Fix glob in exclude check.

README.md

@@ -44,7 +44,6 @@ After=network.target
 User=nginx
 Group=nginx
 RuntimeDirectory=nginx-cache-purge
-PIDFile=/var/run/nginx-cache-purge/service.pid
 ExecStart=/usr/local/bin/nginx-cache-purge server
 Restart=always
 RestartSec=3s
@@ -75,8 +74,9 @@ http {
 
     server {
         location / {
+            proxy_cache_bypass $is_purge;
             if ($is_purge) {
-                proxy_pass http://unix:/var/run/nginx-cache-purge/http.sock;
+                proxy_pass http://unix:/run/nginx-cache-purge/http.sock;
                 rewrite ^ /?path=/var/nginx/proxy_temp/cache&key=$server_name$request_uri break;
             }
 
@@ -100,8 +100,9 @@ http {
 
     server {
         location / {
+            proxy_cache_bypass $is_purge;
             if ($is_purge) {
-                proxy_pass http://unix:/var/run/nginx-cache-purge/http.sock;
+                proxy_pass http://unix:/run/nginx-cache-purge/http.sock;
                 rewrite ^ /?path=/var/nginx/proxy_temp/cache&key=$server_name$request_uri break;
             }
 
@@ -125,8 +126,45 @@ http {
 
     server {
         location / {
+            proxy_cache_bypass $is_purge;
             if ($is_purge) {
-                proxy_pass http://unix:/var/run/nginx-cache-purge/http.sock;
+                proxy_pass http://unix:/run/nginx-cache-purge/http.sock;
+                rewrite ^ /?path=/var/nginx/proxy_temp/cache&key=$server_name$request_uri break;
+            }
+
+            proxy_cache my_cache;
+            proxy_pass http://upstream;
+        }
+    }
+}
+```
+
+### Auth via header and IP white list.
+```
+http {
+    map $http_purge_token $is_purge {
+        default 0;
+        nnCgKUx1p2bIABXR 1;
+    }
+
+    geo $purge_allowed {
+        default 0;
+        127.0.0.1 1;
+        192.168.0.0/24 1;
+    }
+
+    proxy_cache_path /var/nginx/proxy_temp/cache levels=1:2 keys_zone=my_cache:10m;
+    proxy_cache_key $server_name$request_uri;
+
+    server {
+        location / {
+            set $should_purge $purge_allowed;
+            if ($is_purge != 1) {
+                set $should_purge 0;
+            }
+            proxy_cache_bypass $should_purge;
+            if ($should_purge) {
+                proxy_pass http://unix:/run/nginx-cache-purge/http.sock;
                 rewrite ^ /?path=/var/nginx/proxy_temp/cache&key=$server_name$request_uri break;
             }
 
@@ -151,7 +189,7 @@ http {
         location ~ /purge(/.*) {
             allow 127.0.0.1;
             deny all;
-            proxy_pass http://unix:/var/run/nginx-cache-purge/http.sock;
+            proxy_pass http://unix:/run/nginx-cache-purge/http.sock;
             rewrite ^ /?path=/var/nginx/proxy_temp/cache&key=$server_name$1 break;
         }
     }

main.go

@@ -5,6 +5,7 @@ import (
 	"crypto/md5"
 	"encoding/hex"
 	"fmt"
+	"log"
 	"os"
 	"path/filepath"
 	"regexp"
@@ -17,7 +18,7 @@ import (
 const (
 	serviceName        = "nginx-cache-purge"
 	serviceDescription = "Tool to help purge Nginx cache "
-	serviceVersion     = "0.1.1"
+	serviceVersion     = "0.1.4"
 )
 
 // App structure to access global app variables.
@@ -42,7 +43,7 @@ func (a *App) PurgeCache(CachePath string, Key string, ExcludeKeys []string) err
 		for _, exclude := range ExcludeKeys {
 			if globRegex.MatchString(exclude) {
 				g, err := glob.Compile(exclude)
-				if err != nil && g != nil && g.Match(Key) {
+				if err == nil && g != nil && g.Match(Key) {
 					return true
 				}
 			}
@@ -62,7 +63,7 @@ func (a *App) PurgeCache(CachePath string, Key string, ExcludeKeys []string) err
 	if !globRegex.MatchString(Key) {
 		// If excluded, skip the key.
 		if keyIsExcluded(Key) {
-			fmt.Println("Key", Key, "is excluded, will not purge.")
+			log.Println("Key", Key, "is excluded, will not purge.")
 			return nil
 		}
 
@@ -82,7 +83,7 @@ func (a *App) PurgeCache(CachePath string, Key string, ExcludeKeys []string) err
 			}
 			// If this file matches our key hash then delete.
 			if info.Name() == keyHash {
-				fmt.Printf("Purging %s as it matches the key %s requested to be purged.\n", filePath, Key)
+				log.Printf("Purging %s as it matches the key %s requested to be purged.\n", filePath, Key)
 				err := os.Remove(filePath)
 				if err != nil {
 					return err
@@ -127,12 +128,12 @@ func (a *App) PurgeCache(CachePath string, Key string, ExcludeKeys []string) err
 					if g.Match(keyRead) {
 						// If excluded, skip the key.
 						if keyIsExcluded(keyRead) {
-							fmt.Println("Key", keyRead, "is excluded, will not purge.")
+							log.Println("Key", keyRead, "is excluded, will not purge.")
 							return nil
 						}
 
 						// Delete the file.
-						fmt.Printf("Purging %s as it matches the key %s requested to be purged.\n", filePath, Key)
+						log.Printf("Purging %s as it matches the key %s requested to be purged.\n", filePath, Key)
 						err := os.Remove(filePath)
 						if err != nil {
 							return err

serverCmd.go

@@ -3,6 +3,7 @@ package main
 import (
 	"fmt"
 	"io"
+	"log"
 	"net"
 	"net/http"
 	"os"
@@ -50,7 +51,7 @@ func (a *ServerCmd) Run() error {
 	// Determine UNIX socket path.
 	unixSocket := a.Socket
 	if unixSocket == "" {
-		unixSocket = "/var/run/nginx-cache-purge/http.sock"
+		unixSocket = "/run/nginx-cache-purge/http.sock"
 	}
 
 	// If socket exists, remove it.
@@ -66,7 +67,7 @@ func (a *ServerCmd) Run() error {
 	defer listener.Close()
 
 	// Start the FastCGI server.
-	fmt.Println("Starting server at", unixSocket)
+	log.Println("Starting server at", unixSocket)
 	http.HandleFunc("/", a.ServeHTTP)
 	err = http.Serve(listener, nil)