/
utils.go
91 lines (74 loc) · 1.53 KB
/
utils.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
package main
import (
"context"
"embed"
"encoding/json"
"fmt"
"io"
"io/ioutil"
"net/http"
"time"
"github.com/jmespath/go-jmespath"
"github.com/open-policy-agent/opa/bundle"
"github.com/open-policy-agent/opa/rego"
)
func GetStringFromBody(input io.ReadCloser) (string, error) {
if input == nil {
return "", fmt.Errorf("Body is nil")
}
body, err := ioutil.ReadAll(input)
if err != nil {
return "", err
}
err = input.Close()
if err != nil {
return "", err
}
return string(body), nil
}
func GetStructFromBody(body []byte) interface{} {
var jsonData interface{}
err := json.Unmarshal(body, &jsonData)
if err != nil {
jsonData = ""
}
return jsonData
}
func NewHttpClient() *http.Client {
return &http.Client{
Transport: &http.Transport{
MaxIdleConnsPerHost: 20,
},
Timeout: 10 * time.Second,
}
}
func NewJmsepathClient(expression string) (*jmespath.JMESPath, error) {
return jmespath.Compile(expression)
}
//go:embed rego/*
var content embed.FS
type OpaClient struct {
PreparedEvalQuery rego.PreparedEvalQuery
}
func NewOpaClient(ctx context.Context) (*OpaClient, error) {
loader, err := bundle.NewFSLoader(content)
if err != nil {
return nil, err
}
reader := bundle.NewCustomReader(loader).WithSkipBundleVerification(true)
b, err := reader.Read()
if err != nil {
return nil, err
}
r := rego.New(
rego.ParsedBundle("bundle", &b),
rego.Query(`data.nginx.authz`),
)
pq, err := r.PrepareForEval(ctx)
if err != nil {
return nil, err
}
return &OpaClient{
PreparedEvalQuery: pq,
}, nil
}