Add extended routing capability, fixes TykTechnologies#639 (TykTechno…

…logies#1146) Fixed TykTechnologies#639 This PR adds rewrite "triggers" on top of the existing rewrite functionality. These are essentially sub-matches to allow a rewrite rule to have variations. For example, for the URL `/foo/bar/baz` I want to rewrite to `/fooble/barble/bazble` if the query string variable `culprit` is set to `kronk`, but I want to redirect to `/foozle/barzle/bazzle` if the variable `culprit` is set to `yzma`. I can do this with the new URL Rewriter as follows: ``` { "url_rewrites": [ { "path": "/foo/bar/baz", "method": "GET", "match_pattern": "/foo/bar/baz", "rewrite_to": "/foo/bar/baz", "triggers": [ { "on": "any", "options": { "query_val_matches": { "culprit": { match_rx": "kronk" } } } "rewrite_to": "/fooble/barble/bazble" } { "on": "any", "options": { "query_val_matches": { "culprit": { match_rx": "yzma" } } } "rewrite_to": "/foozle/barzle/bazzle" } ] } ] } ``` Here if there is no trigger match, the rwrite will fallback to the parent `rewrite_to`, but if either of the other two are triggered, the rewrite target is changed. Each trigger also sets a context variable for each match it finds, these context vars can then be used in the rewrites, so the above example with context vars could be rewritten to: ``` { "url_rewrites": [ { "path": "/foo/bar/baz", "method": "GET", "match_pattern": "/foo/bar/baz", "rewrite_to": "/foo/bar/baz", "triggers": [ { "on": "any", "options": { "query_val_matches": { "culprit": { match_rx": "kronk" } } } "rewrite_to": "/fooble/barble/bazble?victim=$tyk_context.trigger-0-culprit-0" } { "on": "any", "options": { "query_val_matches": { "culprit": { match_rx": "yzma" } } } "rewrite_to": "/foozle/barzle/bazzle?victim=$tyk_context.trigger-1-culprit-0" } ] } ] } ``` Trigger contexts take the format: `$tyk_context.trigger-{n}-{name}-{i}` where `n` is the trigger index in the array, `nam` is the rx matcher name and `i` is the index of that match (since querystrings and headers can be arrays of values). The Trigger functionality supports: 1. Header matches 2. Query string variable/value matches 3. Path part matches, i.e. components of the path itself 4. Session meta data values 5. Payload matches For each trigger, the trigger can either use the `on: any` or `on: all` formatting, for `any`, if any one of the options in the trigger is true, the rewrite rule is fired. for `all`, all the options must be satisfied. This is limited to triggers, not groups of triggers, these will be evaluated one by one.
buster2004 · Dec 18, 2017 · e247d40 · e247d40
1 parent 8270030
commit e247d40
Show file tree

Hide file tree

Showing 3 changed files with 741 additions and 10 deletions.
diff --git a/apidef/api_definitions.go b/apidef/api_definitions.go
@@ -3,6 +3,8 @@ package apidef
 import (
 	"encoding/base64"
 
+	"regexp"
+
 	"github.com/lonelycode/osin"
 	"gopkg.in/mgo.v2/bson"
 )
@@ -20,6 +22,7 @@ type MiddlewareDriver string
 type IdExtractorSource string
 type IdExtractorType string
 type AuthTypeEnum string
+type RoutingTriggerOnType string
 
 const (
 	NoAction EndpointMethodAction = "no_action"
@@ -53,6 +56,11 @@ const (
 	OIDCUser      AuthTypeEnum = "oidc_user"
 	OAuthKey      AuthTypeEnum = "oauth_key"
 	UnsetAuth     AuthTypeEnum = ""
+
+	// For routing triggers
+	All    RoutingTriggerOnType = "all"
+	Any    RoutingTriggerOnType = "any"
+	Ignore RoutingTriggerOnType = ""
 )
 
 type EndpointMethodMeta struct {
@@ -113,11 +121,31 @@ type CircuitBreakerMeta struct {
 	ReturnToServiceAfter int     `bson:"return_to_service_after" json:"return_to_service_after"`
 }
 
+type StringRegexMap struct {
+	MatchPattern string `bson:"match_rx" json:"match_rx"`
+	matchRegex   *regexp.Regexp
+}
+
+type RoutingTriggerOptions struct {
+	HeaderMatches      map[string]StringRegexMap `bson:"header_matches" json:"header_matches"`
+	QueryValMatches    map[string]StringRegexMap `bson:"query_val_matches" json:"query_val_matches"`
+	PathPartMatches    map[string]StringRegexMap `bson:"path_part_matches" json:"path_part_matches"`
+	SessionMetaMatches map[string]StringRegexMap `bson:"session_meta_matches" json:"session_meta_matches"`
+	PayloadMatches     StringRegexMap            `bson:"payload_matches" json:"payload_matches"`
+}
+
+type RoutingTrigger struct {
+	On        RoutingTriggerOnType  `bson:"on" json:"on"`
+	Options   RoutingTriggerOptions `bson:"options" json:"options"`
+	RewriteTo string                `bson:"rewrite_to" json:"rewrite_to"`
+}
+
 type URLRewriteMeta struct {
-	Path         string `bson:"path" json:"path"`
-	Method       string `bson:"method" json:"method"`
-	MatchPattern string `bson:"match_pattern" json:"match_pattern"`
-	RewriteTo    string `bson:"rewrite_to" json:"rewrite_to"`
+	Path         string           `bson:"path" json:"path"`
+	Method       string           `bson:"method" json:"method"`
+	MatchPattern string           `bson:"match_pattern" json:"match_pattern"`
+	RewriteTo    string           `bson:"rewrite_to" json:"rewrite_to"`
+	Triggers     []RoutingTrigger `bson:"triggers" json:"triggers"`
 }
 
 type VirtualMeta struct {
@@ -422,3 +450,13 @@ func (a *APIDefinition) DecodeFromDB() {
 
 	a.UpstreamCertificates = new_upstream_certificates
 }
+
+func (s *StringRegexMap) Check(value string) string {
+	return s.matchRegex.FindString(value)
+}
+
+func (s *StringRegexMap) Init() error {
+	var err error
+	s.matchRegex, err = regexp.Compile(s.MatchPattern)
+	return err
+}
diff --git a/mw_url_rewrite.go b/mw_url_rewrite.go
@@ -8,6 +8,10 @@ import (
 	"strconv"
 	"strings"
 
+	"fmt"
+	"io/ioutil"
+	"net/textproto"
+
 	"github.com/TykTechnologies/tyk/apidef"
 )
 
@@ -23,13 +27,112 @@ func urlRewrite(meta *apidef.URLRewriteMeta, r *http.Request) (string, error) {
 	newpath := path
 
 	result_slice := mp.FindAllStringSubmatch(path, -1)
+
+	// Check triggers
+	rewriteToPath := meta.RewriteTo
+	if len(meta.Triggers) > 0 {
+
+		// This feature uses context, we must force it if it doesn't exist
+		contextData := ctxGetData(r)
+		if contextData == nil {
+			contextDataObject := make(map[string]interface{})
+			ctxSetData(r, contextDataObject)
+		}
+
+		for tn, triggerOpts := range meta.Triggers {
+			checkAny := false
+			setCount := 0
+			if triggerOpts.On == apidef.Any {
+				checkAny = true
+			}
+
+			// Check headers
+			if len(triggerOpts.Options.HeaderMatches) > 0 {
+				if checkHeaderTrigger(r, triggerOpts.Options.HeaderMatches, checkAny, tn) {
+					setCount += 1
+					if checkAny {
+						rewriteToPath = triggerOpts.RewriteTo
+						break
+					}
+				}
+			}
+
+			// Check query string
+			if len(triggerOpts.Options.QueryValMatches) > 0 {
+				if checkQueryString(r, triggerOpts.Options.QueryValMatches, checkAny, tn) {
+					setCount += 1
+					if checkAny {
+						rewriteToPath = triggerOpts.RewriteTo
+						break
+					}
+				}
+			}
+
+			// Check path parts
+			if len(triggerOpts.Options.PathPartMatches) > 0 {
+				if checkPathParts(r, triggerOpts.Options.PathPartMatches, checkAny, tn) {
+					setCount += 1
+					if checkAny {
+						rewriteToPath = triggerOpts.RewriteTo
+						break
+					}
+				}
+			}
+
+			// Check session meta
+
+			if session := ctxGetSession(r); session != nil {
+				if len(triggerOpts.Options.SessionMetaMatches) > 0 {
+					if checkSessionTrigger(r, session, triggerOpts.Options.SessionMetaMatches, checkAny, tn) {
+						setCount += 1
+						if checkAny {
+							rewriteToPath = triggerOpts.RewriteTo
+							break
+						}
+					}
+				}
+			}
+
+			// Check payload
+			if triggerOpts.Options.PayloadMatches.MatchPattern != "" {
+				if checkPayload(r, triggerOpts.Options.PayloadMatches, tn) {
+					setCount += 1
+					if checkAny {
+						rewriteToPath = triggerOpts.RewriteTo
+						break
+					}
+				}
+			}
+
+			if !checkAny {
+				// Set total count:
+				total := 0
+				if len(triggerOpts.Options.HeaderMatches) > 0 {
+					total += 1
+				}
+				if len(triggerOpts.Options.QueryValMatches) > 0 {
+					total += 1
+				}
+				if len(triggerOpts.Options.PathPartMatches) > 0 {
+					total += 1
+				}
+				if triggerOpts.Options.PayloadMatches.MatchPattern != "" {
+					total += 1
+				}
+				if total == setCount {
+					rewriteToPath = triggerOpts.RewriteTo
+				}
+			}
+		}
+	}
+
 	// Make sure it matches the string
 	log.Debug("Rewriter checking matches, len is: ", len(result_slice))
 	if len(result_slice) > 0 {
-		newpath = meta.RewriteTo
+		newpath = rewriteToPath
 		// get the indices for the replacements:
 		dollarMatch := regexp.MustCompile(`\$\d+`) // Prepare our regex
-		replace_slice := dollarMatch.FindAllStringSubmatch(meta.RewriteTo, -1)
+		replace_slice := dollarMatch.FindAllStringSubmatch(rewriteToPath, -1)
 
 		log.Debug(result_slice)
 		log.Debug(replace_slice)
@@ -57,11 +160,10 @@ func urlRewrite(meta *apidef.URLRewriteMeta, r *http.Request) (string, error) {
 
 	contextData := ctxGetData(r)
 
-	dollarMatch := regexp.MustCompile(`\$tyk_context.(\w+)`)
-	replace_slice := dollarMatch.FindAllStringSubmatch(meta.RewriteTo, -1)
+	dollarMatch := regexp.MustCompile(`\$tyk_context.([A-Za-z0-9_\-\.]+)`)
+	replace_slice := dollarMatch.FindAllStringSubmatch(rewriteToPath, -1)
 	for _, v := range replace_slice {
 		contextKey := strings.Replace(v[0], "$tyk_context.", "", 1)
-		log.Debug("Replacing: ", v[0])
 
 		if val, ok := contextData[contextKey]; ok {
 			newpath = strings.Replace(newpath, v[0],
@@ -73,7 +175,7 @@ func urlRewrite(meta *apidef.URLRewriteMeta, r *http.Request) (string, error) {
 	if session := ctxGetSession(r); session != nil {
 
 		metaDollarMatch := regexp.MustCompile(`\$tyk_meta.(\w+)`)
-		metaReplace_slice := metaDollarMatch.FindAllStringSubmatch(meta.RewriteTo, -1)
+		metaReplace_slice := metaDollarMatch.FindAllStringSubmatch(rewriteToPath, -1)
 		for _, v := range metaReplace_slice {
 			contextKey := strings.Replace(v[0], "$tyk_meta.", "", 1)
 			log.Debug("Replacing: ", v[0])
@@ -123,10 +225,30 @@ func (m *URLRewriteMiddleware) Name() string {
 	return "URLRewriteMiddleware"
 }
 
+func (m *URLRewriteMiddleware) InitTriggerRx() {
+	// Generate regexp for each special match parameter
+	for _, ver := range m.Spec.VersionData.Versions {
+		for _, path := range ver.ExtendedPaths.URLRewrite {
+			for _, tr := range path.Triggers {
+				for _, h := range tr.Options.HeaderMatches {
+					h.Init()
+				}
+				for _, q := range tr.Options.QueryValMatches {
+					q.Init()
+				}
+				if tr.Options.PayloadMatches.MatchPattern != "" {
+					tr.Options.PayloadMatches.Init()
+				}
+			}
+		}
+	}
+}
+
 func (m *URLRewriteMiddleware) EnabledForSpec() bool {
 	for _, version := range m.Spec.VersionData.Versions {
 		if len(version.ExtendedPaths.URLRewrite) > 0 {
 			m.Spec.URLRewriteEnabled = true
+			m.InitTriggerRx()
 			return true
 		}
 	}
@@ -169,3 +291,136 @@ func (m *URLRewriteMiddleware) ProcessRequest(w http.ResponseWriter, r *http.Req
 	}
 	return nil, 200
 }
+
+func checkHeaderTrigger(r *http.Request, options map[string]apidef.StringRegexMap, any bool, triggernum int) bool {
+	contextData := ctxGetData(r)
+	fCount := 0
+	for mh, mr := range options {
+		mhCN := textproto.CanonicalMIMEHeaderKey(mh)
+		vals, ok := r.Header[mhCN]
+		if ok {
+			for i, v := range vals {
+				b := mr.Check(v)
+				if len(b) > 0 {
+					kn := fmt.Sprintf("trigger-%d-%s-%d", triggernum, mhCN, i)
+					contextData[kn] = b
+					fCount++
+				}
+			}
+		}
+	}
+
+	if fCount > 0 {
+		ctxSetData(r, contextData)
+		if any {
+			return true
+		}
+
+		return len(options) <= fCount
+	}
+
+	return false
+}
+
+func checkQueryString(r *http.Request, options map[string]apidef.StringRegexMap, any bool, triggernum int) bool {
+	contextData := ctxGetData(r)
+	fCount := 0
+	for mv, mr := range options {
+		qvals := r.URL.Query()
+		vals, ok := qvals[mv]
+		if ok {
+			for i, v := range vals {
+				b := mr.Check(v)
+				if len(b) > 0 {
+					kn := fmt.Sprintf("trigger-%d-%s-%d", triggernum, mv, i)
+					contextData[kn] = b
+					fCount++
+				}
+			}
+		}
+	}
+
+	if fCount > 0 {
+		ctxSetData(r, contextData)
+		if any {
+			return true
+		}
+
+		return len(options) <= fCount
+	}
+
+	return false
+}
+
+func checkPathParts(r *http.Request, options map[string]apidef.StringRegexMap, any bool, triggernum int) bool {
+	contextData := ctxGetData(r)
+	fCount := 0
+	for mv, mr := range options {
+		pathParts := strings.Split(r.URL.Path, "/")
+
+		for _, part := range pathParts {
+			b := mr.Check(part)
+			if len(b) > 0 {
+				kn := fmt.Sprintf("trigger-%d-%s-%d", triggernum, mv, fCount)
+				contextData[kn] = b
+				fCount++
+			}
+		}
+	}
+
+	if fCount > 0 {
+		ctxSetData(r, contextData)
+		if any {
+			return true
+		}
+
+		return len(options) <= fCount
+	}
+
+	return false
+}
+
+func checkSessionTrigger(r *http.Request, sess *SessionState, options map[string]apidef.StringRegexMap, any bool, triggernum int) bool {
+	contextData := ctxGetData(r)
+	fCount := 0
+	for mh, mr := range options {
+		rawVal, ok := sess.MetaData[mh]
+		if ok {
+			val, valOk := rawVal.(string)
+			if valOk {
+				b := mr.Check(val)
+				if len(b) > 0 {
+					kn := fmt.Sprintf("trigger-%d-%s", triggernum, mh)
+					contextData[kn] = b
+					fCount++
+				}
+			}
+		}
+	}
+
+	if fCount > 0 {
+		ctxSetData(r, contextData)
+		if any {
+			return true
+		}
+
+		return len(options) <= fCount
+	}
+
+	return false
+}
+
+func checkPayload(r *http.Request, options apidef.StringRegexMap, triggernum int) bool {
+	contextData := ctxGetData(r)
+	cp := copyRequest(r)
+	bodyBytes, _ := ioutil.ReadAll(cp.Body)
+
+	b := options.Check(string(bodyBytes))
+	if len(b) > 0 {
+		kn := fmt.Sprintf("trigger-%d-payload", triggernum)
+		contextData[kn] = string(b)
+		return true
+	}
+
+	return false
+}