7d6461dd3c
* Server key API (works for monolith but not for polylith yet) * Re-enable caching on server key API component * Groundwork for HTTP APIs for server key API * Hopefully implement HTTP for server key API * Simplify public key request marshalling from map keys * Update gomatrixserverlib * go mod tidy * Common -> internal * remove keyring.go * Update Docker Hub for server key API * YAML is funny about indentation * Wire in new server key API into hybrid monolith mode * Create maps * Route server key API endpoints on internal API mux * Fix server key API URLs * Add fetcher behaviour into server key API implementation * Return error if we failed to fetch some keys * Return results anyway * Move things about a bit * Remove unused code * Fix comments, don't use federation sender URL in polylith mode * Add server_key_api to sample config * Review comments * HTTP API to cache keys that have been requested * Overwrite server_key_api listen in monolith hybrid mode
163 lines
5.3 KiB
Go
163 lines
5.3 KiB
Go
// Copyright 2017 Vector Creations Ltd
|
|
//
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
// you may not use this file except in compliance with the License.
|
|
// You may obtain a copy of the License at
|
|
//
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
//
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
// See the License for the specific language governing permissions and
|
|
// limitations under the License.
|
|
|
|
package main
|
|
|
|
import (
|
|
"flag"
|
|
"net/http"
|
|
|
|
"github.com/matrix-org/dendrite/appservice"
|
|
"github.com/matrix-org/dendrite/clientapi"
|
|
"github.com/matrix-org/dendrite/clientapi/producers"
|
|
"github.com/matrix-org/dendrite/eduserver"
|
|
"github.com/matrix-org/dendrite/eduserver/cache"
|
|
"github.com/matrix-org/dendrite/federationapi"
|
|
"github.com/matrix-org/dendrite/federationsender"
|
|
"github.com/matrix-org/dendrite/internal"
|
|
"github.com/matrix-org/dendrite/internal/basecomponent"
|
|
"github.com/matrix-org/dendrite/internal/config"
|
|
"github.com/matrix-org/dendrite/internal/transactions"
|
|
"github.com/matrix-org/dendrite/keyserver"
|
|
"github.com/matrix-org/dendrite/mediaapi"
|
|
"github.com/matrix-org/dendrite/publicroomsapi"
|
|
"github.com/matrix-org/dendrite/publicroomsapi/storage"
|
|
"github.com/matrix-org/dendrite/roomserver"
|
|
"github.com/matrix-org/dendrite/serverkeyapi"
|
|
"github.com/matrix-org/dendrite/syncapi"
|
|
|
|
"github.com/sirupsen/logrus"
|
|
)
|
|
|
|
var (
|
|
httpBindAddr = flag.String("http-bind-address", ":8008", "The HTTP listening port for the server")
|
|
httpsBindAddr = flag.String("https-bind-address", ":8448", "The HTTPS listening port for the server")
|
|
certFile = flag.String("tls-cert", "", "The PEM formatted X509 certificate to use for TLS")
|
|
keyFile = flag.String("tls-key", "", "The PEM private key to use for TLS")
|
|
enableHTTPAPIs = flag.Bool("api", false, "Use HTTP APIs instead of short-circuiting (warning: exposes API endpoints!)")
|
|
)
|
|
|
|
func main() {
|
|
cfg := basecomponent.ParseMonolithFlags()
|
|
if *enableHTTPAPIs {
|
|
// If the HTTP APIs are enabled then we need to update the Listen
|
|
// statements in the configuration so that we know where to find
|
|
// the API endpoints. They'll listen on the same port as the monolith
|
|
// itself.
|
|
addr := config.Address(*httpBindAddr)
|
|
cfg.Listen.RoomServer = addr
|
|
cfg.Listen.EDUServer = addr
|
|
cfg.Listen.AppServiceAPI = addr
|
|
cfg.Listen.FederationSender = addr
|
|
cfg.Listen.ServerKeyAPI = addr
|
|
}
|
|
|
|
base := basecomponent.NewBaseDendrite(cfg, "Monolith", *enableHTTPAPIs)
|
|
defer base.Close() // nolint: errcheck
|
|
|
|
accountDB := base.CreateAccountsDB()
|
|
deviceDB := base.CreateDeviceDB()
|
|
federation := base.CreateFederationClient()
|
|
|
|
serverKeyAPI := serverkeyapi.SetupServerKeyAPIComponent(
|
|
base, federation,
|
|
)
|
|
if base.EnableHTTPAPIs {
|
|
serverKeyAPI = base.CreateHTTPServerKeyAPIs()
|
|
}
|
|
keyRing := serverKeyAPI.KeyRing()
|
|
|
|
rsComponent := roomserver.SetupRoomServerComponent(
|
|
base, keyRing, federation,
|
|
)
|
|
rsAPI := rsComponent
|
|
if base.EnableHTTPAPIs {
|
|
rsAPI = base.CreateHTTPRoomserverAPIs()
|
|
}
|
|
|
|
eduInputAPI := eduserver.SetupEDUServerComponent(
|
|
base, cache.New(),
|
|
)
|
|
if base.EnableHTTPAPIs {
|
|
eduInputAPI = base.CreateHTTPEDUServerAPIs()
|
|
}
|
|
|
|
asAPI := appservice.SetupAppServiceAPIComponent(
|
|
base, accountDB, deviceDB, federation, rsAPI, transactions.New(),
|
|
)
|
|
if base.EnableHTTPAPIs {
|
|
asAPI = base.CreateHTTPAppServiceAPIs()
|
|
}
|
|
|
|
fsAPI := federationsender.SetupFederationSenderComponent(
|
|
base, federation, rsAPI, keyRing,
|
|
)
|
|
if base.EnableHTTPAPIs {
|
|
fsAPI = base.CreateHTTPFederationSenderAPIs()
|
|
}
|
|
rsComponent.SetFederationSenderAPI(fsAPI)
|
|
|
|
clientapi.SetupClientAPIComponent(
|
|
base, deviceDB, accountDB,
|
|
federation, keyRing, rsAPI,
|
|
eduInputAPI, asAPI, transactions.New(), fsAPI,
|
|
)
|
|
|
|
keyserver.SetupKeyServerComponent(
|
|
base, deviceDB, accountDB,
|
|
)
|
|
eduProducer := producers.NewEDUServerProducer(eduInputAPI)
|
|
federationapi.SetupFederationAPIComponent(base, accountDB, deviceDB, federation, keyRing, rsAPI, asAPI, fsAPI, eduProducer)
|
|
mediaapi.SetupMediaAPIComponent(base, deviceDB)
|
|
publicRoomsDB, err := storage.NewPublicRoomsServerDatabase(string(base.Cfg.Database.PublicRoomsAPI), base.Cfg.DbProperties())
|
|
if err != nil {
|
|
logrus.WithError(err).Panicf("failed to connect to public rooms db")
|
|
}
|
|
publicroomsapi.SetupPublicRoomsAPIComponent(base, deviceDB, publicRoomsDB, rsAPI, federation, nil)
|
|
syncapi.SetupSyncAPIComponent(base, deviceDB, accountDB, rsAPI, federation, cfg)
|
|
|
|
internal.SetupHTTPAPI(
|
|
http.DefaultServeMux,
|
|
base.PublicAPIMux,
|
|
base.InternalAPIMux,
|
|
cfg,
|
|
base.EnableHTTPAPIs,
|
|
)
|
|
|
|
// Expose the matrix APIs directly rather than putting them under a /api path.
|
|
go func() {
|
|
serv := http.Server{
|
|
Addr: *httpBindAddr,
|
|
WriteTimeout: basecomponent.HTTPServerTimeout,
|
|
}
|
|
|
|
logrus.Info("Listening on ", serv.Addr)
|
|
logrus.Fatal(serv.ListenAndServe())
|
|
}()
|
|
// Handle HTTPS if certificate and key are provided
|
|
if *certFile != "" && *keyFile != "" {
|
|
go func() {
|
|
serv := http.Server{
|
|
Addr: *httpsBindAddr,
|
|
WriteTimeout: basecomponent.HTTPServerTimeout,
|
|
}
|
|
|
|
logrus.Info("Listening on ", serv.Addr)
|
|
logrus.Fatal(serv.ListenAndServeTLS(*certFile, *keyFile))
|
|
}()
|
|
}
|
|
|
|
// We want to block forever to let the HTTP and HTTPS handler serve the APIs
|
|
select {}
|
|
}
|