From 868f80b5a1fde01728a9febd16aa2eef9dc0bbb7 Mon Sep 17 00:00:00 2001 From: rnhmjoj Date: Sat, 1 Aug 2015 02:13:16 +0200 Subject: [PATCH] Use TLS --- src/Breve/Settings.hs | 20 ++++++++++++-------- src/Main.hs | 15 +++++++++------ 2 files changed, 21 insertions(+), 14 deletions(-) diff --git a/src/Breve/Settings.hs b/src/Breve/Settings.hs index 1873846..c9fa2cf 100644 --- a/src/Breve/Settings.hs +++ b/src/Breve/Settings.hs @@ -6,12 +6,13 @@ import System.Environment (lookupEnv) import System.Environment.XDG.BaseDir import System.Directory (doesFileExist) import Data.Configurator -import Data.Monoid +import Network.Wai.Handler.WarpTLS (tlsSettings, TLSSettings) data AppSettings = AppSettings { bindPort :: Int , bindUrl :: String , urlTable :: FilePath + , tlsSetts :: TLSSettings } @@ -27,19 +28,22 @@ settings = do configPath <- getUserConfigFile "breve" "" config <- load [Required configPath] - host <- lookupDefault "localhost" config "hostname" - port <- lookupDefault 3000 config "port" - urls <- lookupDefault urlsPath config "urltable" + host <- lookupDefault "localhost" config "hostname" + port <- lookupDefault 3000 config "port" + cert <- lookupDefault "/usr/share/tls/breve.crt" config "cert" + key <- lookupDefault "/usr/share/tls/breve.key" config "key" + urls <- lookupDefault urlsPath config "urltable" createEmptyIfMissing urls - let base = "http://" <> host - url = if port == 80 + let base = "https://" ++ host + url = if port == 443 then base - else base <> ":" <> show port + else base ++ ":" ++ show port return AppSettings { bindPort = port - , bindUrl = url <> "/" + , bindUrl = url ++ "/" , urlTable = urls + , tlsSetts = tlsSettings cert key } diff --git a/src/Main.hs b/src/Main.hs index a5244a4..eedefa3 100644 --- a/src/Main.hs +++ b/src/Main.hs @@ -5,18 +5,21 @@ import Breve.Settings import Breve.UrlTable import Web.Spock.Safe -import Network.Wai.Handler.Warp (run) - -runBreve :: Int -> SpockT IO () -> IO () -runBreve port app = spockAsApp (spockT id app) >>= run port +import Network.Wai.Handler.WarpTLS (runTLS, TLSSettings) +import Network.Wai.Handler.Warp (defaultSettings, setPort) +runBreve :: TLSSettings -> Int -> SpockT IO () -> IO () +runBreve tls port spock = + spockAsApp (spockT id spock) >>= runTLS tls settings + where settings = setPort port defaultSettings main :: IO () main = do AppSettings { bindUrl , bindPort - , urlTable } <- settings + , urlTable + , tlsSetts } <- settings table <- load urlTable putStrLn ("Serving on " ++ bindUrl) - runBreve bindPort (app bindUrl table) + runBreve tlsSetts bindPort (app bindUrl table) \ No newline at end of file