traefik/pkg/responsemodifiers/headers.go

package responsemodifiers

import (
	"net/http"

	"github.com/containous/traefik/v2/pkg/config/dynamic"
	"github.com/containous/traefik/v2/pkg/middlewares/headers"
	"github.com/unrolled/secure"
)

func buildHeaders(hdrs *dynamic.Headers) func(*http.Response) error {
	opt := secure.Options{
		BrowserXssFilter:        hdrs.BrowserXSSFilter,
		ContentTypeNosniff:      hdrs.ContentTypeNosniff,
		ForceSTSHeader:          hdrs.ForceSTSHeader,
		FrameDeny:               hdrs.FrameDeny,
		IsDevelopment:           hdrs.IsDevelopment,
		SSLRedirect:             hdrs.SSLRedirect,
		SSLForceHost:            hdrs.SSLForceHost,
		SSLTemporaryRedirect:    hdrs.SSLTemporaryRedirect,
		STSIncludeSubdomains:    hdrs.STSIncludeSubdomains,
		STSPreload:              hdrs.STSPreload,
		ContentSecurityPolicy:   hdrs.ContentSecurityPolicy,
		CustomBrowserXssValue:   hdrs.CustomBrowserXSSValue,
		CustomFrameOptionsValue: hdrs.CustomFrameOptionsValue,
		PublicKey:               hdrs.PublicKey,
		ReferrerPolicy:          hdrs.ReferrerPolicy,
		SSLHost:                 hdrs.SSLHost,
		AllowedHosts:            hdrs.AllowedHosts,
		HostsProxyHeaders:       hdrs.HostsProxyHeaders,
		SSLProxyHeaders:         hdrs.SSLProxyHeaders,
		STSSeconds:              hdrs.STSSeconds,
		FeaturePolicy:           hdrs.FeaturePolicy,
	}

	return func(resp *http.Response) error {
		if hdrs.HasCustomHeadersDefined() || hdrs.HasCorsHeadersDefined() {
			err := headers.NewHeader(nil, *hdrs).PostRequestModifyResponseHeaders(resp)
			if err != nil {
				return err
			}
		}

		if hdrs.HasSecureHeadersDefined() {
			err := secure.New(opt).ModifyResponseHeaders(resp)
			if err != nil {
				return err
			}
		}

		return nil
	}
}
Dynamic Configuration Refactoring 2018-11-14 09:18:03 +00:00			`package responsemodifiers`
Create Header Middleware 2017-06-13 00:48:21 +00:00
			`import (`
Dynamic Configuration Refactoring 2018-11-14 09:18:03 +00:00			`"net/http"`

chore: go module 2019-08-03 01:58:23 +00:00			`"github.com/containous/traefik/v2/pkg/config/dynamic"`
			`"github.com/containous/traefik/v2/pkg/middlewares/headers"`
Create Header Middleware 2017-06-13 00:48:21 +00:00			`"github.com/unrolled/secure"`
			`)`

Move dynamic config into a dedicated package. 2019-07-10 07:26:04 +00:00			`func buildHeaders(hdrs dynamic.Headers) func(http.Response) error {`
Create Header Middleware 2017-06-13 00:48:21 +00:00			`opt := secure.Options{`
Enable CORS configuration 2019-04-02 08:40:04 +00:00			`BrowserXssFilter: hdrs.BrowserXSSFilter,`
			`ContentTypeNosniff: hdrs.ContentTypeNosniff,`
			`ForceSTSHeader: hdrs.ForceSTSHeader,`
			`FrameDeny: hdrs.FrameDeny,`
			`IsDevelopment: hdrs.IsDevelopment,`
			`SSLRedirect: hdrs.SSLRedirect,`
			`SSLForceHost: hdrs.SSLForceHost,`
			`SSLTemporaryRedirect: hdrs.SSLTemporaryRedirect,`
			`STSIncludeSubdomains: hdrs.STSIncludeSubdomains,`
			`STSPreload: hdrs.STSPreload,`
			`ContentSecurityPolicy: hdrs.ContentSecurityPolicy,`
			`CustomBrowserXssValue: hdrs.CustomBrowserXSSValue,`
			`CustomFrameOptionsValue: hdrs.CustomFrameOptionsValue,`
			`PublicKey: hdrs.PublicKey,`
			`ReferrerPolicy: hdrs.ReferrerPolicy,`
			`SSLHost: hdrs.SSLHost,`
			`AllowedHosts: hdrs.AllowedHosts,`
			`HostsProxyHeaders: hdrs.HostsProxyHeaders,`
			`SSLProxyHeaders: hdrs.SSLProxyHeaders,`
			`STSSeconds: hdrs.STSSeconds,`
Add Feature-Policy header support 2019-07-29 14:12:05 +00:00			`FeaturePolicy: hdrs.FeaturePolicy,`
Dynamic Configuration Refactoring 2018-11-14 09:18:03 +00:00			`}`

			`return func(resp *http.Response) error {`
Enable CORS configuration 2019-04-02 08:40:04 +00:00			`if hdrs.HasCustomHeadersDefined() \|\| hdrs.HasCorsHeadersDefined() {`
Properly add response headers for CORS 2019-07-12 09:46:04 +00:00			`err := headers.NewHeader(nil, *hdrs).PostRequestModifyResponseHeaders(resp)`
Enable CORS configuration 2019-04-02 08:40:04 +00:00			`if err != nil {`
			`return err`
Dynamic Configuration Refactoring 2018-11-14 09:18:03 +00:00			`}`
			`}`

Enable CORS configuration 2019-04-02 08:40:04 +00:00			`if hdrs.HasSecureHeadersDefined() {`
Dynamic Configuration Refactoring 2018-11-14 09:18:03 +00:00			`err := secure.New(opt).ModifyResponseHeaders(resp)`
			`if err != nil {`
			`return err`
			`}`
			`}`

			`return nil`
Create Header Middleware 2017-06-13 00:48:21 +00:00			`}`
			`}`