App-Phoebe
view release on metacpan or search on metacpan
script/phoebe view on Meta::CPAN
$server->{key_file}->{"localhost:$port"} = $key_file;
}
}
for my $host (@host) {
$server->{host}->{$host} = 1;
push(@{$server->{port}->{$host}}, @port);
for my $port (@port) {
$server->{cert_file}->{"$host:$port"} = $cert_file;
$server->{key_file}->{"$host:$port"} = $key_file;
}
}
$cert_file = $key_file = undef;
@host = @port = ();
}
}
# if, at the end, there is a left-over
if ($cert_file or $key_file) {
die "I must have both --key_file and --cert_file\n";
}
push @port, 1965 unless @port;
# let's see if we need to generate certificates
my $default_certs = 0;
# if, at the end, we have some hosts but no certs and keys
for my $host (@host) {
$default_certs = 1;
$server->{host}->{$host} = 1;
push(@{$server->{port}->{$host}}, @port);
for my $port (@port) {
$server->{cert_file}->{"$host:$port"} = 'cert.pem';
$server->{key_file}->{"$host:$port"} = 'key.pem';
}
}
# if, at the end, we had no hosts at all, the default still needs cert and key
if (not keys %{$server->{host}}) {
$default_certs = 1;
$server->{host}->{localhost} = 1;
push(@{$server->{port}->{localhost}}, @port);
for my $port (@port) {
$server->{cert_file}->{"localhost:$port"} = 'cert.pem';
$server->{key_file}->{"localhost:$port"} = 'key.pem';
}
}
# use Data::Dumper;
# warn Dumper($server);
# if the certs don't exist, generate them
if ($default_certs
and (not -f 'cert.pem'
or not -f 'key.pem')) {
generate_certificates();
}
}
sub generate_certificates {
say "The default certificate (and key) files are missing.";
say "Do you want to create them right now?";
say "The certificate uses eliptic curves and is valid for five years.";
say "If so, please provide your hostname (e.g. localhost).";
say "If not, just press Enter.";
local $SIG{'ALRM'} = sub {
die "Timed out!\n";
};
alarm(30); # timeout for the following prompt
my $hostname = <STDIN>;
alarm(0); # done, no more alarm
chomp $hostname;
die "The hostname may not contain any whitespace\n" if $hostname =~ /\s/;
my $cmd = qq(openssl req -new -x509 -newkey ec -subj "/CN=$hostname" )
. qq(-pkeyopt ec_paramgen_curve:prime256v1 -days 1825 -nodes -out cert.pem -keyout key.pem);
if ($hostname) {
say $cmd;
system($cmd) == 0
or die "openssl failed: $?";
}
}
sub help {
my $parser = Pod::Text->new();
$parser->parse_file($0);
exit;
}
sub verify_fingerprint {
my ($ok, $ctx_store, $certname, $error, $cert, $depth) = @_;
return 1;
}
# defaults
$server->{wiki_token} ||= ['hello'];
$server->{wiki_space} ||= [];
$server->{wiki_mime_type} ||= [];
$server->{wiki_dir} ||= $ENV{PHOEBE_DATA_DIR} || './wiki';
$server->{wiki_page} ||= [];
$server->{wiki_main_page} ||= '';
$server->{wiki_page_size_limit} ||= 100000;
configure();
# Reconfigure if we get SIGHUP (via kill -s SIGHUP $pid, for example)
$SIG{HUP} = sub { Mojo::IOLoop->next_tick(\&configure) };
start_servers();
sub configure {
# config file with extra code; restart server if you change it
my $dir = $server->{wiki_dir};
my @config;
push(@config, map { "$dir/conf.d/$_" } grep(/\.p[lm]$/, read_dir("$dir/conf.d"))) if -d "$dir/conf.d";
# allow override of config files in conf.d
push(@config, "$dir/config") if -f "$dir/config";
for my $config (@config) {
$log->info("Running $config");
$log->error("$config cannot be read") unless -r $config;
$log->warn("$config did not return a true value") unless do $config;
$log->error("$@") if $@;
$log->error("$!") if $!;
}
# summarize config results
$log->info("PID: $$");
$log->info("Space: @{$server->{wiki_space}}");
if (keys %{$server->{host}} > 1) {
my $hosts = host_regex();
for (grep(!/^$hosts\//, @{$server->{wiki_space}})) {
$log->warn("Space $_ is not prefixed with a known host");
}
} else {
for (grep(/\//, @{$server->{wiki_space}})) {
$log->warn("Space $_ is prefixed with a host but we serve just one");
}
}
$log->info("Token: @{$server->{wiki_token}}");
( run in 0.914 second using v1.01-cache-2.11-cpan-d7a12ab2c7f )