Add TLS certificates for machine drivers (#73)

2025-10-04 17:33:21 +08:00 · 2016-12-27 18:53:50 +02:00
parent 93740dc9f5
commit dea778440e
8 changed files with 168 additions and 27 deletions
--- a/handlers/reverseproxy.go
+++ b/handlers/reverseproxy.go
@@ -37,3 +37,27 @@ func NewMultipleHostReverseProxy() *httputil.ReverseProxy {

 	return &httputil.ReverseProxy{Director: director}
 }
+
+func NewSSLDaemonHandler() *httputil.ReverseProxy {
+	director := func(req *http.Request) {
+		v := mux.Vars(req)
+		node := v["node"]
+		if strings.HasPrefix(node, "ip") {
+			// Node is actually an ip, need to convert underscores by dots.
+			ip := strings.Replace(strings.TrimPrefix(node, "ip"), "_", ".", -1)
+
+			if net.ParseIP(ip) == nil {
+				// Not a valid IP, so treat this is a hostname.
+			} else {
+				node = ip
+			}
+		}
+
+		// Only proxy http for now
+		req.URL.Scheme = "http"
+
+		req.URL.Host = fmt.Sprintf("%s:%s", node, "2375")
+	}
+
+	return &httputil.ReverseProxy{Director: director}
+}
--- a/handlers/set_keys.go
+++ b/handlers/set_keys.go
@@ -0,0 +1,43 @@
+package handlers
+
+import (
+	"encoding/json"
+	"log"
+	"net/http"
+
+	"github.com/franela/play-with-docker/services"
+	"github.com/gorilla/mux"
+)
+
+func SetKeys(rw http.ResponseWriter, req *http.Request) {
+	vars := mux.Vars(req)
+	sessionId := vars["sessionId"]
+	instanceName := vars["instanceName"]
+
+	type certs struct {
+		ServerCert []byte `json:"server_cert"`
+		ServerKey  []byte `json:"server_key"`
+	}
+
+	var c certs
+	jsonErr := json.NewDecoder(req.Body).Decode(&c)
+	if jsonErr != nil {
+		log.Println(jsonErr)
+		rw.WriteHeader(http.StatusBadRequest)
+		return
+	}
+
+	s := services.GetSession(sessionId)
+	s.Lock()
+	defer s.Unlock()
+	i := services.GetInstance(s, instanceName)
+
+	_, err := i.SetCertificate(c.ServerCert, c.ServerKey)
+
+	if err != nil {
+		log.Println(err)
+		rw.WriteHeader(http.StatusBadRequest)
+		return
+	}
+	log.Printf("Set keys for instance %s\n", instanceName)
+}