/
secretheader.go
75 lines (60 loc) · 1.5 KB
/
secretheader.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
package auth
import (
"github.com/zalando/skipper/filters"
"github.com/zalando/skipper/secrets"
)
type (
secretHeaderSpec struct {
secretsReader secrets.SecretsReader
}
secretHeaderFilter struct {
headerName string
secretName string
prefix string
suffix string
secretsReader secrets.SecretsReader
}
)
func NewSetRequestHeaderFromSecret(sr secrets.SecretsReader) filters.Spec {
return &secretHeaderSpec{secretsReader: sr}
}
func (*secretHeaderSpec) Name() string {
return filters.SetRequestHeaderFromSecretName
}
func (s *secretHeaderSpec) CreateFilter(args []interface{}) (filters.Filter, error) {
if len(args) < 2 || len(args) > 4 {
return nil, filters.ErrInvalidFilterParameters
}
var ok bool
f := &secretHeaderFilter{
secretsReader: s.secretsReader,
}
f.headerName, ok = args[0].(string)
if !ok {
return nil, filters.ErrInvalidFilterParameters
}
f.secretName, ok = args[1].(string)
if !ok {
return nil, filters.ErrInvalidFilterParameters
}
if len(args) > 2 {
f.prefix, ok = args[2].(string)
if !ok {
return nil, filters.ErrInvalidFilterParameters
}
}
if len(args) > 3 {
f.suffix, ok = args[3].(string)
if !ok {
return nil, filters.ErrInvalidFilterParameters
}
}
return f, nil
}
func (f *secretHeaderFilter) Request(ctx filters.FilterContext) {
value, ok := f.secretsReader.GetSecret(f.secretName)
if ok {
ctx.Request().Header.Set(f.headerName, f.prefix+string(value)+f.suffix)
}
}
func (*secretHeaderFilter) Response(filters.FilterContext) {}