Merge pull request #18 from paulrbr-fl/pre-function-pluginsv0.30

config(dhall): add a pre-function lua definition for HTTPS redirects
author: paulrbr-fl <43074087+paulrbr-fl@users.noreply.github.com> 2020-01-02 16:25:37 +0100
committer: GitHub <noreply@github.com> 2020-01-02 16:25:37 +0100
commit: 25250c8c24a3c0b32c92eee5552ad7156115f03c (patch)
tree: 02c178a19be0e233813600531c85ef7ad5e4c51c
parent: 027a2fa61a6044b2e967b29195312e4d98a96078 (diff)
parent: a3c4b3d5444e5d79afbd823a9acc12220a91f41f (diff)
download: ansible-kong-app-25250c8c24a3c0b32c92eee5552ad7156115f03c.tar.gz
ansible-kong-app-25250c8c24a3c0b32c92eee5552ad7156115f03c.tar.zst
ansible-kong-app-25250c8c24a3c0b32c92eee5552ad7156115f03c.zip
10 files changed, 79 insertions, 34 deletions
diff --git a/.travis.yml b/.travis.yml
index 7bf8ed8..14ab868 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -1,25 +1,36 @@
 ---
 language: nix
+nix: 2.3.1
 # Use the new container infrastructure
 sudo: false
 install:
+  # Update nix channels
+  - nix-channel --add https://nixos.org/channels/nixpkgs-19.09-darwin nixpkgs
+  - nix-channel --remove nixpkgs-unstable
+  - nix-channel --update
  # Install ansible
-  - nix-env -i python2.7-ansible python2.7-ansible-lint
+  - nix-env -i python3 ansible ansible-lint
  - nix-env -if ./dhall-1.26.1.nix
  # Check ansible version
  - ansible --version
+  - ansible-lint --version
  # Create ansible.cfg with correct roles_path
  - printf '[defaults]\nroles_path=../' >ansible.cfg
+  # Basic webserver to fake a Kong
+  - |
+    ./tests/kong.py&
 script:
  # Basic role syntax check
  - ansible-playbook tests/test.yml -i tests/inventory --syntax-check
  - ansible-lint .
-  - ansible-playbook tests/test.yml -i tests/inventory -C -D
+  - ansible-playbook tests/test.yml -i tests/inventory -D
  - scripts/dhall_check.sh
 notifications:
diff --git a/dhall/functions.dhall b/dhall/functions.dhall
deleted file mode 100644
index 6465760..0000000
--- a/dhall/functions.dhall
+++ /dev/null
@@ -1 +0,0 @@
-{ Server = ./server/functions.dhall }
diff --git a/dhall/server/service/plugin/Config.dhall b/dhall/server/service/plugin/Config.dhall
index ea53361..1f60080 100644
--- a/dhall/server/service/plugin/Config.dhall
+++ b/dhall/server/service/plugin/Config.dhall
@@ -1,9 +1,8 @@
 < CorrelationId :
-        { header_name : Text, echo_downstream : Bool, generator : Text }
+    { header_name : Text, echo_downstream : Bool, generator : Text }
-| RequestTransformer :
+| RequestTransformer : { add : { headers : List Text } }
-        { add : { headers : List Text } }
 | RequestTermination :
-        { status_code : Natural, content_type : Text, body : Text }
+    { status_code : Natural, content_type : Text, body : Text }
-| IPRestriction :
+| IPRestriction : { whitelist : Text }
-        { whitelist : Text }
+| PreFunction : { functions : List Text }
 >
diff --git a/dhall/server/service/plugin/functions.dhall b/dhall/server/service/plugin/functions.dhall
new file mode 100644
index 0000000..098fba7
--- /dev/null
+++ b/dhall/server/service/plugin/functions.dhall
@@ -0,0 +1,7 @@
+{ mkRequestTermination = ./mkRequestTermination.dhall
+, mkRequestTransformer = ./mkRequestTransformer.dhall
+, mkIPRestriction = ./mkIPRestriction.dhall
+, correlationId = ./correlationId.dhall
+, mkPreFunction = ./mkPreFunction.dhall
+, http2httpsRedirect = ./http2httpsRedirect.dhall
+}
diff --git a/dhall/server/service/plugin/http2httpsRedirect.dhall b/dhall/server/service/plugin/http2httpsRedirect.dhall
new file mode 100644
index 0000000..faa6d79
--- /dev/null
+++ b/dhall/server/service/plugin/http2httpsRedirect.dhall
@@ -0,0 +1,15 @@
+let mkPreFunction = ./mkPreFunction.dhall
+let luaRedirect =
+      ''
+      local scheme = kong.request.get_scheme()
+      if scheme == "http" then
+        local host = kong.request.get_host()
+        local query = kong.request.get_path_with_query()
+        local url = "https://" .. host ..query
+        kong.response.set_header("Location", url)
+        return kong.response.exit(301, url)
+      end
+      ''
+in  mkPreFunction [ luaRedirect ]
diff --git a/dhall/server/service/plugin/mkPreFunction.dhall b/dhall/server/service/plugin/mkPreFunction.dhall
new file mode 100644
index 0000000..ff4f734
--- /dev/null
+++ b/dhall/server/service/plugin/mkPreFunction.dhall
@@ -0,0 +1,9 @@
+let Plugin = ./Plugin.dhall
+let config = ./Config.dhall
+in    λ(functions : List Text)
+    →   { name = "pre-function"
+        , config = config.PreFunction { functions = functions }
+        }
+      : Plugin
diff --git a/dhall/server/service/plugin/package.dhall b/dhall/server/service/plugin/package.dhall
index 872c53b..c231bc6 100644
--- a/dhall/server/service/plugin/package.dhall
+++ b/dhall/server/service/plugin/package.dhall
@@ -1,6 +1 @@
-{ Type = ./Plugin.dhall
+{ Type = ./Plugin.dhall, functions = ./functions.dhall }
-, mkRequestTermination = ./mkRequestTermination.dhall
-, mkRequestTransformer = ./mkRequestTransformer.dhall
-, mkIPRestriction = ./mkIPRestriction.dhall
-, correlationId = ./correlationId.dhall
-}
diff --git a/dhall/types.dhall b/dhall/types.dhall
deleted file mode 100644
index 938dc74..0000000
--- a/dhall/types.dhall
+++ /dev/null
@@ -1,13 +0,0 @@
-{ Vault =
-    ./Vault.dhall
-, Config =
-    ./Config.dhall
-, Server =
-    ./server/Server.dhall
-, Service =
-    ./server/service/Service.dhall
-, Plugin =
-    ./server/service/plugin/Plugin.dhall
-, Route =
-    ./server/service/route/Route.dhall
-}
diff --git a/tests/kong.py b/tests/kong.py
new file mode 100755
index 0000000..32bafb2
--- /dev/null
+++ b/tests/kong.py
@@ -0,0 +1,22 @@
+#!/usr/bin/env python
+from http.server import HTTPServer, CGIHTTPRequestHandler
+class SimpleHTTPRequestHandler(CGIHTTPRequestHandler):
+    def do_GET(self):
+        if self.path == '/services/test':
+            self.send_response(404)
+        else:
+            self.send_response(200)
+        self.send_header('Content-Type', 'application/json')
+        self.end_headers()
+        self.wfile.write(b'{ "data": [] }')
+    def do_POST(self):
+        self.send_response(200)
+        self.end_headers()
+        self.wfile.write(b'Hello, world!')
+httpd = HTTPServer(('127.0.0.1', 8000), SimpleHTTPRequestHandler)
+httpd.serve_forever()
diff --git a/tests/test.yml b/tests/test.yml
index 490c967..36c81a2 100644
--- a/tests/test.yml
+++ b/tests/test.yml
@@ -3,9 +3,10 @@
  remote_user: root
  roles:
    - role: ansible-kong-app
-      kong_servers: 
+      vars:
-        - kong_app_admin_url: http://127.0.0.1:8000
+        kong_servers:
-          kong_app_admin_apikey: ""
+          - kong_app_admin_url: http://127.0.0.1:8000
-          services:
+            kong_app_admin_apikey: ""
-            - url: http://example.com
+            services:
-              name: test
+              - url: http://example.com
+                name: test
author	paulrbr-fl <43074087+paulrbr-fl@users.noreply.github.com>	2020-01-02 16:25:37 +0100
committer	GitHub <noreply@github.com>	2020-01-02 16:25:37 +0100
commit	25250c8c24a3c0b32c92eee5552ad7156115f03c (patch)
tree	02c178a19be0e233813600531c85ef7ad5e4c51c
parent	027a2fa61a6044b2e967b29195312e4d98a96078 (diff)
parent	a3c4b3d5444e5d79afbd823a9acc12220a91f41f (diff)
download	ansible-kong-app-25250c8c24a3c0b32c92eee5552ad7156115f03c.tar.gz ansible-kong-app-25250c8c24a3c0b32c92eee5552ad7156115f03c.tar.zst ansible-kong-app-25250c8c24a3c0b32c92eee5552ad7156115f03c.zip

diff --git a/.travis.yml b/.travis.yml index 7bf8ed8..14ab868 100644 --- a/.travis.yml +++ b/.travis.yml
@@ -1,25 +1,36 @@
1	---	1	---
2	language: nix	2	language: nix
		3	nix: 2.3.1
		4
3		5
4	# Use the new container infrastructure	6	# Use the new container infrastructure
5	sudo: false	7	sudo: false
6		8
7	install:	9	install:
		10	# Update nix channels
		11	- nix-channel --add https://nixos.org/channels/nixpkgs-19.09-darwin nixpkgs
		12	- nix-channel --remove nixpkgs-unstable
		13	- nix-channel --update
		14
8	# Install ansible	15	# Install ansible
9	- nix-env -i python2.7-ansible python2.7-ansible-lint	16	- nix-env -i python3 ansible ansible-lint
10	- nix-env -if ./dhall-1.26.1.nix	17	- nix-env -if ./dhall-1.26.1.nix
11		18
12	# Check ansible version	19	# Check ansible version
13	- ansible --version	20	- ansible --version
		21	- ansible-lint --version
14		22
15	# Create ansible.cfg with correct roles_path	23	# Create ansible.cfg with correct roles_path
16	- printf '[defaults]\nroles_path=../' >ansible.cfg	24	- printf '[defaults]\nroles_path=../' >ansible.cfg
		25	# Basic webserver to fake a Kong
		26	- \|
		27	./tests/kong.py&
17		28
18	script:	29	script:
19	# Basic role syntax check	30	# Basic role syntax check
20	- ansible-playbook tests/test.yml -i tests/inventory --syntax-check	31	- ansible-playbook tests/test.yml -i tests/inventory --syntax-check
21	- ansible-lint .	32	- ansible-lint .
22	- ansible-playbook tests/test.yml -i tests/inventory -C -D	33	- ansible-playbook tests/test.yml -i tests/inventory -D
23	- scripts/dhall_check.sh	34	- scripts/dhall_check.sh
24		35
25	notifications:	36	notifications:


diff --git a/dhall/functions.dhall b/dhall/functions.dhall deleted file mode 100644 index 6465760..0000000 --- a/dhall/functions.dhall +++ /dev/null
@@ -1 +0,0 @@
1	{ Server = ./server/functions.dhall }


diff --git a/dhall/server/service/plugin/Config.dhall b/dhall/server/service/plugin/Config.dhall index ea53361..1f60080 100644 --- a/dhall/server/service/plugin/Config.dhall +++ b/dhall/server/service/plugin/Config.dhall
@@ -1,9 +1,8 @@
1	< CorrelationId :	1	< CorrelationId :
2	{ header_name : Text, echo_downstream : Bool, generator : Text }	2	{ header_name : Text, echo_downstream : Bool, generator : Text }
3	\| RequestTransformer :	3	\| RequestTransformer : { add : { headers : List Text } }
4	{ add : { headers : List Text } }
5	\| RequestTermination :	4	\| RequestTermination :
6	{ status_code : Natural, content_type : Text, body : Text }	5	{ status_code : Natural, content_type : Text, body : Text }
7	\| IPRestriction :	6	\| IPRestriction : { whitelist : Text }
8	{ whitelist : Text }	7	\| PreFunction : { functions : List Text }
9	>	8	>


diff --git a/dhall/server/service/plugin/functions.dhall b/dhall/server/service/plugin/functions.dhall new file mode 100644 index 0000000..098fba7 --- /dev/null +++ b/dhall/server/service/plugin/functions.dhall
@@ -0,0 +1,7 @@
		1	{ mkRequestTermination = ./mkRequestTermination.dhall
		2	, mkRequestTransformer = ./mkRequestTransformer.dhall
		3	, mkIPRestriction = ./mkIPRestriction.dhall
		4	, correlationId = ./correlationId.dhall
		5	, mkPreFunction = ./mkPreFunction.dhall
		6	, http2httpsRedirect = ./http2httpsRedirect.dhall
		7	}


diff --git a/dhall/server/service/plugin/http2httpsRedirect.dhall b/dhall/server/service/plugin/http2httpsRedirect.dhall new file mode 100644 index 0000000..faa6d79 --- /dev/null +++ b/dhall/server/service/plugin/http2httpsRedirect.dhall
@@ -0,0 +1,15 @@
		1	let mkPreFunction = ./mkPreFunction.dhall
		2
		3	let luaRedirect =
		4	''
		5	local scheme = kong.request.get_scheme()
		6	if scheme == "http" then
		7	local host = kong.request.get_host()
		8	local query = kong.request.get_path_with_query()
		9	local url = "https://" .. host ..query
		10	kong.response.set_header("Location", url)
		11	return kong.response.exit(301, url)
		12	end
		13	''
		14
		15	in mkPreFunction [ luaRedirect ]


diff --git a/dhall/server/service/plugin/mkPreFunction.dhall b/dhall/server/service/plugin/mkPreFunction.dhall new file mode 100644 index 0000000..ff4f734 --- /dev/null +++ b/dhall/server/service/plugin/mkPreFunction.dhall
@@ -0,0 +1,9 @@
		1	let Plugin = ./Plugin.dhall
		2
		3	let config = ./Config.dhall
		4
		5	in λ(functions : List Text)
		6	→ { name = "pre-function"
		7	, config = config.PreFunction { functions = functions }
		8	}
		9	: Plugin


diff --git a/dhall/server/service/plugin/package.dhall b/dhall/server/service/plugin/package.dhall index 872c53b..c231bc6 100644 --- a/dhall/server/service/plugin/package.dhall +++ b/dhall/server/service/plugin/package.dhall
@@ -1,6 +1 @@
1	{ Type = ./Plugin.dhall		{ Type = ./Plugin.dhall, functions = ./functions.dhall }
2	, mkRequestTermination = ./mkRequestTermination.dhall
3	, mkRequestTransformer = ./mkRequestTransformer.dhall
4	, mkIPRestriction = ./mkIPRestriction.dhall
5	, correlationId = ./correlationId.dhall
6	}


diff --git a/dhall/types.dhall b/dhall/types.dhall deleted file mode 100644 index 938dc74..0000000 --- a/dhall/types.dhall +++ /dev/null
@@ -1,13 +0,0 @@
1	{ Vault =
2	./Vault.dhall
3	, Config =
4	./Config.dhall
5	, Server =
6	./server/Server.dhall
7	, Service =
8	./server/service/Service.dhall
9	, Plugin =
10	./server/service/plugin/Plugin.dhall
11	, Route =
12	./server/service/route/Route.dhall
13	}


diff --git a/tests/kong.py b/tests/kong.py new file mode 100755 index 0000000..32bafb2 --- /dev/null +++ b/tests/kong.py
@@ -0,0 +1,22 @@
		1	#!/usr/bin/env python
		2
		3	from http.server import HTTPServer, CGIHTTPRequestHandler
		4
		5	class SimpleHTTPRequestHandler(CGIHTTPRequestHandler):
		6	def do_GET(self):
		7	if self.path == '/services/test':
		8	self.send_response(404)
		9	else:
		10	self.send_response(200)
		11	self.send_header('Content-Type', 'application/json')
		12	self.end_headers()
		13	self.wfile.write(b'{ "data": [] }')
		14
		15	def do_POST(self):
		16	self.send_response(200)
		17	self.end_headers()
		18	self.wfile.write(b'Hello, world!')
		19
		20
		21	httpd = HTTPServer(('127.0.0.1', 8000), SimpleHTTPRequestHandler)
		22	httpd.serve_forever()


diff --git a/tests/test.yml b/tests/test.yml index 490c967..36c81a2 100644 --- a/tests/test.yml +++ b/tests/test.yml
@@ -3,9 +3,10 @@
3	remote_user: root	3	remote_user: root
4	roles:	4	roles:
5	- role: ansible-kong-app	5	- role: ansible-kong-app
6	kong_servers:	6	vars:
7	- kong_app_admin_url: http://127.0.0.1:8000	7	kong_servers:
8	kong_app_admin_apikey: ""	8	- kong_app_admin_url: http://127.0.0.1:8000
9	services:	9	kong_app_admin_apikey: ""
10	- url: http://example.com	10	services:
11	name: test	11	- url: http://example.com
		12	name: test