Skip to content

uw-it-edm/edm-zuul-proxy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

121 Commits
.dependabot
.dependabot
 
 
.github/workflows
.github/workflows
 
 
config
config
 
 
gradle/wrapper
gradle/wrapper
 
 
src
src
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
build.gradle
build.gradle
 
 
gradlew
gradlew
 
 
gradlew.bat
gradlew.bat
 
 
settings.gradle
settings.gradle
 
 

Repository files navigation

edm-zuul-proxy

Codacy Badge Dependabot Status

develop: Build Status Coverage Status master: Build Status Coverage Status

Setup for Local Developement

Set up Personal Access Token (PAT)

A PAT is required to access github packages from your local machine.

Step local DynamoDB

  • Use docker to boot a fake dynamodb

    docker run -p 8123:8000 -it --rm instructure/dynamo-local-admin

  • Navigate to DB ui at http:https://localhost:8123/

  • (Using UI) Create a table whithin the UI with 'Name'=edm-zuul-proxy-certificate-authorization, 'Hash Attribute Name'=certificateName, 'Range Attribute Name'=methodAndURI and 'Range Attribute Type'=String.

  • (Using UI) Create an item in the new table with:

    {
    "authorizedProfiles": "*",
    "certificateName": "uwitconcert-dev.s.uw.edu",
    "httpMethods": "*",
    "methodAndURI": "* .*",
    "notes": "Local test",
    "uriRegex": ".*",
    "uwGroups": "*"
}

Setup local forwarding server

The goal of edm-zuul-proxy is to forward requests to different end-points (called routes by zuul). To simplify testing a server is setup that will receive and 'echo' the requests back to the caller.

npx http-echo-server 12345

Run local zuul proxy

  • Copy contents of config/application-example.yml into a new file config/application-local.yml.
  • Update setting gws.keystoreLocation with local path to your .jks file.
  • Update setting gws.keystorePassword with the password of the .jks file.
  • Run the project specifying the location of config/application-local.yml file. For example: 
    SPRING_CONFIG_LOCATION=./config/application-local.yml ./gradlew bootRun

Test local server

To test the server, make sure to provide a certificate name in the X_CERTIFICATE_SUBJECT_NAME header that matches the certificate that was entered in the DynamoDB table and a valid NetId for the x-uw-act-as header. (Note: both header names can be configured in the .yml file).

Sample Request:

curl --location --request GET 'http:https://localhost:8080/test' \
--header 'X_CERTIFICATE_SUBJECT_NAME: uwitconcert-dev.s.uw.edu' \
--header 'x-uw-act-as: <YOUR_NET_ID>'

Sample Response:

If everything is setup correctly, Zuul proxy will forward the request to http:https://localhost:12345/test, which will be echoed back by the http-echo-server. The response should be something like:

GET /test HTTP/1.1
user-agent: curl/7.64.1
accept: */*
x_certificate_subject_name: uwitconcert-dev.s.uw.edu
x-uw-act-as: YOUR_NET_ID
x-uw-authorized-profiles: *
x-forwarded-host: localhost:8080
x-forwarded-proto: http
x-forwarded-port: 8080
x-forwarded-for: 0:0:0:0:0:0:0:1
Accept-Encoding: gzip
Host: localhost:12345
Connection: Keep-Alive

(OLD) CertificateManagement CLI

This will allow you to create a new entry in the dynamodb table

java -cp build/libs/edm-zuul-proxy-1.111.0-detached-SNAPSHOT+dirty.jar -Dspring.profiles.active=your_user -Dspring.config.additional-location=/Development/Projects/edm-zuul-proxy/config -Dserver.port=0 -Dloader.main=edu.uw.edm.CertificateManagementApplication org.springframework.boot.loader.PropertiesLauncher --certName=toto --uriRegex=/content/.\* --httpMethods=GET --httpMethods=POST --uwGroups=u_maximed --uwGroups=\*

About

No description or website provided.

Topics

zuul-proxy

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

5 watching

Forks

0 forks
Report repository

Releases 1

CAB-6225 deploy edm-zuul-proxy from github packages Latest
Jan 9, 2024

Packages

 
 
 

Contributors 9

Languages