Cache configuration (lucasdillmann#61)

Author: lucasdillmann

.golangci.yml

@@ -30,7 +30,7 @@ linters:
       min-len: 3
       min-occurrences: 3
     gocyclo:
-      min-complexity: 15
+      min-complexity: 20
     gosec:
       excludes:
         - G204
@@ -114,15 +114,6 @@ linters:
           - gocyclo
           - gosec
         path: _test\.go
-      - linters:
-          - gosec
-        text: 'G304: Potential file inclusion via variable'
-      - path: (.+)\.go$
-        text: Error return value of `.*` is not checked
-      - path: (.+)\.go$
-        text: func name will be used as test\.Test.* by other packages, and that stutters; consider calling this
-      - path: (.+)\.go$
-        text: (comment on exported (method|function|type|const)|should have( a package)? comment|comment should be of the form)
     paths:
       - vendor
       - testdata

Dockerfile

@@ -24,7 +24,7 @@ ENV NGINX_IGNITION_NGINX_BINARY_PATH="/usr/sbin/nginx" \
     NGINX_IGNITION_DATABASE_DRIVER="sqlite" \
     NGINX_IGNITION_DATABASE_MIGRATIONS_PATH="/opt/nginx-ignition/migrations" \
     NGINX_IGNITION_DATABASE_DATA_PATH="/opt/nginx-ignition/data" \
-    GOMEMLIMIT="96MiB"
+    GOMEMLIMIT="128MiB"
 
 ENTRYPOINT ["/opt/nginx-ignition/nginx-ignition"]
 WORKDIR /opt/nginx-ignition

Makefile

@@ -13,17 +13,17 @@ LDFLAGS := -X 'dillmann.com.br/nginx-ignition/core/common/version.Number=$(VERSI
 
 .backend-check:
 	go tool golangci-lint run \
-    		./api \
-    		./application \
-    		./certificate/commons \
-    		./certificate/custom \
-    		./certificate/letsencrypt \
-    		./certificate/selfsigned \
-    		./core \
-    		./database \
-    		./integration/docker \
-    		./integration/truenas \
-    		./vpn/tailscale
+    		./api/... \
+    		./application/... \
+    		./certificate/commons/... \
+    		./certificate/custom/... \
+    		./certificate/letsencrypt/... \
+    		./certificate/selfsigned/... \
+    		./core/... \
+    		./database/... \
+    		./integration/docker/... \
+    		./integration/truenas/... \
+    		./vpn/tailscale/...
 
 .build-frontend:
 	cd frontend/ && npm run build
@@ -81,8 +81,20 @@ LDFLAGS := -X 'dillmann.com.br/nginx-ignition/core/common/version.Number=$(VERSI
 check: .prerequisites .frontend-check .backend-check
 
 format: .prerequisites
-	go tool gofumpt -w .
 	cd frontend/ && npx prettier --write .
+	go tool gofumpt -w .
+	go tool fieldalignment -fix \
+    		./api/... \
+    		./application/... \
+    		./certificate/commons/... \
+    		./certificate/custom/... \
+    		./certificate/letsencrypt/... \
+    		./certificate/selfsigned/... \
+    		./core/... \
+    		./database/... \
+    		./integration/docker/... \
+    		./integration/truenas/... \
+    		./vpn/tailscale/...
 
 update-dependencies:
 	cd api && go get -u all

README.md

@@ -27,6 +27,7 @@ Some of the available features include:
 - Native integration with Docker and Docker Swarm for easy pick of a container/service as the proxy target
 - Built-in support for Tailscale VPNs, enabling easy exposure of hosts in your Tailnet networks as virtual machines
 - Access lists for easy control of who can access what using basic authentication and/or source IP address checks 
+- Easy nginx content caching configuration
 
 ## Getting started
 

api/accesslist/converter.go

@@ -11,7 +11,7 @@ func toDto(accessList *accesslist.AccessList) *accessListResponseDto {
 		return nil
 	}
 
-	var entries []entrySetDto
+	entries := make([]entrySetDto, 0)
 	for _, entry := range accessList.Entries {
 		entries = append(entries, entrySetDto{
 			Priority:        &entry.Priority,
@@ -20,7 +20,7 @@ func toDto(accessList *accesslist.AccessList) *accessListResponseDto {
 		})
 	}
 
-	var credentials []credentialsDto
+	credentials := make([]credentialsDto, 0)
 	for _, credential := range accessList.Credentials {
 		credentials = append(credentials, credentialsDto{
 			Username: &credential.Username,
@@ -45,25 +45,21 @@ func toDomain(request *accessListRequestDto) *accesslist.AccessList {
 		return nil
 	}
 
-	var entries []accesslist.AccessListEntry
-	if request.Entries != nil {
-		for _, entry := range request.Entries {
-			entries = append(entries, accesslist.AccessListEntry{
-				Priority:      *entry.Priority,
-				Outcome:       *entry.Outcome,
-				SourceAddress: entry.SourceAddresses,
-			})
-		}
+	entries := make([]accesslist.Entry, 0)
+	for _, entry := range request.Entries {
+		entries = append(entries, accesslist.Entry{
+			Priority:      *entry.Priority,
+			Outcome:       *entry.Outcome,
+			SourceAddress: entry.SourceAddresses,
+		})
 	}
 
-	var credentials []accesslist.AccessListCredentials
-	if request.Credentials != nil {
-		for _, credential := range request.Credentials {
-			credentials = append(credentials, accesslist.AccessListCredentials{
-				Username: *credential.Username,
-				Password: *credential.Password,
-			})
-		}
+	credentials := make([]accesslist.Credentials, 0)
+	for _, credential := range request.Credentials {
+		credentials = append(credentials, accesslist.Credentials{
+			Username: *credential.Username,
+			Password: *credential.Password,
+		})
 	}
 
 	return &accesslist.AccessList{

api/accesslist/dto.go

@@ -11,26 +11,26 @@ type accessListRequestDto struct {
 	Realm                       *string             `json:"realm"`
 	SatisfyAll                  *bool               `json:"satisfyAll"`
 	DefaultOutcome              *accesslist.Outcome `json:"defaultOutcome"`
-	Entries                     []*entrySetDto      `json:"entries"`
+	Entries                     []entrySetDto       `json:"entries"`
 	ForwardAuthenticationHeader *bool               `json:"forwardAuthenticationHeader"`
-	Credentials                 []*credentialsDto   `json:"credentials"`
+	Credentials                 []credentialsDto    `json:"credentials"`
 }
 
 type accessListResponseDto struct {
-	ID                          uuid.UUID          `json:"id"`
-	Name                        string             `json:"name"`
 	Realm                       *string            `json:"realm"`
-	SatisfyAll                  bool               `json:"satisfyAll"`
+	Name                        string             `json:"name"`
 	DefaultOutcome              accesslist.Outcome `json:"defaultOutcome"`
 	Entries                     []entrySetDto      `json:"entries"`
-	ForwardAuthenticationHeader bool               `json:"forwardAuthenticationHeader"`
 	Credentials                 []credentialsDto   `json:"credentials"`
+	ID                          uuid.UUID          `json:"id"`
+	SatisfyAll                  bool               `json:"satisfyAll"`
+	ForwardAuthenticationHeader bool               `json:"forwardAuthenticationHeader"`
 }
 
 type entrySetDto struct {
 	Priority        *int                `json:"priority"`
 	Outcome         *accesslist.Outcome `json:"outcome"`
-	SourceAddresses []*string           `json:"sourceAddresses"`
+	SourceAddresses []string            `json:"sourceAddresses"`
 }
 
 type credentialsDto struct {

api/cache/converter.go

@@ -0,0 +1,75 @@
+package cache
+
+import (
+	"github.com/google/uuid"
+
+	"dillmann.com.br/nginx-ignition/core/cache"
+)
+
+func toDomain(id uuid.UUID, dto *cacheRequestDto) *cache.Cache {
+	durations := make([]cache.Duration, len(dto.Durations))
+	for index, duration := range dto.Durations {
+		durations[index] = cache.Duration{
+			StatusCodes:      duration.StatusCodes,
+			ValidTimeSeconds: duration.ValidTimeSeconds,
+		}
+	}
+
+	return &cache.Cache{
+		ID:                               id,
+		Name:                             dto.Name,
+		StoragePath:                      dto.StoragePath,
+		InactiveSeconds:                  dto.InactiveSeconds,
+		MaximumSizeMB:                    dto.MaximumSizeMB,
+		AllowedMethods:                   dto.AllowedMethods,
+		MinimumUsesBeforeCaching:         dto.MinimumUsesBeforeCaching,
+		UseStale:                         dto.UseStale,
+		BackgroundUpdate:                 dto.BackgroundUpdate,
+		Revalidate:                       dto.Revalidate,
+		BypassRules:                      dto.BypassRules,
+		NoCacheRules:                     dto.NoCacheRules,
+		FileExtensions:                   dto.FileExtensions,
+		IgnoreUpstreamCacheHeaders:       dto.IgnoreUpstreamCacheHeaders,
+		CacheStatusResponseHeaderEnabled: dto.CacheStatusResponseHeaderEnabled,
+		Durations:                        durations,
+		ConcurrencyLock: cache.ConcurrencyLock{
+			Enabled:        dto.ConcurrencyLock.Enabled,
+			TimeoutSeconds: dto.ConcurrencyLock.TimeoutSeconds,
+			AgeSeconds:     dto.ConcurrencyLock.AgeSeconds,
+		},
+	}
+}
+
+func toResponseDto(domain *cache.Cache) cacheResponseDto {
+	durations := make([]durationDto, len(domain.Durations))
+	for index, duration := range domain.Durations {
+		durations[index] = durationDto{
+			StatusCodes:      duration.StatusCodes,
+			ValidTimeSeconds: duration.ValidTimeSeconds,
+		}
+	}
+
+	return cacheResponseDto{
+		ID:                               domain.ID,
+		Name:                             domain.Name,
+		StoragePath:                      domain.StoragePath,
+		InactiveSeconds:                  domain.InactiveSeconds,
+		MaximumSizeMB:                    domain.MaximumSizeMB,
+		AllowedMethods:                   domain.AllowedMethods,
+		MinimumUsesBeforeCaching:         domain.MinimumUsesBeforeCaching,
+		UseStale:                         domain.UseStale,
+		BackgroundUpdate:                 domain.BackgroundUpdate,
+		Revalidate:                       domain.Revalidate,
+		BypassRules:                      domain.BypassRules,
+		NoCacheRules:                     domain.NoCacheRules,
+		FileExtensions:                   domain.FileExtensions,
+		IgnoreUpstreamCacheHeaders:       domain.IgnoreUpstreamCacheHeaders,
+		CacheStatusResponseHeaderEnabled: domain.CacheStatusResponseHeaderEnabled,
+		Durations:                        durations,
+		ConcurrencyLock: concurrencyLockDto{
+			Enabled:        domain.ConcurrencyLock.Enabled,
+			TimeoutSeconds: domain.ConcurrencyLock.TimeoutSeconds,
+			AgeSeconds:     domain.ConcurrencyLock.AgeSeconds,
+		},
+	}
+}

api/cache/create_handler.go

@@ -0,0 +1,30 @@
+package cache
+
+import (
+	"net/http"
+
+	"github.com/gin-gonic/gin"
+	"github.com/google/uuid"
+
+	"dillmann.com.br/nginx-ignition/api/common/converter"
+	"dillmann.com.br/nginx-ignition/core/cache"
+)
+
+type createHandler struct {
+	commands *cache.Commands
+}
+
+func (h createHandler) handle(ctx *gin.Context) {
+	var dto cacheRequestDto
+	if err := ctx.BindJSON(&dto); err != nil {
+		panic(err)
+	}
+
+	id := uuid.New()
+	domain := converter.Wrap2(toDomain, id, &dto)
+	if err := h.commands.Save(ctx.Request.Context(), domain); err != nil {
+		panic(err)
+	}
+
+	ctx.JSON(http.StatusCreated, toResponseDto(domain))
+}

api/cache/delete_handler.go

@@ -0,0 +1,28 @@
+package cache
+
+import (
+	"net/http"
+
+	"github.com/gin-gonic/gin"
+	"github.com/google/uuid"
+
+	"dillmann.com.br/nginx-ignition/core/cache"
+)
+
+type deleteHandler struct {
+	commands *cache.Commands
+}
+
+func (h deleteHandler) handle(ctx *gin.Context) {
+	id, err := uuid.Parse(ctx.Param("id"))
+	if err != nil {
+		ctx.Status(http.StatusNotFound)
+		return
+	}
+
+	if err := h.commands.Delete(ctx.Request.Context(), id); err != nil {
+		panic(err)
+	}
+
+	ctx.Status(http.StatusNoContent)
+}

api/cache/dto.go

@@ -0,0 +1,57 @@
+package cache
+
+import (
+	"github.com/google/uuid"
+
+	"dillmann.com.br/nginx-ignition/core/cache"
+)
+
+type cacheRequestDto struct {
+	StoragePath                      *string                `json:"storagePath"`
+	InactiveSeconds                  *int                   `json:"inactiveSeconds"`
+	MaximumSizeMB                    *int                   `json:"maximumSizeMb"`
+	ConcurrencyLock                  concurrencyLockDto     `json:"concurrencyLock"`
+	Name                             string                 `json:"name"`
+	UseStale                         []cache.UseStaleOption `json:"useStale"`
+	AllowedMethods                   []cache.Method         `json:"allowedMethods"`
+	BypassRules                      []string               `json:"bypassRules"`
+	NoCacheRules                     []string               `json:"noCacheRules"`
+	FileExtensions                   []string               `json:"fileExtensions"`
+	Durations                        []durationDto          `json:"durations"`
+	MinimumUsesBeforeCaching         int                    `json:"minimumUsesBeforeCaching"`
+	BackgroundUpdate                 bool                   `json:"backgroundUpdate"`
+	Revalidate                       bool                   `json:"revalidate"`
+	IgnoreUpstreamCacheHeaders       bool                   `json:"ignoreUpstreamCacheHeaders"`
+	CacheStatusResponseHeaderEnabled bool                   `json:"cacheStatusResponseHeaderEnabled"`
+}
+
+type cacheResponseDto struct {
+	InactiveSeconds                  *int                   `json:"inactiveSeconds"`
+	StoragePath                      *string                `json:"storagePath"`
+	MaximumSizeMB                    *int                   `json:"maximumSizeMb"`
+	ConcurrencyLock                  concurrencyLockDto     `json:"concurrencyLock"`
+	Name                             string                 `json:"name"`
+	UseStale                         []cache.UseStaleOption `json:"useStale"`
+	AllowedMethods                   []cache.Method         `json:"allowedMethods"`
+	BypassRules                      []string               `json:"bypassRules"`
+	NoCacheRules                     []string               `json:"noCacheRules"`
+	FileExtensions                   []string               `json:"fileExtensions"`
+	Durations                        []durationDto          `json:"durations"`
+	MinimumUsesBeforeCaching         int                    `json:"minimumUsesBeforeCaching"`
+	ID                               uuid.UUID              `json:"id"`
+	Revalidate                       bool                   `json:"revalidate"`
+	BackgroundUpdate                 bool                   `json:"backgroundUpdate"`
+	IgnoreUpstreamCacheHeaders       bool                   `json:"ignoreUpstreamCacheHeaders"`
+	CacheStatusResponseHeaderEnabled bool                   `json:"cacheStatusResponseHeaderEnabled"`
+}
+
+type concurrencyLockDto struct {
+	TimeoutSeconds *int `json:"timeoutSeconds"`
+	AgeSeconds     *int `json:"ageSeconds"`
+	Enabled        bool `json:"enabled"`
+}
+
+type durationDto struct {
+	StatusCodes      []string `json:"statusCodes"`
+	ValidTimeSeconds int      `json:"validTimeSeconds"`
+}