", err)
	}

	// Once we've loaded plugins and templates from disk (which can take time),
	// swap them in the Server struct
	s.mutex.Lock()
	defer s.mutex.Unlock()

	// Close previous Lua plugins
	for _, p := range s.luaPlugins {
		if err := p.Close(); err != nil {
			s.e.Logger.Printf("Failed to unload plugin '%v': %v", p.Name(), err)
		}
	}

	s.plugins = plugins
	s.luaPlugins = luaPlugins
	s.e.Renderer = renderer

	for _, p := range plugins {
		p.SetRoutes(s.e.Group(""))
	}

	return nil
}

// Reload loads Lua plugins and templates from disk.
func (s *Server) Reload() error {
	s.e.Logger.Printf("Reloading server")
	return s.load()
}

func newServer(e *echo.Echo, options *Options) (*Server, error) {
	s := &Server{e: e, defaultTheme: options.Theme}

	if err := s.parseIMAPURL(options.IMAPURL); err != nil {
		return nil, err
	}

	if options.SMTPURL != "" {
		if err := s.parseSMTPURL(options.SMTPURL); err != nil {
			return nil, err
		}
	}

	s.Sessions = newSessionManager(s.dialIMAP, s.dialSMTP)

	return s, nil
}

// Context is the context used by HTTP handlers.
//
// Use a type assertion to get it from a echo.Context:
//
//     ctx := ectx.(*koushin.Context)
type Context struct {
	echo.Context
	Server  *Server
	Session *Session // nil if user isn't logged in
}

var aLongTimeAgo = time.Unix(233431200, 0)

// SetSession sets a cookie for the provided session. Passing a nil session
// unsets the cookie.
func (ctx *Context) SetSession(s *Session) {
	cookie := http.Cookie{
		Name:     cookieName,
		HttpOnly: true,
		// TODO: domain, secure
	}
	if s != nil {
		cookie.Value = s.token
	} else {
		cookie.Expires = aLongTimeAgo // unset the cookie
	}
	ctx.SetCookie(&cookie)
}

func isPublic(path string) bool {
	if strings.HasPrefix(path, "/plugins/") {
		parts := strings.Split(path, "/")
		return len(parts) >= 4 && parts[3] == "assets"
	}
	return path == "/login" || strings.HasPrefix(path, "/themes/")
}

type Options struct {
	IMAPURL, SMTPURL string
	Theme            string
}

// New creates a new server.
func New(e *echo.Echo, options *Options) (*Server, error) {
	s, err := newServer(e, options)
	if err != nil {
		return nil, err
	}

	if err := s.load(); err != nil {
		return nil, err
	}

	e.HTTPErrorHandler = func(err error, c echo.Context) {
		code := http.StatusInternalServerError
		if he, ok := err.(*echo.HTTPError); ok {
			code = he.Code
		} else {
			c.Logger().Error(err)
		}
		// TODO: hide internal errors
		c.String(code, err.Error())
	}

	e.Pre(func(next echo.HandlerFunc) echo.HandlerFunc {
		return func(ectx echo.Context) error {
			s.mutex.RLock()
			err := next(ectx)
			s.mutex.RUnlock()
			return err
		}
	})

	e.Use(func(next echo.HandlerFunc) echo.HandlerFunc {
		return func(ectx echo.Context) error {
			ectx.Response().Header().Set("Content-Security-Policy", "default-src 'self'")
			return next(ectx)
		}
	})

	e.Use(func(next echo.HandlerFunc) echo.HandlerFunc {
		return func(ectx echo.Context) error {
			ctx := &Context{Context: ectx, Server: s}
			ctx.Set("context", ctx)

			cookie, err := ctx.Cookie(cookieName)
			if err == http.ErrNoCookie {
				// Require auth for all pages except /login
				if isPublic(ctx.Path()) {
					return next(ctx)
				} else {
					return ctx.Redirect(http.StatusFound, "/login")
				}
			} else if err != nil {
				return err
			}

			ctx.Session, err = ctx.Server.Sessions.get(cookie.Value)
			if err == errSessionExpired {
				ctx.SetSession(nil)
				return ctx.Redirect(http.StatusFound, "/login")
			} else if err != nil {
				return err
			}
			ctx.Session.ping()

			return next(ctx)
		}
	})

	e.Static("/themes", "themes")

	return s, nil
}
Add HTTP server boilerplate 2019-12-02 14:31:00 +00:00			`package koushin`

			`import (`
Add initial login logic 2019-12-02 16:24:19 +00:00			`"fmt"`
Add HTTP server boilerplate 2019-12-02 14:31:00 +00:00			`"net/http"`
Add initial login logic 2019-12-02 16:24:19 +00:00			`"net/url"`
Display & download any message part 2019-12-03 12:07:25 +00:00			`"strings"`
Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`"sync"`
Add initial login logic 2019-12-02 16:24:19 +00:00			`"time"`
Add HTTP server boilerplate 2019-12-02 14:31:00 +00:00
go fmt 2019-12-03 10:12:26 +00:00			`"github.com/labstack/echo/v4"`
Add HTTP server boilerplate 2019-12-02 14:31:00 +00:00			`)`

Add initial login logic 2019-12-02 16:24:19 +00:00			`const cookieName = "koushin_session"`

Add docs 2019-12-11 14:24:39 +00:00			`// Server holds all the koushin server state.`
Add initial login logic 2019-12-02 16:24:19 +00:00			`type Server struct {`
Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`e *echo.Echo`
Export Server.{Sessions,Plugins} And unexport a few internal functions. 2019-12-11 12:03:31 +00:00			`Sessions *SessionManager`
Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00
Close Lua plugins on reload 2020-01-10 16:00:34 +00:00			`mutex sync.RWMutex // used for server reload`
			`plugins []Plugin`
			`luaPlugins []Plugin`
Rename ConnPool to SessionManager 2019-12-09 17:16:27 +00:00
Add initial login logic 2019-12-02 16:24:19 +00:00			`imap struct {`
go fmt 2019-12-03 10:12:26 +00:00			`host string`
			`tls bool`
Add initial login logic 2019-12-02 16:24:19 +00:00			`insecure bool`
			`}`
Parse SMTP URL from CLI 2019-12-03 14:21:59 +00:00			`smtp struct {`
			`host string`
			`tls bool`
			`insecure bool`
			`}`
Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`defaultTheme string`
Add initial login logic 2019-12-02 16:24:19 +00:00			`}`

Parse SMTP URL from CLI 2019-12-03 14:21:59 +00:00			`func (s *Server) parseIMAPURL(imapURL string) error {`
Add initial login logic 2019-12-02 16:24:19 +00:00			`u, err := url.Parse(imapURL)`
			`if err != nil {`
Parse SMTP URL from CLI 2019-12-03 14:21:59 +00:00			`return fmt.Errorf("failed to parse IMAP server URL: %v", err)`
Add initial login logic 2019-12-02 16:24:19 +00:00			`}`

			`s.imap.host = u.Host`
			`switch u.Scheme {`
			`case "imap":`
			`// This space is intentionally left blank`
			`case "imaps":`
			`s.imap.tls = true`
			`case "imap+insecure":`
			`s.imap.insecure = true`
			`default:`
Parse SMTP URL from CLI 2019-12-03 14:21:59 +00:00			`return fmt.Errorf("unrecognized IMAP URL scheme: %s", u.Scheme)`
			`}`

			`return nil`
			`}`

			`func (s *Server) parseSMTPURL(smtpURL string) error {`
			`u, err := url.Parse(smtpURL)`
			`if err != nil {`
			`return fmt.Errorf("failed to parse SMTP server URL: %v", err)`
			`}`

			`s.smtp.host = u.Host`
			`switch u.Scheme {`
			`case "smtp":`
			`// This space is intentionally left blank`
			`case "smtps":`
			`s.smtp.tls = true`
			`case "smtp+insecure":`
			`s.smtp.insecure = true`
			`default:`
			`return fmt.Errorf("unrecognized SMTP URL scheme: %s", u.Scheme)`
Add initial login logic 2019-12-02 16:24:19 +00:00			`}`

Parse SMTP URL from CLI 2019-12-03 14:21:59 +00:00			`return nil`
			`}`

Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`func (s *Server) load() error {`
			`plugins := append([]Plugin(nil), plugins...)`
			`for _, p := range plugins {`
			`s.e.Logger.Printf("Registered plugin '%v'", p.Name())`
			`}`

			`luaPlugins, err := loadAllLuaPlugins(s.e.Logger)`
			`if err != nil {`
			`return fmt.Errorf("failed to load plugins: %v", err)`
			`}`
			`plugins = append(plugins, luaPlugins...)`

			`renderer := newRenderer(s.e.Logger, s.defaultTheme)`
			`if err := renderer.Load(plugins); err != nil {`
			`return fmt.Errorf("failed to load templates: %v", err)`
			`}`

			`// Once we've loaded plugins and templates from disk (which can take time),`
			`// swap them in the Server struct`
			`s.mutex.Lock()`
			`defer s.mutex.Unlock()`

Close Lua plugins on reload 2020-01-10 16:00:34 +00:00			`// Close previous Lua plugins`
			`for _, p := range s.luaPlugins {`
			`if err := p.Close(); err != nil {`
			`s.e.Logger.Printf("Failed to unload plugin '%v': %v", p.Name(), err)`
			`}`
			`}`

Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`s.plugins = plugins`
Close Lua plugins on reload 2020-01-10 16:00:34 +00:00			`s.luaPlugins = luaPlugins`
Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`s.e.Renderer = renderer`

			`for _, p := range plugins {`
			`p.SetRoutes(s.e.Group(""))`
			`}`

			`return nil`
			`}`

			`// Reload loads Lua plugins and templates from disk.`
Add Server.Reload This only reloads templates for now. In the future it'll also reload Lua plugins. 2020-01-08 09:52:28 +00:00			`func (s *Server) Reload() error {`
Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`s.e.Logger.Printf("Reloading server")`
			`return s.load()`
Add Server.Reload This only reloads templates for now. In the future it'll also reload Lua plugins. 2020-01-08 09:52:28 +00:00			`}`

Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`func newServer(e echo.Echo, options Options) (*Server, error) {`
			`s := &Server{e: e, defaultTheme: options.Theme}`
Parse SMTP URL from CLI 2019-12-03 14:21:59 +00:00
Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`if err := s.parseIMAPURL(options.IMAPURL); err != nil {`
Parse SMTP URL from CLI 2019-12-03 14:21:59 +00:00			`return nil, err`
			`}`
Add HTTP server boilerplate 2019-12-02 14:31:00 +00:00
Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`if options.SMTPURL != "" {`
			`if err := s.parseSMTPURL(options.SMTPURL); err != nil {`
Parse SMTP URL from CLI 2019-12-03 14:21:59 +00:00			`return nil, err`
			`}`
			`}`

Introduce base plugin This plugin offers base IMAP/SMTP functionality. References: https://todo.sr.ht/~sircmpwn/koushin/39 2019-12-16 11:51:42 +00:00			`s.Sessions = newSessionManager(s.dialIMAP, s.dialSMTP)`

Add initial login logic 2019-12-02 16:24:19 +00:00			`return s, nil`
			`}`

Export Context This allows plugins to access it. 2019-12-11 11:48:18 +00:00			`// Context is the context used by HTTP handlers.`
			`//`
			`// Use a type assertion to get it from a echo.Context:`
			`//`
			`// ctx := ectx.(*koushin.Context)`
			`type Context struct {`
Add initial login logic 2019-12-02 16:24:19 +00:00			`echo.Context`
Export Context This allows plugins to access it. 2019-12-11 11:48:18 +00:00			`Server *Server`
Add docs 2019-12-11 14:24:39 +00:00			`Session *Session // nil if user isn't logged in`
Add initial login logic 2019-12-02 16:24:19 +00:00			`}`

			`var aLongTimeAgo = time.Unix(233431200, 0)`

Add docs 2019-12-11 14:24:39 +00:00			`// SetSession sets a cookie for the provided session. Passing a nil session`
			`// unsets the cookie.`
Export Context.SetSession, unexport Session.Token I'm uneasy exposing the token to plugins, I prefer to hide it if possible to prevent mis-use. This change allows plugins to logout users. 2019-12-11 11:54:00 +00:00			`func (ctx Context) SetSession(s Session) {`
Add initial login logic 2019-12-02 16:24:19 +00:00			`cookie := http.Cookie{`
go fmt 2019-12-03 10:12:26 +00:00			`Name: cookieName,`
Add initial login logic 2019-12-02 16:24:19 +00:00			`HttpOnly: true,`
			`// TODO: domain, secure`
			`}`
Export Context.SetSession, unexport Session.Token I'm uneasy exposing the token to plugins, I prefer to hide it if possible to prevent mis-use. This change allows plugins to logout users. 2019-12-11 11:54:00 +00:00			`if s != nil {`
			`cookie.Value = s.token`
			`} else {`
Add initial login logic 2019-12-02 16:24:19 +00:00			`cookie.Expires = aLongTimeAgo // unset the cookie`
			`}`
Export Context.SetSession, unexport Session.Token I'm uneasy exposing the token to plugins, I prefer to hide it if possible to prevent mis-use. This change allows plugins to logout users. 2019-12-11 11:54:00 +00:00			`ctx.SetCookie(&cookie)`
Add initial login logic 2019-12-02 16:24:19 +00:00			`}`

Add basic theme support References: https://todo.sr.ht/~sircmpwn/koushin/1 2019-12-04 17:30:01 +00:00			`func isPublic(path string) bool {`
Introduce base plugin This plugin offers base IMAP/SMTP functionality. References: https://todo.sr.ht/~sircmpwn/koushin/39 2019-12-16 11:51:42 +00:00			`if strings.HasPrefix(path, "/plugins/") {`
			`parts := strings.Split(path, "/")`
			`return len(parts) >= 4 && parts[3] == "assets"`
			`}`
			`return path == "/login" \|\| strings.HasPrefix(path, "/themes/")`
Add basic theme support References: https://todo.sr.ht/~sircmpwn/koushin/1 2019-12-04 17:30:01 +00:00			`}`

			`type Options struct {`
			`IMAPURL, SMTPURL string`
			`Theme string`
			`}`
Add initial login logic 2019-12-02 16:24:19 +00:00
Add docs 2019-12-11 14:24:39 +00:00			`// New creates a new server.`
Make New return the Server This will be useful to implement hot reload. 2020-01-08 09:38:33 +00:00			`func New(e echo.Echo, options Options) (*Server, error) {`
Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`s, err := newServer(e, options)`
Add initial login logic 2019-12-02 16:24:19 +00:00			`if err != nil {`
Make New return the Server This will be useful to implement hot reload. 2020-01-08 09:38:33 +00:00			`return nil, err`
Add basic theme support References: https://todo.sr.ht/~sircmpwn/koushin/1 2019-12-04 17:30:01 +00:00			`}`

Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`if err := s.load(); err != nil {`
			`return nil, err`
Add basic support for plugins 2019-12-09 15:02:12 +00:00			`}`

Set HTTP error handler 2019-12-03 12:17:51 +00:00			`e.HTTPErrorHandler = func(err error, c echo.Context) {`
			`code := http.StatusInternalServerError`
			`if he, ok := err.(*echo.HTTPError); ok {`
			`code = he.Code`
			`} else {`
			`c.Logger().Error(err)`
			`}`
			`// TODO: hide internal errors`
			`c.String(code, err.Error())`
			`}`

Implement plugin/template reload on SIGUSR1 There's no way around having a global mutex, because we need to update the HTTP routes when reloading plugins. During reload we need to lock the whole server. Closes: https://todo.sr.ht/~sircmpwn/koushin/43 2020-01-08 10:50:29 +00:00			`e.Pre(func(next echo.HandlerFunc) echo.HandlerFunc {`
			`return func(ectx echo.Context) error {`
			`s.mutex.RLock()`
			`err := next(ectx)`
			`s.mutex.RUnlock()`
			`return err`
			`}`
			`})`

Add a default CSP Disallows loading external ressources. Providers can override it with their reverse proxy settings. 2019-12-18 11:03:56 +00:00			`e.Use(func(next echo.HandlerFunc) echo.HandlerFunc {`
			`return func(ectx echo.Context) error {`
			`ectx.Response().Header().Set("Content-Security-Policy", "default-src 'self'")`
			`return next(ectx)`
			`}`
			`})`

Add initial login logic 2019-12-02 16:24:19 +00:00			`e.Use(func(next echo.HandlerFunc) echo.HandlerFunc {`
			`return func(ectx echo.Context) error {`
Export Context This allows plugins to access it. 2019-12-11 11:48:18 +00:00			`ctx := &Context{Context: ectx, Server: s}`
Add basic support for plugins 2019-12-09 15:02:12 +00:00			`ctx.Set("context", ctx)`
Add initial login logic 2019-12-02 16:24:19 +00:00
			`cookie, err := ctx.Cookie(cookieName)`
			`if err == http.ErrNoCookie {`
List mailboxes 2019-12-02 16:31:34 +00:00			`// Require auth for all pages except /login`
Add basic theme support References: https://todo.sr.ht/~sircmpwn/koushin/1 2019-12-04 17:30:01 +00:00			`if isPublic(ctx.Path()) {`
List mailboxes 2019-12-02 16:31:34 +00:00			`return next(ctx)`
			`} else {`
			`return ctx.Redirect(http.StatusFound, "/login")`
			`}`
Add initial login logic 2019-12-02 16:24:19 +00:00			`} else if err != nil {`
			`return err`
			`}`

Export Server.{Sessions,Plugins} And unexport a few internal functions. 2019-12-11 12:03:31 +00:00			`ctx.Session, err = ctx.Server.Sessions.get(cookie.Value)`
Fix undefined ErrSessionExpired Fixes: f07ab5263246 ("Add docs") 2019-12-12 15:40:52 +00:00			`if err == errSessionExpired {`
Export Context.SetSession, unexport Session.Token I'm uneasy exposing the token to plugins, I prefer to hide it if possible to prevent mis-use. This change allows plugins to logout users. 2019-12-11 11:54:00 +00:00			`ctx.SetSession(nil)`
Add initial login logic 2019-12-02 16:24:19 +00:00			`return ctx.Redirect(http.StatusFound, "/login")`
			`} else if err != nil {`
			`return err`
			`}`
Export Server.{Sessions,Plugins} And unexport a few internal functions. 2019-12-11 12:03:31 +00:00			`ctx.Session.ping()`
Add initial login logic 2019-12-02 16:24:19 +00:00
			`return next(ctx)`
			`}`
			`})`

Remove the public/ directory Now that all templates are provided by plugins, there's no need to have a public/ directory. Themes can be in /themes instead of /public/themes. 2019-12-16 11:57:30 +00:00			`e.Static("/themes", "themes")`
Add HTTP server boilerplate 2019-12-02 14:31:00 +00:00
Make New return the Server This will be useful to implement hot reload. 2020-01-08 09:38:33 +00:00			`return s, nil`
Add HTTP server boilerplate 2019-12-02 14:31:00 +00:00			`}`