devbennett7/goma-gateway
1
0
Fork 0
Code Pull Requests Activity

feat: Add wildcard auth middleware paths (#24)

Browse Source 
* chore: add concurrent route health check requests
* feat: Add wildcard auth middleware paths
* fix: bind privileged port permission denied on Kubernetes for nonroot user
This commit is contained in:
Jonas Kaninda
2024-11-02 11:55:37 +01:00
committed by GitHub
parent 778a098bdc
commit fe81ac7324
14 changed files with 243 additions and 17 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
pkg/middleware/access-middleware.go
View File

@@ -30,13 +30,13 @@ func (blockList AccessListMiddleware) AccessMiddleware(next http.Handler) http.H
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
for _, block := range blockList.List {
if isPathBlocked(r.URL.Path, util.ParseURLPath(blockList.Path+block)) {
logger.Debug("%s: %s access forbidden", getRealIP(r), r.URL.Path)
logger.Error("%s: %s access forbidden", getRealIP(r), r.URL.Path)
w.Header().Set("Content-Type", "application/json")
w.WriteHeader(http.StatusNotFound)
w.WriteHeader(http.StatusForbidden)
err := json.NewEncoder(w).Encode(ProxyResponseError{
Success: false,
Code: http.StatusNotFound,
Message: fmt.Sprintf("Not found: %s", r.URL.Path),
Code: http.StatusForbidden,
Message: fmt.Sprintf("You do not have permission to access this resource"),
})
if err != nil {
return