2018-09-10 09:59:29 -05:00
|
|
|
package pluginproxy
|
|
|
|
|
|
|
|
import (
|
|
|
|
"context"
|
|
|
|
"fmt"
|
|
|
|
"net/http"
|
|
|
|
"net/url"
|
|
|
|
"strings"
|
|
|
|
|
2020-03-04 05:57:20 -06:00
|
|
|
"github.com/grafana/grafana/pkg/models"
|
2018-09-10 09:59:29 -05:00
|
|
|
"github.com/grafana/grafana/pkg/plugins"
|
|
|
|
"github.com/grafana/grafana/pkg/util"
|
2018-10-09 08:23:13 -05:00
|
|
|
"golang.org/x/oauth2/google"
|
2018-09-10 09:59:29 -05:00
|
|
|
)
|
|
|
|
|
2020-11-13 02:52:38 -06:00
|
|
|
// ApplyRoute should use the plugin route data to set auth headers and custom headers.
|
2020-03-04 05:57:20 -06:00
|
|
|
func ApplyRoute(ctx context.Context, req *http.Request, proxyPath string, route *plugins.AppPluginRoute, ds *models.DataSource) {
|
2018-09-10 09:59:29 -05:00
|
|
|
proxyPath = strings.TrimPrefix(proxyPath, route.Path)
|
|
|
|
|
|
|
|
data := templateData{
|
|
|
|
JsonData: ds.JsonData.Interface().(map[string]interface{}),
|
|
|
|
SecureJsonData: ds.SecureJsonData.Decrypt(),
|
|
|
|
}
|
|
|
|
|
2020-09-18 06:22:07 -05:00
|
|
|
if len(route.URL) > 0 {
|
|
|
|
interpolatedURL, err := InterpolateString(route.URL, data)
|
|
|
|
if err != nil {
|
|
|
|
logger.Error("Error interpolating proxy url", "error", err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
routeURL, err := url.Parse(interpolatedURL)
|
|
|
|
if err != nil {
|
|
|
|
logger.Error("Error parsing plugin route url", "error", err)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
req.URL.Scheme = routeURL.Scheme
|
|
|
|
req.URL.Host = routeURL.Host
|
|
|
|
req.Host = routeURL.Host
|
|
|
|
req.URL.Path = util.JoinURLFragments(routeURL.Path, proxyPath)
|
2018-09-10 09:59:29 -05:00
|
|
|
}
|
|
|
|
|
2020-04-24 03:32:13 -05:00
|
|
|
if err := addQueryString(req, route, data); err != nil {
|
|
|
|
logger.Error("Failed to render plugin URL query string", "error", err)
|
|
|
|
}
|
|
|
|
|
2018-09-10 09:59:29 -05:00
|
|
|
if err := addHeaders(&req.Header, route, data); err != nil {
|
|
|
|
logger.Error("Failed to render plugin headers", "error", err)
|
|
|
|
}
|
|
|
|
|
2018-09-21 07:24:44 -05:00
|
|
|
tokenProvider := newAccessTokenProvider(ds, route)
|
2018-09-10 09:59:29 -05:00
|
|
|
|
|
|
|
if route.TokenAuth != nil {
|
|
|
|
if token, err := tokenProvider.getAccessToken(data); err != nil {
|
|
|
|
logger.Error("Failed to get access token", "error", err)
|
|
|
|
} else {
|
2018-11-30 13:12:55 -06:00
|
|
|
req.Header.Set("Authorization", fmt.Sprintf("Bearer %s", token))
|
2018-09-10 09:59:29 -05:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-10-09 09:36:45 -05:00
|
|
|
authenticationType := ds.JsonData.Get("authenticationType").MustString("jwt")
|
2018-10-09 09:28:04 -05:00
|
|
|
if route.JwtTokenAuth != nil && authenticationType == "jwt" {
|
2018-10-08 06:49:27 -05:00
|
|
|
if token, err := tokenProvider.getJwtAccessToken(ctx, data); err != nil {
|
|
|
|
logger.Error("Failed to get access token", "error", err)
|
|
|
|
} else {
|
2018-11-30 13:12:55 -06:00
|
|
|
req.Header.Set("Authorization", fmt.Sprintf("Bearer %s", token))
|
2018-10-08 06:49:27 -05:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-10-09 09:28:04 -05:00
|
|
|
if authenticationType == "gce" {
|
2018-10-09 08:23:13 -05:00
|
|
|
tokenSrc, err := google.DefaultTokenSource(ctx, route.JwtTokenAuth.Scopes...)
|
2018-10-03 10:08:13 -05:00
|
|
|
if err != nil {
|
2018-10-09 08:23:13 -05:00
|
|
|
logger.Error("Failed to get default token from meta data server", "error", err)
|
2018-10-03 10:08:13 -05:00
|
|
|
} else {
|
2018-10-09 08:23:13 -05:00
|
|
|
token, err := tokenSrc.Token()
|
2018-10-03 10:08:13 -05:00
|
|
|
if err != nil {
|
2018-10-09 08:23:13 -05:00
|
|
|
logger.Error("Failed to get default access token from meta data server", "error", err)
|
2018-10-03 10:08:13 -05:00
|
|
|
} else {
|
2018-11-30 13:12:55 -06:00
|
|
|
req.Header.Set("Authorization", fmt.Sprintf("Bearer %s", token.AccessToken))
|
2018-10-03 10:08:13 -05:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-09-10 09:59:29 -05:00
|
|
|
logger.Info("Requesting", "url", req.URL.String())
|
|
|
|
}
|
|
|
|
|
2020-04-24 03:32:13 -05:00
|
|
|
func addQueryString(req *http.Request, route *plugins.AppPluginRoute, data templateData) error {
|
|
|
|
q := req.URL.Query()
|
|
|
|
for _, param := range route.URLParams {
|
|
|
|
interpolatedName, err := InterpolateString(param.Name, data)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
interpolatedContent, err := InterpolateString(param.Content, data)
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
|
|
|
|
q.Add(interpolatedName, interpolatedContent)
|
|
|
|
}
|
|
|
|
req.URL.RawQuery = q.Encode()
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
2018-09-10 09:59:29 -05:00
|
|
|
func addHeaders(reqHeaders *http.Header, route *plugins.AppPluginRoute, data templateData) error {
|
|
|
|
for _, header := range route.Headers {
|
2019-05-07 11:55:39 -05:00
|
|
|
interpolated, err := InterpolateString(header.Content, data)
|
2018-09-10 09:59:29 -05:00
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
|
|
|
reqHeaders.Add(header.Name, interpolated)
|
|
|
|
}
|
|
|
|
|
|
|
|
return nil
|
|
|
|
}
|