Integrierten HTTPS-Server aktiviert und an ENV gebunden

2025-08-06 05:59:19 +02:00
parent 7c08015cb4
commit 5c51c3f6a2
2 changed files with 28 additions and 12 deletions
--- a/6
+++ b/6
@@ -29,7 +29,11 @@ ENV EW_USERNAME=admin \
    EW_PASSWORD=admin \
    EW_DB=/data/machines.json \
    EW_PRODUCTIVE=true \
-    EW_FORCEINSECURECOOKIE=false
+    EW_FORCEINSECURECOOKIE=false \
+    HTTP_PORT=8080 \
+    HTTP_TLS=false \
+    HTTP_TLS_CERTIFICATE=./server-cert.pem \
+    HTTP_TLS_PRIVATEKEY=./server-key.pem


 ENTRYPOINT ["/bin/edgewol"]
--- a/main.go
+++ b/main.go
@@ -41,10 +41,14 @@ import (
 )

 var (
-	username       = GetENV("EW_USERNAME", "root")
-	password       = GetENV("EW_PASSWORD", "root")
-	productive     = Enabled("EW_PRODUCTIVE", false)
-	hashedPassword = ""
+	HTTP_PORT            string = "8080"
+	HTTP_TLS             bool   = false
+	HTTP_TLS_PRIVATEKEY  string = ""
+	HTTP_TLS_CERTIFICATE string = ""
+	username                    = GetENV("EW_USERNAME", "root")
+	password                    = GetENV("EW_PASSWORD", "root")
+	productive                  = Enabled("EW_PRODUCTIVE", false)
+	hashedPassword              = ""
 )

 var (
@@ -191,6 +195,11 @@ func main() {
 		dbPath = "./machines.json"
 	}

+	HTTP_PORT = GetENV("HTTP_PORT", "8080")
+	HTTP_TLS = Enabled("HTTP_TLS", true)
+	HTTP_TLS_CERTIFICATE = GetENV("HTTP_TLS_CERTIFICATE", "./server-cert.pem")
+	HTTP_TLS_PRIVATEKEY = GetENV("HTTP_TLS_PRIVATEKEY", "./server-key.pem")
+
 	loadMachines()

 	// Save on SIGINT/SIGTERM.
@@ -315,15 +324,18 @@ func main() {
 	http.HandleFunc("/add", addHandler)
 	http.HandleFunc("/remove", removeHandler)

-	addr := os.Getenv("LISTEN")
-	if addr == "" {
-		addr = ":8080"
+	if HTTP_TLS {
+		log.Printf("WoL server listening on %s (DB: %s)", ":"+HTTP_PORT, dbPath)
+		if err := http.ListenAndServeTLS(":"+HTTP_PORT, HTTP_TLS_CERTIFICATE, HTTP_TLS_PRIVATEKEY, nil); err != nil {
+			log.Fatalf("http server error: %v", err)
+		}
+	} else {
+		log.Printf("WoL server listening on %s (DB: %s)", ":"+HTTP_PORT, dbPath)
+		if err := http.ListenAndServe(":"+HTTP_PORT, nil); err != nil {
+			log.Fatalf("http server error: %v", err)
+		}
 	}

-	log.Printf("WoL server listening on %s (DB: %s)", addr, dbPath)
-	if err := http.ListenAndServe(addr, nil); err != nil {
-		log.Fatalf("http server error: %v", err)
-	}
 }

 // ========= persistence =========