mirror of
https://github.com/eliasstepanik/caddy-ingess.git
synced 2026-01-11 04:28:28 +00:00
e9c594cd55
* feat(annotations): Add annotations to rewrite requests * Upgrade caddy, ingress API version and some other deps * fix graceful shutdown * Upgrade caddy to v2.4.6 and add OCSP Check interval to global config * Add caddy duration parser
107 lines
3.1 KiB
Go
107 lines
3.1 KiB
Go
package caddy
|
|
|
|
import (
|
|
"encoding/json"
|
|
"fmt"
|
|
"github.com/caddyserver/caddy/v2"
|
|
"github.com/caddyserver/caddy/v2/caddyconfig"
|
|
"github.com/caddyserver/caddy/v2/modules/caddyhttp"
|
|
"github.com/caddyserver/caddy/v2/modules/caddyhttp/reverseproxy"
|
|
"github.com/caddyserver/caddy/v2/modules/caddyhttp/rewrite"
|
|
"github.com/caddyserver/ingress/internal/controller"
|
|
"k8s.io/api/networking/v1"
|
|
)
|
|
|
|
const (
|
|
annotationPrefix = "caddy.ingress.kubernetes.io"
|
|
rewriteToAnnotation = "rewrite-to"
|
|
rewriteStripPrefixAnnotation = "rewrite-strip-prefix"
|
|
disableSSLRedirect = "disable-ssl-redirect"
|
|
)
|
|
|
|
func getAnnotation(ing *v1.Ingress, rule string) string {
|
|
return ing.Annotations[annotationPrefix+"/"+rule]
|
|
}
|
|
|
|
// TODO :- configure log middleware for all routes
|
|
func generateRoute(ing *v1.Ingress, rule v1.IngressRule, path v1.HTTPIngressPath) caddyhttp.Route {
|
|
var handlers []json.RawMessage
|
|
|
|
// Generate handlers
|
|
rewriteTo := getAnnotation(ing, rewriteToAnnotation)
|
|
if rewriteTo != "" {
|
|
handlers = append(handlers, caddyconfig.JSONModuleObject(
|
|
rewrite.Rewrite{URI: rewriteTo},
|
|
"handler", "rewrite", nil,
|
|
))
|
|
}
|
|
|
|
rewriteStripPrefix := getAnnotation(ing, rewriteStripPrefixAnnotation)
|
|
if rewriteStripPrefix != "" {
|
|
handlers = append(handlers, caddyconfig.JSONModuleObject(
|
|
rewrite.Rewrite{StripPathPrefix: rewriteStripPrefix},
|
|
"handler", "rewrite", nil,
|
|
))
|
|
}
|
|
|
|
clusterHostName := fmt.Sprintf("%v.%v.svc.cluster.local:%d", path.Backend.Service.Name, ing.Namespace, path.Backend.Service.Port.Number)
|
|
handlers = append(handlers, caddyconfig.JSONModuleObject(
|
|
reverseproxy.Handler{
|
|
Upstreams: reverseproxy.UpstreamPool{
|
|
{Dial: clusterHostName},
|
|
},
|
|
},
|
|
"handler", "reverse_proxy", nil,
|
|
))
|
|
|
|
// Generate matchers
|
|
match := caddy.ModuleMap{}
|
|
|
|
if getAnnotation(ing, disableSSLRedirect) != "true" {
|
|
match["protocol"] = caddyconfig.JSON(caddyhttp.MatchProtocol("https"), nil)
|
|
}
|
|
|
|
if rule.Host != "" {
|
|
match["host"] = caddyconfig.JSON(caddyhttp.MatchHost{rule.Host}, nil)
|
|
}
|
|
|
|
if path.Path != "" {
|
|
p := path.Path
|
|
|
|
if *path.PathType == v1.PathTypePrefix {
|
|
p += "*"
|
|
}
|
|
match["path"] = caddyconfig.JSON(caddyhttp.MatchPath{p}, nil)
|
|
}
|
|
|
|
return caddyhttp.Route{
|
|
HandlersRaw: handlers,
|
|
MatcherSetsRaw: []caddy.ModuleMap{match},
|
|
}
|
|
}
|
|
|
|
// LoadIngressConfig creates a routelist based off of ingresses managed by this controller.
|
|
func LoadIngressConfig(config *Config, store *controller.Store) error {
|
|
// TODO :-
|
|
// when setting the upstream url we should should bypass kube-dns and get the ip address of
|
|
// the pod for the deployment we are proxying to so that we can proxy to that ip address port.
|
|
// this is good for session affinity and increases performance.
|
|
|
|
// create a server route for each ingress route
|
|
var routes caddyhttp.RouteList
|
|
for _, ing := range store.Ingresses {
|
|
for _, rule := range ing.Spec.Rules {
|
|
for _, path := range rule.HTTP.Paths {
|
|
r := generateRoute(ing, rule, path)
|
|
|
|
routes = append(routes, r)
|
|
}
|
|
}
|
|
}
|
|
|
|
httpApp := config.Apps["http"].(*caddyhttp.App)
|
|
httpApp.Servers[HttpServer].Routes = routes
|
|
|
|
return nil
|
|
}
|