asakul
/
qs-tunnel
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

Multiple upstreams

master
Denis Tereshkin 6 years ago
parent
4bbbd6e19f
commit
e6338fe7db
2 changed files with 115 additions and 71 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 4
      qs-tunnel.cabal
  2. 66
      src/Main.hs

4
qs-tunnel.cabal
Unescape View File

@ -1,5 +1,5 @@
name: qs-tunnel name: qs-tunnel
version: 0.1.0.0 version: 0.2.0.0
synopsis: Quotesource tunnel proxy synopsis: Quotesource tunnel proxy
-- description: -- description:
homepage: https://github.com/asakul/qs-tunnel#readme homepage: https://github.com/asakul/qs-tunnel#readme
@ -7,7 +7,7 @@ license: BSD3
license-file: LICENSE license-file: LICENSE
author: Denis Tereshkin author: Denis Tereshkin
maintainer: denis@kasan.ws maintainer: denis@kasan.ws
copyright: 2017 Denis Tereshkin copyright: 2017-2019 Denis Tereshkin
category: Web category: Web
build-type: Simple build-type: Simple
cabal-version: >=1.10 cabal-version: >=1.10

66
src/Main.hs
Unescape View File

@ -2,36 +2,51 @@
module Main where module Main where
import qualified Data.Text as T import Data.Aeson
import qualified Data.ByteString as B import qualified Data.ByteString as B
import qualified Data.ByteString.Char8 as B8 import qualified Data.ByteString.Char8 as B8
import qualified Data.ByteString.Lazy as BL import qualified Data.ByteString.Lazy as BL
import Data.IORef
import qualified Data.List as L import qualified Data.List as L
import Data.List.NonEmpty import Data.List.NonEmpty
import Data.IORef import qualified Data.Text as T
import Data.Time.Clock import Data.Time.Clock
import Data.Aeson
import ATrade.QuoteSource.Server
import ATrade.QuoteSource.Client import ATrade.QuoteSource.Client
import ATrade.QuoteSource.Server
import Control.Concurrent
import Control.Monad import Control.Monad
import Control.Monad.Loops import Control.Monad.Loops
import System.IO import System.IO
import System.Log.Logger
import System.Log.Handler.Simple
import System.Log.Handler (setFormatter)
import System.Log.Formatter import System.Log.Formatter
import System.Log.Handler (setFormatter)
import System.Log.Handler.Simple
import System.Log.Logger
import System.ZMQ4 import System.ZMQ4
import System.ZMQ4.ZAP import System.ZMQ4.ZAP
data UpstreamConfig = UpstreamConfig
{
ucEndpoint :: T.Text,
ucCertificatePath :: Maybe FilePath
} deriving (Show, Eq)
instance FromJSON UpstreamConfig where
parseJSON (Object o) =
UpstreamConfig <$>
o .: "endpoint" <*>
o .:? "certificate"
data Config = Config data Config = Config
{ {
confDownstreamEp :: T.Text, confDownstreamEp :: T.Text,
confDownstreamCertificatePath :: Maybe FilePath,
confClientCertificates :: [FilePath],
confWhitelistIps :: [T.Text], confWhitelistIps :: [T.Text],
confBlacklistIps :: [T.Text], confBlacklistIps :: [T.Text],
confUpstreamEp :: T.Text, confUpstreams :: [UpstreamConfig],
confTimeout :: Integer confTimeout :: Integer
} deriving (Show, Eq) } deriving (Show, Eq)
@ -39,9 +54,11 @@ instance FromJSON Config where
parseJSON (Object o) = parseJSON (Object o) =
Config <$> Config <$>
o .: "downstream" <*> o .: "downstream" <*>
o .:? "downstream_certificate" <*>
o .: "client_certificates" <*>
o .:? "whitelist" .!= [] <*> o .:? "whitelist" .!= [] <*>
o .:? "blacklist" .!= [] <*> o .:? "blacklist" .!= [] <*>
o .: "upstream" <*> o .: "upstreams" <*>
o .: "timeout" o .: "timeout"
parseJSON _ = fail "Expected object" parseJSON _ = fail "Expected object"
@ -66,12 +83,33 @@ main = do
runWithConfig conf = do runWithConfig conf = do
withContext $ \ctx -> withContext $ \ctx ->
withZapHandler ctx $ \zap -> do
withSocket ctx Pub $ \downstream -> do withSocket ctx Pub $ \downstream -> do
setZapDomain (restrict "global") downstream
zapSetBlacklist zap "global" $ confBlacklistIps conf
zapSetWhitelist zap "global" $ confWhitelistIps conf
bind downstream $ T.unpack $ confDownstreamEp conf bind downstream $ T.unpack $ confDownstreamEp conf
case (confDownstreamCertificatePath conf) of
Just certPath -> do
eCert <- loadCertificateFromFile certPath
case eCert of
Left err -> errorM "main" $ "Unable to load certificate: " ++ certPath
Right cert -> do
zapSetServerCertificate cert downstream
forM_ (confClientCertificates conf) (addCertificate zap)
_ -> return ()
forM_ (confUpstreams conf) $ \upstreamConf -> forkIO $ do
forever $ withSocket ctx Sub $ \upstream -> do forever $ withSocket ctx Sub $ \upstream -> do
infoM "main" $ "Connecting to: " ++ (T.unpack $ confUpstreamEp conf) infoM "main" $ "Connecting to: " ++ (T.unpack $ ucEndpoint upstreamConf)
connect upstream $ T.unpack $ confUpstreamEp conf case (ucCertificatePath upstreamConf) of
Just certPath -> do
eCert <- loadCertificateFromFile certPath
case eCert of
Left err -> errorM "main" $ "Unable to load certificate: " ++ certPath
Right cert -> zapApplyCertificate cert upstream
_ -> return ()
connect upstream $ T.unpack $ ucEndpoint upstreamConf
subscribe upstream B.empty subscribe upstream B.empty
now <- getCurrentTime now <- getCurrentTime
lastHeartbeat <- newIORef now lastHeartbeat <- newIORef now
@ -101,4 +139,10 @@ runWithConfig conf = do
send sock [] $ B8.pack "SYSTEM#HEARTBEAT" send sock [] $ B8.pack "SYSTEM#HEARTBEAT"
writeIORef lastHbSent now writeIORef lastHbSent now
addCertificate zap clientCertPath = do
eClientCert <- loadCertificateFromFile clientCertPath
case eClientCert of
Left err -> errorM "main" $ "Unable to load client certificate: " ++ clientCertPath
Right clientCert -> zapAddClientCertificate zap "global" clientCert

Write Preview
Loading…
Cancel
Save