class Falcon::Controller::Proxy

A controller for proxying requests.

Constants

DEFAULT_SESSION_ID

The default SSL session identifier.

Public Class Methods

new(command, session_id: DEFAULT_SESSION_ID, **options) click to toggle source

Initialize the proxy controller. @parameter command [Command::Proxy] The user-specified command-line options. @parameter session_id [String] The SSL session identifier to use for the session cache.

Calls superclass method
# File lib/falcon/controller/proxy.rb, line 41
def initialize(command, session_id: DEFAULT_SESSION_ID, **options)
        super(command, **options)
        
        @session_id = session_id
        @hosts = {}
end

Public Instance Methods

endpoint() click to toggle source

The endpoint the server will bind to.

# File lib/falcon/controller/proxy.rb, line 96
def endpoint
        @command.endpoint.with(
                ssl_context: self.ssl_context,
                reuse_address: true,
        )
end
host_context(socket, hostname) click to toggle source

Look up the host context for the given hostname, and update the socket hostname if necessary. @parameter socket [OpenSSL::SSL::SSLSocket] The incoming connection. @parameter hostname [String] The negotiated hostname.

# File lib/falcon/controller/proxy.rb, line 61
def host_context(socket, hostname)
        if host = @hosts[hostname]
                Console.logger.debug(self) {"Resolving #{hostname} -> #{host}"}
                
                socket.hostname = hostname
                
                return host.ssl_context
        else
                Console.logger.warn(self) {"Unable to resolve #{hostname}!"}
                
                return nil
        end
end
load_app() click to toggle source

Load the {Middleware::Proxy} application with the specified hosts.

# File lib/falcon/controller/proxy.rb, line 49
def load_app
        return Middleware::Proxy.new(Middleware::BadRequest, @hosts)
end
name() click to toggle source

The name of the controller which is used for the process title.

# File lib/falcon/controller/proxy.rb, line 54
def name
        "Falcon Proxy Server"
end
ssl_context() click to toggle source

Generate an SSL context which delegates to {host_context} to multiplex based on hostname.

# File lib/falcon/controller/proxy.rb, line 76
def ssl_context
        @server_context ||= OpenSSL::SSL::SSLContext.new.tap do |context|
                context.servername_cb = Proc.new do |socket, hostname|
                        self.host_context(socket, hostname)
                end
                
                context.session_id_context = @session_id
                
                context.ssl_version = :TLSv1_2_server
                
                context.set_params(
                        ciphers: TLS::SERVER_CIPHERS,
                        verify_mode: OpenSSL::SSL::VERIFY_NONE,
                )
                
                context.setup
        end
end
start() click to toggle source

Builds a map of host redirections.

Calls superclass method
# File lib/falcon/controller/proxy.rb, line 104
def start
        configuration = @command.configuration
        
        services = Services.new(configuration)
        
        @hosts = {}
        
        services.each do |service|
                if service.is_a?(Service::Proxy)
                        Console.logger.info(self) {"Proxying #{service.authority} to #{service.endpoint}"}
                        @hosts[service.authority] = service
                        
                        # Pre-cache the ssl contexts:
                        # It seems some OpenSSL objects don't like event-driven I/O.
                        service.ssl_context
                end
        end
        
        super
end