tork-core 0.1.0

Core runtime for the Tork web framework: HTTP server, routing, dependency injection, responses, and errors, built on Hyper and Tokio.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163

//! Proxy-header normalization middleware.

use std::net::IpAddr;

use http::header::HOST;
use ipnet::IpNet;
use tracing::warn;

use crate::error::Result;
use crate::extract::{peer_addr_from_extensions, RequestScheme};
use crate::middleware::{DuplicatePolicy, Middleware, Next, Request};
use crate::response::Response;
use crate::router::BoxFuture;

/// Header conveying the original host through a terminating proxy.
const FORWARDED_HOST: &str = "x-forwarded-host";
/// Header conveying the original scheme through a terminating proxy.
const FORWARDED_PROTO: &str = "x-forwarded-proto";

/// Normalizes proxy-forwarded headers onto the request.
///
/// When the request comes through a terminating proxy, the original host arrives
/// in `X-Forwarded-Host`; this middleware rewrites the `Host` header from it so
/// downstream host-based middleware (such as [`TrustedHost`](super::TrustedHost))
/// sees the client-facing host. Register it before those middlewares. The
/// forwarded scheme is honored directly by
/// [`HttpsRedirect`](super::HttpsRedirect).
pub struct ProxyHeaders {
    trusted_ips: Vec<IpAddr>,
    trusted_cidrs: Vec<IpNet>,
}

impl ProxyHeaders {
    /// Creates the middleware.
    pub fn new() -> Self {
        Self {
            trusted_ips: Vec::new(),
            trusted_cidrs: Vec::new(),
        }
    }

    /// Trusts a single reverse proxy address.
    pub fn trust_proxy(mut self, addr: IpAddr) -> Self {
        self.trusted_ips.push(addr);
        self
    }

    /// Trusts a reverse-proxy network.
    pub fn trust_cidr(mut self, network: IpNet) -> Self {
        self.trusted_cidrs.push(network);
        self
    }

    /// Trusts loopback reverse proxies (`127.0.0.1` and `::1`).
    pub fn trust_loopback(self) -> Self {
        self.trust_proxy(IpAddr::from([127, 0, 0, 1]))
            .trust_proxy(IpAddr::from(std::net::Ipv6Addr::LOCALHOST))
    }

    fn is_trusted(&self, request: &Request) -> bool {
        let Some(peer) = peer_addr_from_extensions(request.extensions()) else {
            return false;
        };
        self.trusted_ips.iter().any(|addr| *addr == peer.ip())
            || self
                .trusted_cidrs
                .iter()
                .any(|network| network.contains(&peer.ip()))
    }

    fn forwarded_value<'a>(request: &'a Request, name: &'static str) -> Option<&'a str> {
        request
            .headers()
            .get(name)
            .and_then(|value| value.to_str().ok())
            .and_then(|value| value.split(',').next())
            .map(str::trim)
            .filter(|value| !value.is_empty())
    }
}

impl Default for ProxyHeaders {
    fn default() -> Self {
        Self::new()
    }
}

impl Middleware for ProxyHeaders {
    fn handle(&self, mut request: Request, next: Next) -> BoxFuture<'static, Result<Response>> {
        if !self.is_trusted(&request) {
            return next.run(request);
        }

        if let Some(forwarded_host) = Self::forwarded_value(&request, FORWARDED_HOST) {
            if let Ok(value) = http::HeaderValue::from_str(forwarded_host) {
                request.headers_mut().insert(HOST, value);
            }
        }

        if let Some(forwarded_proto) = Self::forwarded_value(&request, FORWARDED_PROTO) {
            let scheme = if forwarded_proto.eq_ignore_ascii_case("https") {
                Some(RequestScheme::Https)
            } else if forwarded_proto.eq_ignore_ascii_case("http") {
                Some(RequestScheme::Http)
            } else {
                None
            };

            if let Some(scheme) = scheme {
                request.extensions_mut().insert(scheme);
            } else {
                warn!("tork: ignoring unsupported X-Forwarded-Proto value");
            }
        }
        next.run(request)
    }

    fn name(&self) -> &'static str {
        "ProxyHeaders"
    }

    fn duplicate_policy(&self) -> DuplicatePolicy {
        DuplicatePolicy::Reject
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn builtin_metadata_is_stable() {
        let middleware = ProxyHeaders::new();
        assert_eq!(middleware.name(), "ProxyHeaders");
        assert_eq!(middleware.duplicate_policy(), DuplicatePolicy::Reject);
    }

    #[test]
    fn default_impl_uses_new() {
        // Default must produce the same value as new().
        let middleware: ProxyHeaders = Default::default();
        assert!(middleware.trusted_ips.is_empty());
        assert!(middleware.trusted_cidrs.is_empty());
    }

    #[test]
    fn trust_builders_register_expected_networks() {
        let middleware = ProxyHeaders::new()
            .trust_proxy(IpAddr::from([10, 0, 0, 1]))
            .trust_cidr("10.0.0.0/24".parse().unwrap())
            .trust_loopback();

        assert!(middleware
            .trusted_ips
            .contains(&IpAddr::from([10, 0, 0, 1])));
        assert!(middleware
            .trusted_cidrs
            .contains(&"10.0.0.0/24".parse().unwrap()));
        assert!(middleware
            .trusted_ips
            .contains(&IpAddr::from([127, 0, 0, 1])));
    }
}