terraform-provider-kong

command module

v0.9.0 Latest Latest Go to latest Published: Feb 2, 2018 License: MIT Imports: 2 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/charles-d-burton/terraform-provider-kong

Links

Open Source Insights

README ¶

Terraform Provider Kong

The Kong Terraform Provider tested against real Kong!

Requirements

Terraform 0.10.x
Go 1.8 (to build the provider plugin)

Usage

To configure the provider:

provider "kong" {
    kong_admin_uri = "http://myKong:8001"
}

By convention the provider will first check the env variable KONG_ADMIN_ADDR if that variable is not set then it will default to http://localhost:8001 if you do not provide a provider block as above.

Resources

Apis

resource "kong_api" "api" {
    name 	             = "TestApi"
    hosts                    = [ "example.com" ]
    uris 	             = [ "/example" ]
    methods                  = [ "GET", "POST" ]
    upstream_url             = "http://localhost:4140"
    strip_uri                = false
    preserve_host            = false
    retries                  = 3
    upstream_connect_timeout = 60000
    upstream_send_timeout    = 30000
    upstream_read_timeout    = 10000
    https_only               = false
    http_if_terminated       = false
}

The api resource maps directly onto the json for the API endpoint in Kong. For more information on the parameters see the Kong Api create documentation.

Plugins

resource "kong_plugin" "response_rate_limiting" {
	name   = "response-ratelimiting"
	config = {
		limits.sms.minute = 10
	}
}

The plugin resource maps directly onto the json for the API endpoint in Kong. For more information on the parameters see the Kong Api create documentation.

Here is a more complex example for creating a plugin for a consumer and an API:

resource "kong_api" "api" {
    name 	             = "TestApi"
    hosts                    = [ "example.com" ]
    uris 	             = [ "/example" ]
    methods                  = [ "GET", "POST" ]
    upstream_url             = "http://localhost:4140"
    strip_uri                = false
    preserve_host            = false
    retries                  = 3
    upstream_connect_timeout = 60000
    upstream_send_timeout    = 30000
    upstream_read_timeout    = 10000
    https_only               = false
    http_if_terminated       = false
}

resource "kong_consumer" "plugin_consumer" {
	username  = "PluginUser"
	custom_id = "111"
}

resource "kong_plugin" "rate_limit" {
	name        = "response-ratelimiting"
	api_id 	    = "${kong_api.api.id}"
	consumer_id = "${kong_consumer.plugin_consumer.id}"
	config 	    = {
		limits.sms.minute = 77
	}
}

Consumers

resource "kong_consumer" "consumer" {
	username  = "User1"
	custom_id = "123"
}

The consumer resource maps directly onto the json for creating an Consumer in Kong. For more information on the parameters see the Kong Consumer create documentation.

Certificates

resource "kong_certificate" "certificate" {
	certificate  = "public key --- 123 ----"
	private_key = "private key --- 456 ----"
}

certificate should be the public key of your certificate it is mapped to the Cert parameter on the Kong API. private_key should be the private key of your certificate it is mapped to the Key parameter on the Kong API.

For more information on creating certificates in Kong see their documentation

SNIs

resource "kong_certificate" "certificate" {
	certificate  = "public key --- 123 ----"
	private_key = "private key --- 456 ----"
}

resource "kong_sni" "sni" {
	name  		   = "www.example.com"
	certificate_id = "${kong_certificate.certificate.id}"
}

name is your domain you want to assign to the certificate certificate_id is the id of a certificate

For more information on creating SNIs in Kong see their documentaton

Upstreams

resource "kong_upstream" "upstream" {
	name  		= "sample_upstream"
	slots 		= 10
	order_list  = [ 3, 2, 1, 4, 5, 6, 7, 8, 9, 10 ]
}

order_list is optional if not supplied then one will be generated at random by kong and it will be set in the resource state. For more information on creating Upstreams in Kong see their documentaton

Data Sources

APIs

To look up an existing api you can do so by using a filter:

data "kong_api" "api_data_source" {
	filter = {
		id = "de539d26-97d2-4d5b-aaf9-628e51087d9c"
		name = "TestDataSourceApi"
		upstream_url = "http://localhost:4140"
	}
}

Each of the filter parameters are optional and they are combined for an AND search against all APIs. The following output parameters are returned:

id - the id of the API
name - the name of the API
hosts - a list of the hosts configured on the API
uris - a list of the uri prefixes for the API
methods - a list of the allowed methods on the API
upstream_url - the upstream url for the API
strip_uri - whether the API strips the matching prefix from the uri
preserve_host - whether the API forwards the host header onto the upstream service
retries - number of retries the API executes upon failure to the upstream service
upstream_connect_timeout - the timeout in milliseconds for establishing a connection to your upstream service
upstream_send_timeout - the timeout in milliseconds between two successive write operations for transmitting a request to your upstream service
upstream_read_timeout - the timeout in milliseconds between two successive read operations for transmitting a request to your upstream service
https_only - whether the API is served through HTTPS
http_if_terminated - whether the API considers the X-Forwarded-Proto header when enforcing HTTPS only traffic

Certificates

To look up an existing certificate:

data "kong_certificate" "certificate_data_source" {
	filter = {
		id = "471c625a-4eba-4b78-985f-86cf54a2dc12"
	}
}

You can only find existing certificates by their id in Kong. The following output parameters are returned:

id - the Kong id for the certificate
certificate - the public key of the certificate
private_key - the private key of the certificate

Consumers

To look up an existing consumer:

data "kong_consumer" "consumer_data_source" {
	filter = {
		id 		  = "8086a91b-cb5a-4e60-90b0-ca6650e82464"
		username  = "User777"
		custom_id = "123456"
	}
}

Each of the filter parameters are optional and they are combined for an AND search against all consumers. The following output parameters are returned:

id - the Kong id of the found consumer
username - the username of the found consumer
custom_id - the custom id of the found consumer

Plugins

To look up an existing plugin:

data "kong_plugin" "plugin_data_source" {
	filter = {
		id          = "f0e656af-ad53-4622-ac73-ffd46ae05289"
		name        = "response-ratelimiting"
		api_id      = "51694bcd-3c72-43b3-b414-a09bbf4e3c30"
		consumer_id = "88154fd2-7a0e-41b1-97ba-4a59ebe2cc39"
	}
}

Each of the filter parameters are optional and they are combined for an AND search against all plugins. The following output parameters are returned:

id - the Kong id of the found plugin
name - the name of the found plugin
api_id - the API id the found plugin is associated with (might be empty if not associated with an API)
consumer_id - the consumer id the found plugin is associated with (might be empty if not associated with a consumer)
enabled - whether the plugin is enabled

Upstreams

To lookup an existing upstream:

data "kong_upstream" "upstream_data_source" {
	filter = {
		id   = "893a49a8-090f-421e-afce-ba70b02ce958"
		name = "TestUpstream"
	}
}

Each of the filter parameters are optional and they are combined for an AND search against all upstreams. The following output parameters are returned:

id - the Kong id of the found upstream
name - the name of the found upstream
slots - the number of slots on the found upstream
order_list - a list containing the slot order on the found upstream

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
kong

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL