http-mtls-proxy 0.1.0

A fast minimalistic mTLS proxy.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48

use std::sync::Arc;

use anyhow::Result;
use rustls::ClientConfig;
use url::Url;

use crate::_util::{ClientAuthenticationMapping, RequestMapping};

pub struct Router {
	client_auth: Vec<ClientAuthenticationMapping>,
	request_mapping: Vec<RequestMapping>,
}

impl Router {
	pub fn new(client_auth: Vec<ClientAuthenticationMapping>, request_mapping: Vec<RequestMapping>) -> Self {
		Self {
			client_auth,
			request_mapping,
		}
	}

	fn destination_for(&self, url: &Url) -> Result<Option<Url>> {
		for mapping in &self.request_mapping {
			if mapping.test(url)? {
				return Ok(Some(mapping.destination(url)?));
			}
		}
		Ok(None)
	}

	fn client_auth_for_destination(&self, url: &Url) -> Result<Option<Arc<ClientConfig>>> {
		for client_auth in &self.client_auth {
			if client_auth.test(url)? {
				return Ok(Some(client_auth.config()));
			}
		}
		Ok(None)
	}

	pub fn get_destination(&self, url: &Url) -> Result<(Option<Arc<ClientConfig>>, Option<Url>)> {
		let destination = self.destination_for(url)?;
		if let Some(destination) = destination {
			Ok((self.client_auth_for_destination(&destination)?, Some(destination)))
		} else {
			Ok((None, None))
		}
	}
}