add tls support

2023-04-14 18:28:03 +03:00
parent c44aaebd65
commit af717b2172
2 changed files with 44 additions and 1 deletions
@@ -1,6 +1,7 @@
 package api

 import (
+	"crypto/tls"
 	"encoding/json"
 	"github.com/AlexxIT/go2rtc/cmd/app"
 	"github.com/rs/zerolog"
@@ -21,6 +22,9 @@ func Init() {
 			BasePath  string `yaml:"base_path"`
 			StaticDir string `yaml:"static_dir"`
 			Origin    string `yaml:"origin"`
+			TLSListen     string `yaml:"tls_listen"`
+			TLSCert       string `yaml:"tls_cert"`
+			TLSPrivateKey string `yaml:"tls_private_key"`
 		} `yaml:"api"`
 	}

@@ -75,6 +79,37 @@ func Init() {
 			log.Fatal().Err(err).Msg("[api] serve")
 		}
 	}()
+
+	// Initialize the HTTPS server
+	if cfg.Mod.TLSListen != "" {
+		tlsConfig := &tls.Config{}
+		if cfg.Mod.TLSCert != "" && cfg.Mod.TLSPrivateKey != "" {
+			tlsListener, err := net.Listen("tcp", cfg.Mod.TLSListen)
+			if err != nil {
+				log.Fatal().Err(err).Msg("[api] tls listen")
+				return
+			}
+			log.Info().Str("addr", cfg.Mod.TLSListen).Msg("[api] tls listen")
+
+			cert, err := tls.X509KeyPair([]byte(cfg.Mod.TLSCert), []byte(cfg.Mod.TLSPrivateKey))
+			if err != nil {
+				print(cfg.Mod.TLSCert)
+				log.Fatal().Err(err).Msg("[api] tls load cert/key")
+				return
+			}
+			tlsConfig.Certificates = []tls.Certificate{cert}
+
+			tlsServer := &http.Server{
+				Handler:   Handler,
+				TLSConfig: tlsConfig,
+			}
+			go func() {
+				if err := tlsServer.ServeTLS(tlsListener, "", ""); err != nil {
+					log.Fatal().Err(err).Msg("[api] tls serve")
+				}
+			}()
+		}
+	}
 }

 var Handler http.Handler