feat: support add custom headers for etcd requests (#143)

Author: tzssangglass

api_v3.md

@@ -44,6 +44,7 @@ Method
   - `ssl_cert_path`： string - path to the client certificate
   - `ssl_key_path`： string - path to the client key
   - `serializer`: string - serializer type, default `json`, also support `raw` to keep origin string value.
+  - `extra_headers`: table - adding custom headers for etcd requests.
 
 The client method returns either a `etcd` object or an `error string`.
 

lib/resty/etcd/v3.lua

@@ -12,9 +12,11 @@ local sub_str       = string.sub
 local str_byte      = string.byte
 local str_char      = string.char
 local ipairs        = ipairs
+local pairs         = pairs
 local re_match      = ngx.re.match
 local type          = type
 local tab_insert    = table.insert
+local str_lower     = string.lower
 local tab_clone     = require("table.clone")
 local decode_json   = cjson.decode
 local encode_json   = cjson.encode
@@ -28,6 +30,15 @@ local _M = {}
 
 local mt = { __index = _M }
 
+local unmodifiable_headers = {
+    ["authorization"] = true,
+    ["content-length"] = true,
+    ["transfer-encoding"] = true,
+    ["connection"] = true,
+    ["upgrade"] = true,
+}
+
+
 -- define local refresh function variable
 local refresh_jwt_token
 
@@ -125,6 +136,15 @@ local function _request_uri(self, method, uri, opts, timeout, ignore_auth)
         end
     end
 
+    if self.extra_headers and type(self.extra_headers) == "table" then
+        for key, value in pairs(self.extra_headers) do
+            if not unmodifiable_headers[str_lower(key)] then
+                headers[key] = value
+            end
+        end
+        utils.log_info("request uri headers: ", encode_json(headers))
+    end
+
     local http_cli, err = utils.http.new()
     if err then
         return nil, err
@@ -187,6 +207,7 @@ function _M.new(opts)
         ssl_verify = true
     end
     local serializer = opts.serializer
+    local extra_headers = opts.extra_headers
 
     if not typeof.uint(timeout) then
         return nil, 'opts.timeout must be unsigned integer'
@@ -264,6 +285,7 @@ function _M.new(opts)
 
             ssl_cert_path = opts.ssl_cert_path,
             ssl_key_path = opts.ssl_key_path,
+            extra_headers = extra_headers,
         },
         mt)
 end
@@ -604,6 +626,15 @@ local function request_chunk(self, method, path, opts, timeout)
         headers.Authorization = self.jwt_token
     end
 
+    if self.extra_headers and type(self.extra_headers) == "table" then
+        for key, value in pairs(self.extra_headers) do
+            if not unmodifiable_headers[str_lower(key)] then
+                headers[key] = value
+            end
+        end
+        utils.log_info("request chunk headers: ", encode_json(headers))
+    end
+
     local http_cli
     http_cli, err = utils.http.new()
     if err then

t/v3/auth.t

@@ -211,3 +211,93 @@ v3 refresh jwt last err: connection refused
 connection refused
 v3 refresh jwt last err: connection refused
 connection refused
+
+
+
+=== TEST 4: Authorization header will not be overridden when etcd auth is enabled(request uri)
+--- http_config eval: $::HttpConfig
+--- config
+    location /t {
+        content_by_lua_block {
+            local etcd, err = require "resty.etcd" .new({
+                protocol = "v3",
+                user = 'root',
+                password = 'abc123',
+                timeout = 3,
+                http_host = {
+                    "http://127.0.0.1:12379",
+                },
+                extra_headers = {
+                    Authorization = "bar",
+                },
+            })
+            check_res(etcd, err)
+            local res, err = etcd:set("/test", { a='abc'})
+            check_res(res, err)
+            ngx.say('ok')
+        }
+    }
+--- request
+GET /t
+--- no_error_log
+[error]
+--- response_body
+ok
+
+
+
+=== TEST 5: Authorization header will not be overridden when etcd auth is enabled(request chunk)
+--- http_config eval: $::HttpConfig
+--- config
+    location /t {
+        content_by_lua_block {
+            local etcd, err = require "resty.etcd" .new({
+                protocol = "v3",
+                user = 'root',
+                password = 'abc123',
+                timeout = 3,
+                http_host = {
+                    "http://127.0.0.1:12379",
+                },
+                extra_headers = {
+                    Authorization = "bar",
+                },
+            })
+            local res, err = etcd:set("/test", "abc")
+            check_res(res, err)
+
+            ngx.timer.at(0.1, function ()
+                etcd:set("/test", "bcd3")
+            end)
+
+            local cur_time = ngx.now()
+            local body_chunk_fun, err = etcd:watch("/test", {timeout = 0.5})
+            if not body_chunk_fun then
+                ngx.say("failed to watch: ", err)
+            end
+
+            local idx = 0
+            while true do
+                local chunk, err = body_chunk_fun()
+
+                if not chunk then
+                    if err then
+                        ngx.say(err)
+                    end
+                    break
+                end
+
+                idx = idx + 1
+                ngx.say(idx, ": ", require("cjson").encode(chunk.result))
+            end
+        }
+    }
+--- request
+GET /t
+--- no_error_log
+[error]
+--- response_body_like eval
+qr/1:.*"created":true.*
+2:.*"value":"bcd3".*
+timeout/
+--- timeout: 5

t/v3/key.t

@@ -284,7 +284,8 @@ timeout/
 --- timeout: 5
 
 
-=== TEST 4.1: watchdir(key=="")
+
+=== TEST 6: watchdir(key=="")
 --- http_config eval: $::HttpConfig
 --- config
     location /t {
@@ -348,7 +349,7 @@ timeout/
 
 
 
-=== TEST 6: setx(key, val) failed
+=== TEST 7: setx(key, val) failed
 --- http_config eval: $::HttpConfig
 --- config
     location /t {
@@ -369,7 +370,7 @@ GET /t
 
 
 
-=== TEST 7: setx(key, val) success
+=== TEST 8: setx(key, val) success
 --- http_config eval: $::HttpConfig
 --- config
     location /t {
@@ -395,7 +396,7 @@ checked val as expect: abd
 
 
 
-=== TEST 8: setnx(key, val)
+=== TEST 9: setnx(key, val)
 --- http_config eval: $::HttpConfig
 --- config
     location /t {
@@ -422,3 +423,92 @@ GET /t
 [error]
 --- response_body
 checked val as expect: aaa
+
+
+
+=== TEST 10: set extra_headers for request_uri
+--- http_config eval: $::HttpConfig
+--- config
+    location /t {
+        content_by_lua_block {
+            local etcd, err = require "resty.etcd" .new({
+                protocol = "v3",
+                extra_headers = {
+                    foo = "bar",
+                }
+            })
+            check_res(etcd, err)
+
+            local res, err = etcd:set("/test", "abc", {prev_kv = true})
+            check_res(res, err)
+
+            local data, err = etcd:get("/test")
+            check_res(data, err, "abc")
+        }
+    }
+--- request
+GET /t
+--- no_error_log
+[error]
+--- response_body
+checked val as expect: abc
+--- error_log
+request uri headers: {"foo":"bar"}
+
+
+
+=== TEST 11: Authorization header will not be overridden
+--- http_config eval: $::HttpConfig
+--- config
+    location /t {
+        content_by_lua_block {
+            local etcd, err = require "resty.etcd" .new({
+                protocol = "v3",
+                extra_headers = {
+                    Authorization = "bar",
+                }
+            })
+            check_res(etcd, err)
+
+            local res, err = etcd:set("/test", "abc", {prev_kv = true})
+            check_res(res, err)
+
+            local data, err = etcd:get("/test")
+            check_res(data, err, "abc")
+        }
+    }
+--- request
+GET /t
+--- no_error_log
+[error]
+--- response_body
+checked val as expect: abc
+--- error_log
+request uri headers: {}
+
+
+
+=== TEST 12: set extra_headers for request_chunk
+--- http_config eval: $::HttpConfig
+--- config
+    location /t {
+        content_by_lua_block {
+            local etcd, err = require "resty.etcd" .new({
+                protocol = "v3",
+                extra_headers = {
+                    foo = "bar",
+                }
+            })
+            local res, err = etcd:set("/test", "abc")
+            local body_chunk_fun, _ = etcd:watch("/test", {timeout = 0.5})
+            ngx.say("passed")
+        }
+    }
+--- request
+GET /t
+--- response_body
+passed
+--- error_log
+request chunk headers: {"foo":"bar"}
+--- no_error_log
+[error]