closed-social
/
gitea
3
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6968 Commits
2 Branches
178 MiB
Tree: 6630a33ec1
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '6630a33ec1'
${ noResults }
gitea/cmd/web.go

224 lines
6.5 KiB
Raw Normal View History

add ssh supports(unfinished)
10 years ago
Add command dump and move to cmd did
10 years ago
add ssh supports(unfinished)
10 years ago
add letsencrypt to Gitea (#4189)
6 years ago
add ssh supports(unfinished)
10 years ago
Add initial support for unix sockets (#2852)
8 years ago
add ssh supports(unfinished)
10 years ago
Add basic FCGI support
10 years ago
Add ENABLE_PPROF to app.ini and start pprof if true on localhost:6060 (#801) * Add ENABLE_PPROF to app.ini and start pprof if true on localhost:6060 * Add comment for golint to blank pprof import
7 years ago
Mirror bug fix on downloading zip
10 years ago
Fix #514
10 years ago
add ssh supports(unfinished)
10 years ago
Update import paths from github.com/go-gitea to code.gitea.io (#135) - Update import paths from github.com/go-gitea to code.gitea.io - Fix import path for travis See https://docs.travis-ci.com/user/languages/go#Go-Import-Path
8 years ago
Add external markup render support (#2570) * add external markup render support * bug fixed * refacotr codes and fix wrong error log * fix comments and add check to prevent leaks * add check for config file and improve the example * check file close error * use ioutil.TempFile instead uuid * correct Render -> Parser * improve warning when incorrect markup setting * fix typos
7 years ago
Update import paths from github.com/go-gitea to code.gitea.io (#135) - Update import paths from github.com/go-gitea to code.gitea.io - Fix import path for travis See https://docs.travis-ci.com/user/languages/go#Go-Import-Path
8 years ago
Integration test framework (#1290) * Integration test framework * udpate drone sign * Formatting fixes and move router.go to routers/ * update sign for drone
7 years ago
Git LFS support v2 (#122) * Import github.com/git-lfs/lfs-test-server as lfs module base Imported commit is 3968aac269a77b73924649b9412ae03f7ccd3198 Removed: Dockerfile CONTRIBUTING.md mgmt* script/ vendor/ kvlogger.go .dockerignore .gitignore README.md * Remove config, add JWT support from github.com/mgit-at/lfs-test-server Imported commit f0cdcc5a01599c5a955dc1bbf683bb4acecdba83 * Add LFS settings * Add LFS meta object model * Add LFS routes and initialization * Import github.com/dgrijalva/jwt-go into vendor/ * Adapt LFS module: handlers, routing, meta store * Move LFS routes to /user/repo/info/lfs/* * Add request header checks to LFS BatchHandler / PostHandler * Implement LFS basic authentication * Rework JWT secret generation / load * Implement LFS SSH token authentication with JWT Specification: https://github.com/github/git-lfs/tree/master/docs/api * Integrate LFS settings into install process * Remove LFS objects when repository is deleted Only removes objects from content store when deleted repo is the only referencing repository * Make LFS module stateless Fixes bug where LFS would not work after installation without restarting Gitea * Change 500 'Internal Server Error' to 400 'Bad Request' * Change sql query to xorm call * Remove unneeded type from LFS module * Change internal imports to code.gitea.io/gitea/ * Add Gitea authors copyright * Change basic auth realm to "gitea-lfs" * Add unique indexes to LFS model * Use xorm count function in LFS check on repository delete * Return io.ReadCloser from content store and close after usage * Add LFS info to runWeb() * Export LFS content store base path * LFS file download from UI * Work around git-lfs client issue with unauthenticated requests Returning a dummy Authorization header for unauthenticated requests lets git-lfs client skip asking for auth credentials See: https://github.com/github/git-lfs/issues/1088 * Fix unauthenticated UI downloads from public repositories * Authentication check order, Finish LFS file view logic * Ignore LFS hooks if installed for current OS user Fixes Gitea UI actions for repositories tracking LFS files. Checks for minimum needed git version by parsing the semantic version string. * Hide LFS metafile diff from commit view, marking as binary * Show LFS notice if file in commit view is tracked * Add notbefore/nbf JWT claim * Correct lint suggestions - comments for structs and functions - Add comments to LFS model - Function comment for GetRandomBytesAsBase64 - LFS server function comments and lint variable suggestion * Move secret generation code out of conditional Ensures no LFS code may run with an empty secret * Do not hand out JWT tokens if LFS server support is disabled
8 years ago
fix run web with -p push failed (#3154)
7 years ago
remove unused struct (#1062)
7 years ago
Fix imports found by goimports.
8 years ago
add letsencrypt to Gitea (#4189)
6 years ago
fix run web with -p push failed (#3154)
7 years ago
add ssh supports(unfinished)
10 years ago
Made linter happy in cmd folder
8 years ago
add ssh supports(unfinished)
10 years ago
Remove remaining Gogs reference on locales and cmd (#430)
8 years ago
Mirror fix
10 years ago
add ssh supports(unfinished)
10 years ago
cmd: CMD option for port number of `gogs web` to prevent first time run conflict - routers: use new binding convention to simplify code - templates: able to set HTTP port number in install page
9 years ago
Use cli Flags directly and not some helper funcs Signed-off-by: Matthias Loibl <mail@matthiasloibl.com>
8 years ago
feat: support pid file.
7 years ago
Don't create a default pid file (#637)
7 years ago
feat: support pid file.
7 years ago
cmd: CMD option for port number of `gogs web` to prevent first time run conflict - routers: use new binding convention to simplify code - templates: able to set HTTP port number in install page
9 years ago
add ssh supports(unfinished)
10 years ago
Add an option to allow redirect of http port 80 to https. (#1928) * Add an option to allow redirect of http port 80 to https. This is an "opt in" option (default is to not redirect). It will only redirect if protocol is https and the new REDIRECT_PORT_80 option is set to true. The Port to redirect in previous commit was hardcoded to 80, now it can be specified in the app.ini, defaulting to 80. The boolean option to turn redirection on has been changed to REDIRECT_OTHER_PORT to be logically consistent with the new port option. Signed-off-by: Mike Fellows <mike.fellows@shaw.ca>
6 years ago
add letsencrypt to Gitea (#4189)
6 years ago
Fix the Let's Encrypt handler by listening on a valid address (#5525) * Fix the Let's Encrypt handler by listening on a valid address Also handle errors in the HTTP server go routine, return a fatal error when something goes wrong. Thanks to @gbl08ma for finding the actual bug Here is an example of the error handling: 2018/12/11 14:23:07 [....io/gitea/cmd/web.go:87 func1()] [E] Failed to start the Let's Encrypt handler on port 30: listen tcp 0.0.0.0:30: bind: permission denied Closes #5280 * Fix a typo
6 years ago
add letsencrypt to Gitea (#4189)
6 years ago
Remove a double slash in the HTTPS redirection when Let's Encrypt is enabled (#5537) Before: $ curl 0.0.0.0:3001 <a href="https://gitea.example.com:3000//">Found</a>. After: $ curl 0.0.0.0:3001 <a href="https://gitea.example.com:3000/">Found</a>. Fixes #5536
6 years ago
add letsencrypt to Gitea (#4189)
6 years ago
#3045 fix DEPRECATED Action signature erorr
8 years ago
Add option to provide configuration file on command line
9 years ago
feat: support pid file.
7 years ago
Finish close and reopen issue, install page, ready going to test stage of v0.2.0
10 years ago
add ssh supports(unfinished)
10 years ago
Add external markup render support (#2570) * add external markup render support * bug fixed * refacotr codes and fix wrong error log * fix comments and add check to prevent leaks * add check for config file and improve the example * check file close error * use ioutil.TempFile instead uuid * correct Render -> Parser * improve warning when incorrect markup setting * fix typos
7 years ago
Integration test framework (#1290) * Integration test framework * udpate drone sign * Formatting fixes and move router.go to routers/ * update sign for drone
7 years ago
add m.NotFound handler
10 years ago
cmd: CMD option for port number of `gogs web` to prevent first time run conflict - routers: use new binding convention to simplify code - templates: able to set HTTP port number in install page
9 years ago
Golint fixed for modules/setting (#262) * golint fixed for modules/setting * typo fixed and renamed UNIXSOCKET to UnixSocket
8 years ago
#2852 code cleanup
8 years ago
fix run web with -p push failed (#3154)
7 years ago
cmd: CMD option for port number of `gogs web` to prevent first time run conflict - routers: use new binding convention to simplify code - templates: able to set HTTP port number in install page
9 years ago
General refactor of the cmd package (#3328) * General refactor of the cmd package * Address breakage in runCreateUser * Place "common" functions into cmd.go
6 years ago
Add initial support for unix sockets (#2852)
8 years ago
Golint fixed for modules/setting (#262) * golint fixed for modules/setting * typo fixed and renamed UNIXSOCKET to UnixSocket
8 years ago
#2852 code cleanup
8 years ago
Git LFS support v2 (#122) * Import github.com/git-lfs/lfs-test-server as lfs module base Imported commit is 3968aac269a77b73924649b9412ae03f7ccd3198 Removed: Dockerfile CONTRIBUTING.md mgmt* script/ vendor/ kvlogger.go .dockerignore .gitignore README.md * Remove config, add JWT support from github.com/mgit-at/lfs-test-server Imported commit f0cdcc5a01599c5a955dc1bbf683bb4acecdba83 * Add LFS settings * Add LFS meta object model * Add LFS routes and initialization * Import github.com/dgrijalva/jwt-go into vendor/ * Adapt LFS module: handlers, routing, meta store * Move LFS routes to /user/repo/info/lfs/* * Add request header checks to LFS BatchHandler / PostHandler * Implement LFS basic authentication * Rework JWT secret generation / load * Implement LFS SSH token authentication with JWT Specification: https://github.com/github/git-lfs/tree/master/docs/api * Integrate LFS settings into install process * Remove LFS objects when repository is deleted Only removes objects from content store when deleted repo is the only referencing repository * Make LFS module stateless Fixes bug where LFS would not work after installation without restarting Gitea * Change 500 'Internal Server Error' to 400 'Bad Request' * Change sql query to xorm call * Remove unneeded type from LFS module * Change internal imports to code.gitea.io/gitea/ * Add Gitea authors copyright * Change basic auth realm to "gitea-lfs" * Add unique indexes to LFS model * Use xorm count function in LFS check on repository delete * Return io.ReadCloser from content store and close after usage * Add LFS info to runWeb() * Export LFS content store base path * LFS file download from UI * Work around git-lfs client issue with unauthenticated requests Returning a dummy Authorization header for unauthenticated requests lets git-lfs client skip asking for auth credentials See: https://github.com/github/git-lfs/issues/1088 * Fix unauthenticated UI downloads from public repositories * Authentication check order, Finish LFS file view logic * Ignore LFS hooks if installed for current OS user Fixes Gitea UI actions for repositories tracking LFS files. Checks for minimum needed git version by parsing the semantic version string. * Hide LFS metafile diff from commit view, marking as binary * Show LFS notice if file in commit view is tracked * Add notbefore/nbf JWT claim * Correct lint suggestions - comments for structs and functions - Add comments to LFS model - Function comment for GetRandomBytesAsBase64 - LFS server function comments and lint variable suggestion * Move secret generation code out of conditional Ensures no LFS code may run with an empty secret * Do not hand out JWT tokens if LFS server support is disabled
8 years ago
Add ENABLE_PPROF to app.ini and start pprof if true on localhost:6060 (#801) * Add ENABLE_PPROF to app.ini and start pprof if true on localhost:6060 * Add comment for golint to blank pprof import
7 years ago
General refactor of the cmd package (#3328) * General refactor of the cmd package * Address breakage in runCreateUser * Place "common" functions into cmd.go
6 years ago
Add ENABLE_PPROF to app.ini and start pprof if true on localhost:6060 (#801) * Add ENABLE_PPROF to app.ini and start pprof if true on localhost:6060 * Add comment for golint to blank pprof import
7 years ago
#2852 code cleanup
8 years ago
Fixed #209
10 years ago
Oauth2 consumer (#679) * initial stuff for oauth2 login, fails on: * login button on the signIn page to start the OAuth2 flow and a callback for each provider Only GitHub is implemented for now * show login button only when the OAuth2 consumer is configured (and activated) * create macaron group for oauth2 urls * prevent net/http in modules (other then oauth2) * use a new data sessions oauth2 folder for storing the oauth2 session data * add missing 2FA when this is enabled on the user * add password option for OAuth2 user , for use with git over http and login to the GUI * add tip for registering a GitHub OAuth application * at startup of Gitea register all configured providers and also on adding/deleting of new providers * custom handling of errors in oauth2 request init + show better tip * add ExternalLoginUser model and migration script to add it to database * link a external account to an existing account (still need to handle wrong login and signup) and remove if user is removed * remove the linked external account from the user his settings * if user is unknown we allow him to register a new account or link it to some existing account * sign up with button on signin page (als change OAuth2Provider structure so we can store basic stuff about providers) * from gorilla/sessions docs: "Important Note: If you aren't using gorilla/mux, you need to wrap your handlers with context.ClearHandler as or else you will leak memory!" (we're using gorilla/sessions for storing oauth2 sessions) * use updated goth lib that now supports getting the OAuth2 user if the AccessToken is still valid instead of re-authenticating (prevent flooding the OAuth2 provider)
7 years ago
Fixed #209
10 years ago
add letsencrypt to Gitea (#4189)
6 years ago
Add an option to allow redirect of http port 80 to https. (#1928) * Add an option to allow redirect of http port 80 to https. This is an "opt in" option (default is to not redirect). It will only redirect if protocol is https and the new REDIRECT_PORT_80 option is set to true. The Port to redirect in previous commit was hardcoded to 80, now it can be specified in the app.ini, defaulting to 80. The boolean option to turn redirection on has been changed to REDIRECT_OTHER_PORT to be logically consistent with the new port option. Signed-off-by: Mike Fellows <mike.fellows@shaw.ca>
6 years ago
Oauth2 consumer (#679) * initial stuff for oauth2 login, fails on: * login button on the signIn page to start the OAuth2 flow and a callback for each provider Only GitHub is implemented for now * show login button only when the OAuth2 consumer is configured (and activated) * create macaron group for oauth2 urls * prevent net/http in modules (other then oauth2) * use a new data sessions oauth2 folder for storing the oauth2 session data * add missing 2FA when this is enabled on the user * add password option for OAuth2 user , for use with git over http and login to the GUI * add tip for registering a GitHub OAuth application * at startup of Gitea register all configured providers and also on adding/deleting of new providers * custom handling of errors in oauth2 request init + show better tip * add ExternalLoginUser model and migration script to add it to database * link a external account to an existing account (still need to handle wrong login and signup) and remove if user is removed * remove the linked external account from the user his settings * if user is unknown we allow him to register a new account or link it to some existing account * sign up with button on signin page (als change OAuth2Provider structure so we can store basic stuff about providers) * from gorilla/sessions docs: "Important Note: If you aren't using gorilla/mux, you need to wrap your handlers with context.ClearHandler as or else you will leak memory!" (we're using gorilla/sessions for storing oauth2 sessions) * use updated goth lib that now supports getting the OAuth2 user if the AccessToken is still valid instead of re-authenticating (prevent flooding the OAuth2 provider)
7 years ago
Add basic FCGI support
10 years ago
Fix FCGI (over TCP) support (#1368)
7 years ago
Golint fixed for modules/setting (#262) * golint fixed for modules/setting * typo fixed and renamed UNIXSOCKET to UnixSocket
8 years ago
Fix remove unix socket listenAddr (#846) Because the absence of the listenAddr is what is expected. The error will only be then when we can't remove.
7 years ago
Cleanup log messaging This change corrects a few logging issues: * Standardized formatting errors with '%v'. * Standardized failure warning word usage. * Corrected an instance of using the standard log library when the gitea log library should be used instead.
7 years ago
Catch os... errors
8 years ago
#2852 code cleanup
8 years ago
Fixed "net.UnixAddr composite literal uses unkeyed fields"
8 years ago
Add initial support for unix sockets (#2852)
8 years ago
#2852 code cleanup
8 years ago
Add initial support for unix sockets (#2852)
8 years ago
#2852 code cleanup
8 years ago
Add initial support for unix sockets (#2852)
8 years ago
#2852 code cleanup
8 years ago
Add initial support for unix sockets (#2852)
8 years ago
Oauth2 consumer (#679) * initial stuff for oauth2 login, fails on: * login button on the signIn page to start the OAuth2 flow and a callback for each provider Only GitHub is implemented for now * show login button only when the OAuth2 consumer is configured (and activated) * create macaron group for oauth2 urls * prevent net/http in modules (other then oauth2) * use a new data sessions oauth2 folder for storing the oauth2 session data * add missing 2FA when this is enabled on the user * add password option for OAuth2 user , for use with git over http and login to the GUI * add tip for registering a GitHub OAuth application * at startup of Gitea register all configured providers and also on adding/deleting of new providers * custom handling of errors in oauth2 request init + show better tip * add ExternalLoginUser model and migration script to add it to database * link a external account to an existing account (still need to handle wrong login and signup) and remove if user is removed * remove the linked external account from the user his settings * if user is unknown we allow him to register a new account or link it to some existing account * sign up with button on signin page (als change OAuth2Provider structure so we can store basic stuff about providers) * from gorilla/sessions docs: "Important Note: If you aren't using gorilla/mux, you need to wrap your handlers with context.ClearHandler as or else you will leak memory!" (we're using gorilla/sessions for storing oauth2 sessions) * use updated goth lib that now supports getting the OAuth2 user if the AccessToken is still valid instead of re-authenticating (prevent flooding the OAuth2 provider)
7 years ago
Fixed #209
10 years ago
New UI merge in progress
10 years ago
Fixed #209
10 years ago
Cleanup log messaging This change corrects a few logging issues: * Standardized formatting errors with '%v'. * Standardized failure warning word usage. * Corrected an instance of using the standard log library when the gitea log library should be used instead.
7 years ago
add some comment
10 years ago
#3045 fix DEPRECATED Action signature erorr
8 years ago
add ssh supports(unfinished)
10 years ago
 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package cmd
  6. 

  7. import (
  8. 	"crypto/tls"
  9. 	"fmt"
  10. 	"net"
  11. 	"net/http"
  12. 	"net/http/fcgi"
  13. 	_ "net/http/pprof" // Used for debugging if enabled and a web server is running

  14. 	"os"
  15. 	"strings"
  16. 

  17. 	"code.gitea.io/gitea/modules/log"
  18. 	"code.gitea.io/gitea/modules/markup/external"
  19. 	"code.gitea.io/gitea/modules/setting"
  20. 	"code.gitea.io/gitea/routers"
  21. 	"code.gitea.io/gitea/routers/routes"
  22. 

  23. 	"github.com/Unknwon/com"
  24. 	context2 "github.com/gorilla/context"
  25. 	"github.com/urfave/cli"
  26. 	"golang.org/x/crypto/acme/autocert"
  27. 	ini "gopkg.in/ini.v1"
  28. )
  29. 

  30. // CmdWeb represents the available web sub-command.

  31. var CmdWeb = cli.Command{
  32. 	Name:  "web",
  33. 	Usage: "Start Gitea web server",
  34. 	Description: `Gitea web server is the only thing you need to run,
  35. and it takes care of all the other things for you`,
  36. 	Action: runWeb,
  37. 	Flags: []cli.Flag{
  38. 		cli.StringFlag{
  39. 			Name:  "port, p",
  40. 			Value: "3000",
  41. 			Usage: "Temporary port number to prevent conflict",
  42. 		},
  43. 		cli.StringFlag{
  44. 			Name:  "config, c",
  45. 			Value: "custom/conf/app.ini",
  46. 			Usage: "Custom configuration file path",
  47. 		},
  48. 		cli.StringFlag{
  49. 			Name:  "pid, P",
  50. 			Value: "/var/run/gitea.pid",
  51. 			Usage: "Custom pid file path",
  52. 		},
  53. 	},
  54. }
  55. 

  56. func runHTTPRedirector() {
  57. 	source := fmt.Sprintf("%s:%s", setting.HTTPAddr, setting.PortToRedirect)
  58. 	dest := strings.TrimSuffix(setting.AppURL, "/")
  59. 	log.Info("Redirecting: %s to %s", source, dest)
  60. 

  61. 	handler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
  62. 		target := dest + r.URL.Path
  63. 		if len(r.URL.RawQuery) > 0 {
  64. 			target += "?" + r.URL.RawQuery
  65. 		}
  66. 		http.Redirect(w, r, target, http.StatusTemporaryRedirect)
  67. 	})
  68. 

  69. 	var err = runHTTP(source, context2.ClearHandler(handler))
  70. 

  71. 	if err != nil {
  72. 		log.Fatal(4, "Failed to start port redirection: %v", err)
  73. 	}
  74. }
  75. 

  76. func runLetsEncrypt(listenAddr, domain, directory, email string, m http.Handler) error {
  77. 	certManager := autocert.Manager{
  78. 		Prompt:     autocert.AcceptTOS,
  79. 		HostPolicy: autocert.HostWhitelist(domain),
  80. 		Cache:      autocert.DirCache(directory),
  81. 		Email:      email,
  82. 	}
  83. 	go func() {
  84. 		log.Info("Running Let's Encrypt handler on %s", setting.HTTPAddr+":"+setting.PortToRedirect)
  85. 		var err = http.ListenAndServe(setting.HTTPAddr+":"+setting.PortToRedirect, certManager.HTTPHandler(http.HandlerFunc(runLetsEncryptFallbackHandler))) // all traffic coming into HTTP will be redirect to HTTPS automatically (LE HTTP-01 validation happens here)

  86. 		if err != nil {
  87. 			log.Fatal(4, "Failed to start the Let's Encrypt handler on port %s: %v", setting.PortToRedirect, err)
  88. 		}
  89. 	}()
  90. 	server := &http.Server{
  91. 		Addr:    listenAddr,
  92. 		Handler: m,
  93. 		TLSConfig: &tls.Config{
  94. 			GetCertificate: certManager.GetCertificate,
  95. 		},
  96. 	}
  97. 	return server.ListenAndServeTLS("", "")
  98. }
  99. 

  100. func runLetsEncryptFallbackHandler(w http.ResponseWriter, r *http.Request) {
  101. 	if r.Method != "GET" && r.Method != "HEAD" {
  102. 		http.Error(w, "Use HTTPS", http.StatusBadRequest)
  103. 		return
  104. 	}
  105. 	// Remove the trailing slash at the end of setting.AppURL, the request

  106. 	// URI always contains a leading slash, which would result in a double

  107. 	// slash

  108. 	target := strings.TrimRight(setting.AppURL, "/") + r.URL.RequestURI()
  109. 	http.Redirect(w, r, target, http.StatusFound)
  110. }
  111. 

  112. func runWeb(ctx *cli.Context) error {
  113. 	if ctx.IsSet("config") {
  114. 		setting.CustomConf = ctx.String("config")
  115. 	}
  116. 

  117. 	if ctx.IsSet("pid") {
  118. 		setting.CustomPID = ctx.String("pid")
  119. 	}
  120. 

  121. 	routers.GlobalInit()
  122. 

  123. 	external.RegisterParsers()
  124. 

  125. 	m := routes.NewMacaron()
  126. 	routes.RegisterRoutes(m)
  127. 

  128. 	// Flag for port number in case first time run conflict.

  129. 	if ctx.IsSet("port") {
  130. 		setting.AppURL = strings.Replace(setting.AppURL, setting.HTTPPort, ctx.String("port"), 1)
  131. 		setting.HTTPPort = ctx.String("port")
  132. 

  133. 		switch setting.Protocol {
  134. 		case setting.UnixSocket:
  135. 		case setting.FCGI:
  136. 		default:
  137. 			// Save LOCAL_ROOT_URL if port changed

  138. 			cfg := ini.Empty()
  139. 			if com.IsFile(setting.CustomConf) {
  140. 				// Keeps custom settings if there is already something.

  141. 				if err := cfg.Append(setting.CustomConf); err != nil {
  142. 					return fmt.Errorf("Failed to load custom conf '%s': %v", setting.CustomConf, err)
  143. 				}
  144. 			}
  145. 

  146. 			defaultLocalURL := string(setting.Protocol) + "://"
  147. 			if setting.HTTPAddr == "0.0.0.0" {
  148. 				defaultLocalURL += "localhost"
  149. 			} else {
  150. 				defaultLocalURL += setting.HTTPAddr
  151. 			}
  152. 			defaultLocalURL += ":" + setting.HTTPPort + "/"
  153. 

  154. 			cfg.Section("server").Key("LOCAL_ROOT_URL").SetValue(defaultLocalURL)
  155. 

  156. 			if err := cfg.SaveTo(setting.CustomConf); err != nil {
  157. 				return fmt.Errorf("Error saving generated JWT Secret to custom config: %v", err)
  158. 			}
  159. 		}
  160. 	}
  161. 

  162. 	listenAddr := setting.HTTPAddr
  163. 	if setting.Protocol != setting.UnixSocket {
  164. 		listenAddr += ":" + setting.HTTPPort
  165. 	}
  166. 	log.Info("Listen: %v://%s%s", setting.Protocol, listenAddr, setting.AppSubURL)
  167. 

  168. 	if setting.LFS.StartServer {
  169. 		log.Info("LFS server enabled")
  170. 	}
  171. 

  172. 	if setting.EnablePprof {
  173. 		go func() {
  174. 			log.Info("Starting pprof server on localhost:6060")
  175. 			log.Info("%v", http.ListenAndServe("localhost:6060", nil))
  176. 		}()
  177. 	}
  178. 

  179. 	var err error
  180. 	switch setting.Protocol {
  181. 	case setting.HTTP:
  182. 		err = runHTTP(listenAddr, context2.ClearHandler(m))
  183. 	case setting.HTTPS:
  184. 		if setting.EnableLetsEncrypt {
  185. 			err = runLetsEncrypt(listenAddr, setting.Domain, setting.LetsEncryptDirectory, setting.LetsEncryptEmail, context2.ClearHandler(m))
  186. 			break
  187. 		}
  188. 		if setting.RedirectOtherPort {
  189. 			go runHTTPRedirector()
  190. 		}
  191. 		err = runHTTPS(listenAddr, setting.CertFile, setting.KeyFile, context2.ClearHandler(m))
  192. 	case setting.FCGI:
  193. 		listener, err := net.Listen("tcp", listenAddr)
  194. 		if err != nil {
  195. 			log.Fatal(4, "Failed to bind %s", listenAddr, err)
  196. 		}
  197. 		defer listener.Close()
  198. 		err = fcgi.Serve(listener, context2.ClearHandler(m))
  199. 	case setting.UnixSocket:
  200. 		if err := os.Remove(listenAddr); err != nil && !os.IsNotExist(err) {
  201. 			log.Fatal(4, "Failed to remove unix socket directory %s: %v", listenAddr, err)
  202. 		}
  203. 		var listener *net.UnixListener
  204. 		listener, err = net.ListenUnix("unix", &net.UnixAddr{Name: listenAddr, Net: "unix"})
  205. 		if err != nil {
  206. 			break // Handle error after switch

  207. 		}
  208. 

  209. 		// FIXME: add proper implementation of signal capture on all protocols

  210. 		// execute this on SIGTERM or SIGINT: listener.Close()

  211. 		if err = os.Chmod(listenAddr, os.FileMode(setting.UnixSocketPermission)); err != nil {
  212. 			log.Fatal(4, "Failed to set permission of unix socket: %v", err)
  213. 		}
  214. 		err = http.Serve(listener, context2.ClearHandler(m))
  215. 	default:
  216. 		log.Fatal(4, "Invalid protocol: %s", setting.Protocol)
  217. 	}
  218. 

  219. 	if err != nil {
  220. 		log.Fatal(4, "Failed to start server: %v", err)
  221. 	}
  222. 

  223. 	return nil
  224. }