Class: Falcon::Hosts

Inherits:

Object

• Object
• Falcon::Hosts

Defined in:

lib/falcon/hosts.rb

Constant Summary

SERVER_CIPHERS =

"EECDH+CHACHA20:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5".freeze

Instance Method Summary

• #add(host) ⇒ Object
• #each(&block) ⇒ Object
• #endpoint ⇒ Object
• #host_context(socket, hostname) ⇒ Object
• #initialize(configuration) ⇒ Hosts constructor

  A new instance of Hosts.

• #proxy ⇒ Object
• #redirection(secure_endpoint) ⇒ Object
• #run(container = Async::Container.new, **options) ⇒ Object
• #ssl_context ⇒ Object

Constructor Details

#initialize(configuration) ⇒ Hosts

Returns a new instance of Hosts.

# File 'lib/falcon/hosts.rb', line 35

def initialize(configuration)
	@named = {}
	@server_context = nil
	@server_endpoint = nil
	
	configuration.each(:authority) do |environment|
		add(Host.new(environment))
	end
end

Instance Method Details

#add(host) ⇒ Object

# File 'lib/falcon/hosts.rb', line 88

def add(host)
	@named[host.authority] = host
end

#each(&block) ⇒ Object

# File 'lib/falcon/hosts.rb', line 45

def each(&block)
	@named.each_value(&block)
end

#endpoint ⇒ Object

# File 'lib/falcon/hosts.rb', line 49

def endpoint
	@server_endpoint ||= Async::HTTP::Endpoint.parse(
		'https://[::]',
		ssl_context: self.ssl_context,
		reuse_address: true
	)
end

#host_context(socket, hostname) ⇒ Object

# File 'lib/falcon/hosts.rb', line 74

def host_context(socket, hostname)
	if host = @named[hostname]
		Async.logger.debug(self) {"Resolving #{hostname} -> #{host}"}
		
		socket.hostname = hostname
		
		return host.ssl_context
	else
		Async.logger.warn(self) {"Unable to resolve #{hostname}!"}
		
		return nil
	end
end

#proxy ⇒ Object

# File 'lib/falcon/hosts.rb', line 92

def proxy
	Proxy.new(Falcon::BadRequest, @named)
end

#redirection(secure_endpoint) ⇒ Object

# File 'lib/falcon/hosts.rb', line 96

def redirection(secure_endpoint)
	Redirection.new(Falcon::BadRequest, @named, secure_endpoint)
end

#run(container = Async::Container.new, **options) ⇒ Object

# File 'lib/falcon/hosts.rb', line 100

def run(container = Async::Container.new, **options)
	secure_endpoint = Async::HTTP::Endpoint.parse(options[:bind_secure], ssl_context: self.ssl_context)
	insecure_endpoint = Async::HTTP::Endpoint.parse(options[:bind_insecure])
	
	secure_endpoint_bound = insecure_endpoint_bound = nil
	
	Async::Reactor.run do
		secure_endpoint_bound = Async::IO::SharedEndpoint.bound(secure_endpoint)
		insecure_endpoint_bound = Async::IO::SharedEndpoint.bound(insecure_endpoint)
	end.wait
	
	container.run(name: "Falcon Proxy", restart: true) do |task, instance|
		proxy = self.proxy
		
		proxy_server = Falcon::Server.new(proxy, secure_endpoint_bound, secure_endpoint.protocol, secure_endpoint.scheme)
		
		proxy_server.run
	end
	
	container.run(name: "Falcon Redirector", restart: true) do |task, instance|
		redirection = self.redirection(secure_endpoint)
		
		redirection_server = Falcon::Server.new(redirection, insecure_endpoint_bound, insecure_endpoint.protocol, insecure_endpoint.scheme)
		
		redirection_server.run
	end
	
	container.attach do
		secure_endpoint_bound.close
		insecure_endpoint_bound.close
	end
	
	return container
end

#ssl_context ⇒ Object

# File 'lib/falcon/hosts.rb', line 57

def ssl_context
	@server_context ||= OpenSSL::SSL::SSLContext.new.tap do |context|
		context.servername_cb = Proc.new do |socket, hostname|
			self.host_context(socket, hostname)
		end
		
		context.session_id_context = "falcon"
		
		context.set_params(
			ciphers: SERVER_CIPHERS,
			verify_mode: OpenSSL::SSL::VERIFY_NONE,
		)
		
		context.setup
	end
end