all repos — flounder @ 6e7d021dcbfa85ba10143168466c014cf08241c8

A small site builder for the Gemini protocol

http.go (view raw)

  1package main
  2
  3import (
  4	"bytes"
  5	"fmt"
  6	gmi "git.sr.ht/~adnano/go-gemini"
  7	"github.com/gorilla/handlers"
  8	"github.com/gorilla/sessions"
  9	_ "github.com/mattn/go-sqlite3"
 10	"golang.org/x/crypto/bcrypt"
 11	"html/template"
 12	"io"
 13	"io/ioutil"
 14	"log"
 15	"net/http"
 16	"net/url"
 17	"os"
 18	"path"
 19	"path/filepath"
 20	"strings"
 21	"time"
 22)
 23
 24var t *template.Template
 25var SessionStore *sessions.CookieStore
 26
 27func renderDefaultError(w http.ResponseWriter, statusCode int) {
 28	errorMsg := http.StatusText(statusCode)
 29	renderError(w, errorMsg, statusCode)
 30}
 31
 32func serverError(w http.ResponseWriter, err error) {
 33	log.Print(err)
 34	renderDefaultError(w, 500)
 35}
 36
 37func renderError(w http.ResponseWriter, errorMsg string, statusCode int) {
 38	data := struct {
 39		StatusCode int
 40		ErrorMsg   string
 41		Config     Config
 42	}{statusCode, errorMsg, c}
 43	w.WriteHeader(statusCode)
 44	err := t.ExecuteTemplate(w, "error.html", data)
 45	if err != nil { // Shouldn't happen probably
 46		http.Error(w, errorMsg, statusCode)
 47	}
 48}
 49
 50func rootHandler(w http.ResponseWriter, r *http.Request) {
 51	// serve everything inside static directory
 52	if r.URL.Path != "/" {
 53		fileName := path.Join(c.TemplatesDirectory, "static", filepath.Clean(r.URL.Path))
 54		_, err := os.Stat(fileName)
 55		if err != nil {
 56			renderDefaultError(w, http.StatusNotFound)
 57			return
 58		}
 59		http.ServeFile(w, r, fileName) // TODO better error handling
 60		return
 61	}
 62
 63	user := getAuthUser(r)
 64	indexFiles, err := getIndexFiles(user.IsAdmin)
 65	if err != nil {
 66		serverError(w, err)
 67		return
 68	}
 69	allUsers, err := getActiveUserNames()
 70	if err != nil {
 71		serverError(w, err)
 72		return
 73	}
 74	data := struct {
 75		Config   Config
 76		AuthUser AuthUser
 77		Files    []*File
 78		Users    []string
 79	}{c, user, indexFiles, allUsers}
 80	err = t.ExecuteTemplate(w, "index.html", data)
 81	if err != nil {
 82		serverError(w, err)
 83		return
 84	}
 85}
 86
 87func editFileHandler(w http.ResponseWriter, r *http.Request) {
 88	user := getAuthUser(r)
 89	if !user.LoggedIn {
 90		renderDefaultError(w, http.StatusForbidden)
 91		return
 92	}
 93	fileName := filepath.Clean(r.URL.Path[len("/edit/"):])
 94	filePath := path.Join(c.FilesDirectory, user.Username, fileName)
 95	isText := isTextFile(filePath)
 96	alert := ""
 97	var warnings []string
 98	if r.Method == "POST" {
 99		// get post body
100		alert = "saved"
101		r.ParseForm()
102		fileText := r.Form.Get("file_text")
103		// Web form by default gives us CR LF newlines.
104		// Unix files use just LF
105		fileText = strings.ReplaceAll(fileText, "\r\n", "\n")
106		fileBytes := []byte(fileText)
107		err := checkIfValidFile(user.Username, filePath, fileBytes)
108		if err != nil {
109			log.Println(err)
110			renderError(w, err.Error(), http.StatusBadRequest)
111			return
112		}
113		sfl := getSchemedFlounderLinkLines(strings.NewReader(fileText))
114		if len(sfl) > 0 {
115			warnings = append(warnings, "Warning! Some of your links to pages use schemas. This means that they may break when viewed in Gemini or over HTTPS. Plase remove gemini: or https: from the start of these links:\n")
116			for _, l := range sfl {
117				warnings = append(warnings, l)
118			}
119		}
120		// create directories if dne
121		os.MkdirAll(path.Dir(filePath), os.ModePerm)
122		newName := filepath.Clean(r.Form.Get("rename"))
123		err = checkIfValidFile(user.Username, newName, fileBytes)
124		if err != nil {
125			log.Println(err)
126			renderError(w, err.Error(), http.StatusBadRequest)
127			return
128		}
129		if isText { // Cant edit binary files here
130			err = ioutil.WriteFile(filePath, fileBytes, 0644)
131			if err != nil {
132				log.Println(err)
133				renderError(w, err.Error(), http.StatusBadRequest)
134			}
135		}
136		if newName != fileName {
137			newPath := path.Join(c.FilesDirectory, user.Username, newName)
138			os.MkdirAll(path.Dir(newPath), os.ModePerm)
139			os.Rename(filePath, newPath)
140			fileName = newName
141			filePath = newPath
142			alert += " and renamed"
143		}
144	}
145
146	err := checkIfValidFile(user.Username, filePath, nil)
147	if err != nil {
148		log.Println(err)
149		renderError(w, err.Error(), http.StatusBadRequest)
150		return
151	}
152	// Create directories if dne
153	f, err := os.OpenFile(filePath, os.O_RDONLY, 0644)
154	var fileBytes []byte
155	if os.IsNotExist(err) || !isText {
156		fileBytes = []byte{}
157		err = nil
158	} else {
159		defer f.Close()
160		fileBytes, err = ioutil.ReadAll(f)
161	}
162	if err != nil {
163		serverError(w, err)
164		return
165	}
166	data := struct {
167		FileName string
168		FileText string
169		Config   Config
170		AuthUser AuthUser
171		Host     string
172		IsText   bool
173		IsGemini bool
174		IsGemlog bool
175		Alert    string
176		Warnings []string
177	}{fileName, string(fileBytes), c, user, c.Host, isText, isGemini(fileName), strings.HasPrefix(fileName, "gemlog"), alert, warnings}
178	err = t.ExecuteTemplate(w, "edit_file.html", data)
179	if err != nil {
180		serverError(w, err)
181		return
182	}
183}
184
185func uploadFilesHandler(w http.ResponseWriter, r *http.Request) {
186	if r.Method == "POST" {
187		user := getAuthUser(r)
188		if !user.LoggedIn {
189			renderDefaultError(w, http.StatusForbidden)
190			return
191		}
192		r.ParseMultipartForm(10 << 6) // why does this not work
193		file, fileHeader, err := r.FormFile("file")
194		if err != nil {
195			log.Println(err)
196			renderError(w, "No file selected. Please go back and select a file.", http.StatusBadRequest)
197			return
198		}
199		fileName := filepath.Clean(fileHeader.Filename)
200		defer file.Close()
201		dest, _ := ioutil.ReadAll(file)
202		err = checkIfValidFile(user.Username, fileName, dest)
203		if err != nil {
204			log.Println(err)
205			renderError(w, err.Error(), http.StatusBadRequest)
206			return
207		}
208		destPath := path.Join(c.FilesDirectory, user.Username, fileName)
209
210		f, err := os.OpenFile(destPath, os.O_WRONLY|os.O_CREATE, 0644)
211		if err != nil {
212			serverError(w, err)
213			return
214		}
215		defer f.Close()
216		io.Copy(f, bytes.NewReader(dest))
217	}
218	http.Redirect(w, r, "/my_site", http.StatusSeeOther)
219}
220
221type AuthUser struct {
222	LoggedIn          bool
223	Username          string
224	IsAdmin           bool
225	ImpersonatingUser string // used if impersonating
226}
227
228func getAuthUser(r *http.Request) AuthUser {
229	session, _ := SessionStore.Get(r, "cookie-session")
230	user, ok := session.Values["auth_user"].(string)
231	impers, _ := session.Values["impersonating_user"].(string)
232	isAdmin, _ := session.Values["admin"].(bool)
233	return AuthUser{
234		LoggedIn:          ok,
235		Username:          user,
236		IsAdmin:           isAdmin,
237		ImpersonatingUser: impers,
238	}
239}
240
241func mySiteHandler(w http.ResponseWriter, r *http.Request) {
242	user := getAuthUser(r)
243	if !user.LoggedIn {
244		renderDefaultError(w, http.StatusForbidden)
245		return
246	}
247	// check auth
248	userFolder := getUserDirectory(user.Username)
249	files, _ := getMyFilesRecursive(userFolder, user.Username)
250	currentDate := time.Now().Format("2006-01-02")
251	data := struct {
252		Config      Config
253		Files       []File
254		AuthUser    AuthUser
255		CurrentDate string
256	}{c, files, user, currentDate}
257	_ = t.ExecuteTemplate(w, "my_site.html", data)
258}
259
260func myAccountHandler(w http.ResponseWriter, r *http.Request) {
261	user := getAuthUser(r)
262	authUser := user.Username
263	if !user.LoggedIn {
264		renderDefaultError(w, http.StatusForbidden)
265		return
266	}
267	me, _ := getUserByName(user.Username)
268	type pageData struct {
269		Config   Config
270		AuthUser AuthUser
271		MyUser   *User
272		Errors   []string
273	}
274	data := pageData{c, user, me, nil}
275
276	if r.Method == "GET" {
277		err := t.ExecuteTemplate(w, "me.html", data)
278		if err != nil {
279			serverError(w, err)
280			return
281		}
282	} else if r.Method == "POST" {
283		r.ParseForm()
284		newUsername := r.Form.Get("username")
285		errors := []string{}
286		newEmail := r.Form.Get("email")
287		newDomain := r.Form.Get("domain")
288		newUsername = strings.ToLower(newUsername)
289		var err error
290		_, exists := domains[newDomain]
291		if newDomain != me.Domain && !exists {
292			_, err = DB.Exec("update user set domain = ? where username = ?", newDomain, me.Username) // TODO use transaction
293			if err != nil {
294				errors = append(errors, err.Error())
295			} else {
296				refreshDomainMap()
297				log.Printf("Changed domain for %s from %s to %s", authUser, me.Domain, newDomain)
298			}
299		}
300		if newEmail != me.Email {
301			_, err = DB.Exec("update user set email = ? where username = ?", newEmail, me.Username)
302			if err != nil {
303				// TODO better error not sql
304				errors = append(errors, err.Error())
305			} else {
306				log.Printf("Changed email for %s from %s to %s", authUser, me.Email, newEmail)
307			}
308		}
309		if newUsername != authUser {
310			// Rename User
311			err = renameUser(authUser, newUsername)
312			if err != nil {
313				log.Println(err)
314				errors = append(errors, "Could not rename user")
315			} else {
316				session, _ := SessionStore.Get(r, "cookie-session")
317				session.Values["auth_user"] = newUsername
318				session.Save(r, w)
319			}
320		}
321		// reset auth
322		user = getAuthUser(r)
323		data.Errors = errors
324		data.AuthUser = user
325		data.MyUser.Email = newEmail
326		data.MyUser.Domain = newDomain
327		_ = t.ExecuteTemplate(w, "me.html", data)
328	}
329}
330
331func archiveHandler(w http.ResponseWriter, r *http.Request) {
332	authUser := getAuthUser(r)
333	if !authUser.LoggedIn {
334		renderDefaultError(w, http.StatusForbidden)
335		return
336	}
337	if r.Method == "GET" {
338		userFolder := getUserDirectory(authUser.Username)
339		err := zipit(userFolder, w)
340		if err != nil {
341			serverError(w, err)
342			return
343		}
344
345	}
346}
347func loginHandler(w http.ResponseWriter, r *http.Request) {
348	if r.Method == "GET" {
349		// show page
350		data := struct {
351			Error  string
352			Config Config
353		}{"", c}
354		err := t.ExecuteTemplate(w, "login.html", data)
355		if err != nil {
356			serverError(w, err)
357			return
358		}
359	} else if r.Method == "POST" {
360		r.ParseForm()
361		name := strings.ToLower(r.Form.Get("username"))
362		password := r.Form.Get("password")
363		username, isAdmin, err := checkLogin(name, password)
364		if err == nil {
365			log.Println("logged in")
366			session, _ := SessionStore.Get(r, "cookie-session")
367			session.Values["auth_user"] = username
368			session.Values["admin"] = isAdmin
369			session.Save(r, w)
370			http.Redirect(w, r, "/my_site", http.StatusSeeOther)
371			return
372		} else {
373			data := struct {
374				Error  string
375				Config Config
376			}{err.Error(), c}
377			w.WriteHeader(401)
378			err := t.ExecuteTemplate(w, "login.html", data)
379			if err != nil {
380				serverError(w, err)
381				return
382			}
383		}
384	}
385}
386
387func logoutHandler(w http.ResponseWriter, r *http.Request) {
388	session, _ := SessionStore.Get(r, "cookie-session")
389	impers, ok := session.Values["impersonating_user"].(string)
390	if ok {
391		session.Values["auth_user"] = impers
392		session.Values["impersonating_user"] = nil // TODO expire this automatically
393		// session.Values["admin"] = nil // TODO fix admin
394	} else {
395		session.Options.MaxAge = -1
396	}
397	session.Save(r, w)
398	http.Redirect(w, r, "/", http.StatusSeeOther)
399}
400
401const ok = "-0123456789abcdefghijklmnopqrstuvwxyz"
402
403var bannedUsernames = []string{"www", "proxy", "grafana"}
404
405func registerHandler(w http.ResponseWriter, r *http.Request) {
406	if r.Method == "GET" {
407		data := struct {
408			Errors []string
409			Config Config
410		}{nil, c}
411		err := t.ExecuteTemplate(w, "register.html", data)
412		if err != nil {
413			serverError(w, err)
414			return
415		}
416	} else if r.Method == "POST" {
417		r.ParseForm()
418		email := strings.ToLower(r.Form.Get("email"))
419		password := r.Form.Get("password")
420		errors := []string{}
421		if r.Form.Get("password") != r.Form.Get("password2") {
422			errors = append(errors, "Passwords don't match")
423		}
424		if len(password) < 6 {
425			errors = append(errors, "Password is too short")
426		}
427		username := strings.ToLower(r.Form.Get("username"))
428		err := isOkUsername(username)
429		if err != nil {
430			errors = append(errors, err.Error())
431		}
432		_, err = os.Stat(getUserDirectory(username))
433		if !os.IsNotExist(err) {
434			// Don't allow user to create account if folder dne
435			errors = append(errors, "Invalid username")
436		}
437		hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password), 8) // TODO handle error
438		if err != nil {
439			serverError(w, err)
440			return
441		}
442		reference := r.Form.Get("reference")
443		if len(errors) == 0 {
444			_, err = DB.Exec("insert into user (username, email, password_hash, reference) values ($1, $2, $3, $4)", username, email, string(hashedPassword), reference)
445			if err != nil {
446				errors = append(errors, "Username or email is already used")
447			}
448		}
449		if len(errors) > 0 {
450			data := struct {
451				Config Config
452				Errors []string
453			}{c, errors}
454			w.WriteHeader(400)
455			t.ExecuteTemplate(w, "register.html", data)
456		} else {
457			data := struct {
458				Config  Config
459				Message string
460				Title   string
461			}{c, "Registration complete! The server admin will approve your request before you can log in.", "Registration Complete"}
462			t.ExecuteTemplate(w, "message.html", data)
463		}
464	}
465}
466
467func deleteFileHandler(w http.ResponseWriter, r *http.Request) {
468	user := getAuthUser(r)
469	if !user.LoggedIn {
470		renderDefaultError(w, http.StatusForbidden)
471		return
472	}
473	filePath := safeGetFilePath(user.Username, r.URL.Path[len("/delete/"):])
474	if r.Method == "POST" {
475		os.Remove(filePath) // TODO handle error
476	}
477	http.Redirect(w, r, "/my_site", http.StatusSeeOther)
478}
479
480func adminHandler(w http.ResponseWriter, r *http.Request) {
481	user := getAuthUser(r)
482	if !user.IsAdmin {
483		renderDefaultError(w, http.StatusForbidden)
484		return
485	}
486	allUsers, err := getUsers()
487	if err != nil {
488		log.Println(err)
489		renderDefaultError(w, http.StatusInternalServerError)
490		return
491	}
492	data := struct {
493		Users    []User
494		AuthUser AuthUser
495		Config   Config
496	}{allUsers, user, c}
497	err = t.ExecuteTemplate(w, "admin.html", data)
498	if err != nil {
499		serverError(w, err)
500		return
501	}
502}
503
504// Server a user's file
505// TODO replace with gemini proxy
506// Here be dragons
507func userFile(w http.ResponseWriter, r *http.Request) {
508	var userName string
509	custom := domains[r.Host]
510	if custom != "" {
511		userName = custom
512	} else {
513		userName = filepath.Clean(strings.Split(r.Host, ".")[0]) // Clean probably unnecessary
514	}
515	p := filepath.Clean(r.URL.Path)
516	var isDir bool
517	fullPath := path.Join(c.FilesDirectory, userName, p) // TODO rename filepath
518	stat, err := os.Stat(fullPath)
519	if stat != nil {
520		isDir = stat.IsDir()
521	}
522	if strings.HasSuffix(p, "index.gmi") {
523		http.Redirect(w, r, path.Dir(p), http.StatusMovedPermanently)
524		return
525	}
526
527	if strings.HasPrefix(p, "/"+HiddenFolder) {
528		renderDefaultError(w, http.StatusForbidden)
529		return
530	}
531	if r.URL.Path == "/gemlog/atom.xml" && os.IsNotExist(err) {
532		w.Header().Set("Content-Type", "application/atom+xml")
533		// TODO set always somehow
534		feed := generateFeedFromUser(userName)
535		atomString := feed.toAtomFeed()
536		io.Copy(w, strings.NewReader(atomString))
537		return
538	}
539
540	var geminiContent string
541	fullStat, err := os.Stat(path.Join(fullPath, "index.gmi"))
542	if isDir {
543		// redirect slash
544		if !strings.HasSuffix(r.URL.Path, "/") {
545			http.Redirect(w, r, p+"/", http.StatusSeeOther)
546		}
547		if os.IsNotExist(err) {
548			if p == "/gemlog" {
549				geminiContent = generateGemfeedPage(userName)
550			} else {
551				geminiContent = generateFolderPage(fullPath)
552			}
553		} else {
554			fullPath = path.Join(fullPath, "index.gmi")
555		}
556		if fullStat != nil {
557			stat = fullStat // wonky
558		}
559	}
560	if geminiContent == "" && os.IsNotExist(err) {
561		renderDefaultError(w, http.StatusNotFound)
562		return
563	}
564	// Dumb content negotiation
565	_, raw := r.URL.Query()["raw"]
566	acceptsGemini := strings.Contains(r.Header.Get("Accept"), "text/gemini")
567	if !raw && !acceptsGemini && (isGemini(fullPath) || geminiContent != "") {
568		var htmlDoc ConvertedGmiDoc
569		if geminiContent == "" {
570			file, _ := os.Open(fullPath)
571			parse, _ := gmi.ParseText(file)
572			htmlDoc = textToHTML(nil, parse)
573			defer file.Close()
574		} else {
575			parse, _ := gmi.ParseText(strings.NewReader(geminiContent))
576			htmlDoc = textToHTML(nil, parse)
577		}
578		hostname := strings.Split(r.Host, ":")[0]
579		uri := url.URL{
580			Scheme: "gemini",
581			Host:   hostname,
582			Path:   p,
583		}
584		if htmlDoc.Title == "" {
585			htmlDoc.Title = userName + p
586		}
587		data := struct {
588			SiteBody  template.HTML
589			PageTitle string
590			URI       *url.URL
591			GeminiURI *url.URL
592			Config    Config
593		}{template.HTML(htmlDoc.Content), htmlDoc.Title, &uri, &uri, c}
594		buff := bytes.NewBuffer([]byte{})
595		err = t.ExecuteTemplate(buff, "user_page.html", data)
596		if err != nil {
597			serverError(w, err)
598			return
599		}
600		breader := bytes.NewReader(buff.Bytes())
601		http.ServeContent(w, r, "", stat.ModTime(), breader)
602	} else {
603		http.ServeFile(w, r, fullPath)
604	}
605}
606
607func deleteAccountHandler(w http.ResponseWriter, r *http.Request) {
608	user := getAuthUser(r)
609	if r.Method == "POST" {
610		r.ParseForm()
611		validate := r.Form.Get("validate-delete")
612		if validate == user.Username {
613			err := deleteUser(user.Username)
614			if err != nil {
615				log.Println(err)
616				renderDefaultError(w, http.StatusInternalServerError)
617				return
618			}
619			logoutHandler(w, r)
620		} else {
621			http.Redirect(w, r, "/me", http.StatusSeeOther)
622		}
623	}
624}
625
626func resetPasswordHandler(w http.ResponseWriter, r *http.Request) {
627	user := getAuthUser(r)
628	data := struct {
629		Config   Config
630		AuthUser AuthUser
631		Error    string
632	}{c, user, ""}
633	if r.Method == "GET" {
634		err := t.ExecuteTemplate(w, "reset_pass.html", data)
635		if err != nil {
636			serverError(w, err)
637			return
638		}
639	} else if r.Method == "POST" {
640		r.ParseForm()
641		enteredCurrPass := r.Form.Get("password")
642		password1 := r.Form.Get("new_password1")
643		password2 := r.Form.Get("new_password2")
644		if password1 != password2 {
645			data.Error = "New passwords do not match"
646		} else if len(password1) < 6 {
647			data.Error = "Password is too short"
648		} else {
649			err := checkAuth(user.Username, enteredCurrPass)
650			if err == nil {
651				hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password1), 8)
652				if err != nil {
653					serverError(w, err)
654					return
655				}
656				_, err = DB.Exec("update user set password_hash = ? where username = ?", hashedPassword, user.Username)
657				if err != nil {
658					serverError(w, err)
659					return
660				}
661				log.Printf("User %s reset password", user.Username)
662				http.Redirect(w, r, "/me", http.StatusSeeOther)
663				return
664			} else {
665				data.Error = "That's not your current password"
666			}
667		}
668		err := t.ExecuteTemplate(w, "reset_pass.html", data)
669		if err != nil {
670			serverError(w, err)
671			return
672		}
673	}
674}
675
676func adminUserHandler(w http.ResponseWriter, r *http.Request) {
677	user := getAuthUser(r)
678	if r.Method == "POST" {
679		if !user.IsAdmin {
680			renderDefaultError(w, http.StatusForbidden)
681			return
682		}
683		components := strings.Split(r.URL.Path, "/")
684		if len(components) < 5 {
685			renderError(w, "Invalid action", http.StatusBadRequest)
686			return
687		}
688		userName := components[3]
689		action := components[4]
690		var err error
691		if action == "activate" {
692			err = activateUser(userName)
693		} else if action == "impersonate" {
694			if user.ImpersonatingUser != "" {
695				// Don't allow nested impersonation
696				renderError(w, "Cannot nest impersonation, log out from impersonated user first.", 400)
697				return
698			}
699			session, _ := SessionStore.Get(r, "cookie-session")
700			session.Values["auth_user"] = userName
701			session.Values["impersonating_user"] = user.Username
702			session.Save(r, w)
703			log.Printf("User %s impersonated %s", user.Username, userName)
704			http.Redirect(w, r, "/", http.StatusSeeOther)
705			return
706		}
707		if err != nil {
708			log.Println(err)
709			renderDefaultError(w, http.StatusInternalServerError)
710			return
711		}
712		http.Redirect(w, r, "/admin", http.StatusSeeOther)
713	}
714}
715
716func checkDomainHandler(w http.ResponseWriter, r *http.Request) {
717	domain := r.URL.Query().Get("domain")
718	if domain != "" && domains[domain] != "" {
719		w.Write([]byte(domain))
720		return
721	}
722	if domain == c.Host || strings.HasSuffix(domain, "."+c.Host) {
723		w.Write([]byte(domain))
724	}
725	http.Error(w, "Not Found", 404)
726}
727
728func runHTTPServer() {
729	log.Printf("Running http server with hostname %s on port %d.", c.Host, c.HttpPort)
730	var err error
731	t = template.New("main").Funcs(template.FuncMap{
732		"unixTime": time.Unix,
733		"parent":   path.Dir, "hasSuffix": strings.HasSuffix,
734		"safeGeminiURL": func(u string) template.URL {
735			if strings.HasPrefix(u, "gemini://") {
736				return template.URL(u)
737			}
738			return ""
739		}})
740	t, err = t.ParseGlob(path.Join(c.TemplatesDirectory, "*.html"))
741	if err != nil {
742		log.Fatal(err)
743	}
744	serveMux := http.NewServeMux()
745
746	s := strings.SplitN(c.Host, ":", 2)
747	hostname := s[0]
748
749	serveMux.HandleFunc(hostname+"/", rootHandler)
750	serveMux.HandleFunc(hostname+"/my_site", mySiteHandler)
751	serveMux.HandleFunc(hostname+"/me", myAccountHandler)
752	serveMux.HandleFunc(hostname+"/my_site/flounder-archive.zip", archiveHandler)
753	serveMux.HandleFunc(hostname+"/admin", adminHandler)
754	serveMux.HandleFunc(hostname+"/edit/", editFileHandler)
755	serveMux.HandleFunc(hostname+"/upload", uploadFilesHandler)
756	serveMux.Handle(hostname+"/login", limit(http.HandlerFunc(loginHandler)))
757	serveMux.Handle(hostname+"/register", limit(http.HandlerFunc(registerHandler)))
758	serveMux.HandleFunc(hostname+"/logout", logoutHandler)
759	serveMux.HandleFunc(hostname+"/delete/", deleteFileHandler)
760	serveMux.HandleFunc(hostname+"/delete-account", deleteAccountHandler)
761	serveMux.HandleFunc(hostname+"/reset-password", resetPasswordHandler)
762
763	// Used by Caddy
764	serveMux.HandleFunc(hostname+"/check-domain", checkDomainHandler)
765
766	// admin commands
767	serveMux.HandleFunc(hostname+"/admin/user/", adminUserHandler)
768
769	wrapped := handlers.CustomLoggingHandler(log.Writer(), serveMux, logFormatter)
770
771	// handle user files based on subdomain or custom domains
772	// also routes to proxy
773	serveMux.HandleFunc("proxy."+hostname+"/", proxyGemini)
774	serveMux.HandleFunc("/", userFile)
775	srv := &http.Server{
776		ReadTimeout:  5 * time.Second,
777		WriteTimeout: 10 * time.Second,
778		IdleTimeout:  120 * time.Second,
779		Addr:         fmt.Sprintf(":%d", c.HttpPort),
780		Handler:      wrapped,
781	}
782	log.Fatal(srv.ListenAndServe())
783}