Parser now requires that both cert/key be provided or neither

2021-02-09 17:38:50 +00:00 · 2021-02-09 17:38:50 +00:00 · 818e8e3781
commit 818e8e3781
parent 8a4fb790cf
2 changed files with 16 additions and 12 deletions
--- a/yesod-bin/Devel.hs
+++ b/yesod-bin/Devel.hs
@ -128,8 +128,7 @@ data DevelOpts = DevelOpts
      , proxyTimeout    :: Int
      , useReverseProxy :: Bool
      , develHost       :: Maybe String
-      , certPath        :: Maybe FilePath
-      , keyPath         :: Maybe FilePath
+      , cert            :: Maybe (FilePath, FilePath)
      } deriving (Show, Eq)

 -- | Run a reverse proxy from the develPort and develTlsPort ports to
@ -176,8 +175,9 @@ reverseProxy opts appPortVar = do
        runProxyTls port app = do
          let certDef = $(embedFile "certificate.pem")
              keyDef = $(embedFile "key.pem")
-              certOpts = bisequence $ (certPath &&& keyPath) opts
-              theSettings = maybe (tlsSettingsMemory certDef keyDef) (uncurry tlsSettings) certOpts
+              theSettings = case cert opts of
+                Nothing -> tlsSettingsMemory certDef keyDef
+                Just (c,k) -> tlsSettings c k
          runTLS theSettings (setPort port defaultSettings') $ \req send -> do
            let req' = req
                    { requestHeaders
--- a/yesod-bin/main.hs
+++ b/yesod-bin/main.hs
@ -2,6 +2,7 @@
 {-# LANGUAGE RecordWildCards             #-}
 module Main (main) where

+import           Data.Bitraversable     (bisequence)
 import           Data.Monoid
 import           Data.Version           (showVersion)
 import           Options.Applicative
@ -36,8 +37,7 @@ data Command = Init [String]
                     , proxyTimeout     :: Int
                     , noReverseProxy   :: Bool
                     , develHost        :: Maybe String
-                     , certPath         :: Maybe FilePath
-                     , keyPath          :: Maybe FilePath
+                     , cert             :: Maybe (FilePath, FilePath)
                     }
             | DevelSignal
             | Test
@ -92,8 +92,7 @@ main = do
                             , proxyTimeout = proxyTimeout
                             , useReverseProxy = not noReverseProxy
                             , develHost    = develHost
-                             , certPath     = certPath
-                             , keyPath      = keyPath
+                             , cert         = cert
                             } develExtraArgs
    DevelSignal     -> develSignal
  where
@ -171,10 +170,15 @@ develOptions = Devel <$> optStr ( long "success-hook" <> short 's' <> metavar "C
                            <> help "Disable reverse proxy" )
                     <*> optStr (long "host" <> metavar "HOST"
                            <> help "Host interface to bind to; IP address, '*' for all interfaces, '*4' for IP4, '*6' for IP6")
-                     <*> optStr (long "cert" <> metavar "CERT"
-                            <> help "Path to TLS certificate file, does nothing if --key is not also defined")
-                     <*> optStr (long "key" <> metavar "KEY"
-                            <> help "Path to TLS key file, does nothing if --cert is not also defined")
+                     <*> optionPair
+                            (strOption (long "cert" <> metavar "CERT"
+                                   <> help "Path to TLS certificate file, requires that --key is also defined"))
+                            (strOption (long "key" <> metavar "KEY"
+                                   <> help "Path to TLS key file, requires that --cert is also defined"))
+
+optionPair :: Parser a -> Parser b -> Parser (Maybe (a,b))
+optionPair pa pb = Just <$> liftA2 (,) pa pb
+                   <|> pure Nothing

 extraStackArgs :: Parser [String]
 extraStackArgs = many (strOption ( long "extra-stack-arg" <> short 'e' <> metavar "ARG"