Tools for Microkubes in Java.
The library can be installed from Maven central:
Maven:
<dependency>
<groupId>com.microkubes</groupId>
<artifactId>tools</artifactId>
<version>0.1.0.RELEASE</version>
</dependency>
Gradle:
compile group: 'com.microkubes', name: 'tools', version: '0.1.0.RELEASE'
To use the latest version, first clone this repository locally:
git clone https://github.com/Microkubes/microkubes-java.gitMake sure you have Gradle installed, then:
cd microkubes-java
./gradlew build -x sign -x uploadArchivesThen install the latest version to your local Maven repository:
./gradlew publishToMavenLocalThe library provides an API for connecting and aut-registering with Kong API Gateway (default for Microkubes).
When using it with Spring, you can import the provided configuration class that will enable the aut-register process based on configuration properties:
@EnableAutoConfiguration()
@SpringBootApplication
@Import({AutoRegister.class})
@PropertySource("classpath:config.properties")
public class Application {
public static void main(String [] args){
SpringApplication.run(Application.class, args);
}
}and the config properties should look like this:
com.microkubes.gateway.gateway-url = http://kong:8001
com.microkubes.service.name = todo
com.microkubes.service.host = todo.service.consul
com.microkubes.service.port = 8080
com.microkubes.service.paths = /todo
Configuration options:
com.microkubes.gateway.adapterthe version of adapter used for API Gateway. Currently supported: kong-v0, kong-v2. Default: [kong-v0]com.microkubes.gateway.gateway-urlthe URL of the admin port of Kong in the platform deployment. Usually set tohttp://kong:8001. Note that this property triggers the auto-configuration process and must be present for the service to auto-register on the platform.com.microkubes.service.name- the name of the servicecom.microkubes.service.host- the virtual host (domain name) of the service as it will be on the platform itself. This is the internal domain of the service as visible to the Consul DNS.com.microkubes.service.port- the port on which the service listens to.com.microkubes.service.paths- routing paths (separated by comma) for the incoming requests to be proxied to this microservice.
Additional service configuration options:
com.microkubes.service.preserve-host- Whether to pass theHostheader to the upstream API service. Defaultfalse.com.microkubes.service.retries- The number of retries to execute upon failure to proxy. Default5.com.microkubes.service.strip-uri- When matching an API via one of theurisprefixes, strip that matching prefix from the upstream URI to be requested. Defaulttrue.com.microkubes.service.upstream-connect-timeout- The timeout in milliseconds for establishing a connection between the API Gateway and the service. Default60000.com.microkubes.service.upstream-read-timeout- he timeout in milliseconds between two successive read operations for transmitting a request to your the service. Default60000.com.microkubes.service.upstream-send-timeout- The timeout in milliseconds between two successive write operations for transmitting a request to the service. Default60000.com.microkubes.service.https-only- To be enabled if you wish to only serve your API through HTTPS, on the appropriate port (8443 by default). Defaultfalse.com.microkubes.service.http-if-terminated- Tell the API Gateway to consider theX-Forwarded-Protoheader when enforcing HTTPS only traffic. Defaultfalse.
If you wan to enable specific plugins (currently supported for Kong API Gateway), you can do so by adding the specific properties in the configuration file, or via ENV variables.
Plugins configuration is loaded from the properties basd on a property name prefix. The general pattern is:
com.microkubes.service.plugins.<plugin_name>.<plugin_prop>
or as an ENV variable:
com_microkubes_service_plugins_<plugin_name>_<plugin_prop>
where:
plugin_nameis the name of the plugin to be enabled, for example:cors.plugin_propare the specific propeties for the plugin. Usually something like:config.max_age,config.headersetc.
Here is an example of configuring the cors plugin in a .properties file:
com.microkubes.service.plugins.cors.config.methods=GET,PUT,POST,DELETE
com.microkubes.service.plugins.cors.config.origins=*
com.microkubes.service.plugins.cors.config.headers=Authorization,X-Auth-Token
com.microkubes.service.plugins.cors.config.credentials=true
com.microkubes.service.plugins.cors.config.max_age=3600This would enable and configure the cors plugin.
The same configuration can be done via environment variables:
com_microkubes_service_plugins_cors_config_methods=GET,PUT,POST,DELETE
com_microkubes_service_plugins_cors_config_origins=*
com_microkubes_service_plugins_cors_config_headers=Authorization,X-Auth-Token
com_microkubes_service_plugins_cors_config_credentials=true
com_microkubes_service_plugins_cors_config_max__age=3600The library offers seamless integration with Microkubes security with Spring Security and SpringBoot enabled microservices.
To enable JWT and ResourceServer you can use the @EnableSecurity annotation on the SpringBoot application (configuration) class:
@EnableAutoConfiguration
@SpringBootApplication
@PropertySource("classpath:config.properties")
@EnableSecurity
@EnableResourceServer
public class Application {
public static void main(String [] args){
SpringApplication.run(Application.class, args);
}
}You need to set up some configuration properties as well. In config.properties:
# enable JWT/OAuth2 on the REST API
com.microkubes.security.oauth2_jwt=enable
# Set the path to the private key (must be PEM encoded PKCS8 private key).
com.microkubes.security.private_key.path=keys/system.pem
# Set the path to the public key (X.509 encoded file).
com.microkubes.security.public_key.path=keys/system.pub
Note that this property com.microkubes.security.oauth2_jwt=enable actually triggers the setup and integration with
Microkubes security.
Don't forget to add @EnableResourceServer or @EnableOauth2Sso to setup the security chain.