grafana/pkg/setting/setting_secure_socks_proxy.go

package setting

import (
	"errors"

	"gopkg.in/ini.v1"
)

type SecureSocksDSProxySettings struct {
	Enabled       bool
	ShowUI        bool
	AllowInsecure bool
	ClientCert    string
	ClientKey     string
	RootCA        string
	ProxyAddress  string
	ServerName    string
}

func readSecureSocksDSProxySettings(iniFile *ini.File) (SecureSocksDSProxySettings, error) {
	s := SecureSocksDSProxySettings{}
	secureSocksProxySection := iniFile.Section("secure_socks_datasource_proxy")
	s.Enabled = secureSocksProxySection.Key("enabled").MustBool(false)
	s.ClientCert = secureSocksProxySection.Key("client_cert").MustString("")
	s.ClientKey = secureSocksProxySection.Key("client_key").MustString("")
	s.RootCA = secureSocksProxySection.Key("root_ca_cert").MustString("")
	s.ProxyAddress = secureSocksProxySection.Key("proxy_address").MustString("")
	s.ServerName = secureSocksProxySection.Key("server_name").MustString("")
	s.ShowUI = secureSocksProxySection.Key("show_ui").MustBool(true)
	s.AllowInsecure = secureSocksProxySection.Key("allow_insecure").MustBool(false)

	if !s.Enabled {
		return s, nil
	}

	if s.ProxyAddress == "" {
		return s, errors.New("proxy address required")
	}

	// If the proxy is going to use TLS.
	if !s.AllowInsecure {
		// all fields must be specified to use the proxy
		if s.RootCA == "" {
			return s, errors.New("rootCA required")
		} else if s.ClientCert == "" || s.ClientKey == "" {
			return s, errors.New("client key pair required")
		} else if s.ServerName == "" {
			return s, errors.New("server name required")
		}
	}

	return s, nil
}
Plugins: add option to proxy ds connections through a secure socks proxy (#59254) * Plugins: add feature to proxy data source connections 2022-11-29 23:50:59 -06:00			`package setting`

			`import (`
			`"errors"`

			`"gopkg.in/ini.v1"`
			`)`

			`type SecureSocksDSProxySettings struct {`
Plugins: Add option to disable TLS in the socks proxy (#79246) * Plugins: add option to disable TLS in the socks proxy * fix allow_insecure docs * upgrade github.com/grafana/grafana-plugin-sdk-go from v0.196.0 to v0.197.0 * fix conflicts 2023-12-14 09:16:32 -06:00			`Enabled bool`
			`ShowUI bool`
			`AllowInsecure bool`
			`ClientCert string`
			`ClientKey string`
			`RootCA string`
			`ProxyAddress string`
			`ServerName string`
Plugins: add option to proxy ds connections through a secure socks proxy (#59254) * Plugins: add feature to proxy data source connections 2022-11-29 23:50:59 -06:00			`}`

			`func readSecureSocksDSProxySettings(iniFile *ini.File) (SecureSocksDSProxySettings, error) {`
			`s := SecureSocksDSProxySettings{}`
			`secureSocksProxySection := iniFile.Section("secure_socks_datasource_proxy")`
			`s.Enabled = secureSocksProxySection.Key("enabled").MustBool(false)`
			`s.ClientCert = secureSocksProxySection.Key("client_cert").MustString("")`
			`s.ClientKey = secureSocksProxySection.Key("client_key").MustString("")`
			`s.RootCA = secureSocksProxySection.Key("root_ca_cert").MustString("")`
			`s.ProxyAddress = secureSocksProxySection.Key("proxy_address").MustString("")`
			`s.ServerName = secureSocksProxySection.Key("server_name").MustString("")`
Secure socks proxy: allow for UI to be disabled (#69408) 2023-06-01 13:58:51 -05:00			`s.ShowUI = secureSocksProxySection.Key("show_ui").MustBool(true)`
Plugins: Add option to disable TLS in the socks proxy (#79246) * Plugins: add option to disable TLS in the socks proxy * fix allow_insecure docs * upgrade github.com/grafana/grafana-plugin-sdk-go from v0.196.0 to v0.197.0 * fix conflicts 2023-12-14 09:16:32 -06:00			`s.AllowInsecure = secureSocksProxySection.Key("allow_insecure").MustBool(false)`
Plugins: add option to proxy ds connections through a secure socks proxy (#59254) * Plugins: add feature to proxy data source connections 2022-11-29 23:50:59 -06:00
			`if !s.Enabled {`
			`return s, nil`
			`}`

Plugins: Add option to disable TLS in the socks proxy (#79246) * Plugins: add option to disable TLS in the socks proxy * fix allow_insecure docs * upgrade github.com/grafana/grafana-plugin-sdk-go from v0.196.0 to v0.197.0 * fix conflicts 2023-12-14 09:16:32 -06:00			`if s.ProxyAddress == "" {`
Plugins: add option to proxy ds connections through a secure socks proxy (#59254) * Plugins: add feature to proxy data source connections 2022-11-29 23:50:59 -06:00			`return s, errors.New("proxy address required")`
			`}`

Plugins: Add option to disable TLS in the socks proxy (#79246) * Plugins: add option to disable TLS in the socks proxy * fix allow_insecure docs * upgrade github.com/grafana/grafana-plugin-sdk-go from v0.196.0 to v0.197.0 * fix conflicts 2023-12-14 09:16:32 -06:00			`// If the proxy is going to use TLS.`
			`if !s.AllowInsecure {`
			`// all fields must be specified to use the proxy`
			`if s.RootCA == "" {`
			`return s, errors.New("rootCA required")`
			`} else if s.ClientCert == "" \|\| s.ClientKey == "" {`
			`return s, errors.New("client key pair required")`
			`} else if s.ServerName == "" {`
			`return s, errors.New("server name required")`
			`}`
			`}`

Plugins: add option to proxy ds connections through a secure socks proxy (#59254) * Plugins: add feature to proxy data source connections 2022-11-29 23:50:59 -06:00			`return s, nil`
			`}`