grafana/pkg/tsdb/prometheus/buffered/promclient/provider_azure.go

package promclient

import (
	"fmt"
	"net/url"
	"path"

	"github.com/grafana/grafana-azure-sdk-go/azcredentials"
	"github.com/grafana/grafana-azure-sdk-go/azhttpclient"
	sdkhttpclient "github.com/grafana/grafana-plugin-sdk-go/backend/httpclient"

	"github.com/grafana/grafana/pkg/services/featuremgmt"
	"github.com/grafana/grafana/pkg/util/maputil"
)

func (p *Provider) configureAzureAuthentication(opts *sdkhttpclient.Options) error {
	// Azure authentication is experimental (#35857)
	if !p.features.IsEnabled(featuremgmt.FlagPrometheusAzureAuth) {
		return nil
	}

	credentials, err := azcredentials.FromDatasourceData(p.jsonData, p.settings.DecryptedSecureJSONData)
	if err != nil {
		err = fmt.Errorf("invalid Azure credentials: %s", err)
		return err
	}

	if credentials != nil {
		resourceIdStr, err := maputil.GetStringOptional(p.jsonData, "azureEndpointResourceId")
		if err != nil {
			return err
		} else if resourceIdStr == "" {
			err := fmt.Errorf("endpoint resource ID (audience) not provided")
			return err
		}

		resourceId, err := url.Parse(resourceIdStr)
		if err != nil || resourceId.Scheme == "" || resourceId.Host == "" {
			err := fmt.Errorf("endpoint resource ID (audience) '%s' invalid", resourceIdStr)
			return err
		}

		resourceId.Path = path.Join(resourceId.Path, ".default")
		scopes := []string{resourceId.String()}

		azhttpclient.AddAzureAuthentication(opts, p.cfg.Azure, credentials, scopes)
	}

	return nil
}
Prometheus: Fix Azure authentication support (#44407) Re-adding back Azure authentication support to Prometheus datasource after the datasource query logic was rewritten from plugin.json routes to Go backend. Ref #35857 2022-02-03 10:06:31 -06:00			`package promclient`

			`import (`
			`"fmt"`
Shared Azure middleware between Azure Monitor and Prometheus datasources (#46002) * Scopes in Azure middleware * Enable Azure middleware without feature flag * Use common Azure middleware in Azure Monitor * Apply feature flag to JsonData configuration of Azure auth * Enforce feature flag in Prometheus datasource * Prometheus provider tests * Datasource service tests * Fix http client provider tests * Pass sdkhttpclient.Options by reference * Add middleware to httpclient.Options * Remove dependency on Grafana settings * Unit-tests updated * Fix ds_proxy_test * Fix service_test 2022-04-01 06:26:49 -05:00			`"net/url"`
			`"path"`
Prometheus: Fix Azure authentication support (#44407) Re-adding back Azure authentication support to Prometheus datasource after the datasource query logic was rewritten from plugin.json routes to Go backend. Ref #35857 2022-02-03 10:06:31 -06:00
Migrate to Grafana Azure SDK (#47232) 2022-04-04 04:23:13 -05:00			`"github.com/grafana/grafana-azure-sdk-go/azcredentials"`
			`"github.com/grafana/grafana-azure-sdk-go/azhttpclient"`
Prometheus: Fix Azure authentication support (#44407) Re-adding back Azure authentication support to Prometheus datasource after the datasource query logic was rewritten from plugin.json routes to Go backend. Ref #35857 2022-02-03 10:06:31 -06:00			`sdkhttpclient "github.com/grafana/grafana-plugin-sdk-go/backend/httpclient"`
Migrate to Grafana Azure SDK (#47232) 2022-04-04 04:23:13 -05:00
Shared Azure middleware between Azure Monitor and Prometheus datasources (#46002) * Scopes in Azure middleware * Enable Azure middleware without feature flag * Use common Azure middleware in Azure Monitor * Apply feature flag to JsonData configuration of Azure auth * Enforce feature flag in Prometheus datasource * Prometheus provider tests * Datasource service tests * Fix http client provider tests * Pass sdkhttpclient.Options by reference * Add middleware to httpclient.Options * Remove dependency on Grafana settings * Unit-tests updated * Fix ds_proxy_test * Fix service_test 2022-04-01 06:26:49 -05:00			`"github.com/grafana/grafana/pkg/services/featuremgmt"`
Prometheus: Fix Azure authentication support (#44407) Re-adding back Azure authentication support to Prometheus datasource after the datasource query logic was rewritten from plugin.json routes to Go backend. Ref #35857 2022-02-03 10:06:31 -06:00			`"github.com/grafana/grafana/pkg/util/maputil"`
			`)`

Shared Azure middleware between Azure Monitor and Prometheus datasources (#46002) * Scopes in Azure middleware * Enable Azure middleware without feature flag * Use common Azure middleware in Azure Monitor * Apply feature flag to JsonData configuration of Azure auth * Enforce feature flag in Prometheus datasource * Prometheus provider tests * Datasource service tests * Fix http client provider tests * Pass sdkhttpclient.Options by reference * Add middleware to httpclient.Options * Remove dependency on Grafana settings * Unit-tests updated * Fix ds_proxy_test * Fix service_test 2022-04-01 06:26:49 -05:00			`func (p Provider) configureAzureAuthentication(opts sdkhttpclient.Options) error {`
			`// Azure authentication is experimental (#35857)`
			`if !p.features.IsEnabled(featuremgmt.FlagPrometheusAzureAuth) {`
			`return nil`
			`}`

Prometheus: Fix Azure authentication support (#44407) Re-adding back Azure authentication support to Prometheus datasource after the datasource query logic was rewritten from plugin.json routes to Go backend. Ref #35857 2022-02-03 10:06:31 -06:00			`credentials, err := azcredentials.FromDatasourceData(p.jsonData, p.settings.DecryptedSecureJSONData)`
			`if err != nil {`
			`err = fmt.Errorf("invalid Azure credentials: %s", err)`
			`return err`
			`}`

			`if credentials != nil {`
Shared Azure middleware between Azure Monitor and Prometheus datasources (#46002) * Scopes in Azure middleware * Enable Azure middleware without feature flag * Use common Azure middleware in Azure Monitor * Apply feature flag to JsonData configuration of Azure auth * Enforce feature flag in Prometheus datasource * Prometheus provider tests * Datasource service tests * Fix http client provider tests * Pass sdkhttpclient.Options by reference * Add middleware to httpclient.Options * Remove dependency on Grafana settings * Unit-tests updated * Fix ds_proxy_test * Fix service_test 2022-04-01 06:26:49 -05:00			`resourceIdStr, err := maputil.GetStringOptional(p.jsonData, "azureEndpointResourceId")`
Prometheus: Fix Azure authentication support (#44407) Re-adding back Azure authentication support to Prometheus datasource after the datasource query logic was rewritten from plugin.json routes to Go backend. Ref #35857 2022-02-03 10:06:31 -06:00			`if err != nil {`
			`return err`
Shared Azure middleware between Azure Monitor and Prometheus datasources (#46002) * Scopes in Azure middleware * Enable Azure middleware without feature flag * Use common Azure middleware in Azure Monitor * Apply feature flag to JsonData configuration of Azure auth * Enforce feature flag in Prometheus datasource * Prometheus provider tests * Datasource service tests * Fix http client provider tests * Pass sdkhttpclient.Options by reference * Add middleware to httpclient.Options * Remove dependency on Grafana settings * Unit-tests updated * Fix ds_proxy_test * Fix service_test 2022-04-01 06:26:49 -05:00			`} else if resourceIdStr == "" {`
			`err := fmt.Errorf("endpoint resource ID (audience) not provided")`
			`return err`
Prometheus: Fix Azure authentication support (#44407) Re-adding back Azure authentication support to Prometheus datasource after the datasource query logic was rewritten from plugin.json routes to Go backend. Ref #35857 2022-02-03 10:06:31 -06:00			`}`

Shared Azure middleware between Azure Monitor and Prometheus datasources (#46002) * Scopes in Azure middleware * Enable Azure middleware without feature flag * Use common Azure middleware in Azure Monitor * Apply feature flag to JsonData configuration of Azure auth * Enforce feature flag in Prometheus datasource * Prometheus provider tests * Datasource service tests * Fix http client provider tests * Pass sdkhttpclient.Options by reference * Add middleware to httpclient.Options * Remove dependency on Grafana settings * Unit-tests updated * Fix ds_proxy_test * Fix service_test 2022-04-01 06:26:49 -05:00			`resourceId, err := url.Parse(resourceIdStr)`
			`if err != nil \|\| resourceId.Scheme == "" \|\| resourceId.Host == "" {`
			`err := fmt.Errorf("endpoint resource ID (audience) '%s' invalid", resourceIdStr)`
			`return err`
Prometheus: Fix Azure authentication support (#44407) Re-adding back Azure authentication support to Prometheus datasource after the datasource query logic was rewritten from plugin.json routes to Go backend. Ref #35857 2022-02-03 10:06:31 -06:00			`}`
Shared Azure middleware between Azure Monitor and Prometheus datasources (#46002) * Scopes in Azure middleware * Enable Azure middleware without feature flag * Use common Azure middleware in Azure Monitor * Apply feature flag to JsonData configuration of Azure auth * Enforce feature flag in Prometheus datasource * Prometheus provider tests * Datasource service tests * Fix http client provider tests * Pass sdkhttpclient.Options by reference * Add middleware to httpclient.Options * Remove dependency on Grafana settings * Unit-tests updated * Fix ds_proxy_test * Fix service_test 2022-04-01 06:26:49 -05:00
			`resourceId.Path = path.Join(resourceId.Path, ".default")`
			`scopes := []string{resourceId.String()}`

			`azhttpclient.AddAzureAuthentication(opts, p.cfg.Azure, credentials, scopes)`
Prometheus: Fix Azure authentication support (#44407) Re-adding back Azure authentication support to Prometheus datasource after the datasource query logic was rewritten from plugin.json routes to Go backend. Ref #35857 2022-02-03 10:06:31 -06:00			`}`

			`return nil`
			`}`