Update README, align features

- Remove SkipRobots feature, we always want to be friendly, there is no
realistic scenario where I would want to have this.

- Remove SkipSitemapsDiscovery features, instead plan to implement
discovery sources later on. Better fits the original use case.

- Rename domains config to aliases, as this is its purpose.

- Paths constraints are now controlled via ignores.

Author: mariuswilms

README.md

@@ -66,19 +66,10 @@ type APIRequest struct {
 	URL  string   `json:"url"`
 	URLs []string `json:"urls"`
 
-	AllowDomains []string `json:"domains"`
-	AllowPaths   []string `json:"paths"`
-	DenyPaths    []string `json:"!paths"`
+	AliasedDomains []string `json:"aliases"`
+	IgnorePaths    []string `json:"ignores"`
 
-	UserAgent string `json:"user_agent"`
-
-	// If true, we'll bypass the robots.txt check, however we'll still
-	// download the file to look for sitemaps.
-	SkipRobots bool `json:"skip_robots"`
-
-	// If true we'll not use any sitemaps found automatically, only those that
-	// have been explicitly provided.
-	SkipSitemapDiscovery bool `json:"skip_sitemap_discovery"`
+	UserAgent string `json:"ua"`
 
 	// A list of authentication configurations, that are used in the run.
 	AuthConfigs []*AuthConfig `json:"auth"`
@@ -126,37 +117,33 @@ func (req *APIRequest) GetURLs(clean bool) []string {
 }
 
 func (req *APIRequest) GetAllowDomains() []string {
-	// Ensure at least the URL host is in allowed domains.
 	var domains []string
-	if req.AllowDomains != nil {
-		domains = req.AllowDomains
-	} else {
-		for _, u := range req.GetURLs(false) {
-			p, err := url.Parse(u)
-			if err != nil {
-				slog.Error("Failed to parse URL from request, not allowing that domain.", "url", u, "error", err)
-				continue
-			}
-			domains = append(domains, p.Hostname())
+
+	// The domains of the targets are allways allowed.
+	for _, u := range req.GetURLs(false) {
+		p, err := url.Parse(u)
+		if err != nil {
+			slog.Error("Failed to parse URL from request, not allowing that domain.", "url", u, "error", err)
+			continue
 		}
+		domains = append(domains, p.Hostname())
 	}
-	return domains
-}
 
-func (req *APIRequest) GetAllowPaths() []string {
-	var paths []string
-
-	if req.AllowPaths != nil {
-		paths = req.AllowPaths
+	if req.AliasedDomains != nil {
+		domains = append(domains, req.AliasedDomains...)
 	}
-	return paths
+
+	return domains
 }
 
-func (req *APIRequest) GetDenyPaths() []string {
+func (req *APIRequest) GetIgnorePaths() []string {
 	var paths []string
 
-	if req.DenyPaths != nil {
-		paths = req.DenyPaths
+	if req.IgnorePaths == nil {
+		return paths
+	}
+	for _, p := range req.IgnorePaths {
+		paths = append(paths, p)
 	}
 	return paths
 }
@@ -228,14 +215,3 @@ type APIResponse struct {
 type APIError struct {
 	Message string `json:"message"`
 }
-
-type CloudEventJson struct {
-	Specversion     string `json:"specversion"`
-	Event_type      string `json:"type"`
-	Source          string `json:"source"`
-	Subject         string `json:"subject"`
-	Id              string `json:"id"`
-	Time            string `json:"time"`
-	Datacontenttype string `json:"datacontenttype"`
-	Data            string `json:"data"`
-}

api.go

@@ -46,6 +46,7 @@ require (
 	github.com/aymanbagabas/go-osc52/v2 v2.0.1 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/bits-and-blooms/bitset v1.13.0 // indirect
+	github.com/bmatcuk/doublestar/v4 v4.8.1 // indirect
 	github.com/cespare/xxhash/v2 v2.3.0 // indirect
 	github.com/charmbracelet/lipgloss v0.13.0 // indirect
 	github.com/charmbracelet/x/ansi v0.1.4 // indirect
@@ -75,6 +76,7 @@ require (
 	github.com/prometheus/procfs v0.15.1 // indirect
 	github.com/redis/go-redis/extra/rediscmd/v9 v9.5.3 // indirect
 	github.com/rivo/uniseg v0.4.7 // indirect
+	github.com/sabhiram/go-gitignore v0.0.0-20210923224102-525f6e181f06 // indirect
 	github.com/xo/terminfo v0.0.0-20220910002029-abceb7e1c41e // indirect
 	github.com/yuin/gopher-lua v1.1.1 // indirect
 	go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.28.0 // indirect

go.mod

@@ -18,6 +18,8 @@ github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM=
 github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw=
 github.com/bits-and-blooms/bitset v1.13.0 h1:bAQ9OPNFYbGHV6Nez0tmNI0RiEu7/hxlYJRUA0wFAVE=
 github.com/bits-and-blooms/bitset v1.13.0/go.mod h1:7hO7Gc7Pp1vODcmWvKMRA9BNmbv6a/7QIWpPxHddWR8=
+github.com/bmatcuk/doublestar/v4 v4.8.1 h1:54Bopc5c2cAvhLRAzqOGCYHYyhcDHsFF4wWIR5wKP38=
+github.com/bmatcuk/doublestar/v4 v4.8.1/go.mod h1:xBQ8jztBU6kakFMg+8WGxn0c6z1fTSPVIjEY1Wr7jzc=
 github.com/bsm/ginkgo/v2 v2.12.0 h1:Ny8MWAHyOepLGlLKYmXG4IEkioBysk6GpaRTLC8zwWs=
 github.com/bsm/ginkgo/v2 v2.12.0/go.mod h1:SwYbGRRDovPVboqFv0tPTcG1sN61LM1Z4ARdbAV9g4c=
 github.com/bsm/gomega v1.27.10 h1:yeMWxP2pV2fG3FgAODIY8EiRE3dy0aeFYt4l7wh6yKA=
@@ -129,10 +131,13 @@ github.com/redis/go-redis/v9 v9.5.4/go.mod h1:hdY0cQFCN4fnSYT6TkisLufl/4W5UIXyv0
 github.com/rivo/uniseg v0.2.0/go.mod h1:J6wj4VEh+S6ZtnVlnTBMWIodfgj8LQOQFoIToxlJtxc=
 github.com/rivo/uniseg v0.4.7 h1:WUdvkW8uEhrYfLC4ZzdpI2ztxP1I582+49Oc5Mq64VQ=
 github.com/rivo/uniseg v0.4.7/go.mod h1:FN3SvrM+Zdj16jyLfmOkMNblXMcoc8DfTHruCPUcx88=
+github.com/sabhiram/go-gitignore v0.0.0-20210923224102-525f6e181f06 h1:OkMGxebDjyw0ULyrTYWeN0UNCCkmCWfjPnIA2W6oviI=
+github.com/sabhiram/go-gitignore v0.0.0-20210923224102-525f6e181f06/go.mod h1:+ePHsJ1keEjQtpvf9HHw0f4ZeJ0TLRsxhunSI2hYJSs=
 github.com/saintfish/chardet v0.0.0-20230101081208-5e3ef4b5456d h1:hrujxIzL1woJ7AwssoOcM/tq5JjjG2yYOc8odClEiXA=
 github.com/saintfish/chardet v0.0.0-20230101081208-5e3ef4b5456d/go.mod h1:uugorj2VCxiV1x+LzaIdVa9b4S4qGAcH6cbhh4qVxOU=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
+github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
 github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/temoto/robotstxt v1.1.2 h1:W2pOjSJ6SWvldyEuiFXNxz3xZ8aiWX5LbfDiOFd7Fxg=
@@ -233,5 +238,7 @@ google.golang.org/grpc v1.64.0 h1:KH3VH9y/MgNQg1dE7b3XfVK0GsPSIzJwdF617gUSbvY=
 google.golang.org/grpc v1.64.0/go.mod h1:oxjF8E3FBnjp+/gVFYdWacaLDx9na1aqy9oovLpxQYg=
 google.golang.org/protobuf v1.34.2 h1:6xV6lTsCfpGD21XK49h7MhtcApnLqkfYgPcdHftf6hg=
 google.golang.org/protobuf v1.34.2/go.mod h1:qYOHts0dSfpeUzUFpOMr/WGzszTmLH+DiWniOlNbLDw=
+gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
+gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=

go.sum

@@ -13,10 +13,10 @@ import (
 	"log/slog"
 	"net/http"
 	"net/url"
-	"regexp"
 	"strings"
 
 	whatwgUrl "github.com/nlnwa/whatwg-url/url"
+	ignore "github.com/sabhiram/go-gitignore"
 )
 
 type EnqueueFn func(ctx context.Context, c *Collector, u string) error // Enqueues a scrape.
@@ -87,8 +87,7 @@ func NewCollector(
 
 type Collector struct {
 	AllowDomains []string // AllowedDomains is a domain allowlist.
-	AllowPaths   []string
-	DenyPaths    []string
+	IgnorePaths  []string
 
 	// UserAgent is the User-Agent string used by HTTP requests
 	UserAgent string
@@ -308,17 +307,7 @@ func (c *Collector) IsVisitAllowed(in string) (bool, error) {
 				return true
 			}
 		}
-		for _, allow := range c.AllowPaths {
-			if ok, err := regexp.MatchString(allow, u.Path); !ok || err != nil {
-				return false
-			}
-		}
-		for _, deny := range c.DenyPaths {
-			if ok, err := regexp.MatchString(deny, u.Path); ok || err != nil {
-				return false
-			}
-		}
-		return true
+		return !ignore.CompileIgnoreLines(c.IgnorePaths...).MatchesPath(u.Path)
 	}
 	if !checkPath(p) {
 		return false, ErrForbiddenPath

internal/collector/collector.go

@@ -12,6 +12,14 @@ import (
 	"tobey/internal/collector"
 )
 
+type DiscoverySource string
+
+const (
+	DiscoverySourceSitemap DiscoverySource = "sitemap"
+	DiscoverySourceRobots  DiscoverySource = "robots"
+	DiscoverySourceLink    DiscoverySource = "link"
+)
+
 // ResultReporter is a function type that can be used to report the result of a crawl. It comes
 // with a preconfigured config.
 type ResultReporter func(ctx context.Context, run *Run, res *collector.Response) error

results.go

@@ -20,7 +20,7 @@ import (
 )
 
 type diskResult struct {
-	Run                string      `json:"run_uuid"`
+	Run                string      `json:"run"`
 	RunMetadata        interface{} `json:"run_metadata,omitempty"`
 	RequestURL         string      `json:"request_url"`
 	ResponseBody       []byte      `json:"response_body"` // Will be base64 encoded when JSON marshalled.

results_disk.go

@@ -19,11 +19,12 @@ import (
 var webhookHTTPClient = CreateRetryingHTTPClient(NoAuthFn, UserAgent)
 
 type webhookResult struct {
-	Run                string      `json:"run_uuid"`
-	RunMetadata        interface{} `json:"run_metadata,omitempty"`
-	RequestURL         string      `json:"request_url"`
-	ResponseBody       []byte      `json:"response_body"` // Will be base64 encoded when JSON marshalled.
-	ResponseStatusCode int         `json:"response_status_code"`
+	Run         string      `json:"run_uuid"`
+	RunMetadata interface{} `json:"run_metadata,omitempty"`
+	// DiscoveredBy       []DiscoverySource `json:"discovered_by"` // TODO: Implement.
+	RequestURL         string `json:"request_url"`
+	ResponseBody       []byte `json:"response_body"` // Will be base64 encoded when JSON marshalled.
+	ResponseStatusCode int    `json:"response_status_code"`
 }
 
 // WebhookResultReporterConfig defines the configuration for webhook endpoints

results_webhook.go

@@ -40,9 +40,12 @@ func setupRoutes(runs *RunManager, queue ctrlq.VisitWorkQueue, rr ResultReporter
 
 		var req APIRequest
 		if bytes.HasPrefix(body, []byte("http://")) || bytes.HasPrefix(body, []byte("https://")) {
-			// As a special case, and to support minimalism, we allow directly
-			// posting a single URL.
-			req.URL = string(body)
+			// Support both single URL and newline-delimited URLs in plaintext for minimalism.
+			urls := bytes.Split(bytes.TrimSpace(body), []byte("\n"))
+
+			for _, url := range urls {
+				req.URLs = append(req.URLs, string(bytes.TrimSpace(url)))
+			}
 		} else {
 			err := json.Unmarshal(body, &req)
 			if err != nil {
@@ -89,14 +92,10 @@ func setupRoutes(runs *RunManager, queue ctrlq.VisitWorkQueue, rr ResultReporter
 				AuthConfigs: req.GetAuthConfigs(),
 
 				AllowDomains: req.GetAllowDomains(),
-				AllowPaths:   req.GetAllowPaths(),
-				DenyPaths:    req.GetDenyPaths(),
+				IgnorePaths:  req.GetIgnorePaths(),
 
 				UserAgent: req.GetUserAgent(),
 
-				SkipRobots:           req.SkipRobots,
-				SkipSitemapDiscovery: req.SkipSitemapDiscovery,
-
 				ResultReporterDSN: req.ResultReporterDSN,
 			},
 		}

routes.go

@@ -42,14 +42,10 @@ type SerializableRun struct {
 	AuthConfigs []*AuthConfig
 
 	AllowDomains []string
-	AllowPaths   []string
-	DenyPaths    []string
+	IgnorePaths  []string
 
 	UserAgent string
 
-	SkipRobots           bool
-	SkipSitemapDiscovery bool
-
 	ResultReporterDSN string
 }
 
@@ -179,9 +175,6 @@ func (r *Run) GetCollector(ctx context.Context, q ctrlq.VisitWorkQueue, rr Resul
 		// must ensure that this Client isn't shared with i.e. the Robots instance.
 		r.GetClient(),
 		func(a string, u string) (bool, error) {
-			if r.SkipRobots {
-				return true, nil
-			}
 			return r.robots.Check(u, r.getAuthFn(), a)
 		},
 		getEnqueueFn(r, q, p),
@@ -190,8 +183,7 @@ func (r *Run) GetCollector(ctx context.Context, q ctrlq.VisitWorkQueue, rr Resul
 
 	c.UserAgent = r.UserAgent
 	c.AllowDomains = r.AllowDomains
-	c.AllowPaths = r.AllowPaths
-	c.DenyPaths = r.DenyPaths
+	c.IgnorePaths = r.IgnorePaths
 
 	return c
 }
@@ -213,11 +205,8 @@ func (r *Run) Start(ctx context.Context, q ctrlq.VisitWorkQueue, rr ResultReport
 		}
 	}
 
-	// This only skips *automatic* sitemap discovery, if the user provided sitemaps we still want to crawl them.
-	if !r.SkipSitemapDiscovery {
-		for _, u := range r.sitemaps.Discover(ctx, r.getAuthFn(), r.UserAgent, urls) {
-			r.sitemaps.Drain(context.WithoutCancel(ctx), r.getAuthFn(), r.UserAgent, u, c.Enqueue)
-		}
+	for _, u := range r.sitemaps.Discover(ctx, r.getAuthFn(), r.UserAgent, urls) {
+		r.sitemaps.Drain(context.WithoutCancel(ctx), r.getAuthFn(), r.UserAgent, u, c.Enqueue)
 	}
 }