Merge branch 'dev' of github.com:appbaseio/arc into dev

Author: bietkul

Makefile

@@ -9,7 +9,7 @@ PLUGIN_MAIN_LOC_FUNC=plugins/$(1)/main/$(1).$(2)
 PLUGIN_LOC_FUNC=$(foreach PLUGIN,$(PLUGINS),$(call PLUGIN_MAIN_LOC_FUNC,$(PLUGIN),$(1)))
 
 cmd: plugins
-	$(GC) -ldflags "-w -X main.Billing=$(BILLING) -X main.HostedBilling=$(HOSTED_BILLING) -X main.ClusterBilling=$(CLUSTER_BILLING) -X main.PlanRefreshInterval=$(PLAN_REFRESH_INTERVAL) -X main.IgnoreBillingMiddleware=$(IGNORE_BILLING_MIDDLEWARE)" -o $(BUILD_DIR)/arc main.go
+	$(GC) -ldflags "-w -X main.Billing=$(BILLING) -X main.HostedBilling=$(HOSTED_BILLING) -X main.ClusterBilling=$(CLUSTER_BILLING) -X main.PlanRefreshInterval=$(PLAN_REFRESH_INTERVAL) -X main.IgnoreBillingMiddleware=$(IGNORE_BILLING_MIDDLEWARE) -X main.Tier=$(TEST_TIER) -X main.FeatureCustomEvents=$(TEST_FEATURE_CUSTOM_EVENTS) -X main.FeatureSuggestions=$(TEST_FEATURE_SUGGESTIONS)" -o $(BUILD_DIR)/arc main.go
 
 plugins: $(call PLUGIN_LOC_FUNC,so)
 

README.md

@@ -1,7 +1,6 @@
 # Arc
 
-Arc is a simple, modular API Gateway that sits between a client and an [ElasticSearch](https://elastic.co) cluster. It acts as a reverse proxy, routing requests from clients to services. Arc is extended through plugins, which provide extra functionality and services beyond the ElasticSearch's RESTful API. It can perform various cross-cutting tasks such as basic authentication, logging, rate-limiting, source/referers whitelisting, analytics etc. These functionalities can clearly be extended by adding a plugin encapsulating a desired  functionality. It also provides some useful abstractions that helps in managing and controlling the access
-to ElasticSearch's RESTful API.
+Arc is an API Gateway that sits between a client and an [ElasticSearch](https://elastic.co) cluster. It acts as a reverse proxy, routing requests from clients to services. Arc is extended through plugins, which provide extra functionality and services beyond the ElasticSearch's RESTful API. It can perform various cross-cutting tasks such as basic authentication, Role Based Access Control (using JWTs), logging, rate-limiting, source/referers whitelisting, analytics etc. These functionalities can clearly be extended by adding a plugin encapsulating a desired  functionality. It also provides some useful abstractions that helps in managing and controlling the access to ElasticSearch's RESTful API.
 
 ## Table of contents
 - [Overview](#overview)
@@ -15,10 +14,7 @@ to ElasticSearch's RESTful API.
 ## Overview
 
 When Arc is deployed, every client request being made to the Elasticsearch
-will hit Arc first and then be proxied to the Elasticsearch cluster. In between requests and responses, Arc
-may execute the installed plugins, essentially extending the Elasticsearch API feature set. Arc effectively
-becomes an entry point for every API request made to Elasticsearch. Arc can be used and deployed against any
-Elasticsearch cluster (locally and hosted as provided by [Appbase.io](https://appbase.io)).
+will hit Arc first and then be proxied to the Elasticsearch cluster. In between requests and responses, Arc may execute the installed plugins, essentially extending the Elasticsearch API feature set. Arc effectively becomes an entry point for every API request made to Elasticsearch. Arc can be used and deployed against any Elasticsearch cluster (locally and hosted as provided by [Appbase.io](https://appbase.io)).
 
 ```
                              .------------------------------------------.
@@ -50,6 +46,7 @@ Elasticsearch cluster (locally and hosted as provided by [Appbase.io](https://ap
 ## Installation
 
 ### Running it
+
 In order to run arc, you'll require an Elasticsearch node. There are multiple ways you can [setup an Elasticsearch](https://www.elastic.co/guide/en/elasticsearch/reference/current/setup.html), either locally or remotely. We, however, are delineating the steps for local setup of a single node Elasticsearch via it's Docker image.
 
 **Note**: The steps described here assumes a [docker](https://docs.docker.com/install/) installation on the system.
@@ -80,60 +77,73 @@ You can build the binary locally by executing the following command from the pro
 
 This produces an executable & plugin libraries in the root project directory. To start the Arc server, run:
 
-    ./build/arc --log=stdout --env=config/manual.env
+```bash
+./build/arc --env=config/manual.env --log=info
+```
 
 Alternatively, you could execute the following commands to start the server without producing an executable, (but still produce the plugin libraries):
 
     make plugins
-    go run main.go --log=stdout --env=config/manual.env
+    go run main.go --env=config/manual.env
+
+
+**Note**: Running the executable assumes an active Elasticsearch upstream whose URL is provided in the `.env` file.
 
-**Note**: Running the executable assumes an active Elasticsearch connection whose url is to be provided in the `.env` file. manual.env configures it to be the localhost.
+### Logging
+Define the run time flag (`log`) to change the default log mode, the possible options are:
+
+#### debug
+Most verbose, use this to get logs for elasticsearch interactions.
+#### info
+Prints the basic information
+#### error (default)
+Only log the errors
 
 #### TLS Support
 
-You can optionally start arc to serve https requests instead of http requests using the flag https.
-You also need to provide the server key & certificate file location through the environment file.
-manual.env is configured to use demo server key & certificates, which work for localhost.
-    go run main.go --log=stdout --env=config/manual.env --https
+You can optionally start arc to serve https requests instead of http requests using the flag https. You also need to provide the server key & certificate file location through the environment file. `config/manual.env` is configured to use demo server key & certificates, which work for localhost.
+
+```bash
+    go run main.go --log=info --env=config/manual.env --https
+```
 
-If you wish to manually test TLS support at localhost,
-curl needs to be also passed an extra parameter providing the cacert, in this case.
+If you wish to manually test TLS support at localhost, curl needs to be also passed an extra parameter providing the cacert, in this case.
+
+```bash
     curl https://foo:bar@localhost:8000/_user --cacert sample/rootCA.pem
+```
 
 #### JWT Key Loading through HTTP
 
-If you wish to test loading JWT Key through HTTP, you can use the following commands to start a HTTP
-server serving the key
+If you wish to test loading JWT Key through HTTP, you can use the following commands to start a HTTP server serving the key
+```bash
     cd sample
     python -m SimpleHTTPServer 8500
-
+```
 Then start arc using the command:
-    go run main.go --log=stdout --env=config/manual-http-jwt.env
+```bash
+    go run main.go --log=info --env=config/manual-http-jwt.env
+```
+
+Arc also exposes an API endpoint to set the key at runtime, so this need not be set initially.
 
 #### Run Tests
 
-Currently, tests are WIP and implemented for auth and logs modules. You can run tests using:
+Currently, tests are implemented for auth, permissions, users and billing modules. You can run tests using:
 
     go test ./...
 
 ### Implementation
 
-The functionality in Arc can extended via plugins. An Arc plugin can be considered as a service in itself; it can have its
-own set of routes that it handles (keeping in mind it doesn't overlap with existing routes of other plugins), its own chain of
-middleware and more importantly its own database it intends to interact with (in our case it is Elasticsearch). For example, one
-can easily have multiple plugins providing specific services that interact with more than one database. The plugin is responsible for its own request lifecycle in this case.
+The functionality in Arc can extended via plugins. An Arc plugin can be considered as a service in itself; it can have its own set of routes that it handles (keeping in mind it doesn't overlap with existing routes of other plugins), its own chain of middleware and more importantly its own database it intends to interact with (in our case it is Elasticsearch). For example, one can easily have multiple plugins providing specific services that interact with more than one database. The plugin is responsible for its own request lifecycle in this case.
 
-However, it is not necessary for a plugin to define a set of routes for a service. A plugin can easily be a middleware
-that can be used by other plugins with no new defined routes whatsoever. A middleware can either interact with a database or
-not is an implementation choice, but the important point here is that a plugin can be used by other plugins as long as it
-doesn't end up being a cyclic dependency.
+However, it is not necessary for a plugin to define a set of routes for a service. A plugin can easily be a middleware that can be used by other plugins with no new defined routes whatsoever. A middleware can either interact with a database or not is an implementation choice, but the important point here is that a plugin can be used by other plugins as long as it doesn't end up being a cyclic dependency.
 
 Each plugin is structured in a particular way for brevity. Refer to the plugin [docs](https://github.com/appbaseio/arc/blob/master/docs/plugins.md) which describes a basic plugin implementation.
 
 ### Abstractions
 
-Since every request made to Elasticsearch hits Arc first, it becomes beneficial to provide a set of abstractions that allows
-the client to define control over the Elasticsearch RESTful API and Arc's functionality. Arc provides several essential abstractions that are required in order to interact with Elasticsearch and Arc itself.
+Since every request made to Elasticsearch hits Arc first, it becomes beneficial to provide a set of abstractions that allows the client to define control over the Elasticsearch RESTful API and Arc's functionality. Arc provides several essential abstractions that are required in order to interact with Elasticsearch and Arc itself.
 
 ## Available Plugins
 
@@ -153,7 +163,7 @@ In order to interact with Arc, the client must define a `User`. A `User` encapsu
 
 ### Permission
 
-A `User` grants a `Permission` to a certain `User`, predefining its capabilities, in order to access Elasticsearch's RESTful API. Permissions serve as an entrypoint for accessing the Elasticsearch API and has a fixed *time-to-live* unlike a user, after which it will no longer be operational. A `User` is always in charge of the `Permission` it creates.
+A `User` grants a `Permission` to a certain `User`, predefining its capabilities in order to access Elasticsearch's RESTful API. Permissions serve as an entry point for accessing the Elasticsearch API and has a fixed *time-to-live* unlike a user, after which it will no longer be operational. A `User` is always in charge of the `Permission` they create.
 
 - `username`: an auto generated username that uniquely identifies the permission
 - `password`: an auto generated password that verifies the identity of the permission

go.mod

@@ -6,13 +6,14 @@ require (
 	github.com/gobuffalo/packr v1.22.0
 	github.com/google/uuid v1.0.0
 	github.com/gorilla/mux v1.7.1
-	github.com/hashicorp/go-hclog v0.10.0 // indirect
 	github.com/hashicorp/go-retryablehttp v0.6.3
 	github.com/olivere/elastic v6.2.21+incompatible
 	github.com/olivere/elastic/v7 v7.0.4
 	github.com/robfig/cron v1.1.0
 	github.com/rogpeppe/go-internal v1.2.2 // indirect
 	github.com/rs/cors v1.6.0
+	github.com/siddharthlatest/mustache v0.0.0-20160118163553-00029677272d
+	github.com/sirupsen/logrus v1.4.2
 	github.com/smartystreets/goconvey v1.6.4
 	github.com/ulule/limiter v2.2.0+incompatible
 	golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2

go.sum

@@ -239,6 +239,7 @@ github.com/gorilla/sessions v1.1.2/go.mod h1:8KCfur6+4Mqcc6S0FEfKuN15Vl5MgXW92AE
 github.com/gorilla/sessions v1.1.3/go.mod h1:8KCfur6+4Mqcc6S0FEfKuN15Vl5MgXW92AE8ovaJD0w=
 github.com/hashicorp/go-cleanhttp v0.5.1 h1:dH3aiDG9Jvb5r5+bYHsikaOUIpcM0xvgMXVoDkXMzJM=
 github.com/hashicorp/go-cleanhttp v0.5.1/go.mod h1:JpRdi6/HCYpAwUzNwuwqhbovhLtngrth3wmdIIUrZ80=
+github.com/hashicorp/go-hclog v0.9.2 h1:CG6TE5H9/JXsFWJCfoIVpKFIkFe6ysEuHirp4DxCsHI=
 github.com/hashicorp/go-hclog v0.9.2/go.mod h1:5CU+agLiy3J7N7QjHK5d05KxGsuXiQLrjA0H7acj2lQ=
 github.com/hashicorp/go-hclog v0.10.0 h1:b86HUuA126IcSHyC55WjPo7KtCOVeTCKIjr+3lBhPxI=
 github.com/hashicorp/go-hclog v0.10.0/go.mod h1:whpDNt7SSdeAju8AWKIWsul05p54N/39EeqMAyrmvFQ=
@@ -355,11 +356,14 @@ github.com/shurcooL/highlight_diff v0.0.0-20170515013008-09bb4053de1b/go.mod h1:
 github.com/shurcooL/highlight_go v0.0.0-20170515013102-78fb10f4a5f8/go.mod h1:UDKB5a1T23gOMUJrI+uSuH0VRDStOiUVSjBTRDVBVag=
 github.com/shurcooL/octicon v0.0.0-20180602230221-c42b0e3b24d9/go.mod h1:eWdoE5JD4R5UVWDucdOPg1g2fqQRq78IQa9zlOV1vpQ=
 github.com/shurcooL/sanitized_anchor_name v0.0.0-20170918181015-86672fcb3f95/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
+github.com/siddharthlatest/mustache v0.0.0-20160118163553-00029677272d/go.mod h1:ej02m5sGsrB5WBnM5xLGTfxUInBAbfNFPAsoJxBjn50=
 github.com/sirupsen/logrus v1.0.6/go.mod h1:pMByvHTf9Beacp5x1UXfOR9xyW/9antXMhjMPG0dEzc=
 github.com/sirupsen/logrus v1.1.0/go.mod h1:zrgwTnHtNr00buQ1vSptGe8m1f/BbgsPukg8qsT7A+A=
 github.com/sirupsen/logrus v1.1.1/go.mod h1:zrgwTnHtNr00buQ1vSptGe8m1f/BbgsPukg8qsT7A+A=
 github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
 github.com/sirupsen/logrus v1.3.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
+github.com/sirupsen/logrus v1.4.2 h1:SPIRibHv4MatM3XXNO2BJeFLZwZ2LvZgfQ5+UNI2im4=
+github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE=
 github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d h1:zE9ykElWQ6/NYmHa3jpm/yHnI4xSofP+UP6SpjHcSeM=
 github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc=
 github.com/smartystreets/go-aws-auth v0.0.0-20180515143844-0c1422d1fdb9/go.mod h1:SnhjPscd9TpLiy1LpzGSKh3bXCfxxXuqd9xmQJy3slM=
@@ -459,6 +463,8 @@ golang.org/x/sys v0.0.0-20190102155601-82a175fd1598/go.mod h1:STP8DvDyc/dI5b8T5h
 golang.org/x/sys v0.0.0-20190116161447-11f53e031339/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190222072716-a9d3bda3a223/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
+golang.org/x/sys v0.0.0-20190422165155-953cdadca894 h1:Cz4ceDQGXuKRnVBDTS23GTn/pU5OE2C0WrNTOYK1Uuc=
+golang.org/x/sys v0.0.0-20190422165155-953cdadca894/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191008105621-543471e840be h1:QAcqgptGM8IQBC9K/RC4o+O9YmqEm0diQn9QmZw/0mU=
 golang.org/x/sys v0.0.0-20191008105621-543471e840be/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=

main.go

@@ -2,15 +2,16 @@ package main
 
 import (
 	"bufio"
+	"encoding/json"
 	"flag"
 	"fmt"
 	"io"
-	"io/ioutil"
-	"log"
 	"net/http"
 	"os"
+	"path"
 	"path/filepath"
 	"plugin"
+	"runtime"
 	"strconv"
 	"strings"
 
@@ -22,14 +23,14 @@ import (
 	"github.com/robfig/cron"
 	"github.com/rs/cors"
 
-	"gopkg.in/natefinch/lumberjack.v2"
+	log "github.com/sirupsen/logrus"
 )
 
 const logTag = "[cmd]"
 
 var (
 	envFile     string
-	logFile     string
+	logMode     string
 	listPlugins bool
 	address     string
 	port        int
@@ -45,11 +46,18 @@ var (
 	ClusterBilling string
 	// IgnoreBillingMiddleware ignores the billing middleware
 	IgnoreBillingMiddleware string
+
+	// Tier for testing
+	Tier string
+	// FeatureCustomEvents for testing
+	FeatureCustomEvents string
+	// FeatureSuggestions for testing
+	FeatureSuggestions string
 )
 
 func init() {
 	flag.StringVar(&envFile, "env", ".env", "Path to file with environment variables to load in KEY=VALUE format")
-	flag.StringVar(&logFile, "log", "", "Process log file")
+	flag.StringVar(&logMode, "log", "", "Define to change the default log mode(error), other options are: debug(most verbose) and info")
 	flag.BoolVar(&listPlugins, "plugins", false, "List currently registered plugins")
 	flag.StringVar(&address, "addr", "", "Address to serve on")
 	flag.IntVar(&port, "port", 8000, "Port number")
@@ -59,27 +67,29 @@ func init() {
 
 func main() {
 	flag.Parse()
+	log.SetReportCaller(true)
+	log.SetFormatter(&log.TextFormatter{
+		FullTimestamp:          true,
+		TimestampFormat:        "2006/01/02 15:04:05",
+		DisableLevelTruncation: true,
+		CallerPrettyfier: func(f *runtime.Frame) (string, string) {
+			filename := path.Base(f.File)
+			return "", fmt.Sprintf(" %s:%d", filename, f.Line)
+		},
+	})
 
-	log.SetFlags(log.LstdFlags | log.Lshortfile)
-	switch logFile {
-	case "stdout":
-		log.SetOutput(os.Stdout)
-	case "stderr":
-		log.SetOutput(os.Stderr)
-	case "":
-		log.SetOutput(ioutil.Discard)
+	switch logMode {
+	case "debug":
+		log.SetLevel(log.DebugLevel)
+	case "info":
+		log.SetLevel(log.InfoLevel)
 	default:
-		log.SetOutput(&lumberjack.Logger{
-			Filename:   logFile,
-			MaxSize:    100,
-			MaxAge:     14,
-			MaxBackups: 10,
-		})
+		log.SetLevel(log.ErrorLevel)
 	}
 
 	// Load all env vars from envFile
 	if err := LoadEnvFromFile(envFile); err != nil {
-		log.Printf("%s: reading env file %q: %v", logTag, envFile, err)
+		log.Errorln(logTag, ": reading env file", envFile, ": ", err)
 	}
 
 	router := mux.NewRouter().StrictSlash(true)
@@ -89,7 +99,7 @@ func main() {
 	} else {
 		_, err := strconv.Atoi(PlanRefreshInterval)
 		if err != nil {
-			log.Fatal("PLAN_REFRESH_INTERVAL must be an integer")
+			log.Fatal("PLAN_REFRESH_INTERVAL must be an integer: ", err)
 		}
 	}
 
@@ -128,11 +138,36 @@ func main() {
 			router.Use(util.BillingMiddleware)
 		}
 	} else {
-		var plan = util.ArcEnterprise
-		util.Tier = &plan
+		util.SetDefaultTier()
 		log.Println("You're running Arc with billing module disabled.")
 	}
 
+	// Testing Env: Set variables based on the build blags
+	if Tier != "" {
+		var temp1 = map[string]interface{}{
+			"tier": Tier,
+		}
+		type Temp struct {
+			Tier *util.Plan `json:"tier"`
+		}
+		temp2 := Temp{}
+		mashalled, err := json.Marshal(temp1)
+		if err != nil {
+			log.Fatal(err)
+		}
+		err = json.Unmarshal(mashalled, &temp2)
+		if err != nil {
+			log.Fatal(err)
+		}
+		util.SetTier(temp2.Tier)
+	}
+	if FeatureCustomEvents != "" && FeatureCustomEvents == "true" {
+		util.SetFeatureCustomEvents(true)
+	}
+	if FeatureSuggestions != "" && FeatureSuggestions == "true" {
+		util.SetFeatureSuggestions(true)
+	}
+
 	// ES client instantiation
 	// ES v7 and v6 clients
 	util.NewClient()
@@ -170,7 +205,7 @@ func main() {
 
 	// Listen and serve ...
 	addr := fmt.Sprintf("%s:%d", address, port)
-	log.Printf("%s: listening on %s", logTag, addr)
+	log.Println(logTag, ":listening on", addr)
 	if https {
 		httpsCert := os.Getenv("HTTPS_CERT")
 		httpsKey := os.Getenv("HTTPS_KEY")

middleware/interceptor/interceptor.go

@@ -1,11 +1,12 @@
 package interceptor
 
 import (
-	"log"
 	"net/http"
 	"net/url"
 	"os"
 
+	log "github.com/sirupsen/logrus"
+
 	"github.com/appbaseio/arc/errors"
 	"github.com/appbaseio/arc/middleware"
 	"github.com/appbaseio/arc/util"
@@ -26,12 +27,12 @@ func redirect(h http.HandlerFunc) http.HandlerFunc {
 		rawURL := os.Getenv("ES_CLUSTER_URL")
 		if rawURL == "" {
 			err := errors.NewEnvVarNotSetError(envEsClusterURL)
-			log.Printf("%s: %v", logTag, err)
+			log.Errorln(logTag, ":", err)
 			return
 		}
 		esURL, err := url.Parse(rawURL)
 		if err != nil {
-			log.Printf("%s: error parsing %s=%s: %v", logTag, rawURL, envEsClusterURL, err)
+			log.Errorln(logTag, ":error parsing", rawURL, "=", envEsClusterURL, ":", err)
 			return
 		}
 
@@ -41,7 +42,7 @@ func redirect(h http.HandlerFunc) http.HandlerFunc {
 
 		req, err := redirectRequest(r)
 		if err != nil {
-			log.Printf("%s: %v\n", logTag, err)
+			log.Errorln(logTag, ":", err)
 			util.WriteBackError(w, err.Error(), http.StatusInternalServerError)
 			return
 		}

middleware/logger/logger.go

@@ -2,7 +2,7 @@ package logger
 
 import (
 	"fmt"
-	"log"
+	log "github.com/sirupsen/logrus"
 	"net/http"
 	"strings"
 	"time"