amfora/client/client.go

// Package client retrieves data over Gemini and implements a TOFU system.
package client

import (
	"io/ioutil"
	"net"
	"net/url"

	"github.com/makeworld-the-better-one/go-gemini"
	"github.com/mitchellh/go-homedir"
	"github.com/spf13/viper"
)

var certCache = make(map[string][][]byte)

func clientCert(host string) ([]byte, []byte) {
	if cert := certCache[host]; cert != nil {
		return cert[0], cert[1]
	}

	// Expand paths starting with ~/
	certPath, err := homedir.Expand(viper.GetString("auth.certs." + host))
	if err != nil {
		certPath = viper.GetString("auth.certs." + host)
	}
	keyPath, err := homedir.Expand(viper.GetString("auth.keys." + host))
	if err != nil {
		keyPath = viper.GetString("auth.keys." + host)
	}
	if certPath == "" && keyPath == "" {
		certCache[host] = [][]byte{nil, nil}
		return nil, nil
	}

	cert, err := ioutil.ReadFile(certPath)
	if err != nil {
		certCache[host] = [][]byte{nil, nil}
		return nil, nil
	}
	key, err := ioutil.ReadFile(keyPath)
	if err != nil {
		certCache[host] = [][]byte{nil, nil}
		return nil, nil
	}

	certCache[host] = [][]byte{cert, key}
	return cert, key
}

// HasClientCert returns whether or not a client certificate exists for a host.
func HasClientCert(host string) bool {
	cert, _ := clientCert(host)
	return cert != nil
}

// Fetch returns response data and an error.
// The error text is human friendly and should be displayed.
func Fetch(u string) (*gemini.Response, error) {
	parsed, _ := url.Parse(u)
	cert, key := clientCert(parsed.Host)

	var res *gemini.Response
	var err error
	if cert != nil {
		res, err = gemini.FetchWithCert(u, cert, key)
	} else {
		res, err = gemini.Fetch(u)
	}
	if err != nil {
		return nil, err
	}

	ok := handleTofu(parsed.Hostname(), parsed.Port(), res.Cert)
	if !ok {
		return res, ErrTofu
	}

	return res, err
}

// FetchWithProxy is the same as Fetch, but uses a proxy.
func FetchWithProxy(proxyHostname, proxyPort, u string) (*gemini.Response, error) {
	parsed, _ := url.Parse(u)
	cert, key := clientCert(parsed.Host)

	var res *gemini.Response
	var err error
	if cert != nil {
		res, err = gemini.FetchWithHostAndCert(net.JoinHostPort(proxyHostname, proxyPort), u, cert, key)
	} else {
		res, err = gemini.FetchWithHost(net.JoinHostPort(proxyHostname, proxyPort), u)
	}
	if err != nil {
		return nil, err
	}

	// Only associate the returned cert with the proxy
	ok := handleTofu(proxyHostname, proxyPort, res.Cert)
	if !ok {
		return res, ErrTofu
	}

	return res, nil
}
🎉 Initial commit, full featured 2020-06-18 16:54:48 -04:00			`// Package client retrieves data over Gemini and implements a TOFU system.`
			`package client`

			`import (`
Allow specifying a client certificate (#112) 2020-11-04 16:37:00 -05:00			`"io/ioutil"`
✨ Support mutiple proxies per-scheme - fixes #80 2020-09-01 16:22:44 -04:00			`"net"`
✨ Add ports to TOFU and change what's hashed, fixes #7 2020-06-19 23:44:04 -04:00			`"net/url"`

🎉 Initial commit, full featured 2020-06-18 16:54:48 -04:00			`"github.com/makeworld-the-better-one/go-gemini"`
Allow specifying a client certificate (#112) 2020-11-04 16:37:00 -05:00			`"github.com/mitchellh/go-homedir"`
			`"github.com/spf13/viper"`
🎉 Initial commit, full featured 2020-06-18 16:54:48 -04:00			`)`

Allow specifying a client certificate (#112) 2020-11-04 16:37:00 -05:00			`var certCache = make(map[string][][]byte)`

			`func clientCert(host string) ([]byte, []byte) {`
			`if cert := certCache[host]; cert != nil {`
			`return cert[0], cert[1]`
			`}`

📝 Update changelog and config for #112 2020-11-04 16:45:34 -05:00			`// Expand paths starting with ~/`
Allow specifying a client certificate (#112) 2020-11-04 16:37:00 -05:00			`certPath, err := homedir.Expand(viper.GetString("auth.certs." + host))`
			`if err != nil {`
			`certPath = viper.GetString("auth.certs." + host)`
			`}`
			`keyPath, err := homedir.Expand(viper.GetString("auth.keys." + host))`
			`if err != nil {`
			`keyPath = viper.GetString("auth.keys." + host)`
			`}`
			`if certPath == "" && keyPath == "" {`
			`certCache[host] = [][]byte{nil, nil}`
			`return nil, nil`
			`}`

			`cert, err := ioutil.ReadFile(certPath)`
			`if err != nil {`
			`certCache[host] = [][]byte{nil, nil}`
			`return nil, nil`
			`}`
			`key, err := ioutil.ReadFile(keyPath)`
			`if err != nil {`
			`certCache[host] = [][]byte{nil, nil}`
			`return nil, nil`
			`}`

			`certCache[host] = [][]byte{cert, key}`
			`return cert, key`
			`}`

			`// HasClientCert returns whether or not a client certificate exists for a host.`
			`func HasClientCert(host string) bool {`
			`cert, _ := clientCert(host)`
			`return cert != nil`
			`}`

🎉 Initial commit, full featured 2020-06-18 16:54:48 -04:00			`// Fetch returns response data and an error.`
			`// The error text is human friendly and should be displayed.`
✨ Add ports to TOFU and change what's hashed, fixes #7 2020-06-19 23:44:04 -04:00			`func Fetch(u string) (*gemini.Response, error) {`
Allow specifying a client certificate (#112) 2020-11-04 16:37:00 -05:00			`parsed, _ := url.Parse(u)`
			`cert, key := clientCert(parsed.Host)`
✨ Proxy support 2020-08-27 22:40:40 -04:00
Allow specifying a client certificate (#112) 2020-11-04 16:37:00 -05:00			`var res *gemini.Response`
			`var err error`
			`if cert != nil {`
			`res, err = gemini.FetchWithCert(u, cert, key)`
			`} else {`
			`res, err = gemini.Fetch(u)`
			`}`
🎉 Initial commit, full featured 2020-06-18 16:54:48 -04:00			`if err != nil {`
✨ Give Error modals titles 2020-06-19 14:05:05 -04:00			`return nil, err`
🎉 Initial commit, full featured 2020-06-18 16:54:48 -04:00			`}`
✨ Add ports to TOFU and change what's hashed, fixes #7 2020-06-19 23:44:04 -04:00
🐛 Use domain from URL for TOFU, not from cert 2020-06-24 13:31:01 -04:00			`ok := handleTofu(parsed.Hostname(), parsed.Port(), res.Cert)`
🎉 Initial commit, full featured 2020-06-18 16:54:48 -04:00			`if !ok {`
🐛 Use domain from URL for TOFU, not from cert 2020-06-24 13:31:01 -04:00			`return res, ErrTofu`
🎉 Initial commit, full featured 2020-06-18 16:54:48 -04:00			`}`
✨ Support mutiple proxies per-scheme - fixes #80 2020-09-01 16:22:44 -04:00
🐛 Use domain from URL for TOFU, not from cert 2020-06-24 13:31:01 -04:00			`return res, err`
🎉 Initial commit, full featured 2020-06-18 16:54:48 -04:00			`}`
✨ Support mutiple proxies per-scheme - fixes #80 2020-09-01 16:22:44 -04:00
			`// FetchWithProxy is the same as Fetch, but uses a proxy.`
			`func FetchWithProxy(proxyHostname, proxyPort, u string) (*gemini.Response, error) {`
Allow specifying a client certificate (#112) 2020-11-04 16:37:00 -05:00			`parsed, _ := url.Parse(u)`
			`cert, key := clientCert(parsed.Host)`

			`var res *gemini.Response`
			`var err error`
			`if cert != nil {`
			`res, err = gemini.FetchWithHostAndCert(net.JoinHostPort(proxyHostname, proxyPort), u, cert, key)`
			`} else {`
			`res, err = gemini.FetchWithHost(net.JoinHostPort(proxyHostname, proxyPort), u)`
			`}`
✨ Support mutiple proxies per-scheme - fixes #80 2020-09-01 16:22:44 -04:00			`if err != nil {`
			`return nil, err`
			`}`

			`// Only associate the returned cert with the proxy`
			`ok := handleTofu(proxyHostname, proxyPort, res.Cert)`
			`if !ok {`
			`return res, ErrTofu`
			`}`

			`return res, nil`
			`}`