xray-web · Lissy93 · Jun 10, 2024 · Jun 10, 2024 · Jun 10, 2024 · Lissy93
@@ -42,3 +42,4 @@ deps:
 env:
 	@source .env
 .PHONY: env
+
@@ -5,7 +5,6 @@ import (
 	"encoding/json"
 	"net"
 	"net/http"
-	"net/url"
 	"slices"
 	"sort"
 	"sync"
@@ -129,29 +128,16 @@ func checkDomainAgainstDNSServers(domain string) []Blocklist {
 	return results
 }
 
-func urlToDomain(rawURL string) (string, error) {
-	parsedURL, err := url.Parse(rawURL)
-	if err != nil {
-		return "", err
-	}
-	return parsedURL.Hostname(), nil
-}
-
 func HandleBlockLists() http.Handler {
 	type Response struct {
 		BlockLists []Blocklist `json:"blocklists"`
 	}
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		rawURL := r.URL.Query().Get("url")
-		if rawURL == "" {
-			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
-			return
-		}
-		domain, err := urlToDomain(rawURL)
+		rawURL, err := extractURL(r)
 		if err != nil {
-			JSONError(w, ErrInvalidURL, http.StatusBadRequest)
+			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
-		json.NewEncoder(w).Encode(Response{BlockLists: checkDomainAgainstDNSServers(domain)})
+		json.NewEncoder(w).Encode(Response{BlockLists: checkDomainAgainstDNSServers(rawURL.Hostname())})
 	})
 }
@@ -7,7 +7,6 @@ import (
 	"io"
 	"net/http"
 	"strconv"
-	"strings"
 	"time"
 )
 
@@ -32,9 +31,6 @@ type CarbonData struct {
 
 // Function to get the HTML size of the website
 func getHtmlSize(ctx context.Context, url string) (int, error) {
-	if !strings.HasPrefix(url, "http://") && !strings.HasPrefix(url, "https://") {
-		url = "http://" + url
-	}
 	client := &http.Client{
 		Timeout: time.Second * 5,
 	}
@@ -94,12 +90,13 @@ func getCarbonData(ctx context.Context, sizeInBytes int) (*CarbonData, error) {
 
 func HandleCarbon() http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		url := r.URL.Query().Get("url")
-		if url == "" {
+		rawURL, err := extractURL(r)
+		if err != nil {
 			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
 
+		url := rawURL.String()
 		sizeInBytes, err := getHtmlSize(r.Context(), url)
 		if err != nil {
 			JSONError(w, fmt.Errorf("error getting HTML size: %v", err), http.StatusInternalServerError)

@@ -4,7 +4,6 @@ import (
 	"context"
 	"fmt"
 	"net/http"
-	"strings"
 	"time"
 
 	"github.com/chromedp/cdproto/network"
@@ -74,19 +73,16 @@ func HandleCookies() http.Handler {
 		ClientCookies []map[string]any `json:"clientCookies"`
 	}
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		url := r.URL.Query().Get("url")
-		if url == "" {
+		rawURL, err := extractURL(r)
+		if err != nil {
 			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
-		// Ensure the URL includes a scheme
-		if !strings.HasPrefix(url, "http://") && !strings.HasPrefix(url, "https://") {
-			url = "http://" + url
-		}
 
 		var headerCookies []string
 		var clientCookies []map[string]interface{}
 
+		url := rawURL.String()
 		// Fetch headers using http.Get
 		resp, err := http.Get(url)
 		if err != nil {

@@ -5,7 +5,6 @@ import (
 	"fmt"
 	"net"
 	"net/http"
-	"strings"
 	"time"
 )
 
@@ -107,28 +106,18 @@ func resolveDNSRecords(ctx context.Context, hostname string) (*DNSResponse, erro
 
 func HandleDNS() http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		rawURL := r.URL.Query().Get("url")
-		if rawURL == "" {
+		rawURL, err := extractURL(r)
+		if err != nil {
 			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
 
-		// Extract the hostname from the URL
-		hostname := rawURL
-		if strings.HasPrefix(hostname, "http://") || strings.HasPrefix(hostname, "https://") {
-			hostname = strings.ReplaceAll(hostname, "http://", "")
-			hostname = strings.ReplaceAll(hostname, "https://", "")
-			if parts := strings.Split(hostname, "/"); len(parts) > 0 {
-				hostname = parts[0]
-			}
-		}
-
 		// Create a context with timeout
 		ctx, cancel := context.WithTimeout(r.Context(), 10*time.Second)
 		defer cancel()
 
 		// Resolve DNS records
-		dnsResponse, err := resolveDNSRecords(ctx, hostname)
+		dnsResponse, err := resolveDNSRecords(ctx, rawURL.Hostname())
 		if err != nil {
 			JSONError(w, fmt.Errorf("error resolving DNS: %v", err), http.StatusInternalServerError)
 			return

@@ -5,7 +5,6 @@ import (
 	"fmt"
 	"net"
 	"net/http"
-	"strings"
 	"time"
 )
 
@@ -60,28 +59,24 @@ func resolveDNSServer(ctx context.Context, domain string) ([]Result, error) {
 
 func HandleDNSServer() http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		url := r.URL.Query().Get("url")
-		if url == "" {
+		rawURL, err := extractURL(r)
+		if err != nil {
 			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
 
-		// Extract the domain from the URL
-		domain := strings.ReplaceAll(url, "http://", "")
-		domain = strings.ReplaceAll(domain, "https://", "")
-		domain = strings.TrimSuffix(domain, "/")
-
 		ctx, cancel := context.WithTimeout(r.Context(), 10*time.Second)
 		defer cancel()
 
-		results, err := resolveDNSServer(ctx, domain)
+		hostname := rawURL.Hostname()
+		results, err := resolveDNSServer(ctx, hostname)
 		if err != nil {
 			JSONError(w, fmt.Errorf("error resolving DNS: %v", err), http.StatusInternalServerError)
 			return
 		}
 
 		response := Response{
-			Domain: domain,
+			Domain: hostname,
 			DNS:    results,
 		}
 

@@ -5,15 +5,14 @@ import (
 	"fmt"
 	"net/http"
 	"net/url"
-	"strings"
 )
 
 const dnsGoogleURL = "https://dns.google/resolve"
 
 func resolveDNS(domain string) (map[string]interface{}, error) {
 	dnsTypes := []string{"DNSKEY", "DS", "RRSIG"}
 	records := make(map[string]interface{})
-	domain = strings.TrimSuffix(domain, "")
+
 	for _, typ := range dnsTypes {
 
 		url := fmt.Sprintf("%s?name=%s&type=%s", dnsGoogleURL, url.PathEscape(domain), typ)
@@ -57,13 +56,13 @@ func resolveDNS(domain string) (map[string]interface{}, error) {
 
 func HandleDnsSec() http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		domain := r.URL.Query().Get("url")
-		if domain == "" {
+		rawURL, err := extractURL(r)
+		if err != nil {
 			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
 
-		records, err := resolveDNS(domain)
+		records, err := resolveDNS(rawURL.String())
 		if err != nil {
 			JSONError(w, err, http.StatusInternalServerError)
 			return

@@ -35,14 +35,8 @@ type wafResponse struct {
 }
 
 func checkWAF(url string) (wafResponse, error) {
-	fullURL := ""
-	if !strings.HasPrefix(url, "http") {
-		fullURL = "http://" + url
-	} else {
-		fullURL = url
-	}
-
-	resp, err := http.Get(fullURL)
+	// TODO(Lissy93): does this test require we set scheme to http?
+	resp, err := http.Get(url)
 	if err != nil {
 		return wafResponse{}, fmt.Errorf("error fetching URL: %s", err.Error())
 	}
@@ -108,13 +102,13 @@ func checkWAF(url string) (wafResponse, error) {
 
 func HandleFirewall() http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		domain := r.URL.Query().Get("url")
-		if domain == "" {
+		rawURL, err := extractURL(r)
+		if err != nil {
 			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
 
-		result, err := checkWAF(domain)
+		result, err := checkWAF(rawURL.String())
 		if err != nil {
 			JSONError(w, err, http.StatusInternalServerError)
 			return

@@ -3,7 +3,6 @@ package handlers
 import (
 	"net"
 	"net/http"
-	"strings"
 )
 
 func lookupAsync(address string) (map[string]interface{}, error) {
@@ -26,14 +25,13 @@ func lookupAsync(address string) (map[string]interface{}, error) {
 
 func HandleGetIP() http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		url := r.URL.Query().Get("url")
-		if url == "" {
+		rawURL, err := extractURL(r)
+		if err != nil {
 			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
 
-		address := strings.ReplaceAll(strings.ReplaceAll(url, "https://", ""), "http://", "")
-		result, err := lookupAsync(address)
+		result, err := lookupAsync(rawURL.Hostname())
 		if err != nil {
 			JSONError(w, err, http.StatusInternalServerError)
 			return

@@ -6,18 +6,13 @@ import (
 
 func HandleGetHeaders() http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		url := r.URL.Query().Get("url")
-		if url == "" {
+		rawURL, err := extractURL(r)
+		if err != nil {
 			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
 
-		// Ensure the URL has a scheme
-		if !(len(url) >= 7 && (url[:7] == "http://" || url[:8] == "https://")) {
-			url = "http://" + url
-		}
-
-		resp, err := http.Get(url)
+		resp, err := http.Get(rawURL.String())
 		if err != nil {
 			JSONError(w, err, http.StatusInternalServerError)
 			return

@@ -14,10 +14,6 @@ type HSTSResponse struct {
 }
 
 func checkHSTS(url string) (HSTSResponse, error) {
-	if !strings.HasPrefix(url, "http://") && !strings.HasPrefix(url, "https://") {
-		url = "http://" + url // Assuming HTTP by default
-	}
-
 	client := &http.Client{}
 
 	req, err := http.NewRequest("HEAD", url, nil)
@@ -54,13 +50,13 @@ func checkHSTS(url string) (HSTSResponse, error) {
 
 func HandleHsts() http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		url := r.URL.Query().Get("url")
-		if url == "" {
+		rawURL, err := extractURL(r)
+		if err != nil {
 			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
 
-		result, err := checkHSTS(url)
+		result, err := checkHSTS(rawURL.String())
 		if err != nil {
 			JSONError(w, err, http.StatusInternalServerError)
 			return

@@ -14,9 +14,9 @@ type HTTPSecurityResponse struct {
 }
 
 func checkHTTPSecurity(url string) (HTTPSecurityResponse, error) {
-	fullURL := "http://" + url
-
-	resp, err := http.Get(fullURL)
+	// fullURL := "http://" + url
+	// TODO(Lissy93): does this test require we set scheme to http?
+	resp, err := http.Get(url)
 	if err != nil {
 		return HTTPSecurityResponse{}, fmt.Errorf("error making request: %s", err.Error())
 	}
@@ -35,13 +35,13 @@ func checkHTTPSecurity(url string) (HTTPSecurityResponse, error) {
 
 func HandleHttpSecurity() http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		url := r.URL.Query().Get("url")
-		if url == "" {
+		rawURL, err := extractURL(r)
+		if err != nil {
 			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
 
-		result, err := checkHTTPSecurity(url)
+		result, err := checkHTTPSecurity(rawURL.String())
 		if err != nil {
 			JSONError(w, err, http.StatusInternalServerError)
 			return

@@ -148,13 +148,13 @@ func unzip(src, dest string) error {
 
 func HandleLegacyRank() http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-		url := r.URL.Query().Get("url")
-		if url == "" {
+		rawURL, err := extractURL(r)
+		if err != nil {
 			JSONError(w, ErrMissingURLParameter, http.StatusBadRequest)
 			return
 		}
 
-		result, err := checkLegacyRank(url)
+		result, err := checkLegacyRank(rawURL.String())
 		if err != nil {
 			JSONError(w, err, http.StatusInternalServerError)
 			return