[web-devel] Advice on implementing a web proxy

Kazu Yamamoto ( 山本和彦 ) kazu at iij.ad.jp
Mon Nov 28 10:52:51 CET 2011 

Erik,

I'm not sure that I understand your question.
But I have one concern from your code.

You use parseURL. It returns Request whose requestBody is
RequestBodyLBS L.empty. This means that your code does not
relay HTTP body at all.

I'm now implementing a reverse proxy. I tested several ways to realy
HTTP body but only one solution which works is to get whole HTTP body
as ByteString and specify it to RequestBodyLBS. This is
store-and-forward, not pipelining.

My code can be found:
	https://github.com/kazu-yamamoto/wai-app-file-cgi/blob/master/Network/Wai/Application/Classic/RevProxy.hs

I'm wondering if Enumerator can implement pipelining...

--Kazu

> Hi all,
> 
> I'm working on a simple web proxy. I have the proxying of HTTP
> working correctly (as least as far as I have tested it) and would
> like to work on proxying HTTPS. The way HTTPS proxying works is
> as follows:
> 
>  a) Client sends "CONNECT host:port HTTP/1.1" to the proxy in
>     clear text.
> 
>  b) Proxy makes a connection to host:port and if successful sends
>     "HTTP/1.0 200 Connection established" to the client.
> 
>  c) The proxy then blindly transfers bytes from the client to the
>     server and bytes from server to the client.
> 
>  d) The client does TLS negotiation over the bi-directional pipe
>     established and maintained by the proxy.
> 
> The git repo containing the code for my proxy is here:
> 
>     https://github.com/erikd/simple-web-proxy
> 
> and the core of the actual proxy is here:
> 
>     https://github.com/erikd/simple-web-proxy/blob/master/src/simple-web-proxy.hs
> 
> The proxying function should have a type signature of:
> 
>     sslConnectRequest :: ByteString -> Int
>                       -> Wai.Request -> Proxy Wai.Response
> 
> where the ByteString contains the host name and the Int the port
> number.
> 
> My plans for the sslConnectRequest function is for it to open a
> socket connection to the server and then wrap that socket inside
> and enumerator.
> 
> Is that a reasonable plan? Is there a better way? Any existing
> code that does something similar for me to hack? Clues?
> 
> Cheers,
> Erik
> -- 
> ----------------------------------------------------------------------
> Erik de Castro Lopo
> http://www.mega-nerd.com/
> 
> _______________________________________________
> web-devel mailing list
> web-devel at haskell.org
> http://www.haskell.org/mailman/listinfo/web-devel

More information about the web-devel mailing list