[Filebeat] Add Base64 encoded HMAC & UUID template functions to httpjson input

[legoguy1000]

What does this PR do?

Add Base64 encoded HMAC & UUID template functions to httpjson input

Why is it important?

In order to create an Akamai Agent integration.

Checklist

• My code follows the style guidelines of this project
• I have commented my code, particularly in hard-to-understand areas
• I have made corresponding changes to the documentation
• I have made corresponding change to the default configuration files
• I have added tests that prove my fix is effective or that my feature works
• I have added an entry in CHANGELOG.next.asciidoc or CHANGELOG-developer.next.asciidoc.

Author's Checklist

• [ ]

How to test this PR locally

Related issues

• Relates Akamai integrations#1304

Use cases

Screenshots

Logs

[elasticmachine]

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS

Expand to view the summary

Build stats

• Start Time: 2021-09-20T09:21:34.833+0000

• Duration: 89 min 41 sec

• Commit: c08213a

Test stats 🧪

Test	Results
Failed	0
Passed	8206
Skipped	1201
Total	9407

Trends 🧪

💚 Flaky test report

Tests succeeded.

Expand to view the summary

Test stats 🧪

Test	Results
Failed	0
Passed	8206
Skipped	1201
Total	9407

[elasticmachine]

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

[mergify]

This pull request is now in conflicts. Could you fix it? 🙏
To fixup this pull request, you can check out it locally. See documentation: https://help.github.com/articles/checking-out-pull-requests-locally/

git fetch upstream
git checkout -b akamai-edgegrid upstream/akamai-edgegrid
git merge upstream/master
git push upstream akamai-edgegrid

[P1llus]

Hi @legoguy1000 , thanks for your awesome PR's as always! I will discuss this one, as we might not want to use any additional libraries for this, and rather add in the functionality it requires to httpjson itself, it might be that our recent changes we made would work with this actually

[legoguy1000]

I think the alternative to adding the EdgeGrid Library is to add another HMAC function that returns Base64 encoded signatures instead of Hex. See f746b13

Then do below to implement EdgeGrid and possibly remove the EdgeGrid Module

- type: httpjson
  enabled: true
  config_version: 2
  interval: 1m
  request.url: XXXXXX
  request.transforms:
    - set:
        target: url.params.from
        value: '[[.cursor.timestamp]]'
        default: '[[ (now (parseDuration "-24h")).Unix ]]'
    - set:
        target: header.XTimestamp
        value: '[[ formatDate (now) "20060102T15:04:05-0700" ]]'
    - set:
        target: header.XSignatureBase
        value: '[[ sprintf "EG1-HMAC-SHA256 client_token=%s;access_token=%s;timestamp=%s;nonce=%d;" "a" "b" (.header.Get "XTimestamp") now.UnixNano  ]]'
    - set:
        target: header.XSignatureKey
        value: '[[ hmacBase64 "sha256" "c" (.header.Get "XTimestamp") ]]'
    - set:
        target: header.XSignature
        value: '[[ hmacBase64 "sha256" (.header.Get "XSignatureKey") "GET\t" .url.Host "\t" .url.Path "?" .url.RawQuery "\t\t\t" (.header.Get "XSignatureBase") ]]'
    - set:
        target: header.Authorization
        value: 'EG1-HMAC-SHA256 [[ sprintf "%ssignature=%s" (.header.Get "XSignatureBase") (.header.Get "XSignature") ]]'

It appears to work and generates the below headers

xtimestamp	20210914T18:33:08+0000
xsignaturekey	L/1kX9gfY7GIFly7G3z3vkj3YUzFWpCHqqDR7HimwpM=
xsignaturebase	EG1-HMAC-SHA256 client_token=a;access_token=b;timestamp=20210914T18:33:08+0000;nonce=1631644388219193225;
xsignature	i4Ln1LOulRMhwJ8v8vAa5s+XfqcQ2fCkirJYHuGzLSQ=
authorization	EG1-HMAC-SHA256 EG1-HMAC-SHA256 client_token=a;access_token=b;timestamp=20210914T18:33:08+0000;nonce=1631644388219193225;signature=i4Ln1LOulRMhwJ8v8vAa5s+XfqcQ2fCkirJYHuGzLSQ=

[legoguy1000]

I think I'm going to also add a UUID template function for the nonce field as there is no way currently to generate randomness.

[legoguy1000]

@marc-gr @P1llus I think we're good to go now.

[marc-gr]

LGTM 👍 thanks for taking the time to change it with our feedback 😄 !

[marc-gr]

/test

[marc-gr]

/test