k8s-kong-api

command module

v0.0.0-...-5bf65c3 Latest Latest Go to latest Published: May 12, 2017 License: GPL-3.0 Imports: 17 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/freshwebio/k8s-kong-api

Links

Open Source Insights

README ¶

k8s-kong-api

Application that listens to Kubernetes events to do the following two things:

Dynamically create kong APIs, upstreams and targets.
Listen to and manage the custom ApiPlugin k8s resource representing kong plugins that get attached to APIs.
Listen to and manage the custom GatewayApi k8s resource representing kong API objects that represent k8s services.

Requirements

Kubernetes >= 1.5

Kong API Gateway >= 0.10.0

Building application (Standalone)

To build this application standalone simply run go build from the root directory after ensuring all the dependencies are current by ensuring you have the godep tool installed and running godep restore.

Building application (Docker)

To build for docker you must firstly ensure all the dependencies are installed using godep restore. Then run CGO_ENABLED=0 GOOS=linux go build -a -installsuffix . to get a binary fully packaged with all dependencies to run on the empty scratch base. Now you can build the docker image and run it in docker as an out of cluster k8s client or in k8s for in cluster usage.

Running the application

You can provide configuration in order to run the application successfully in three different ways, below is a table of the config used and the default values:

Type	Flag	Environment	File	Default value
string	-kubeconfig ./config	KUBECONFIG="./config"	kubeconfig ./config	""
string	-namespace myclstr	NAMESPACE="myclstr"	namespace myclstr	"default"
string	-konghost kong-api	KONGHOST="kong-api"	konghost kong-api	"kong"
string	-kongport 8001	KONGPORT="8001"	kongport 8001	"8001"
string	-kongscheme https://	KONGSCHEME="https://"	kongscheme https://	"http://"
string	-apilabel myapi.gateway.api	APILabel="myapi.gateway.api"	apilabel myapi.gateway.api	"kong.gateway.api"
string	-sslabel kong-host-	SSLABEL="service"	sslabel kong-host-	"service"

To provide a configuration file run ./k8s-kong-api -config myconf.conf, To run with flags simply provide the flags and for environment variables, make sure the env vars are set and then simply run the binary. The best way to run the application in cluster would be to provide environment variables to the k8s pod container which encapsulates the application. To clarify sslabel above represents the service selector label on k8s plugins and k8s gateway apis used to map our third party k8s resources to the correct API objects in kong.

Creating a Kubernetes service that is k8s-kong-api enabled.

Below is an example of a service which is enabled as a Kong API object. This uses a label selector which references the GatewayApi object that holds the representation of the Kong API object. The service label selector is also important as it allows us to select services using labels for when reacting to APIPlugin events.

apiVersion: v1
kind: Service
metadata:
  name: myapp-auth
  labels:
    service: "myapp-auth"
    myapi.gateway.api: "myapp-auth"
spec:
  type: NodePort
  ports:
    - name: auth
      port: 3000
      targetPort: 3000
      protocol: TCP
    - name: auth2
      port: 3001
      targetPort: 3001
      protocol: TCP
  selector:
    app: myapp-auth

Creating k8s GatewayApi resource that map to kong API objects.

Below is an example of a GatewayApi configuration to expose a service as a kong API object:

apiVersion: "k8s.freshweb.io/v1"
kind: "GatewayApi"
metadata:
  name: "my-auth-app"
spec:
  uris:
    - "/oauth"
    - "/authenticate"
  stripuri: true
  selector:
    service: my-auth-app

The above relies an a service name my-auth-app existing in the target kubernetes cluster. All the configuration that can be found here: https://getkong.org/docs/0.10.x/admin-api/#api-object for a Kong API object can be set as the part of the GatewayApi resource's spec.

Creating k8s ApiPlugin third party resources.

The extension resource is provided in this repository to register the ApiPlugin resource type in kubernetes.

An example of defining one these plugins would be the following:

apiVersion: "k8s.freshweb.io/v1"
kind: "ApiPlugin"
metadata:
  name: "my-service-key-auth"
spec:
  name: "key-auth"
  config:
    hide_credentials: true
  selector:
    service: my-service

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
apiplugin
gatewayapi
k8sclient
k8stypes
kong

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL