lerko/nib-v1
1
1
Fork 0
Code Issues Pull Requests 2 Actions Packages Projects Releases Wiki Activity
Files
77222ff1b81d48fb8422f76b347cebfd5fe177fc
nib-v1/cmd/serve.go
T
lerko dd8878ebcf feat(serve): add TLS support with --tls-cert and --tls-key flags 
Adds make cert target for self-signed dev certs and development guide.
2026-05-17 14:53:14 -04:00

110 lines
2.3 KiB
Go
Raw Blame History

package cmd
import (
"context"
"fmt"
"io/fs"
"net/http"
"os"
"os/signal"
"strconv"
"syscall"
"time"
"github.com/lerko/nib/internal/api"
"github.com/spf13/cobra"
)
var WebFS fs.FS
var (
servePort int
serveDev bool
tlsCert string
tlsKey string
)
var serveCmd = &cobra.Command{
Use: "serve",
Short: "start the HTTP server",
RunE: runServe,
}
func init() {
serveCmd.Flags().IntVar(&servePort, "port", 0, "port to listen on (default 4444, or 4443 with TLS)")
serveCmd.Flags().BoolVar(&serveDev, "dev", false, "enable CORS for development")
serveCmd.Flags().StringVar(&tlsCert, "tls-cert", "", "path to TLS certificate file")
serveCmd.Flags().StringVar(&tlsKey, "tls-key", "", "path to TLS private key file")
rootCmd.AddCommand(serveCmd)
}
func runServe(_ *cobra.Command, _ []string) error {
useTLS := tlsCert != "" && tlsKey != ""
if (tlsCert != "") != (tlsKey != "") {
return fmt.Errorf("both --tls-cert and --tls-key are required for TLS")
}
port := servePort
if port == 0 {
if envPort := os.Getenv("NIB_PORT"); envPort != "" {
p, err := strconv.Atoi(envPort)
if err != nil {
return fmt.Errorf("invalid NIB_PORT: %w", err)
}
port = p
} else if useTLS {
port = 4443
} else {
port = 4444
}
}
store, err := openStore()
if err != nil {
return err
}
defer store.Close()
var router = api.NewRouter(store, serveDev)
if WebFS != nil {
router = api.NewRouter(store, serveDev, WebFS)
}
addr := fmt.Sprintf(":%d", port)
srv := &http.Server{
Addr: addr,
Handler: router,
}
ctx, stop := signal.NotifyContext(context.Background(), syscall.SIGINT, syscall.SIGTERM)
defer stop()
go func() {
if useTLS {
fmt.Printf("nib serving on https://localhost%s\n", addr)
} else {
fmt.Printf("nib serving on http://localhost%s\n", addr)
}
if serveDev {
fmt.Println(" CORS enabled (dev mode)")
}
var listenErr error
if useTLS {
listenErr = srv.ListenAndServeTLS(tlsCert, tlsKey)
} else {
listenErr = srv.ListenAndServe()
}
if listenErr != nil && listenErr != http.ErrServerClosed {
fmt.Fprintf(os.Stderr, "server error: %v\n", listenErr)
}
}()
<-ctx.Done()
fmt.Println("\nshutting down...")
shutdownCtx, cancel := context.WithTimeout(context.Background(), 5*time.Second)
defer cancel()
return srv.Shutdown(shutdownCtx)
}
Reference in New Issue View Git Blame Copy Permalink