|
|
@@ -28,9 +28,6 @@ from pygments import highlight
|
|
|
from pygments.lexers import get_lexer_by_name
|
|
|
from pygments.formatters import HtmlFormatter # pylint: disable=no-name-in-module
|
|
|
|
|
|
-from werkzeug.middleware.proxy_fix import ProxyFix
|
|
|
-from werkzeug.serving import WSGIRequestHandler
|
|
|
-
|
|
|
import flask
|
|
|
|
|
|
from flask import (
|
|
|
@@ -106,6 +103,7 @@ from searx.metrics import (
|
|
|
histogram,
|
|
|
counter,
|
|
|
)
|
|
|
+from searx.flaskfix import patch_application
|
|
|
|
|
|
# renaming names from searx imports ...
|
|
|
|
|
|
@@ -137,9 +135,6 @@ if sys.version_info[0] < 3:
|
|
|
|
|
|
logger = logger.getChild('webapp')
|
|
|
|
|
|
-# serve pages with HTTP/1.1
|
|
|
-WSGIRequestHandler.protocol_version = "HTTP/{}".format(settings['server']['http_protocol_version'])
|
|
|
-
|
|
|
# check secret_key
|
|
|
if not searx_debug and settings['server']['secret_key'] == 'ultrasecretkey':
|
|
|
logger.error('server.secret_key is not changed. Please use something else instead of ultrasecretkey.')
|
|
|
@@ -1338,70 +1333,8 @@ def run():
|
|
|
],
|
|
|
)
|
|
|
|
|
|
-
|
|
|
-class ReverseProxyPathFix:
|
|
|
- '''Wrap the application in this middleware and configure the
|
|
|
- front-end server to add these headers, to let you quietly bind
|
|
|
- this to a URL other than / and to an HTTP scheme that is
|
|
|
- different than what is used locally.
|
|
|
-
|
|
|
- http://flask.pocoo.org/snippets/35/
|
|
|
-
|
|
|
- In nginx:
|
|
|
- location /myprefix {
|
|
|
- proxy_pass http://127.0.0.1:8000;
|
|
|
- proxy_set_header Host $host;
|
|
|
- proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
|
|
- proxy_set_header X-Scheme $scheme;
|
|
|
- proxy_set_header X-Script-Name /myprefix;
|
|
|
- }
|
|
|
-
|
|
|
- :param wsgi_app: the WSGI application
|
|
|
- '''
|
|
|
- # pylint: disable=too-few-public-methods
|
|
|
-
|
|
|
- def __init__(self, wsgi_app):
|
|
|
-
|
|
|
- self.wsgi_app = wsgi_app
|
|
|
- self.script_name = None
|
|
|
- self.scheme = None
|
|
|
- self.server = None
|
|
|
-
|
|
|
- if settings['server']['base_url']:
|
|
|
-
|
|
|
- # If base_url is specified, then these values from are given
|
|
|
- # preference over any Flask's generics.
|
|
|
-
|
|
|
- base_url = urlparse(settings['server']['base_url'])
|
|
|
- self.script_name = base_url.path
|
|
|
- if self.script_name.endswith('/'):
|
|
|
- # remove trailing slash to avoid infinite redirect on the index
|
|
|
- # see https://github.com/searx/searx/issues/2729
|
|
|
- self.script_name = self.script_name[:-1]
|
|
|
- self.scheme = base_url.scheme
|
|
|
- self.server = base_url.netloc
|
|
|
-
|
|
|
- def __call__(self, environ, start_response):
|
|
|
- script_name = self.script_name or environ.get('HTTP_X_SCRIPT_NAME', '')
|
|
|
- if script_name:
|
|
|
- environ['SCRIPT_NAME'] = script_name
|
|
|
- path_info = environ['PATH_INFO']
|
|
|
- if path_info.startswith(script_name):
|
|
|
- environ['PATH_INFO'] = path_info[len(script_name):]
|
|
|
-
|
|
|
- scheme = self.scheme or environ.get('HTTP_X_SCHEME', '')
|
|
|
- if scheme:
|
|
|
- environ['wsgi.url_scheme'] = scheme
|
|
|
-
|
|
|
- server = self.server or environ.get('HTTP_X_FORWARDED_HOST', '')
|
|
|
- if server:
|
|
|
- environ['HTTP_HOST'] = server
|
|
|
- return self.wsgi_app(environ, start_response)
|
|
|
-
|
|
|
-
|
|
|
application = app
|
|
|
-# patch app to handle non root url-s behind proxy & wsgi
|
|
|
-app.wsgi_app = ReverseProxyPathFix(ProxyFix(application.wsgi_app))
|
|
|
+patch_application(app)
|
|
|
|
|
|
if __name__ == "__main__":
|
|
|
run()
|
Alexandre Flament