Class: Ritm::Proxy::SSLReverseProxy

Inherits:

Object

• Object
• Ritm::Proxy::SSLReverseProxy

Defined in:

lib/ritm/proxy/ssl_reverse_proxy.rb

Overview

SSL Intercept reverse proxy server. Supports interception of https request and responses It does man-in-the-middle with on-the-fly certificate signing using the given CA

Instance Method Summary

• #initialize(port, ca, conf, request_interceptor: nil, response_interceptor: nil) ⇒ SSLReverseProxy constructor

  Creates a HTTPS server with the given settings.

• #shutdown ⇒ Object
• #start_async ⇒ Object

Constructor Details

#initialize(port, ca, conf, request_interceptor: nil, response_interceptor: nil) ⇒ SSLReverseProxy

Creates a HTTPS server with the given settings

Parameters:

• port (Fixnum) —

  : TCP port to bind the service

• ca (Ritm::CA) —

  : The certificate authority used to sign fake server certificates

• request_interceptor (Proc) (defaults to: nil) —

  : If given, it will be invoked before proxying the request

• response_interceptor (Proc) (defaults to: nil) —

  : If give, it will be invoked before sending back the response

# File 'lib/ritm/proxy/ssl_reverse_proxy.rb', line 16

def initialize(port, ca, conf, request_interceptor: nil, response_interceptor: nil)
  @ca = ca
  default_vhost = 'localhost'
  @server = CertSigningHTTPSServer.new(Port: port,
                                       AccessLog: [],
                                       Logger: WEBrick::Log.new(File.open(File::NULL, 'w')),
                                       ca: ca,
                                       **vhost_settings(default_vhost))

  @server.mount '/', RequestInterceptorServlet, request_interceptor, response_interceptor, conf
end

Instance Method Details

#shutdown ⇒ Object

# File 'lib/ritm/proxy/ssl_reverse_proxy.rb', line 34

def shutdown
  @server.shutdown
end

#start_async ⇒ Object

# File 'lib/ritm/proxy/ssl_reverse_proxy.rb', line 28

def start_async
  trap(:TERM) { shutdown }
  trap(:INT) { shutdown }
  Thread.new { @server.start }
end