rename ngin to rest

2020-07-31 11:14:48 +08:00
parent e133ffd820
commit 0897f60c5d
78 changed files with 118 additions and 111 deletions
--- a/rest/handler/cryptionhandler.go
+++ b/rest/handler/cryptionhandler.go
@@ -0,0 +1,101 @@
+package handler
+
+import (
+	"bytes"
+	"encoding/base64"
+	"io"
+	"io/ioutil"
+	"net/http"
+
+	"zero/core/codec"
+	"zero/core/logx"
+)
+
+const maxBytes = 1 << 20 // 1 MiB
+
+func CryptionHandler(key []byte) func(http.Handler) http.Handler {
+	return func(next http.Handler) http.Handler {
+		return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+			cw := newCryptionResponseWriter(w)
+			defer cw.flush(key)
+
+			if r.ContentLength <= 0 {
+				next.ServeHTTP(cw, r)
+				return
+			}
+
+			if err := decryptBody(key, r); err != nil {
+				w.WriteHeader(http.StatusBadRequest)
+				return
+			}
+
+			next.ServeHTTP(cw, r)
+		})
+	}
+}
+
+func decryptBody(key []byte, r *http.Request) error {
+	content, err := ioutil.ReadAll(io.LimitReader(r.Body, maxBytes))
+	if err != nil {
+		return err
+	}
+
+	content, err = base64.StdEncoding.DecodeString(string(content))
+	if err != nil {
+		return err
+	}
+
+	output, err := codec.EcbDecrypt(key, content)
+	if err != nil {
+		return err
+	}
+
+	var buf bytes.Buffer
+	buf.Write(output)
+	r.Body = ioutil.NopCloser(&buf)
+
+	return nil
+}
+
+type cryptionResponseWriter struct {
+	http.ResponseWriter
+	buf *bytes.Buffer
+}
+
+func newCryptionResponseWriter(w http.ResponseWriter) *cryptionResponseWriter {
+	return &cryptionResponseWriter{
+		ResponseWriter: w,
+		buf:            new(bytes.Buffer),
+	}
+}
+
+func (w *cryptionResponseWriter) Header() http.Header {
+	return w.ResponseWriter.Header()
+}
+
+func (w *cryptionResponseWriter) Write(p []byte) (int, error) {
+	return w.buf.Write(p)
+}
+
+func (w *cryptionResponseWriter) WriteHeader(statusCode int) {
+	w.ResponseWriter.WriteHeader(statusCode)
+}
+
+func (w *cryptionResponseWriter) flush(key []byte) {
+	if w.buf.Len() == 0 {
+		return
+	}
+
+	content, err := codec.EcbEncrypt(key, w.buf.Bytes())
+	if err != nil {
+		w.WriteHeader(http.StatusInternalServerError)
+		return
+	}
+
+	body := base64.StdEncoding.EncodeToString(content)
+	if n, err := io.WriteString(w.ResponseWriter, body); err != nil {
+		logx.Errorf("write response failed, error: %s", err)
+	} else if n < len(content) {
+		logx.Errorf("actual bytes: %d, written bytes: %d", len(content), n)
+	}
+}