refactor: move proxy to monorepo

2026-01-21 09:03:02 +00:00 · 2023-05-24 13:13:13 +02:00
parent 826eaa7825
commit 23d0c6971c
34 changed files with 0 additions and 0 deletions
--- a/backend/proxy/fixtures/cors.template
+++ b/backend/proxy/fixtures/cors.template
@@ -0,0 +1,5 @@
+add_header 'Access-Control-Allow-Origin' '*';
+add_header 'Access-Control-Allow-Credentials' 'true';
+add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS';
+add_header 'Access-Control-Allow-Headers' 'DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,X-StApps-Version';
+add_header 'Access-Control-Max-Age' 1728000;
--- a/backend/proxy/fixtures/hiddenRoute.template
+++ b/backend/proxy/fixtures/hiddenRoute.template
@@ -0,0 +1,8 @@
+location {{{ route }}} {
+
+    # use our custom request limit and allow bursts
+    # deliver them with no queuing delay
+    limit_req zone=customstappslimit burst=20;
+
+    return 404;
+}
--- a/backend/proxy/fixtures/logFormatters.template
+++ b/backend/proxy/fixtures/logFormatters.template
@@ -0,0 +1,33 @@
+map $time_iso8601 $time_iso8601_dateTime {
+  ~([^+]+) $1;
+}
+map $time_iso8601 $time_iso8601_TZ {
+  ~\+([0-9:]+)$ $1;
+}
+map $msec $millisec {
+  ~\.([0-9]+)$ $1;
+}
+
+log_format json escape=json '{ "nginx_timestamp": "$time_iso8601_dateTime.$millisec+$time_iso8601_TZ", '
+       '"remote_addr": "$remote_addr", '
+       '"connection": "$connection", '
+       '"connection_requests": $connection_requests, '
+       '"pipe": "$pipe", '
+       '"body_bytes_sent": $body_bytes_sent, '
+       '"request_length": $request_length, '
+       '"request_time": $request_time, '
+       '"response_status": $status, '
+       '"request_uri": "$request_uri", '
+       '"request_method": "$request_method", '
+       '"host": "$host", '
+       '"upstream_cache_status": "$upstream_cache_status", '
+       '"upstream_addr": "$upstream_addr", '
+       '"http_x_stapps_version": "$http_x_stapps_version", '
+       '"http_x_forwarded_for": "$http_x_forwarded_for", '
+       '"http_referrer": "$http_referer", '
+       '"http_user_agent": "$http_user_agent", '
+       '"http_version": "$server_protocol", '
+       '"remote_user": "$remote_user", '
+       '"http_x_forwarded_proto": "$http_x_forwarded_proto", '
+       '"upstream_response_time": "$upstream_response_time", '
+       '"nginx_access": true }';
--- a/backend/proxy/fixtures/metrics.template
+++ b/backend/proxy/fixtures/metrics.template
@@ -0,0 +1,14 @@
+map $status $omitOKs {
+  default 1;
+  ~^[2][0][0] 0;
+}
+
+server {
+    listen 8080;
+    error_log stderr;
+    access_log /dev/stdout {{{ logFormat }}} if=$omitOKs;
+    location /metrics {
+        vhost_traffic_status_display;
+        vhost_traffic_status_display_format prometheus;
+    }
+}
--- a/backend/proxy/fixtures/staticRoute.template
+++ b/backend/proxy/fixtures/staticRoute.template
@@ -0,0 +1,40 @@
+location /_static/ {
+
+    # use our custom request limit and allow bursts
+    limit_req zone=customstappslimit burst=20 nodelay;
+
+    {{{ cors }}}
+
+    if ($request_method = 'OPTIONS') {
+	{{{ cors }}}
+        add_header 'Content-Length' '0';
+        return 204;
+    }
+    alias /static/;
+    expires 7d;
+    ## Check for file existing and if there, stop ##
+    if (-f $request_filename) {
+        break;
+    }
+    ## Check for file existing and if there, stop ##
+    if (-d $request_filename) {
+        break;
+    }
+	##Check for png
+    if (-e $request_filename.png) {
+        rewrite ^/(.*)$ /$1.png;
+        break;
+    }
+	##Check for gif
+    if (-e $request_filename.gif) {
+        rewrite ^/(.*)$ /$1.gif;
+        break;
+    }
+	##Check for jpg
+    if (-e $request_filename.jpg) {
+        rewrite ^/(.*)$ /$1.jpg;
+        break;
+    }
+	##Fallback rule if no match is found
+    rewrite ^/(.*/).*(small|medium|large|thumbnail)$ /$1default-$2.png;
+}
--- a/backend/proxy/fixtures/visibleRoute.template
+++ b/backend/proxy/fixtures/visibleRoute.template
@@ -0,0 +1,41 @@
+location  {{{ route }}} {
+
+    # use our custom request limit and allow bursts
+    # deliver them with no queuing delay
+    limit_req zone=customstappslimit burst=20 nodelay;
+
+    # intercept OPTIONS request
+    # all other CORS headers are set by the backend(s)
+    # see https://gist.github.com/michiel/1064640/0dafeb1e8f71a26b94ea15e09e7e5f45bed14dda
+    if ($request_method = 'OPTIONS') {
+        {{{ cors }}}
+        add_header 'Content-Length' '0';
+        return 204;
+    }
+
+    # if client doesn't set a version header, we don't know which backend to choose
+    if ($http_x_stapps_version = "") {
+        # return Multiple Choices
+        return 300 'You have to supply a client/app version via the X-StApps-Version header!';
+    }
+
+    # Version is unsupported or never existed
+    if ($proxyurl = unsupported) {
+        {{{ cors }}}
+        return 404;
+    }
+    # The version existed, but is outdated now (App should update)
+    if ($proxyurl = outdated) {
+        return 404;
+    }
+    # The version is correct, but backend is not responding
+    if ($proxyurl = unavailable) {
+        {{{ cors }}}
+	    return 503;
+    }
+    limit_except GET OPTIONS POST {
+        deny all;
+    }
+    # backend is available
+    proxy_pass http://$proxyurl;
+}