CL-Softwares
/
telegraf
8
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat(inputs.influxdb_v2_listener): Support Secret for token (#15407)

This commit is contained in:
Lars Stegman 2024-05-31 14:46:26 +02:00 committed by GitHub
parent 042b257b64
commit d42e407ab7
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
3 changed files with 25 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
plugins/inputs/influxdb_v2_listener/README.md
View File

@ -31,6 +31,14 @@ See the [CONFIGURATION.md][CONFIGURATION.md] for more details.
[CONFIGURATION.md]: ../../../docs/CONFIGURATION.md#plugins [CONFIGURATION.md]: ../../../docs/CONFIGURATION.md#plugins
## Secret-store support
This plugin supports secrets from secret-stores for the `token` option.
See the [secret-store documentation][SECRETSTORE] for more details on how
to use them.
[SECRETSTORE]: ../../../docs/CONFIGURATION.md#secret-store-secrets
## Configuration ## Configuration
```toml @sample.conf ```toml @sample.conf

21
plugins/inputs/influxdb_v2_listener/influxdb_v2_listener.go
View File

@ -58,7 +58,7 @@ type InfluxDBV2Listener struct {
ReadTimeout config.Duration `toml:"read_timeout"` ReadTimeout config.Duration `toml:"read_timeout"`
WriteTimeout config.Duration `toml:"write_timeout"` WriteTimeout config.Duration `toml:"write_timeout"`
MaxBodySize config.Size `toml:"max_body_size"` MaxBodySize config.Size `toml:"max_body_size"`
Token string `toml:"token"` Token config.Secret `toml:"token"`
BucketTag string `toml:"bucket_tag"` BucketTag string `toml:"bucket_tag"`
ParserType string `toml:"parser_type"` ParserType string `toml:"parser_type"`
@ -99,11 +99,18 @@ func (h *InfluxDBV2Listener) Gather(_ telegraf.Accumulator) error {
return nil return nil
} }
func (h *InfluxDBV2Listener) routes() { func (h *InfluxDBV2Listener) routes() error {
credentials := "" credentials := ""
if h.Token != "" { if !h.Token.Empty() {
credentials = "Token " + h.Token secBuf, err := h.Token.Get()
if err != nil {
return err
} }
credentials = "Token " + secBuf.String()
secBuf.Destroy()
}
authHandler := internal.GenericAuthHandler(credentials, authHandler := internal.GenericAuthHandler(credentials,
func(_ http.ResponseWriter) { func(_ http.ResponseWriter) {
h.authFailures.Incr(1) h.authFailures.Incr(1)
@ -113,6 +120,8 @@ func (h *InfluxDBV2Listener) routes() {
h.mux.Handle("/api/v2/write", authHandler(h.handleWrite())) h.mux.Handle("/api/v2/write", authHandler(h.handleWrite()))
h.mux.Handle("/api/v2/ready", h.handleReady()) h.mux.Handle("/api/v2/ready", h.handleReady())
h.mux.Handle("/", authHandler(h.handleDefault())) h.mux.Handle("/", authHandler(h.handleDefault()))
return nil
} }
func (h *InfluxDBV2Listener) Init() error { func (h *InfluxDBV2Listener) Init() error {
@ -126,7 +135,9 @@ func (h *InfluxDBV2Listener) Init() error {
h.requestsRecv = selfstat.Register("influxdb_v2_listener", "requests_received", tags) h.requestsRecv = selfstat.Register("influxdb_v2_listener", "requests_received", tags)
h.notFoundsServed = selfstat.Register("influxdb_v2_listener", "not_founds_served", tags) h.notFoundsServed = selfstat.Register("influxdb_v2_listener", "not_founds_served", tags)
h.authFailures = selfstat.Register("influxdb_v2_listener", "auth_failures", tags) h.authFailures = selfstat.Register("influxdb_v2_listener", "auth_failures", tags)
h.routes() if err := h.routes(); err != nil {
return err
}
if h.MaxBodySize == 0 { if h.MaxBodySize == 0 {
h.MaxBodySize = config.Size(defaultMaxBodySize) h.MaxBodySize = config.Size(defaultMaxBodySize)

2
plugins/inputs/influxdb_v2_listener/influxdb_v2_listener_test.go
View File

@ -63,7 +63,7 @@ func newTestListener() *InfluxDBV2Listener {
func newTestAuthListener() *InfluxDBV2Listener { func newTestAuthListener() *InfluxDBV2Listener {
listener := newTestListener() listener := newTestListener()
listener.Token = token listener.Token = config.NewSecret([]byte(token))
return listener return listener
} }