登录 注册
开源 企业版 高校版 私有云 模力方舟 模力方舟 AI 队友
开源项目 > WEB应用开发 > API 网关/接口管理 &&
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
3 Star 2 Fork 0

Gitee 极速下载/go-swagger

代码 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
此仓库是为了提升国内下载速度的镜像仓库,每日同步一次。 原始仓库: https://github.com/go-swagger/go-swagger
克隆/下载
server.go 15.23 KB
一键复制 编辑 原始数据 按行查看 历史
Ivan Porto Carrero 提交于 2018-10-07 00:55 +08:00 . regenerate examples
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509
// Code generated by go-swagger; DO NOT EDIT.



package restapi



import (

	"context"

	"crypto/tls"

	"crypto/x509"

	"errors"

	"fmt"

	"io/ioutil"

	"log"

	"net"

	"net/http"

	"os"

	"os/signal"

	"strconv"

	"sync"

	"sync/atomic"

	"syscall"

	"time"



	"github.com/go-openapi/runtime/flagext"

	"github.com/go-openapi/swag"

	flags "github.com/jessevdk/go-flags"

	"golang.org/x/net/netutil"



	"github.com/go-swagger/go-swagger/examples/task-tracker/restapi/operations"

)



const (

	schemeHTTP  = "http"

	schemeHTTPS = "https"

	schemeUnix  = "unix"

)



var defaultSchemes []string



func init() {

	defaultSchemes = []string{

		schemeHTTP,

		schemeHTTPS,

	}

}



// NewServer creates a new api task tracker server but does not configure it

func NewServer(api *operations.TaskTrackerAPI) *Server {

	s := new(Server)



	s.shutdown = make(chan struct{})

	s.api = api

	s.interrupt = make(chan os.Signal, 1)

	return s

}



// ConfigureAPI configures the API and handlers.

func (s *Server) ConfigureAPI() {

	if s.api != nil {

		s.handler = configureAPI(s.api)

	}

}



// ConfigureFlags configures the additional flags defined by the handlers. Needs to be called before the parser.Parse

func (s *Server) ConfigureFlags() {

	if s.api != nil {

		configureFlags(s.api)

	}

}



// Server for the task tracker API

type Server struct {

	EnabledListeners []string         `long:"scheme" description:"the listeners to enable, this can be repeated and defaults to the schemes in the swagger spec"`

	CleanupTimeout   time.Duration    `long:"cleanup-timeout" description:"grace period for which to wait before killing idle connections" default:"10s"`

	GracefulTimeout  time.Duration    `long:"graceful-timeout" description:"grace period for which to wait before shutting down the server" default:"15s"`

	MaxHeaderSize    flagext.ByteSize `long:"max-header-size" description:"controls the maximum number of bytes the server will read parsing the request header's keys and values, including the request line. It does not limit the size of the request body." default:"1MiB"`



	SocketPath    flags.Filename `long:"socket-path" description:"the unix socket to listen on" default:"/var/run/task-tracker.sock"`

	domainSocketL net.Listener



	Host         string        `long:"host" description:"the IP to listen on" default:"localhost" env:"HOST"`

	Port         int           `long:"port" description:"the port to listen on for insecure connections, defaults to a random value" env:"PORT"`

	ListenLimit  int           `long:"listen-limit" description:"limit the number of outstanding requests"`

	KeepAlive    time.Duration `long:"keep-alive" description:"sets the TCP keep-alive timeouts on accepted connections. It prunes dead TCP connections ( e.g. closing laptop mid-download)" default:"3m"`

	ReadTimeout  time.Duration `long:"read-timeout" description:"maximum duration before timing out read of the request" default:"30s"`

	WriteTimeout time.Duration `long:"write-timeout" description:"maximum duration before timing out write of the response" default:"60s"`

	httpServerL  net.Listener



	TLSHost           string         `long:"tls-host" description:"the IP to listen on for tls, when not specified it's the same as --host" env:"TLS_HOST"`

	TLSPort           int            `long:"tls-port" description:"the port to listen on for secure connections, defaults to a random value" env:"TLS_PORT"`

	TLSCertificate    flags.Filename `long:"tls-certificate" description:"the certificate to use for secure connections" env:"TLS_CERTIFICATE"`

	TLSCertificateKey flags.Filename `long:"tls-key" description:"the private key to use for secure conections" env:"TLS_PRIVATE_KEY"`

	TLSCACertificate  flags.Filename `long:"tls-ca" description:"the certificate authority file to be used with mutual tls auth" env:"TLS_CA_CERTIFICATE"`

	TLSListenLimit    int            `long:"tls-listen-limit" description:"limit the number of outstanding requests"`

	TLSKeepAlive      time.Duration  `long:"tls-keep-alive" description:"sets the TCP keep-alive timeouts on accepted connections. It prunes dead TCP connections ( e.g. closing laptop mid-download)"`

	TLSReadTimeout    time.Duration  `long:"tls-read-timeout" description:"maximum duration before timing out read of the request"`

	TLSWriteTimeout   time.Duration  `long:"tls-write-timeout" description:"maximum duration before timing out write of the response"`

	httpsServerL      net.Listener



	api          *operations.TaskTrackerAPI

	handler      http.Handler

	hasListeners bool

	shutdown     chan struct{}

	shuttingDown int32

	interrupted  bool

	interrupt    chan os.Signal

}



// Logf logs message either via defined user logger or via system one if no user logger is defined.

func (s *Server) Logf(f string, args ...interface{}) {

	if s.api != nil && s.api.Logger != nil {

		s.api.Logger(f, args...)

	} else {

		log.Printf(f, args...)

	}

}



// Fatalf logs message either via defined user logger or via system one if no user logger is defined.

// Exits with non-zero status after printing

func (s *Server) Fatalf(f string, args ...interface{}) {

	if s.api != nil && s.api.Logger != nil {

		s.api.Logger(f, args...)

		os.Exit(1)

	} else {

		log.Fatalf(f, args...)

	}

}



// SetAPI configures the server with the specified API. Needs to be called before Serve

func (s *Server) SetAPI(api *operations.TaskTrackerAPI) {

	if api == nil {

		s.api = nil

		s.handler = nil

		return

	}



	s.api = api

	s.api.Logger = log.Printf

	s.handler = configureAPI(api)

}



func (s *Server) hasScheme(scheme string) bool {

	schemes := s.EnabledListeners

	if len(schemes) == 0 {

		schemes = defaultSchemes

	}



	for _, v := range schemes {

		if v == scheme {

			return true

		}

	}

	return false

}



// Serve the api

func (s *Server) Serve() (err error) {

	if !s.hasListeners {

		if err = s.Listen(); err != nil {

			return err

		}

	}



	// set default handler, if none is set

	if s.handler == nil {

		if s.api == nil {

			return errors.New("can't create the default handler, as no api is set")

		}



		s.SetHandler(s.api.Serve(nil))

	}



	wg := new(sync.WaitGroup)

	once := new(sync.Once)

	signalNotify(s.interrupt)

	go handleInterrupt(once, s)



	servers := []*http.Server{}

	wg.Add(1)

	go s.handleShutdown(wg, &servers)



	if s.hasScheme(schemeUnix) {

		domainSocket := new(http.Server)

		domainSocket.MaxHeaderBytes = int(s.MaxHeaderSize)

		domainSocket.Handler = s.handler

		if int64(s.CleanupTimeout) > 0 {

			domainSocket.IdleTimeout = s.CleanupTimeout

		}



		configureServer(domainSocket, "unix", string(s.SocketPath))



		wg.Add(1)

		s.Logf("Serving task tracker at unix://%s", s.SocketPath)

		go func(l net.Listener) {

			defer wg.Done()

			if err := domainSocket.Serve(l); err != nil && err != http.ErrServerClosed {

				s.Fatalf("%v", err)

			}

			s.Logf("Stopped serving task tracker at unix://%s", s.SocketPath)

		}(s.domainSocketL)

		servers = append(servers, domainSocket)

	}



	if s.hasScheme(schemeHTTP) {

		httpServer := new(http.Server)

		httpServer.MaxHeaderBytes = int(s.MaxHeaderSize)

		httpServer.ReadTimeout = s.ReadTimeout

		httpServer.WriteTimeout = s.WriteTimeout

		httpServer.SetKeepAlivesEnabled(int64(s.KeepAlive) > 0)

		if s.ListenLimit > 0 {

			s.httpServerL = netutil.LimitListener(s.httpServerL, s.ListenLimit)

		}



		if int64(s.CleanupTimeout) > 0 {

			httpServer.IdleTimeout = s.CleanupTimeout

		}



		httpServer.Handler = s.handler



		configureServer(httpServer, "http", s.httpServerL.Addr().String())



		wg.Add(1)

		s.Logf("Serving task tracker at http://%s", s.httpServerL.Addr())

		go func(l net.Listener) {

			defer wg.Done()

			if err := httpServer.Serve(l); err != nil && err != http.ErrServerClosed {

				s.Fatalf("%v", err)

			}

			s.Logf("Stopped serving task tracker at http://%s", l.Addr())

		}(s.httpServerL)

		servers = append(servers, httpServer)

	}



	if s.hasScheme(schemeHTTPS) {

		httpsServer := new(http.Server)

		httpsServer.MaxHeaderBytes = int(s.MaxHeaderSize)

		httpsServer.ReadTimeout = s.TLSReadTimeout

		httpsServer.WriteTimeout = s.TLSWriteTimeout

		httpsServer.SetKeepAlivesEnabled(int64(s.TLSKeepAlive) > 0)

		if s.TLSListenLimit > 0 {

			s.httpsServerL = netutil.LimitListener(s.httpsServerL, s.TLSListenLimit)

		}

		if int64(s.CleanupTimeout) > 0 {

			httpsServer.IdleTimeout = s.CleanupTimeout

		}

		httpsServer.Handler = s.handler



		// Inspired by https://blog.bracebin.com/achieving-perfect-ssl-labs-score-with-go

		httpsServer.TLSConfig = &tls.Config{

			// Causes servers to use Go's default ciphersuite preferences,

			// which are tuned to avoid attacks. Does nothing on clients.

			PreferServerCipherSuites: true,

			// Only use curves which have assembly implementations

			// https://github.com/golang/go/tree/master/src/crypto/elliptic

			CurvePreferences: []tls.CurveID{tls.CurveP256},

			// Use modern tls mode https://wiki.mozilla.org/Security/Server_Side_TLS#Modern_compatibility

			NextProtos: []string{"http/1.1", "h2"},

			// https://www.owasp.org/index.php/Transport_Layer_Protection_Cheat_Sheet#Rule_-_Only_Support_Strong_Protocols

			MinVersion: tls.VersionTLS12,

			// These ciphersuites support Forward Secrecy: https://en.wikipedia.org/wiki/Forward_secrecy

			CipherSuites: []uint16{

				tls.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,

				tls.TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384,

				tls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,

				tls.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,

				tls.TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305,

				tls.TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305,

			},

		}



		// build standard config from server options

		if s.TLSCertificate != "" && s.TLSCertificateKey != "" {

			httpsServer.TLSConfig.Certificates = make([]tls.Certificate, 1)

			httpsServer.TLSConfig.Certificates[0], err = tls.LoadX509KeyPair(string(s.TLSCertificate), string(s.TLSCertificateKey))

			if err != nil {

				return err

			}

		}



		if s.TLSCACertificate != "" {

			// include specified CA certificate

			caCert, caCertErr := ioutil.ReadFile(string(s.TLSCACertificate))

			if caCertErr != nil {

				return caCertErr

			}

			caCertPool := x509.NewCertPool()

			ok := caCertPool.AppendCertsFromPEM(caCert)

			if !ok {

				return fmt.Errorf("cannot parse CA certificate")

			}

			httpsServer.TLSConfig.ClientCAs = caCertPool

			httpsServer.TLSConfig.ClientAuth = tls.RequireAndVerifyClientCert

		}



		// call custom TLS configurator

		configureTLS(httpsServer.TLSConfig)



		if len(httpsServer.TLSConfig.Certificates) == 0 {

			// after standard and custom config are passed, this ends up with no certificate

			if s.TLSCertificate == "" {

				if s.TLSCertificateKey == "" {

					s.Fatalf("the required flags `--tls-certificate` and `--tls-key` were not specified")

				}

				s.Fatalf("the required flag `--tls-certificate` was not specified")

			}

			if s.TLSCertificateKey == "" {

				s.Fatalf("the required flag `--tls-key` was not specified")

			}

			// this happens with a wrong custom TLS configurator

			s.Fatalf("no certificate was configured for TLS")

		}



		// must have at least one certificate or panics

		httpsServer.TLSConfig.BuildNameToCertificate()



		configureServer(httpsServer, "https", s.httpsServerL.Addr().String())



		wg.Add(1)

		s.Logf("Serving task tracker at https://%s", s.httpsServerL.Addr())

		go func(l net.Listener) {

			defer wg.Done()

			if err := httpsServer.Serve(l); err != nil && err != http.ErrServerClosed {

				s.Fatalf("%v", err)

			}

			s.Logf("Stopped serving task tracker at https://%s", l.Addr())

		}(tls.NewListener(s.httpsServerL, httpsServer.TLSConfig))

		servers = append(servers, httpsServer)

	}



	wg.Wait()

	return nil

}



// Listen creates the listeners for the server

func (s *Server) Listen() error {

	if s.hasListeners { // already done this

		return nil

	}



	if s.hasScheme(schemeHTTPS) {

		// Use http host if https host wasn't defined

		if s.TLSHost == "" {

			s.TLSHost = s.Host

		}

		// Use http listen limit if https listen limit wasn't defined

		if s.TLSListenLimit == 0 {

			s.TLSListenLimit = s.ListenLimit

		}

		// Use http tcp keep alive if https tcp keep alive wasn't defined

		if int64(s.TLSKeepAlive) == 0 {

			s.TLSKeepAlive = s.KeepAlive

		}

		// Use http read timeout if https read timeout wasn't defined

		if int64(s.TLSReadTimeout) == 0 {

			s.TLSReadTimeout = s.ReadTimeout

		}

		// Use http write timeout if https write timeout wasn't defined

		if int64(s.TLSWriteTimeout) == 0 {

			s.TLSWriteTimeout = s.WriteTimeout

		}

	}



	if s.hasScheme(schemeUnix) {

		domSockListener, err := net.Listen("unix", string(s.SocketPath))

		if err != nil {

			return err

		}

		s.domainSocketL = domSockListener

	}



	if s.hasScheme(schemeHTTP) {

		listener, err := net.Listen("tcp", net.JoinHostPort(s.Host, strconv.Itoa(s.Port)))

		if err != nil {

			return err

		}



		h, p, err := swag.SplitHostPort(listener.Addr().String())

		if err != nil {

			return err

		}

		s.Host = h

		s.Port = p

		s.httpServerL = listener

	}



	if s.hasScheme(schemeHTTPS) {

		tlsListener, err := net.Listen("tcp", net.JoinHostPort(s.TLSHost, strconv.Itoa(s.TLSPort)))

		if err != nil {

			return err

		}



		sh, sp, err := swag.SplitHostPort(tlsListener.Addr().String())

		if err != nil {

			return err

		}

		s.TLSHost = sh

		s.TLSPort = sp

		s.httpsServerL = tlsListener

	}



	s.hasListeners = true

	return nil

}



// Shutdown server and clean up resources

func (s *Server) Shutdown() error {

	if atomic.CompareAndSwapInt32(&s.shuttingDown, 0, 1) {

		close(s.shutdown)

	}

	return nil

}



func (s *Server) handleShutdown(wg *sync.WaitGroup, serversPtr *[]*http.Server) {

	// wg.Done must occur last, after s.api.ServerShutdown()

	// (to preserve old behaviour)

	defer wg.Done()



	<-s.shutdown



	servers := *serversPtr



	ctx, cancel := context.WithTimeout(context.TODO(), s.GracefulTimeout)

	defer cancel()



	shutdownChan := make(chan bool)

	for i := range servers {

		server := servers[i]

		go func() {

			var success bool

			defer func() {

				shutdownChan <- success

			}()

			if err := server.Shutdown(ctx); err != nil {

				// Error from closing listeners, or context timeout:

				s.Logf("HTTP server Shutdown: %v", err)

			} else {

				success = true

			}

		}()

	}



	// Wait until all listeners have successfully shut down before calling ServerShutdown

	success := true

	for range servers {

		success = success && <-shutdownChan

	}

	if success {

		s.api.ServerShutdown()

	}

}



// GetHandler returns a handler useful for testing

func (s *Server) GetHandler() http.Handler {

	return s.handler

}



// SetHandler allows for setting a http handler on this server

func (s *Server) SetHandler(handler http.Handler) {

	s.handler = handler

}



// UnixListener returns the domain socket listener

func (s *Server) UnixListener() (net.Listener, error) {

	if !s.hasListeners {

		if err := s.Listen(); err != nil {

			return nil, err

		}

	}

	return s.domainSocketL, nil

}



// HTTPListener returns the http listener

func (s *Server) HTTPListener() (net.Listener, error) {

	if !s.hasListeners {

		if err := s.Listen(); err != nil {

			return nil, err

		}

	}

	return s.httpServerL, nil

}



// TLSListener returns the https listener

func (s *Server) TLSListener() (net.Listener, error) {

	if !s.hasListeners {

		if err := s.Listen(); err != nil {

			return nil, err

		}

	}

	return s.httpsServerL, nil

}



func handleInterrupt(once *sync.Once, s *Server) {

	once.Do(func() {

		for _ = range s.interrupt {

			if s.interrupted {

				s.Logf("Server already shutting down")

				continue

			}

			s.interrupted = true

			s.Logf("Shutting down... ")

			if err := s.Shutdown(); err != nil {

				s.Logf("HTTP server Shutdown: %v", err)

			}

		}

	})

}



func signalNotify(interrupt chan<- os.Signal) {

	signal.Notify(interrupt, syscall.SIGINT, syscall.SIGTERM)

}
Loading...
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
Go
1
https://gitee.com/mirrors/go-swagger.git
git@gitee.com:mirrors/go-swagger.git
mirrors
go-swagger
go-swagger
v0.17.1
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部