nicolas
/
APIcast-Examples
mirror of https://github.com/nmasse-itix/APIcast-Examples.git
1
0
Fork 0
Code Issues Releases Wiki Activity
Browse Source

add path routing + https

master
Nicolas Massé 7 years ago
parent
671b2346fb
commit
67c8b935b2
2 changed files with 153 additions and 0 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 71
      path-routing-with-https/config/apicast.conf
  2. 82
      path-routing-with-https/path-routing-with-https.yaml

71
path-routing-with-https/config/apicast.conf
View File

@ -0,0 +1,71 @@
{
"services": [
{
"id": 123,
"backend_version": 1,
"proxy": {
"api_backend": "http://127.0.0.1:8081",
"hostname_rewrite": "echo",
"hosts": [
"localhost"
],
"backend": {
"endpoint": "http://127.0.0.1:8081",
"host": "echo"
},
"policy_chain": [
{ "name": "apicast.policy.apicast" },
{
"name": "apicast.policy.headers",
"configuration": {
"response": [
{ "op": "set", "header": "X-SVC", "value": "svc1" }
]
}
}
],
"proxy_rules": [
{
"http_method": "GET",
"pattern": "/svc1",
"metric_system_name": "hits",
"delta": 1
}
]
}
}, {
"id": 456,
"backend_version": 1,
"proxy": {
"api_backend": "http://127.0.0.1:8081",
"hostname_rewrite": "echo",
"hosts": [
"localhost"
],
"backend": {
"endpoint": "http://127.0.0.1:8081",
"host": "echo"
},
"policy_chain": [
{ "name": "apicast.policy.apicast" },
{
"name": "apicast.policy.headers",
"configuration": {
"response": [
{ "op": "set", "header": "X-SVC", "value": "svc2" }
]
}
}
],
"proxy_rules": [
{
"http_method": "GET",
"pattern": "/svc2",
"metric_system_name": "hits",
"delta": 1
}
]
}
}
]
}

82
path-routing-with-https/path-routing-with-https.yaml
View File

@ -0,0 +1,82 @@
---
- name: Deploy an APIcast gateway with Path Routing and HTTPS
gather_facts: no
hosts: localhost
tasks:
- name: Generate a private key
openssl_privatekey:
path: '{{ playbook_dir }}/config/tls.key'
size: 1024
state: present
- name: Generate a CSR
openssl_csr:
path: '{{ playbook_dir }}/config/tls.csr'
privatekey_path: '{{ playbook_dir }}/config/tls.key'
common_name: localhost
subject_alt_name: 'DNS:localhost'
state: present
- name: Generate a self-signed certificate
openssl_certificate:
path: '{{ playbook_dir }}/config/tls.crt'
privatekey_path: '{{ playbook_dir }}/config/tls.key'
csr_path: '{{ playbook_dir }}/config/tls.csr'
provider: selfsigned
state: present
- name: Deploy APIcast
docker_container:
name: apicast-path-routing-with-https
image: quay.io/3scale/apicast:v3.4.0-rc2
volumes:
- '{{ playbook_dir }}/config:/config:ro'
env:
THREESCALE_CONFIG_FILE: /config/apicast.conf
APICAST_HTTPS_PORT: 8443
APICAST_HTTPS_CERTIFICATE: /config/tls.crt
APICAST_HTTPS_CERTIFICATE_KEY: /config/tls.key
APICAST_PATH_ROUTING: 'true'
ports:
- 8443:8443
cleanup: yes
detach: yes
state: started
- name: Wait for APIcast to start
pause:
seconds: 5
- name: Ensure Service1 is working
uri:
url: https://localhost:8443/svc1?user_key=dummy
method: GET
timeout: 5
status_code: 200
validate_certs: no
register: response
- name: The X-SVC HTTP header must be equal to "svc1"
assert:
that:
- response.x_svc == 'svc1'
- name: Ensure Service2 is working
uri:
url: https://localhost:8443/svc2?user_key=dummy
method: GET
timeout: 5
status_code: 200
validate_certs: no
register: response
- name: The X-SVC HTTP header must be equal to "svc2"
assert:
that:
- response.x_svc == 'svc2'
- name: Delete APIcast
docker_container:
name: apicast-path-routing-with-https
state: absent
Write Preview
Loading…
Cancel
Save