Gitiles
Code Review Sign In
code.v1.dodo.cloud / pcloud / 4fde4a1fed6a333653e079d5d756f3902b2d1622^! / . / core / installer
commit4fde4a1fed6a333653e079d5d756f3902b2d1622[log] [tgz]
authorgio <gio@v1.dodo.cloud>Sun Oct 13 12:19:30 2024 +0400
committergio <gio@v1.dodo.cloud>Mon Oct 14 09:07:05 2024 +0400
treecdd711f0382bbb7baadd39026e2ac8914be11cf0
parent9870cc00ca128b0428e5fef1fff930ec33446039 [diff]
AuthProxy: Support Regexps when checking if path requires auth

Change-Id: I3bc6d3143cef46b711bb3ccc7e2cb1ee8c59313f

diff --git a/core/installer/app_configs/app_base.cue b/core/installer/app_configs/app_base.cue
index 4075281..74860fa 100644
--- a/core/installer/app_configs/app_base.cue
+++ b/core/installer/app_configs/app_base.cue

@@ -38,7 +38,7 @@
 #Auth: {
 	enabled: bool | *false // TODO(gio): enabled by default?
 	groups: string | *"" // TODO(gio): []string
-	noAuthPathPrefixes: [...string] | *[]
+	noAuthPathPatterns: [...string] | *[]
 }
 
 #Image: {

diff --git a/core/installer/app_configs/app_global_env.cue b/core/installer/app_configs/app_global_env.cue
index fba9dcf..32cc63d 100644
--- a/core/installer/app_configs/app_global_env.cue
+++ b/core/installer/app_configs/app_global_env.cue

@@ -114,7 +114,7 @@
 						membershipPublicAddr: "https://memberships.\(g.privateDomain)"
 					}
 					groups: auth.groups
-					noAuthPathPrefixes: strings.Join(auth.noAuthPathPrefixes, ",")
+					noAuthPathPatterns: strings.Join(auth.noAuthPathPatterns, ",")
 					portName: _authProxyHTTPPortName
 				}
 			}

diff --git a/core/installer/server/dodo-app/static/schemas/app.schema.json b/core/installer/server/dodo-app/static/schemas/app.schema.json
index 6e49d62..5450358 100644
--- a/core/installer/server/dodo-app/static/schemas/app.schema.json
+++ b/core/installer/server/dodo-app/static/schemas/app.schema.json

@@ -236,12 +236,9 @@
                 "groups": {
                   "type": "string"
                 },
-                "noAuthPathPrefixes": {
+                "noAuthPathPatterns": {
                   "type": "array",
-                  "items": {
-                    "type": "string",
-					"pattern": "^/.*"
-                  }
+                  "items": { "type": "string" }
                 }
               },
               "additionalProperties": false,

diff --git a/core/installer/values-tmpl/dodo-app.cue b/core/installer/values-tmpl/dodo-app.cue
index cb61b45..1c5939b 100644
--- a/core/installer/values-tmpl/dodo-app.cue
+++ b/core/installer/values-tmpl/dodo-app.cue

@@ -105,10 +105,10 @@
 				}
 				if !input.external {
 					enabled: true
-					noAuthPathPrefixes: [
-						"/static/",
-						"/schemas/",
-						"/api/public-data",
+					noAuthPathPatterns: [
+						"^/static/.*$",
+						"^/schemas/.*$",
+						"^/api/public-data$",
 				    ]
 				}
 			}