mirror of
https://github.com/Dokploy/dokploy.git
synced 2026-06-15 20:25:23 +02:00
189 lines
5.3 KiB
TypeScript
189 lines
5.3 KiB
TypeScript
import type { Domain } from "@dokploy/server/services/domain";
|
|
import type { ApplicationNested } from "../builders";
|
|
import {
|
|
createServiceConfig,
|
|
loadOrCreateConfig,
|
|
loadOrCreateConfigRemote,
|
|
removeTraefikConfig,
|
|
removeTraefikConfigRemote,
|
|
writeTraefikConfig,
|
|
writeTraefikConfigRemote,
|
|
} from "./application";
|
|
import type { FileConfig, HttpRouter } from "./file-types";
|
|
import { createPathMiddlewares, removePathMiddlewares } from "./middleware";
|
|
|
|
export const manageDomain = async (app: ApplicationNested, domain: Domain) => {
|
|
const { appName } = app;
|
|
let config: FileConfig;
|
|
|
|
if (app.serverId) {
|
|
config = await loadOrCreateConfigRemote(app.serverId, appName);
|
|
} else {
|
|
config = loadOrCreateConfig(appName);
|
|
}
|
|
const serviceName = `${appName}-service-${domain.uniqueConfigKey}`;
|
|
const routerName = `${appName}-router-${domain.uniqueConfigKey}`;
|
|
const routerNameSecure = `${appName}-router-websecure-${domain.uniqueConfigKey}`;
|
|
|
|
config.http = config.http || { routers: {}, services: {} };
|
|
config.http.routers = config.http.routers || {};
|
|
config.http.services = config.http.services || {};
|
|
|
|
config.http.routers[routerName] = await createRouterConfig(
|
|
app,
|
|
domain,
|
|
"web",
|
|
);
|
|
|
|
if (domain.https) {
|
|
config.http.routers[routerNameSecure] = await createRouterConfig(
|
|
app,
|
|
domain,
|
|
"websecure",
|
|
);
|
|
} else {
|
|
delete config.http.routers[routerNameSecure];
|
|
}
|
|
|
|
config.http.services[serviceName] = createServiceConfig(appName, domain);
|
|
|
|
await createPathMiddlewares(app, domain);
|
|
|
|
if (app.serverId) {
|
|
await writeTraefikConfigRemote(config, appName, app.serverId);
|
|
} else {
|
|
writeTraefikConfig(config, appName);
|
|
}
|
|
};
|
|
|
|
export const removeDomain = async (
|
|
application: ApplicationNested,
|
|
uniqueKey: number,
|
|
) => {
|
|
const { appName, serverId } = application;
|
|
let config: FileConfig;
|
|
|
|
if (serverId) {
|
|
config = await loadOrCreateConfigRemote(serverId, appName);
|
|
} else {
|
|
config = loadOrCreateConfig(appName);
|
|
}
|
|
|
|
const routerKey = `${appName}-router-${uniqueKey}`;
|
|
const routerSecureKey = `${appName}-router-websecure-${uniqueKey}`;
|
|
|
|
const serviceKey = `${appName}-service-${uniqueKey}`;
|
|
if (config.http?.routers?.[routerKey]) {
|
|
delete config.http.routers[routerKey];
|
|
}
|
|
if (config.http?.routers?.[routerSecureKey]) {
|
|
delete config.http.routers[routerSecureKey];
|
|
}
|
|
if (config.http?.services?.[serviceKey]) {
|
|
delete config.http.services[serviceKey];
|
|
}
|
|
|
|
await removePathMiddlewares(application, uniqueKey);
|
|
|
|
// verify if is the last router if so we delete the router
|
|
if (
|
|
config?.http?.routers &&
|
|
Object.keys(config?.http?.routers).length === 0
|
|
) {
|
|
if (serverId) {
|
|
await removeTraefikConfigRemote(appName, serverId);
|
|
} else {
|
|
await removeTraefikConfig(appName);
|
|
}
|
|
} else {
|
|
if (serverId) {
|
|
await writeTraefikConfigRemote(config, appName, serverId);
|
|
} else {
|
|
writeTraefikConfig(config, appName);
|
|
}
|
|
}
|
|
};
|
|
|
|
/**
|
|
* Converts an internationalized domain name (IDN) to ASCII punycode format.
|
|
* Traefik requires domain names in ASCII format, so non-ASCII characters
|
|
* must be converted (e.g., "тест.рф" → "xn--e1aybc.xn--p1ai").
|
|
*/
|
|
const toPunycode = (host: string): string => {
|
|
try {
|
|
return new URL(`http://${host}`).hostname;
|
|
} catch {
|
|
// If URL parsing fails, return the original host
|
|
return host;
|
|
}
|
|
};
|
|
|
|
export const createRouterConfig = async (
|
|
app: ApplicationNested,
|
|
domain: Domain,
|
|
entryPoint: "web" | "websecure",
|
|
) => {
|
|
const { appName, redirects, security } = app;
|
|
const { certificateType } = domain;
|
|
|
|
const { host, path, https, uniqueConfigKey, internalPath, stripPath } =
|
|
domain;
|
|
const punycodeHost = toPunycode(host);
|
|
const routerConfig: HttpRouter = {
|
|
rule: `Host(\`${punycodeHost}\`)${path !== null && path !== "/" ? ` && PathPrefix(\`${path}\`)` : ""}`,
|
|
service: `${appName}-service-${uniqueConfigKey}`,
|
|
middlewares: [],
|
|
entryPoints: [entryPoint],
|
|
};
|
|
|
|
// Add path rewriting middleware if needed
|
|
if (internalPath && internalPath !== "/" && internalPath !== path) {
|
|
const pathMiddleware = `addprefix-${appName}-${uniqueConfigKey}`;
|
|
routerConfig.middlewares?.push(pathMiddleware);
|
|
}
|
|
|
|
if (stripPath && path && path !== "/") {
|
|
const stripMiddleware = `stripprefix-${appName}-${uniqueConfigKey}`;
|
|
routerConfig.middlewares?.push(stripMiddleware);
|
|
}
|
|
|
|
if (entryPoint === "web" && https) {
|
|
routerConfig.middlewares = ["redirect-to-https"];
|
|
}
|
|
|
|
if ((entryPoint === "websecure" && https) || !https) {
|
|
// redirects - skip for preview deployments as wildcard subdomains
|
|
// should not inherit parent redirect rules (e.g., www-redirect)
|
|
if (domain.domainType !== "preview") {
|
|
for (const redirect of redirects) {
|
|
const middlewareName = `redirect-${appName}-${redirect.uniqueConfigKey}`;
|
|
routerConfig.middlewares?.push(middlewareName);
|
|
}
|
|
}
|
|
|
|
// security
|
|
if (security.length > 0) {
|
|
let middlewareName = `auth-${appName}`;
|
|
if (domain.domainType === "preview") {
|
|
middlewareName = `auth-${appName.replace(
|
|
/^preview-(.+)-[^-]+$/,
|
|
"$1",
|
|
)}`;
|
|
}
|
|
routerConfig.middlewares?.push(middlewareName);
|
|
}
|
|
}
|
|
|
|
if (entryPoint === "websecure") {
|
|
if (certificateType === "letsencrypt") {
|
|
routerConfig.tls = { certResolver: "letsencrypt" };
|
|
} else if (certificateType === "custom" && domain.customCertResolver) {
|
|
routerConfig.tls = { certResolver: domain.customCertResolver };
|
|
} else if (certificateType === "none") {
|
|
routerConfig.tls = undefined;
|
|
}
|
|
}
|
|
|
|
return routerConfig;
|
|
};
|