-
Notifications
You must be signed in to change notification settings - Fork 1.3k
Expand file tree
/
Copy pathhttproute.rs
More file actions
257 lines (242 loc) · 9.6 KB
/
httproute.rs
File metadata and controls
257 lines (242 loc) · 9.6 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
pub use k8s_gateway_api::{
BackendObjectReference, CommonRouteSpec, Hostname, HttpBackendRef, HttpHeader, HttpHeaderMatch,
HttpHeaderName, HttpMethod, HttpPathMatch, HttpPathModifier, HttpQueryParamMatch,
HttpRequestHeaderFilter, HttpRequestRedirectFilter, HttpRouteMatch, LocalObjectReference,
ParentReference, RouteStatus,
};
use std::time::Duration;
/// HTTPRoute provides a way to route HTTP requests. This includes the
/// capability to match requests by hostname, path, header, or query param.
/// Filters can be used to specify additional processing steps. Backends specify
/// where matching requests should be routed.
#[derive(
Clone,
Debug,
Default,
kube::CustomResource,
serde::Deserialize,
serde::Serialize,
schemars::JsonSchema,
)]
#[kube(
group = "policy.linkerd.io",
version = "v1beta3",
kind = "HTTPRoute",
struct = "HttpRoute",
status = "HttpRouteStatus",
namespaced
)]
pub struct HttpRouteSpec {
/// Common route information.
#[serde(flatten)]
pub inner: CommonRouteSpec,
/// Hostnames defines a set of hostname that should match against the HTTP
/// Host header to select a HTTPRoute to process the request. This matches
/// the RFC 1123 definition of a hostname with 2 notable exceptions:
///
/// 1. IPs are not allowed.
/// 2. A hostname may be prefixed with a wildcard label (`*.`). The wildcard
/// label must appear by itself as the first label.
pub hostnames: Option<Vec<Hostname>>,
/// Rules are a list of HTTP matchers, filters and actions.
pub rules: Option<Vec<HttpRouteRule>>,
}
/// HTTPRouteRule defines semantics for matching an HTTP request based on
/// conditions (matches), processing it (filters), and forwarding the request to
/// an API object (backendRefs).
#[derive(
Clone, Debug, PartialEq, Eq, serde::Deserialize, serde::Serialize, schemars::JsonSchema,
)]
#[serde(rename_all = "camelCase")]
pub struct HttpRouteRule {
/// Matches define conditions used for matching the rule against incoming
/// HTTP requests. Each match is independent, i.e. this rule will be matched
/// if **any** one of the matches is satisfied.
///
/// For example, take the following matches configuration:
///
/// ```yaml
/// matches:
/// - path:
/// value: "/foo"
/// headers:
/// - name: "version"
/// value: "v2"
/// - path:
/// value: "/v2/foo"
/// ```
///
/// For a request to match against this rule, a request must satisfy
/// EITHER of the two conditions:
///
/// - path prefixed with `/foo` AND contains the header `version: v2`
/// - path prefix of `/v2/foo`
///
/// See the documentation for HTTPRouteMatch on how to specify multiple
/// match conditions that should be ANDed together.
///
/// If no matches are specified, the default is a prefix
/// path match on "/", which has the effect of matching every
/// HTTP request.
///
/// Proxy or Load Balancer routing configuration generated from HTTPRoutes
/// MUST prioritize rules based on the following criteria, continuing on
/// ties. Precedence must be given to the the Rule with the largest number
/// of:
///
/// * Characters in a matching non-wildcard hostname.
/// * Characters in a matching hostname.
/// * Characters in a matching path.
/// * Header matches.
/// * Query param matches.
///
/// If ties still exist across multiple Routes, matching precedence MUST be
/// determined in order of the following criteria, continuing on ties:
///
/// * The oldest Route based on creation timestamp.
/// * The Route appearing first in alphabetical order by
/// "{namespace}/{name}".
///
/// If ties still exist within the Route that has been given precedence,
/// matching precedence MUST be granted to the first matching rule meeting
/// the above criteria.
///
/// When no rules matching a request have been successfully attached to the
/// parent a request is coming from, a HTTP 404 status code MUST be returned.
pub matches: Option<Vec<HttpRouteMatch>>,
/// Filters define the filters that are applied to requests that match this
/// rule.
///
/// The effects of ordering of multiple behaviors are currently unspecified.
/// This can change in the future based on feedback during the alpha stage.
///
/// Conformance-levels at this level are defined based on the type of
/// filter:
///
/// - ALL core filters MUST be supported by all implementations.
/// - Implementers are encouraged to support extended filters.
/// - Implementation-specific custom filters have no API guarantees across
/// implementations.
///
/// Specifying a core filter multiple times has unspecified or custom
/// conformance.
///
/// Support: Core
pub filters: Option<Vec<HttpRouteFilter>>,
/// BackendRefs defines the backend(s) where matching requests should be
/// sent.
///
/// A 500 status code MUST be returned if there are no BackendRefs or
/// filters specified that would result in a response being sent.
///
/// A BackendRef is considered invalid when it refers to:
///
/// * an unknown or unsupported kind of resource
/// * a resource that does not exist
/// * a resource in another namespace when the reference has not been
/// explicitly allowed by a ReferencePolicy (or equivalent concept).
///
/// When a BackendRef is invalid, 500 status codes MUST be returned for
/// requests that would have otherwise been routed to an invalid backend. If
/// multiple backends are specified, and some are invalid, the proportion of
/// requests that would otherwise have been routed to an invalid backend
/// MUST receive a 500 status code.
///
/// When a BackendRef refers to a Service that has no ready endpoints, it is
/// recommended to return a 503 status code.
///
/// Support: Core for Kubernetes Service
/// Support: Custom for any other resource
///
/// Support for weight: Core
pub backend_refs: Option<Vec<HttpBackendRef>>,
/// Timeouts defines the timeouts that can be configured for an HTTP request.
///
/// Support: Core
pub timeouts: Option<HttpRouteTimeouts>,
}
/// HTTPRouteFilter defines processing steps that must be completed during the
/// request or response lifecycle. HTTPRouteFilters are meant as an extension
/// point to express processing that may be done in Gateway implementations.
/// Some examples include request or response modification, implementing
/// authentication strategies, rate-limiting, and traffic shaping. API
/// guarantee/conformance is defined based on the type of the filter.
#[derive(
Clone, Debug, PartialEq, Eq, serde::Deserialize, serde::Serialize, schemars::JsonSchema,
)]
#[serde(tag = "type", rename_all = "PascalCase")]
pub enum HttpRouteFilter {
/// RequestHeaderModifier defines a schema for a filter that modifies request
/// headers.
///
/// Support: Core
#[serde(rename_all = "camelCase")]
RequestHeaderModifier {
request_header_modifier: HttpRequestHeaderFilter,
},
/// RequestRedirect defines a schema for a filter that responds to the
/// request with an HTTP redirection.
///
/// Support: Core
#[serde(rename_all = "camelCase")]
RequestRedirect {
request_redirect: HttpRequestRedirectFilter,
},
}
/// HTTPRouteStatus defines the observed state of HTTPRoute.
#[derive(Clone, Debug, PartialEq, serde::Deserialize, serde::Serialize, schemars::JsonSchema)]
pub struct HttpRouteStatus {
/// Common route status information.
#[serde(flatten)]
pub inner: RouteStatus,
}
/// HTTPRouteTimeouts defines timeouts that can be configured for an HTTPRoute.
/// Timeout values are formatted like 1h/1m/1s/1ms as parsed by Golang time.ParseDuration
/// and MUST BE >= 1ms.
#[derive(
Clone, Debug, PartialEq, Eq, serde::Deserialize, serde::Serialize, schemars::JsonSchema,
)]
pub struct HttpRouteTimeouts {
/// Request specifies a timeout for the Gateway to send a response to a client HTTP request.
/// Whether the gateway starts the timeout before or after the entire client request stream
/// has been received, is implementation dependent.
///
/// For example, setting the `rules.timeouts.request` field to the value `10s` in an
/// `HTTPRoute` will cause a timeout if a client request is taking longer than 10 seconds
/// to complete.
///
/// Request timeouts are disabled by default.
///
/// Support: Core
pub request: Option<Duration>,
/// BackendRequest specifies a timeout for an individual request from the gateway
/// to a backend service. Typically used in conjuction with retry configuration,
/// if supported by an implementation.
///
/// The value of BackendRequest defaults to and must be <= the value of Request timeout.
///
/// Support: Extended
pub backend_request: Option<Duration>,
}
pub fn parent_ref_targets_kind<T>(parent_ref: &ParentReference) -> bool
where
T: kube::Resource,
T::DynamicType: Default,
{
let kind = match parent_ref.kind {
Some(ref kind) => kind,
None => return false,
};
super::targets_kind::<T>(parent_ref.group.as_deref(), kind)
}
pub fn backend_ref_targets_kind<T>(backend_ref: &BackendObjectReference) -> bool
where
T: kube::Resource,
T::DynamicType: Default,
{
// Default kind is assumed to be service for backend ref objects
super::targets_kind::<T>(
backend_ref.group.as_deref(),
backend_ref.kind.as_deref().unwrap_or("service"),
)
}