Skip to content

feat: add custom headers support for sync providers#1960

Open
raflFaisal wants to merge 4 commits intoopen-feature:mainfrom
raflFaisal:feat/sync-custom-headers
Open

feat: add custom headers support for sync providers#1960
raflFaisal wants to merge 4 commits intoopen-feature:mainfrom
raflFaisal:feat/sync-custom-headers

Conversation

@raflFaisal
Copy link
Copy Markdown

@raflFaisal raflFaisal commented May 1, 2026
edited
Loading

Summary

Add support for custom headers in HTTP and gRPC sync providers

Problem

flagd's sync providers cannot inject custom request headers into outbound requests. This limits integration with environments where intermediaries (API gateways, reverse proxies, service meshes) require specific headers for routing, tenant identification, or policy enforcement, resulting in errors like 421 Misdirected Request or misrouting.

Solution

flagd start --sources='[{"uri":"https://proxy-gateway.xyz.com/flags/sync","provider":"http","headers":{"X-Proxy-Gateway-Host":"backend-api.service"}}]'

Headers are sent as HTTP request headers for HTTP sync and as gRPC metadata for gRPC sync.

Examples:

gRPC with headers:

flagd start \
  --sources='[{"uri":"proxy-gateway-server.xyz.com","provider":"grpc","selector":"features","headers":{"X-Routing-Target-Host":"b.flags-server.service"}}]'

Using environment variables:

export FLAGD_SOURCES='[{"uri":"https://proxy-gateway.bk-eu-west6.service-mesh.dqs.booking.com/v2/flags/sync?project=flags","provider":"http", "headers":{"X-Proxy-Gateway-Host":"b-flags-api.service"}}]' 
./bin/flagd start  --debug

Scope & compatibility

Fully backward compatible, headers are optional and default to empty
No behavior change for existing configurations
Covers both HTTP and gRPC sync providers

Test plan

Unit tests for HTTP sync header injection
Unit tests for gRPC sync metadata injection

@raflFaisal raflFaisal requested review from a team as code owners May 1, 2026 23:25
@netlify
Copy link
Copy Markdown

netlify Bot commented May 1, 2026
edited
Loading

Deploy Preview for polite-licorice-3db33c ready!

Name Link
🔨 Latest commit f0d2b3c
🔍 Latest deploy log https://app.netlify.com/projects/polite-licorice-3db33c/deploys/69feff6011eb3300081607d7
😎 Deploy Preview https://deploy-preview-1960--polite-licorice-3db33c.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.
🤖 Make changes Run an agent on this branch

To edit notification comments on pull requests, go to your Netlify project configuration.

@dosubot dosubot Bot added the size:M This PR changes 30-99 lines, ignoring generated files. label May 1, 2026
gemini-code-assist[bot]
gemini-code-assist Bot reviewed May 1, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@gemini-code-assist gemini-code-assist Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request introduces support for custom headers in both HTTP and gRPC sync providers, allowing users to specify key-value pairs via a new --sync-headers CLI flag or per-source configuration. The implementation includes logic to merge global and per-source headers, with per-source values taking precedence. Feedback focuses on ensuring deterministic behavior and correct precedence by handling header key case-insensitivity, specifically suggesting canonicalization of keys in the HTTP provider and using case-insensitive checks when merging global headers.

Comment thread core/pkg/sync/http/http_sync.go Outdated
Comment thread flagd/cmd/start.go Outdated
@raflFaisal @faisalBooking
feat: add custom headers support for sync providers
7914fca 
Add the ability to inject custom HTTP headers and gRPC metadata into
outbound sync requests. Headers can be set globally via --sync-headers
CLI flag or per-source in the JSON configuration. Per-source values
take precedence over global values for conflicting keys.

Signed-off-by: raflFaisal <faisal.rafi.mca@gmail.com>
@raflFaisal raflFaisal force-pushed the feat/sync-custom-headers branch from bf0ad74 to 7914fca Compare May 1, 2026 23:45
@dosubot dosubot Bot added size:L This PR changes 100-499 lines, ignoring generated files. and removed size:M This PR changes 30-99 lines, ignoring generated files. labels May 2, 2026
@raflFaisal raflFaisal force-pushed the feat/sync-custom-headers branch 4 times, most recently from f81e4aa to 7151e8f Compare May 2, 2026 08:29
@raflFaisal
fix: support FLAGD_SYNC_HEADERS env var for sync headers
ac9ce67 
Signed-off-by: raflFaisal <faisal.rafi.mca@gmail.com>
@raflFaisal raflFaisal force-pushed the feat/sync-custom-headers branch from 7151e8f to ac9ce67 Compare May 2, 2026 09:03
@toddbaert
Copy link
Copy Markdown
Member

toddbaert commented May 4, 2026
edited
Loading

IMO it'd be simpler to drop the global --sync-headers flag and keep headers per-source only, like other source-level params (authHeader, certPath, etc.).

The global + per-source merging adds complexity:

  • case-insensitive precedence logic with EqualFold
  • env var parsing fallback since viper can't handle StringToString from env
  • implicit override behavior that users need to reason about
  • map[string]string is natural in the per-source JSON config but awkward as a CLI flag (custom parsing, comma-separated key=value strings)

If someone has multiple sources needing the same headers, duplicating them in the source config is straightforward and explicit. WDYT?

toddbaert
toddbaert reviewed May 4, 2026
View reviewed changes
Comment thread core/pkg/sync/http/http_sync_test.go
toddbaert
toddbaert requested changes May 4, 2026
View reviewed changes
Copy link
Copy Markdown
Member

@toddbaert toddbaert left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm in favor of this, but unless there's strong reason to, I'd prefer not to duplicate this as both a source option and a global option: #1960 (comment)

toddbaert
toddbaert reviewed May 4, 2026
View reviewed changes
Comment thread docs/reference/sync-configuration.md Outdated
@dosubot dosubot Bot added size:M This PR changes 30-99 lines, ignoring generated files. and removed size:L This PR changes 100-499 lines, ignoring generated files. labels May 7, 2026
@raflFaisal
Copy link
Copy Markdown
Author

raflFaisal commented May 7, 2026
edited
Loading

Thanks @toddbaert for the review.
Makes sense, agreed. I've dropped the global --sync-headers flag and kept headers per-source only. This removes the precedence logic and keeps the solution simple.

@raflFaisal @faisalBooking
refactor: simplify custom headers to per-source only
0655413 
Signed-off-by: raflFaisal <faisal.rafi.mca@gmail.com>
@raflFaisal raflFaisal force-pushed the feat/sync-custom-headers branch from 43f7360 to 0655413 Compare May 7, 2026 23:52
@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud Bot commented May 9, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
1.1% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@toddbaert toddbaert toddbaert requested changes

+1 more reviewer

@gemini-code-assist gemini-code-assist[bot] gemini-code-assist[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Requested changes must be addressed to merge this pull request.

Assignees

No one assigned

Labels

size:M This PR changes 30-99 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@raflFaisal @toddbaert