Add prefix nginx to annotations

2017-11-08 17:58:57 -03:00 · 2017-11-08 17:58:57 -03:00 · 8f1ff15a6e
commit 8f1ff15a6e
parent 97577c07a5
54 changed files with 445 additions and 441 deletions
--- a/internal/ingress/annotations/auth/main.go
+++ b/internal/ingress/annotations/auth/main.go
@ -33,12 +33,6 @@ import (
 	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )

-const (
-	authType   = "ingress.kubernetes.io/auth-type"
-	authSecret = "ingress.kubernetes.io/auth-secret"
-	authRealm  = "ingress.kubernetes.io/auth-realm"
-)
-
 var (
 	authTypeRegex = regexp.MustCompile(`basic|digest`)
 	// AuthDirectory default directory used to store files
@ -83,12 +77,12 @@ func (bd1 *Config) Equal(bd2 *Config) bool {
 }

 type auth struct {
-	secretResolver resolver.Secret
-	authDirectory  string
+	r             resolver.Resolver
+	authDirectory string
 }

 // NewParser creates a new authentication annotation parser
-func NewParser(authDirectory string, sr resolver.Secret) parser.IngressAnnotation {
+func NewParser(authDirectory string, r resolver.Resolver) parser.IngressAnnotation {
 	os.MkdirAll(authDirectory, 0755)

 	currPath := authDirectory
@ -100,7 +94,7 @@ func NewParser(authDirectory string, sr resolver.Secret) parser.IngressAnnotatio
 		}
 	}

-	return auth{sr, authDirectory}
+	return auth{r, authDirectory}
 }

 // Parse parses the annotations contained in the ingress
@ -108,7 +102,7 @@ func NewParser(authDirectory string, sr resolver.Secret) parser.IngressAnnotatio
 // and generated an htpasswd compatible file to be used as source
 // during the authentication process
 func (a auth) Parse(ing *extensions.Ingress) (interface{}, error) {
-	at, err := parser.GetStringAnnotation(authType, ing)
+	at, err := parser.GetStringAnnotation("auth-type", ing, a.r)
 	if err != nil {
 		return nil, err
 	}
@ -117,7 +111,7 @@ func (a auth) Parse(ing *extensions.Ingress) (interface{}, error) {
 		return nil, ing_errors.NewLocationDenied("invalid authentication type")
 	}

-	s, err := parser.GetStringAnnotation(authSecret, ing)
+	s, err := parser.GetStringAnnotation("auth-secret", ing, a.r)
 	if err != nil {
 		return nil, ing_errors.LocationDenied{
 			Reason: errors.Wrap(err, "error reading secret name from annotation"),
@ -125,14 +119,14 @@ func (a auth) Parse(ing *extensions.Ingress) (interface{}, error) {
 	}

 	name := fmt.Sprintf("%v/%v", ing.Namespace, s)
-	secret, err := a.secretResolver.GetSecret(name)
+	secret, err := a.r.GetSecret(name)
 	if err != nil {
 		return nil, ing_errors.LocationDenied{
 			Reason: errors.Wrapf(err, "unexpected error reading secret %v", name),
 		}
 	}

-	realm, _ := parser.GetStringAnnotation(authRealm, ing)
+	realm, _ := parser.GetStringAnnotation("auth-realm", ing, a.r)

 	passFile := fmt.Sprintf("%v/%v-%v.passwd", a.authDirectory, ing.GetNamespace(), ing.GetName())
 	err = dumpSecret(passFile, secret)
--- a/internal/ingress/annotations/auth/main_test.go
+++ b/internal/ingress/annotations/auth/main_test.go
@ -29,6 +29,7 @@ import (
 	extensions "k8s.io/api/extensions/v1beta1"
 	meta_v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/util/intstr"
+	"k8s.io/ingress-nginx/internal/ingress/resolver"
 )

 func buildIngress() *extensions.Ingress {
@ -67,6 +68,7 @@ func buildIngress() *extensions.Ingress {
 }

 type mockSecret struct {
+	resolver.Mock
 }

 func (m mockSecret) GetSecret(name string) (*api.Secret, error) {
@ -87,7 +89,7 @@ func TestIngressWithoutAuth(t *testing.T) {
 	ing := buildIngress()
 	_, dir, _ := dummySecretContent(t)
 	defer os.RemoveAll(dir)
-	_, err := NewParser(dir, mockSecret{}).Parse(ing)
+	_, err := NewParser(dir, &mockSecret{}).Parse(ing)
 	if err == nil {
 		t.Error("Expected error with ingress without annotations")
 	}
@ -97,15 +99,15 @@ func TestIngressAuth(t *testing.T) {
 	ing := buildIngress()

 	data := map[string]string{}
-	data[authType] = "basic"
-	data[authSecret] = "demo-secret"
-	data[authRealm] = "-realm-"
+	data["nginx/auth-type"] = "basic"
+	data["nginx/auth-secret"] = "demo-secret"
+	data["nginx/auth-realm"] = "-realm-"
 	ing.SetAnnotations(data)

 	_, dir, _ := dummySecretContent(t)
 	defer os.RemoveAll(dir)

-	i, err := NewParser(dir, mockSecret{}).Parse(ing)
+	i, err := NewParser(dir, &mockSecret{}).Parse(ing)
 	if err != nil {
 		t.Errorf("Uxpected error with ingress: %v", err)
 	}
@ -128,9 +130,9 @@ func TestIngressAuthWithoutSecret(t *testing.T) {
 	ing := buildIngress()

 	data := map[string]string{}
-	data[authType] = "basic"
-	data[authSecret] = "invalid-secret"
-	data[authRealm] = "-realm-"
+	data["nginx/auth-type"] = "basic"
+	data["nginx/auth-secret"] = "invalid-secret"
+	data["nginx/auth-realm"] = "-realm-"
 	ing.SetAnnotations(data)

 	_, dir, _ := dummySecretContent(t)