From 7616a96fcc037ac1b5a78209b77ecbfd608c89d0 Mon Sep 17 00:00:00 2001 From: miaawong Date: Fri, 1 Nov 2024 14:56:29 -0400 Subject: [PATCH 1/2] define route for /tls-warning rename route from /insecure -> /tls-warning --- kurl_proxy/assets/welcome.html | 2 +- kurl_proxy/cmd/main.go | 31 +++++++++++++++++++++++++++---- 2 files changed, 28 insertions(+), 5 deletions(-) diff --git a/kurl_proxy/assets/welcome.html b/kurl_proxy/assets/welcome.html index 5ecc7d848e..70d12f4243 100644 --- a/kurl_proxy/assets/welcome.html +++ b/kurl_proxy/assets/welcome.html @@ -19,7 +19,7 @@ .replace(/\/$/, ""); var httpsLink = "http:" + rawLink; var opensslLink = rawLink.substring(2).replace("/", ""); - var insecureLink = httpsLink + "/insecure"; + var insecureLink = httpsLink + "/tls-warning";
diff --git a/kurl_proxy/cmd/main.go b/kurl_proxy/cmd/main.go index 4e7810d75c..ff198be74f 100644 --- a/kurl_proxy/cmd/main.go +++ b/kurl_proxy/cmd/main.go @@ -275,11 +275,34 @@ func getHttpServer(fingerprint string, acceptAnonymousUploads bool, assetsDir st } appIcon := template.URL(app.Spec.Icon) - htmlPage := "welcome.html" - if c.Request.URL.Path == "/insecure" { - htmlPage = "insecure.html" + c.HTML(http.StatusOK, "welcome.html", gin.H{ + "fingerprintSHA1": fingerprint, + "AppIcon": appIcon, + "AppTitle": app.Spec.Title, + "IsEmbeddedCluster": isEmbeddedCluster(), + }) + }) + r.GET("/tls-warning", func(c *gin.Context) { + if !acceptAnonymousUploads { + log.Println("TLS certs already uploaded, redirecting to https") + target := url.URL{ + Scheme: "https", + Host: c.Request.Host, + Path: c.Request.URL.Path, + RawQuery: c.Request.URL.RawQuery, + } + // Returns StatusFound (302) to avoid browser caching + c.Redirect(http.StatusFound, target.String()) + return + } + + app, err := kotsadmApplication() + + if err != nil { + log.Printf("No kotsadm application metadata: %v", err) // continue } - c.HTML(http.StatusOK, htmlPage, gin.H{ + appIcon := template.URL(app.Spec.Icon) + c.HTML(http.StatusOK, "insecure.html", gin.H{ "fingerprintSHA1": fingerprint, "AppIcon": appIcon, "AppTitle": app.Spec.Title, From 0343aaf98586afbb02f4a4dea03bb9fcb4e97d81 Mon Sep 17 00:00:00 2001 From: miaawong Date: Fri, 1 Nov 2024 15:40:23 -0400 Subject: [PATCH 2/2] update file name --- kurl_proxy/assets/{insecure.html => tls-warning.html} | 0 kurl_proxy/cmd/main.go | 2 +- 2 files changed, 1 insertion(+), 1 deletion(-) rename kurl_proxy/assets/{insecure.html => tls-warning.html} (100%) diff --git a/kurl_proxy/assets/insecure.html b/kurl_proxy/assets/tls-warning.html similarity index 100% rename from kurl_proxy/assets/insecure.html rename to kurl_proxy/assets/tls-warning.html diff --git a/kurl_proxy/cmd/main.go b/kurl_proxy/cmd/main.go index ff198be74f..38df41263c 100644 --- a/kurl_proxy/cmd/main.go +++ b/kurl_proxy/cmd/main.go @@ -302,7 +302,7 @@ func getHttpServer(fingerprint string, acceptAnonymousUploads bool, assetsDir st log.Printf("No kotsadm application metadata: %v", err) // continue } appIcon := template.URL(app.Spec.Icon) - c.HTML(http.StatusOK, "insecure.html", gin.H{ + c.HTML(http.StatusOK, "tls-warning.html", gin.H{ "fingerprintSHA1": fingerprint, "AppIcon": appIcon, "AppTitle": app.Spec.Title,