xbp 0.9.4

XBP is a zero-config build pack that can also interact with proxies, kafka, sockets, synthetic monitors.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184

use anyhow::{Context, Result};
use regex::Regex;
use std::fs;
use std::path::PathBuf;
use tokio::process::Command;
use tracing::{debug, warn, info};
use crate::logging::{log_error, log_info, log_success, get_prefix};

pub async fn setup_nginx(domain: &str, port: u16, debug: bool) -> Result<()> {
    let _ = log_info("nginx", &format!("Setting up Nginx for {} on port {}", domain, port), None).await;

    let config_content = format!(
        "server {{
    server_name {};

    location / {{
        proxy_pass http://127.0.0.1:{};
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }}
}}",
        domain, port
    );

    let available_path = format!("/etc/nginx/sites-available/{}", domain);
    let enabled_path = format!("/etc/nginx/sites-enabled/{}", domain);

    // Write config file (requires sudo, so we write to a temp file and move it)
    let escaped_content = config_content.replace("'", "'\\''");
    
    let write_cmd = format!("echo '{}' | sudo tee {}", escaped_content, available_path);
    
    if debug {
        debug!("Executing: {}", write_cmd);
    }

    let output = Command::new("sh")
        .arg("-c")
        .arg(&write_cmd)
        .output()
        .await
        .context("Failed to write Nginx config")?;

    if !output.status.success() {
        return Err(anyhow::anyhow!("Failed to write config: {}", String::from_utf8_lossy(&output.stderr)));
    }

    // Link to sites-enabled
    let link_cmd = format!("sudo ln -sf {} {}", available_path, enabled_path);
    if debug { debug!("Executing: {}", link_cmd); }
    let output = Command::new("sh").arg("-c").arg(&link_cmd).output().await?;
    if !output.status.success() {
        return Err(anyhow::anyhow!("Failed to link config: {}", String::from_utf8_lossy(&output.stderr)));
    }

    // Test configuration
    let test_cmd = "sudo nginx -t";
    if debug { debug!("Executing: {}", test_cmd); }
    let output = Command::new("sh").arg("-c").arg(test_cmd).output().await?;
    if !output.status.success() {
        let _ = log_error("nginx", "Nginx configuration test failed", Some(&String::from_utf8_lossy(&output.stderr))).await;
        return Err(anyhow::anyhow!("Nginx config test failed"));
    }

    // Run certbot
    let _ = log_info("nginx", "Running certbot...", None).await;
    // Reload Nginx
    let reload_cmd = "sudo systemctl reload nginx";
    if debug { debug!("Executing: {}", reload_cmd); }
    let output = Command::new("sh").arg("-c").arg(reload_cmd).output().await?;
    if !output.status.success() {
        return Err(anyhow::anyhow!("Failed to reload Nginx: {}", String::from_utf8_lossy(&output.stderr)));
    }

    let _ = log_success("nginx", &format!("Successfully setup {}", domain), None).await;
    Ok(())
}

pub async fn list_nginx(debug: bool) -> Result<()> {
    let sites_enabled = PathBuf::from("/etc/nginx/sites-enabled");
    if !sites_enabled.exists() {
        warn!("/etc/nginx/sites-enabled does not exist");
        return Ok(());
    }

    let mut entries = fs::read_dir(sites_enabled)?;
    // Relaxed regex to handle whitespace and potential variations
    let server_name_regex = Regex::new(r"server_name\s+([^;]+);").unwrap();
    // Relaxed regex for proxy_pass to handle different localhost representations and spacing
    let proxy_pass_regex = Regex::new(r"proxy_pass\s+http://(?:127\.0\.0\.1|localhost):(\d+)(?:;|/)").unwrap();

    let prefix = get_prefix();
    info!("{}{:<30} {:<10}", prefix, "DOMAIN", "PORT");
    info!("{}{:-<40}", prefix, "");

    while let Some(entry) = entries.next() {
        let entry = entry?;
        let path = entry.path();
        if path.is_file() || path.is_symlink() {
            let content = fs::read_to_string(&path).unwrap_or_default();
            
            if debug {
                debug!("Analyzing config file: {}", path.display());
                debug!("Content preview: {:.100}...", content);
            }

            let domain = server_name_regex.captures(&content)
                .map(|c| c.get(1).map_or("", |m| m.as_str().trim()))
                .unwrap_or("unknown");
            
            let port = proxy_pass_regex.captures(&content)
                .map(|c| c.get(1).map_or("", |m| m.as_str()))
                .unwrap_or("-");

            if debug && (domain == "unknown" || port == "-") {
                 debug!("Failed to detect domain or port in {}. Domain: {}, Port: {}", path.display(), domain, port);
                 debug!("Full content:\n{}", content);
            }

            if !domain.is_empty() && domain != "_" {
                 info!("{}{:<30} {:<10}", prefix, domain, port);
            }
        }
    }
    Ok(())
}

pub async fn update_nginx(domain: &str, port: u16, debug: bool) -> Result<()> {
    let available_path = format!("/etc/nginx/sites-available/{}", domain);
    
    let content = match fs::read_to_string(&available_path) {
        Ok(c) => c,
        Err(_) => {
            let output = Command::new("sudo").arg("cat").arg(&available_path).output().await?;
            if !output.status.success() {
                return Err(anyhow::anyhow!("Config for {} not found", domain));
            }
            String::from_utf8_lossy(&output.stdout).to_string()
        }
    };

    if debug {
        debug!("Original Nginx Config for {}:\n{}", domain, content);
    }

    let proxy_pass_regex = Regex::new(r"(proxy_pass\s+http://(?:127\.0\.0\.1|localhost):)(\d+)(.*)").unwrap();
    
    if !proxy_pass_regex.is_match(&content) {
         if debug {
             debug!("Regex failed to match proxy_pass in content.");
         }
         return Err(anyhow::anyhow!("Could not find proxy_pass directive in config"));
    }

    let new_content = proxy_pass_regex.replace_all(&content, |caps: &regex::Captures| {
        format!("{}{}{}", &caps[1], port, &caps[3])
    });

    if debug {
        debug!("New Nginx Config Preview for {}:\n{}", domain, new_content);
    }

    let escaped_content = new_content.replace("'", "'\\''");
    let write_cmd = format!("echo '{}' | sudo tee {}", escaped_content, available_path);
    
    let output = Command::new("sh").arg("-c").arg(&write_cmd).output().await?;
    if !output.status.success() {
        return Err(anyhow::anyhow!("Failed to update config: {}", String::from_utf8_lossy(&output.stderr)));
    }

    let _ = log_success("nginx", &format!("Updated {} to port {}", domain, port), None).await;
    
    let output = Command::new("sudo").arg("systemctl").arg("reload").arg("nginx").output().await?;
    if !output.status.success() {
        warn!("Failed to reload nginx: {}", String::from_utf8_lossy(&output.stderr));
    } else {
        let _ = log_info("nginx", "Nginx reloaded", None).await;
    }

    Ok(())
}