http to https redirect cleanup

2026-04-29 22:38:36 +08:00 · 2025-05-26 12:42:01 +02:00
parent d38588a299
commit 2a93bc2cd6
6 changed files with 35 additions and 38 deletions
--- a/src/web/proxyhttp.rs
+++ b/src/web/proxyhttp.rs
@@ -47,22 +47,17 @@ impl ProxyHttp for LB {
                return Ok(true);
            }
        };
-
-        // if session.req_header().uri.path().starts_with("/denied") {
-        //     let _ = session.respond_error(403).await;
-        //     warn!("Forbidden: {:?}, {}", session.client_addr(), session.req_header().uri.path().to_string());
-        //     return Ok(true);
-        // };
        Ok(false)
    }
-    async fn upstream_peer(&self, session: &mut Session, _ctx: &mut Self::CTX) -> Result<Box<HttpPeer>> {
+    async fn upstream_peer(&self, session: &mut Session, ctx: &mut Self::CTX) -> Result<Box<HttpPeer>> {
        let host_name = return_header_host(&session);

        match host_name {
            Some(hostname) => {
                // session.req_header_mut().headers.insert("X-Host-Name", host.to_string().parse().unwrap());
                let mut backend_id = None;
-                if self.extraparams.load().stickysessions {
+
+                if self.extraparams.load().sticky_sessions {
                    if let Some(cookies) = session.req_header().headers.get("cookie") {
                        if let Ok(cookie_str) = cookies.to_str() {
                            for cookie in cookie_str.split(';') {
@@ -91,33 +86,22 @@ impl ProxyHttp for LB {
                            peer.options.verify_hostname = false;
                        }
                        // println!("{}, {}, alpn {}, h2 {:?}, to_https {}", hostname, address.as_str(), peer.options.alpn, is_h2, _to_https);
-                        // let mut gogo = false;
-                        // let mut location = String::new();
-                        if to_https {
+                        if self.extraparams.load().to_ssl.unwrap_or(false) || to_https {
                            if let Some(stream) = session.stream() {
                                if stream.get_ssl().is_none() {
                                    if let Some(addr) = session.server_addr() {
                                        if let Some((host, _)) = addr.to_string().split_once(':') {
                                            let uri = session.req_header().uri.path_and_query().map_or("/", |pq| pq.as_str());
                                            let port = self.config.proxy_port_tls.unwrap_or(443);
-                                            // let location = format!("https://{}:{}{}", host, port, uri);
-                                            // println!("Redirect: {} => {}", hostname, location);
-                                            // gogo = true;
-                                            _ctx.to_https = true;
-                                            _ctx.redirect_to = format!("https://{}:{}{}", host, port, uri);
+                                            ctx.to_https = true;
+                                            ctx.redirect_to = format!("https://{}:{}{}", host, port, uri);
                                        }
                                    }
                                }
                            }
                        }

-                        // if gogo {
-                        //     println!("Redirect: {} => {}", hostname, location);
-                        //     let _ = session.respond_error(301).await;
-                        //     warn!("Forbidden: {:?}, {}", session.client_addr(), session.req_header().uri.path().to_string());
-                        // }
-                        _ctx.backend_id = format!("{}:{}:{}", address.clone(), port.clone(), ssl);
-                        // println!("{:?}, {:?}", session.request_summary(), session.server_addr());
+                        ctx.backend_id = format!("{}:{}:{}", address.clone(), port.clone(), ssl);
                        Ok(peer)
                    }
                    None => {
@@ -153,20 +137,20 @@ impl ProxyHttp for LB {
        Ok(())
    }

-    async fn response_filter(&self, session: &mut Session, _upstream_response: &mut ResponseHeader, _ctx: &mut Self::CTX) -> Result<()> {
+    async fn response_filter(&self, session: &mut Session, _upstream_response: &mut ResponseHeader, ctx: &mut Self::CTX) -> Result<()> {
        // _upstream_response.insert_header("X-Proxied-From", "Fooooooooooooooo").unwrap();
-        if self.extraparams.load().stickysessions {
-            let backend_id = _ctx.backend_id.clone();
+        if self.extraparams.load().sticky_sessions {
+            let backend_id = ctx.backend_id.clone();
            if let Some(bid) = self.ump_byid.get(&backend_id) {
                // let _ = _upstream_response.insert_header("set-cookie", format!("backend {}", bid.0));
                let _ = _upstream_response.insert_header("set-cookie", format!("backend_id={}; Path=/; Max-Age=600; HttpOnly; SameSite=Lax", bid.0));
            }
        }

-        if _ctx.to_https {
-            // println!("{} => {}", _ctx.to_https, _ctx.redirect_to);
+        if ctx.to_https {
+            // println!("{} => {}", ctx.to_https, ctx.redirect_to);
            let mut redirect_response = ResponseHeader::build(StatusCode::MOVED_PERMANENTLY, None)?;
-            redirect_response.insert_header("Location", _ctx.redirect_to.clone())?;
+            redirect_response.insert_header("Location", ctx.redirect_to.clone())?;
            redirect_response.insert_header("Content-Length", "0")?;
            session.write_response_header(Box::new(redirect_response), false).await?;
            // return Ok(());