ingress-nginx-helm/internal/ingress/annotations/secureupstream/main.go

/*
Copyright 2016 The Kubernetes Authors.

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/

package secureupstream

import (
	networking "k8s.io/api/networking/v1beta1"
	"k8s.io/klog/v2"

	"k8s.io/ingress-nginx/internal/ingress/annotations/parser"
	"k8s.io/ingress-nginx/internal/ingress/resolver"
)

// Config describes SSL backend configuration
type Config struct {
	CACert resolver.AuthSSLCert `json:"caCert"`
}

type su struct {
	r resolver.Resolver
}

// NewParser creates a new secure upstream annotation parser
func NewParser(r resolver.Resolver) parser.IngressAnnotation {
	return su{r}
}

// Parse parses the annotations contained in the ingress
// rule used to indicate if the upstream servers should use SSL
func (a su) Parse(ing *networking.Ingress) (secure interface{}, err error) {
	if ca, _ := parser.GetStringAnnotation("secure-verify-ca-secret", ing); ca != "" {
		klog.Warningf("NOTE! secure-verify-ca-secret is not suppored anymore. Please use proxy-ssl-secret instead")
	}
	return
}
Add support for services running ssl 2016-06-01 18:47:37 +00:00			`/*`
Remove "All rights reserved" from all the headers 2016-09-08 11:02:39 +00:00			`Copyright 2016 The Kubernetes Authors.`
Add support for services running ssl 2016-06-01 18:47:37 +00:00
			`Licensed under the Apache License, Version 2.0 (the "License");`
			`you may not use this file except in compliance with the License.`
			`You may obtain a copy of the License at`

			`http://www.apache.org/licenses/LICENSE-2.0`

			`Unless required by applicable law or agreed to in writing, software`
			`distributed under the License is distributed on an "AS IS" BASIS,`
			`WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`See the License for the specific language governing permissions and`
			`limitations under the License.`
			`*/`

			`package secureupstream`

			`import (`
Migrate to new networking.k8s.io/v1beta1 package 2019-06-09 22:49:59 +00:00			`networking "k8s.io/api/networking/v1beta1"`
Migrate to klog v2 2020-08-08 23:31:02 +00:00			`"k8s.io/klog/v2"`
Add Generic interface 2016-11-16 18:24:26 +00:00
Rename package pkg to internal 2017-11-07 22:02:12 +00:00			`"k8s.io/ingress-nginx/internal/ingress/annotations/parser"`
			`"k8s.io/ingress-nginx/internal/ingress/resolver"`
Add support for services running ssl 2016-06-01 18:47:37 +00:00			`)`

Refactor annotations 2017-11-07 16:36:51 +00:00			`// Config describes SSL backend configuration`
			`type Config struct {`
Implement Equaler 2017-06-14 23:40:25 +00:00			CACert resolver.AuthSSLCert `json:"caCert"`
Add secure-verify-ca-secret annotation 2017-05-14 22:14:27 +00:00			`}`

Deny location mapping in case of specific errors 2016-12-29 20:02:06 +00:00			`type su struct {`
Add prefix nginx to annotations 2017-11-08 20:58:57 +00:00			`r resolver.Resolver`
Deny location mapping in case of specific errors 2016-12-29 20:02:06 +00:00			`}`

			`// NewParser creates a new secure upstream annotation parser`
Add prefix nginx to annotations 2017-11-08 20:58:57 +00:00			`func NewParser(r resolver.Resolver) parser.IngressAnnotation {`
			`return su{r}`
Deny location mapping in case of specific errors 2016-12-29 20:02:06 +00:00			`}`

			`// Parse parses the annotations contained in the ingress`
Add support for services running ssl 2016-06-01 18:47:37 +00:00			`// rule used to indicate if the upstream servers should use SSL`
Fixing comments 2019-10-18 09:36:00 +00:00			`func (a su) Parse(ing *networking.Ingress) (secure interface{}, err error) {`
			`if ca, _ := parser.GetStringAnnotation("secure-verify-ca-secret", ing); ca != "" {`
Migrate to structured logging (klog) 2020-09-27 20:32:40 +00:00			`klog.Warningf("NOTE! secure-verify-ca-secret is not suppored anymore. Please use proxy-ssl-secret instead")`
Add secure-verify-ca-secret annotation 2017-05-14 22:14:27 +00:00			`}`
Fixing comments 2019-10-18 09:36:00 +00:00			`return`
Add support for services running ssl 2016-06-01 18:47:37 +00:00			`}`