From cc5d7c08cca9cb4a14f1f99355262b9b3ff04b0c Mon Sep 17 00:00:00 2001
From: metamuffin <metamuffin@disroot.org>
Date: Mon, 11 Nov 2024 22:21:42 +0100
Subject: implement insecure connection upgrade. yaml parser broken

---
 src/modules/upgrade_insecure.rs | 58 +++++++++++++++++++++++++++++++++++++++++
 1 file changed, 58 insertions(+)
 create mode 100644 src/modules/upgrade_insecure.rs

(limited to 'src/modules/upgrade_insecure.rs')

diff --git a/src/modules/upgrade_insecure.rs b/src/modules/upgrade_insecure.rs
new file mode 100644
index 0000000..c201d96
--- /dev/null
+++ b/src/modules/upgrade_insecure.rs
@@ -0,0 +1,58 @@
+use super::{Node, NodeContext, NodeKind, NodeRequest, NodeResponse};
+use crate::{config::DynNode, error::ServiceError};
+use anyhow::Result;
+use futures::Future;
+use http::{uri::Scheme, HeaderValue, Response, StatusCode, Uri};
+use http_body_util::BodyExt;
+use serde::Deserialize;
+use serde_yml::with::singleton_map_recursive;
+use std::{pin::Pin, sync::Arc};
+
+pub struct UpgradeInsecureKind;
+
+#[derive(Deserialize)]
+pub struct UpgradeInsecure(DynNode);
+
+impl NodeKind for UpgradeInsecureKind {
+    fn name(&self) -> &'static str {
+        "upgrade_insecure"
+    }
+    fn instanciate(&self, config: serde_yml::Value) -> Result<Arc<dyn Node>> {
+        Ok(Arc::new(serde_yml::from_value::<UpgradeInsecure>(config)?))
+    }
+}
+
+impl Node for UpgradeInsecure {
+    fn handle<'a>(
+        &'a self,
+        context: &'a mut NodeContext,
+        request: NodeRequest,
+    ) -> Pin<Box<dyn Future<Output = Result<NodeResponse, ServiceError>> + Send + Sync + 'a>> {
+        Box::pin(async move {
+            if request.headers().contains_key("upgrade-insecure-requests")
+                && request.uri().scheme() == Some(&Scheme::HTTP)
+            {
+                let mut parts = http::uri::Parts::default();
+                parts.scheme = request.uri().scheme().cloned();
+                parts.authority = request.uri().authority().cloned();
+                parts.path_and_query = request.uri().path_and_query().cloned();
+                let uri = Uri::from_parts(parts).map_err(|_| ServiceError::InvalidUri)?;
+
+                let mut resp =
+                    Response::new("".to_string()).map(|b| b.map_err(|e| match e {}).boxed());
+                *resp.status_mut() = StatusCode::MOVED_PERMANENTLY;
+                resp.headers_mut().insert(
+                    "Location",
+                    HeaderValue::from_str(&uri.to_string())
+                        .map_err(|_| ServiceError::InvalidUri)?,
+                );
+                resp.headers_mut().insert(
+                    "Vary",
+                    HeaderValue::from_static("Upgrade-Insecure-Requests"),
+                );
+                return Ok(resp);
+            }
+            self.0.handle(context, request).await
+        })
+    }
+}
-- 
cgit v1.2.3-70-g09d2