Skip to content
This repository has been archived by the owner on Mar 18, 2024. It is now read-only.

mozilla-services/aws-signing-proxy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

25 Commits

proxy

proxy

 
 

vendor/github.com

vendor/github.com

 
 

CODE_OF_CONDUCT.md

CODE_OF_CONDUCT.md

 
 

Dockerfile

Dockerfile

 
 

Gopkg.lock

Gopkg.lock

 
 

Gopkg.toml

Gopkg.toml

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

cacert.pem

cacert.pem

 
 

main.go

main.go

 
 

Repository files navigation

Go Report Card

aws-signing-proxy

signs http requests using AWS V4 signer

Usage:

Running the signing proxy should be as simple as running a compiled binary or the main.go file. You can also run our prebuilt containers: docker run -p 8000:8000 mozilla/aws-signing-proxy:latest.

The signing proxy listens on 0.0.0.0:8000 by default, which means that it will be exposed to the world if you expose that port externally.

Configuration:

The signing proxy is configured via environment variables with the prefix SIGNING_PROXY_. The config struct has details on default values and variable types. Implementation by Kelsey Hightower's envconfig.

Available environment variables:

- SIGNING_PROXY_LOG_REQUESTS
    type: bool
    description: enable logging of request method and path
    default: "true"
- SIGNING_PROXY_STATSD
    type: bool
    description: enable statsd reporting
    default: "true"
- SIGNING_PROXY_STATSD_LISTEN
    type: string
    description: address to send statsd metrics to
    default: "127.0.0.1:8125"
- SIGNING_PROXY_STATSD_NAMESPACE
    type: string
    description: prefix for statsd metrics. "." is appended as a separator.
    default: "SIGNING_PROXY"
- SIGNING_PROXY_LISTEN
    type: string
    description: address for the proxy to listen on
    default: "0.0.0.0:8000"
- SIGNING_PROXY_SERVICE
    type: string
    description: aws service to sign requests for
    default: "s3"
- SIGNING_PROXY_REGION
    type: string
    description: aws region to sign requests for
    default: "us-east-1"
- SIGNING_PROXY_DESTINATION
    type: string
    description: valid URL that serves as a template for proxied requests. Scheme and Host are preserved for proxied requests.
    default: "https://s3.amazonaws.com"

Building:

go build should be sufficient to build a binary

To build linux binaries on OSX for containers, I use gox: gox -osarch="linux/amd64"

Docker:

We're using a Dockerfile FROM scratch, meaning there's nothing in there at the start. We have the Mozilla CA certificate store in this repo, and copy it into our containers at build time. This makes our image less than 11mb!

Images are available from Docker Hub: docker pull mozilla/aws-signing-proxy

Development:

dep is used for package management: dep ensure to keep Gopkg.lock and vendored packages in sync

There is a simple version const in main.go for now that we can use to manually track versions.

About

signs http requests using AWS V4 signer

Resources

Readme

License

MPL-2.0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

27 stars

Watchers

12 watching

Forks

7 forks
Report repository

Releases 3

1.0.3 Latest
Mar 20, 2018
+ 2 releases

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages