-
Notifications
You must be signed in to change notification settings - Fork 2.6k
feat: Add proxy-chain plugin to chain multiple upstream service calls #12128
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Open
vahidaghazadeh
wants to merge
2
commits into
apache:master
Choose a base branch
from
vahidaghazadeh:master
base: master
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
+578
−0
Open
Changes from all commits
Commits
Show all changes
2 commits
Select commit
Hold shift + click to select a range
File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,166 @@ | ||
| -- Proxy Chain Plugin for APISIX | ||
| -- Author: Vahid Aghazadeh [email protected] | ||
| -- Description: This plugin chains multiple upstream service requests, merging their responses into a single payload. | ||
| -- It supports passing a custom token header (e.g., Authorization) between services for authentication purposes. | ||
| -- License: Apache License 2.0 | ||
|
|
||
| local core = require("apisix.core") -- Core APISIX utilities | ||
| local http = require("resty.http") -- HTTP client for making service calls | ||
| local cjson = require("cjson") -- JSON encoding/decoding library | ||
|
|
||
| local plugin_name = "proxy-chain" | ||
|
|
||
| -- Schema definition for plugin configuration | ||
| local schema = { | ||
| type = "object", | ||
| properties = { | ||
| services = { | ||
| type = "array", | ||
| items = { | ||
| type = "object", | ||
| properties = { | ||
| uri = { type = "string", minLength = 1 }, -- URI of the service to call | ||
| method = { type = "string", enum = {"GET", "POST", "PUT", "DELETE"}, default = "POST" } -- HTTP method | ||
| }, | ||
| required = {"uri"} -- URI is mandatory | ||
| }, | ||
| minItems = 1 -- At least one service must be specified | ||
| }, | ||
| token_header = { type = "string" } -- Optional header name for passing a token | ||
| }, | ||
| required = {"services"} -- Services array is mandatory | ||
| } | ||
|
|
||
| -- Plugin metadata | ||
| local _M = { | ||
| version = 0.1, -- Plugin version | ||
| priority = 1000, -- Execution priority (higher runs earlier) | ||
| name = plugin_name, -- Plugin name | ||
| schema = schema, -- Configuration schema | ||
| description = "A plugin to chain multiple service requests and merge their responses." | ||
| } | ||
|
|
||
| -- Validate the plugin configuration against the schema | ||
| function _M.check_schema(conf) | ||
| return core.schema.check(schema, conf) | ||
| end | ||
|
|
||
| -- Access phase: Chain service calls and merge responses | ||
| function _M.access(conf, ctx) | ||
| -- Read the incoming request body | ||
| ngx.req.read_body() | ||
| local original_body = ngx.req.get_body_data() | ||
| local original_data = {} | ||
|
|
||
| -- Log the original request body | ||
| core.log.info("Original body: ", original_body or "nil") | ||
| if original_body and original_body ~= "" then | ||
| local success, decoded = pcall(cjson.decode, original_body) | ||
| if success then | ||
| original_data = decoded -- Parse JSON body if valid | ||
| else | ||
| core.log.warn("Invalid JSON in original body: ", original_body) | ||
| end | ||
| end | ||
|
|
||
| -- Merge URI arguments into the original data | ||
| local uri_args = ngx.req.get_uri_args() | ||
| for k, v in pairs(uri_args) do | ||
| original_data[k] = v | ||
| end | ||
|
|
||
| -- Extract authentication token from headers | ||
| local headers = ngx.req.get_headers() | ||
| local auth_header | ||
| if conf.token_header then | ||
| -- Check custom token header (case-insensitive) | ||
| local token = headers[conf.token_header] or headers[conf.token_header:lower()] or "" | ||
| if token == "" then | ||
| core.log.info("No token found in header: ", conf.token_header, ", falling back to Authorization") | ||
| token = headers["Authorization"] or headers["authorization"] or "" | ||
| if token ~= "" then | ||
| token = token:gsub("^Bearer%s+", "") -- Remove "Bearer " prefix | ||
| end | ||
| end | ||
| if token ~= "" then | ||
| core.log.info("Token extracted from ", conf.token_header, ": ", token) | ||
| auth_header = "Bearer " .. token | ||
| else | ||
| core.log.info("No token provided in ", conf.token_header, " or Authorization, proceeding without auth") | ||
| end | ||
| else | ||
| -- Fallback to Authorization header if no token_header is specified | ||
| local token = headers["Authorization"] or headers["authorization"] or "" | ||
| if token ~= "" then | ||
| token = token:gsub("^Bearer%s+", "") | ||
| core.log.info("Token extracted from Authorization: ", token) | ||
| auth_header = "Bearer " .. token | ||
| else | ||
| core.log.info("No token_header specified and no Authorization provided, proceeding without auth") | ||
| end | ||
| end | ||
|
|
||
| -- Initialize merged data with original request data | ||
| local merged_data = core.table.deepcopy(original_data) | ||
|
|
||
| -- Iterate through each service in the chain | ||
| for i, service in ipairs(conf.services) do | ||
| local httpc = http.new() | ||
| local service_headers = { | ||
| ["Content-Type"] = "application/json", | ||
| ["Accept"] = "*/*" | ||
| } | ||
| if auth_header then | ||
| service_headers["Authorization"] = auth_header -- Add auth token to headers | ||
| end | ||
|
|
||
| -- Make the HTTP request to the service | ||
| local res, err = httpc:request_uri(service.uri, { | ||
| method = service.method, | ||
| body = cjson.encode(merged_data), | ||
| headers = service_headers | ||
| }) | ||
|
|
||
| if not res then | ||
| core.log.error("Failed to call service ", service.uri, ": ", err) | ||
| return 500, { error = "Failed to call service: " .. service.uri } | ||
| end | ||
|
|
||
| if res.status ~= 200 then | ||
| core.log.error("Service ", service.uri, " returned non-200 status: ", res.status, " body: ", res.body or "nil") | ||
| return res.status, { error = "Service error", body = res.body } | ||
| end | ||
|
|
||
| core.log.info("Response from ", service.uri, ": ", res.body or "nil") | ||
|
|
||
| -- Parse the service response | ||
| local service_data = {} | ||
| if res.body and res.body ~= "" then | ||
| local success, decoded = pcall(cjson.decode, res.body) | ||
| if success then | ||
| service_data = decoded | ||
| else | ||
| core.log.error("Invalid JSON in response from ", service.uri, ": ", res.body) | ||
| return 500, { error = "Invalid JSON in response from " .. service.uri } | ||
| end | ||
| end | ||
|
|
||
| -- Merge service response into the cumulative data | ||
| for k, v in pairs(service_data) do | ||
| merged_data[k] = v | ||
| end | ||
| end | ||
|
|
||
| -- Prepare the final body to send to the upstream | ||
| local new_body = cjson.encode(merged_data) | ||
| core.log.info("Merged data sent to upstream: ", new_body) | ||
|
|
||
| -- Store the merged response in context and update the request | ||
| ctx.proxy_chain_response = merged_data | ||
| ngx.req.set_body_data(new_body) | ||
| if auth_header then | ||
| ngx.req.set_header("Authorization", auth_header) -- Pass token to upstream | ||
| end | ||
| end | ||
|
|
||
| return _M | ||
Oops, something went wrong.
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Please refer to other code files to change this section.