389 Commits

Author	SHA1	Message	Date
Mohammed Al Sahaf	4ade967005	reverseproxy: allow user to define source address (#6504) ... * reverseproxy: allow user to define source address Closes #6503 Signed-off-by: Mohammed Al Sahaf <msaa1990@gmail.com> * reverse_proxy: caddyfile support for local_address Signed-off-by: Mohammed Al Sahaf <msaa1990@gmail.com> --------- Signed-off-by: Mohammed Al Sahaf <msaa1990@gmail.com>	2024-08-22 19:52:05 +00:00
Jens-Uwe Mager	2bb2ecc549	reverseproxy: Change errors writing the response to warning. (#6532) ... Most of the errors that can be seen here are write errors due to clients aborting the request from their side. Often seen ones include: * writing: ... write: broken pipe * writing: ... connection timed out * writing: http2: stream closed * writing: timeout... * writing: h3 error... Most of these errors are beyond of the control of caddy on the client side, probably nothing can be done on the server side. It still warrants researching when these errors occur very often, so a change in level from error to warn is better here to not polute the logs with errors in the normal case.	2024-08-21 11:39:20 -06:00
Jesper Brix Rosenkilde	54a0c8f948	reverseproxy: Active health checks request body option (#6520) ... * Add an option to specify the body used for active health checks * Replacer on request body	2024-08-19 10:55:55 -06:00
WeidiDeng	21af88fefc	reverseproxy: Disable keep alive for h2c requests (#6343)	2024-08-08 06:53:30 -06:00
vnxme	59cbb2c83a	caddytls,caddyhttp: Placeholders for some TLS and HTTP matchers (#6480) ... * Runtime placeholders for caddytls matchers (1/3): - remove IPs validation in UnmarshalCaddyfile * Runtime placeholders for caddytls matchers (2/3): - add placeholder replacement for IPs in Provision * Runtime placeholders for caddytls matchers (3/3): - add placeholder replacement for other strings * Runtime placeholders for caddyhttp matchers (1/1): - add placeholder replacement for IPs in Provision * Runtime placeholders for caddyhttp/caddytls matchers: - move PrivateRandesCIDR under internal	2024-08-07 11:02:23 -06:00
Matthew Holt	806f5b1117	reverseproxy: Fix panic when using header-related flags (fix #6464)	2024-07-18 21:31:07 -06:00
schultzie	b2492f8567	reverseproxy: add health_upstream subdirective (#6451) ... * Add health_upstream Signed-off-by: Dylan Schultz <9121234+dylanschultzie@users.noreply.github.com> * Add health_upstream to caddyfile parsing * Add Active Upstream case for health checks * Update ignore health port comment Signed-off-by: Dylan Schultz <9121234+dylanschultzie@users.noreply.github.com> * Update Upstream json doc Signed-off-by: Dylan Schultz <9121234+dylanschultzie@users.noreply.github.com> * Update modules/caddyhttp/reverseproxy/healthchecks.go Co-authored-by: Francis Lavoie <lavofr@gmail.com> * Use error rather than log for health_port override Signed-off-by: Dylan Schultz <9121234+dylanschultzie@users.noreply.github.com> * Add comment about port being ignore if using upstream Signed-off-by: Dylan Schultz <9121234+dylanschultzie@users.noreply.github.com> --------- Signed-off-by: Dylan Schultz <9121234+dylanschultzie@users.noreply.github.com> Co-authored-by: Francis Lavoie <lavofr@gmail.com>	2024-07-15 17:00:12 +00:00
Jesper Brix Rosenkilde	07c863637d	reverseproxy: Caddyfile support for health_method (#6454) ... * Add Caddyfile support of setting active health check request method * Add integration test for active health check request method	2024-07-12 17:01:58 -04:00
Jesper Brix Rosenkilde	dc2a5d5c52	reverseproxy: Configurable method for active health checks (#6453) ... * Add option to set which HTTP method to use for active health checks * Default Method to GET if not set	2024-07-11 09:24:13 -04:00
schultzie	4943a4fc52	reverseproxy: Add placeholder for networkAddr in active health check headers (#6450) ... Co-authored-by: Francis Lavoie <lavofr@gmail.com>	2024-07-09 18:08:25 +00:00
Aziz Rmadi	630c62b313	fixed bug in resolving ip version in dynamic upstreams (#6448)	2024-07-09 03:06:30 -04:00
Francis Lavoie	7142d7c1e4	reverseproxy: Add placeholder for host in active health check headers (#6440)	2024-07-06 10:43:19 -06:00
Matt Holt	c3fb5f4d3f	caddyhttp: Reject 0-RTT early data in IP matchers and set Early-Data header when proxying (#6427) ... * caddyhttp: Reject 0-RTT early data in IP matchers and set Early-Data header when proxying See RFC 8470: https://httpwg.org/specs/rfc8470.html Thanks to Michael Wedl (@MWedl) at the University of Applied Sciences St. Poelten for reporting this. * Don't return value for {remote} placeholder in early data * Add Caddyfile support	2024-07-05 10:46:20 -06:00
klaxa	f350e001b6	reverseproxy: Only log host is up status on change (fixes #6415) (#6419)	2024-07-03 19:05:52 +00:00
Matthew Holt	f8861ca16b	reverseproxy: Wire up TLS options for H3 transport	2024-06-28 12:15:41 -06:00
Jason Yuan	fab6375a8b	reverseproxy: add Max-Age option to sticky cookie (#6398) ... * reverseproxy: add Max-Age option to sticky cookie * Update selectionpolicies.go Co-authored-by: Francis Lavoie <lavofr@gmail.com> * Update selectionpolicies.go Co-authored-by: Francis Lavoie <lavofr@gmail.com> --------- Co-authored-by: Francis Lavoie <lavofr@gmail.com>	2024-06-15 07:50:31 -06:00
Matt Holt	5f6758dab5	reverseproxy: Support HTTP/3 transport to backend (#6312) ... Closes #5086	2024-05-20 13:06:43 -06:00
WeidiDeng	e60148ecc3	reverseproxy: Pointer to struct when loading modules; remove LazyCertPool (#6307) ... * use pointer when loading modules * change method to pointer type and remove LazyCertPool * remove lazy pool test * remove yet another lazy pool test	2024-05-08 19:13:37 -06:00
Ali Asgar	b2b29dcd49	reverseproxy: Implement health_follow_redirects (#6302) ... * added health_follow_redirect in active health checks * chore: code format * chore: refactore reversproxy healthcheck redirect variable name and description of the same * chore: formatting * changed reverse proxy health check status code range to be between 200-299 * chore: formatting --------- Co-authored-by: aliasgar <joancena1268@mail.com>	2024-05-07 08:40:15 -06:00
Mohammed Al Sahaf	d05d715a00	reverseproxy: HTTP transport: fix PROXY protocol initialization (#6301)	2024-05-06 20:02:12 -06:00
Mohammed Al Sahaf	87c7127c28	chore: add warn logs when using deprecated fields (#6276)	2024-04-27 15:51:00 -04:00
WeidiDeng	1b9042bcdd	reverseproxy: handle buffered data during hijack (#6274)	2024-04-26 09:09:18 -06:00
Aziz Rmadi	868af6a062	reverse_proxy: Add grace_period for SRV upstreams to Caddyfile (#6264)	2024-04-23 07:12:57 -06:00
Matthew Holt	9f97df2275	reverseproxy: Remove long-deprecated buffering properties ... They've been deprecated for over a year and we printed warnings during that time.	2024-04-22 15:34:14 -06:00
Matthew Holt	d93e027e01	reverseproxy: Reuse buffered request body even if partially drained ... Previous commit only works when the backends don't read any of the body first.	2024-04-22 15:22:50 -06:00
Matthew Holt	613d544a47	reverseproxy: Accept EOF when buffering ... Before this change, a read of size (let's say) < 10, into a buffer of size 10, will return EOF because we're using CopyN to limit to the size of the buffer. That resulted in the body being read from later, which should only happen if it couldn't fit in the buffer. With this change, the body is properly NOT set when it can all fit in the buffer.	2024-04-22 13:12:10 -06:00
WeidiDeng	b40cacf5ce	reverseproxy: Wait for both ends of websocket to close (#6175)	2024-04-15 11:37:37 -06:00
Matt Holt	81413caea2	caddytls: Upgrade ACMEz to v2; support ZeroSSL API; various fixes (#6229) ... * WIP: acmez v2, CertMagic, and ZeroSSL issuer upgrades * caddytls: ZeroSSLIssuer now uses ZeroSSL API instead of ACME * Fix go.mod * caddytls: Fix automation related to managers (fix #6060) * Fix typo (appease linter) * Fix HTTP validation with ZeroSSL API	2024-04-13 21:31:43 -04:00
Aziz Rmadi	0b381eb766	reverseproxy: Implement modular CA provider for TLS transport (#6065) ... * added new modular ca providers to caddy tls HttpTransport * reverse-proxy, httptransport: added tests and caddyfile support for ca module --------- Co-authored-by: Mohammed Al Sahaf <msaa1990@gmail.com>	2024-04-12 07:19:14 -06:00
reallylowest	e0bf179c1a	modules: fix some typo in conments (#6206) ... Signed-off-by: reallylowest <sunjinping@outlook.com>	2024-03-30 02:45:42 +00:00
Hayder	74949fb091	reverseproxy: Use xxhash instead of fnv32 for LB (#6203) ... * Added Faster Non-cryptographic Hash Function for Load Balancing * Ran golangci-lint * Updated hash version and hash return type	2024-03-29 10:56:18 -06:00
Francis Lavoie	97a56d860a	caddyhttp: Allow header replacement with empty string (#6163)	2024-03-21 17:29:32 +00:00
Sam Ottenhoff	e65b97f55b	reverseproxy: configurable active health_passes and health_fails (#6154) ... * reverseproxy: active health check allows configurable health_passes and health_fails * Need to reset counters after recovery * rename methods to be more clear that these are coming from active health checks * do not export methods	2024-03-20 11:13:35 -06:00
Justin Angel	a9768d2fde	reverseproxy: Configurable forward proxy URL (#6114) ... Co-authored-by: WeidiDeng <weidi_deng@icloud.com>	2024-03-18 04:07:25 +00:00
huajin tong	277472d081	fix struct names (#6151) ... Signed-off-by: thirdkeyword <fliterdashen@gmail.com>	2024-03-06 13:53:03 +00:00
Matt Holt	72ce78d9af	reverseproxy: SRV dynamic upstream failover (#5832) ... * Implement grace period, but probably needs sync * Update cached freshness value * D'oh, actually use the grace period * Fix freshness math	2024-03-05 12:08:31 -07:00
Sam Ottenhoff	da6a569e85	reverseproxy: cookie should be Secure and SameSite=None when TLS (#6115) ... * reverseproxy: cookie should be Secure and SameSite=None when TLS * Update modules/caddyhttp/reverseproxy/selectionpolicies_test.go Co-authored-by: Mohammed Al Sahaf <mohammed@caffeinatedwonders.com> --------- Co-authored-by: Mohammed Al Sahaf <mohammed@caffeinatedwonders.com>	2024-02-23 12:45:58 -07:00
WeidiDeng	53f7035299	reverseproxy: use context.WithoutCancel (#6116)	2024-02-19 20:25:02 -07:00
Yolan Romailler	2fe69a828f	chore: enabling a few more linters (#5961) ... Co-authored-by: Francis Lavoie <lavofr@gmail.com>	2024-01-25 15:24:58 +00:00
Francis Lavoie	750d0b8331	caddyfile: Normalize & flatten all unmarshalers (#6037)	2024-01-23 19:36:59 -05:00
Mohammed Al Sahaf	54823f52bc	cmd: reverseproxy: log: use caddy logger (#6042)	2024-01-23 10:52:02 -07:00
Bas Westerbaan	f658fd05ac	reverseproxy: Add tls_curves option to HTTP transport (#5851)	2024-01-13 20:56:23 +00:00
a	c839a98ff5	filesystem: Globally declared filesystems, fs directive (#5833)	2024-01-13 20:12:43 +00:00
Fred Cox	d9ff7b1872	reverseproxy: Only change Content-Length when full request is buffered (#5830) ... fixes: https://github.com/caddyserver/caddy/issues/5829 Signed-off-by: Fred Cox <mcfedr@gmail.com>	2024-01-09 12:59:30 -07:00
Francis Lavoie	3248e4c89f	logging: Add zap.Option support (#5944)	2023-12-18 20:48:34 +00:00
Mohammed Al Sahaf	dc12bd9743	proxyprotocol: use github.com/pires/go-proxyproto (#5915) ... * proxyprotocol: use github.com/pires/go-proxyproto * Fix typo: r/generelly/generally Co-authored-by: Francis Lavoie <lavofr@gmail.com> * add config options for `Deny` CIDR and fallback policy * use `netip` package & trust unix sockets --------- Co-authored-by: Francis Lavoie <lavofr@gmail.com>	2023-12-13 09:07:43 -07:00
WeidiDeng	4de2c1c65e	panic when reading from backend failed to propagate stream error (#5952)	2023-11-23 03:18:18 -05:00
Matt Holt	3a3182fba3	reverseproxy: Add more debug logs (#5793) ... * reverseproxy: Add more debug logs This makes debug logging very noisy when reverse proxying, but I guess that's the point. This has shown to be useful in troubleshooting infrastructure issues. * Update modules/caddyhttp/reverseproxy/streaming.go Co-authored-by: Francis Lavoie <lavofr@gmail.com> * Update modules/caddyhttp/reverseproxy/streaming.go Co-authored-by: Francis Lavoie <lavofr@gmail.com> * Add opt-in `trace_logs` option * Rename to VerboseLogs --------- Co-authored-by: Francis Lavoie <lavofr@gmail.com>	2023-10-11 13:36:20 -06:00
Francis Lavoie	e8b8d4a8cd	reverseproxy: Fix least_conn policy regression (#5862)	2023-10-11 16:04:28 +00:00
Francis Lavoie	a8586b05aa	reverseproxy: Add logging for dynamic A upstreams (#5857)	2023-10-11 09:50:44 -06:00