Changed config of envoy to a template, and added a start-envoy.sh scr…

…ipt that is run on initialization that creates the actual config file using the template and the env config variables Signed-off-by: Alfredo Gutierrez <[email protected]>
hashgraph · Mar 30, 2024 · a3b0773 · a3b0773
1 parent d0a1898
commit a3b0773
Show file tree

Hide file tree

Showing 5 changed files with 39 additions and 57 deletions.
diff --git a/auth-layer-proxy/Dockerfile b/auth-layer-proxy/Dockerfile
@@ -1,11 +1,27 @@
 FROM    envoyproxy/envoy:v1.28-latest
 
 # Copy the Filter Scripts
-COPY /filters/ /filters/
+COPY    /filters/ /etc/envoy/filters/
+# Copy the Configs templates
+COPY    /configs/ /etc/envoy/configs/
+# Copy the start script
+COPY    /scripts/start-envoy.sh /etc/envoy/start-envoy.sh
+
+# Make the script executable
+RUN     chmod +x /etc/envoy/start-envoy.sh
+# give ownership to envoy user
+RUN     chown -R envoy:envoy /etc/envoy
+
+# install gettext for envsubst
+RUN     apt-get update
+RUN     apt-get install -y gettext-base
 
 # Install Lua and Luarocks
 RUN     apt-get update && apt-get install -y lua5.1 luarocks git
 
+# clean up temp data
+RUN     rm -rf /var/lib/apt/lists/*
+
 # Install Lua modules
 RUN     luarocks install lua-cjson
 

diff --git a/auth-layer-proxy/README.md b/auth-layer-proxy/README.md
@@ -103,14 +103,21 @@ docker build -t envoy-auth-proxy .
 Add Postgres or Redis credentials to the .env file
 
 ```
+# EnvoyProxy Configuration
+SERVICE_TYPE=LOGICAL_DNS
+SERVICE_ADDRESS=host.docker.internal
+SERVICE_PORT=8020
+ENVOY_ADMIN_PORT=15000
+PROXY_PORT=10000
+
 # OAuth
 CLIENT_ID=<clientId>
 CLIENT_SECRET=<client_secret>
 TOKEN_INTROSPECTION_URL=http://host.docker.internal:8080/realms/HederaTheGraph/protocol/openid-connect/token/introspect
 
 ```
 
-### Configure the details of the service to be proxied on the envoy.yam
+### Configure the details of the service to be proxied on the envoy.yaml
 Edit `envoy-auth.yaml` file with config needs, by default will be proxying/relaying the request to address: `host.docker.internal` and port `8020`
 
 ```yaml

diff --git a/auth-layer-proxy/configs/envoy-auth.yaml b/auth-layer-proxy/configs/envoy-auth.yaml
diff --git a/auth-layer-proxy/docker-compose.yaml b/auth-layer-proxy/docker-compose.yaml
@@ -2,15 +2,16 @@ version: '3'
 
 services:
   envoy:
-    image: envoy-auth-layer:latest
-    command: -c /configs/envoy-auth.yaml
+    image: envoy-auth-proxy:latest
+    command: ["/etc/envoy/start-envoy.sh"]
     env_file:
       - .env
     volumes:
-      - ./configs/:/configs/
-      - ./filters/:/filters/
-    ports:
-      - "9901:9901"
+      - ./configs/:/etc/envoy/configs/
+      - ./filters/:/etc/envoy/filters/
+      - ./scripts/start-envoy.sh:/start-envoy.sh
+    ports:      
       - "10000:10000"
+      - "15000:15000"
     stdin_open: true
     tty: true
diff --git a/auth-layer-proxy/example.env b/auth-layer-proxy/example.env
@@ -1,3 +1,10 @@
+# EnvoyProxy Configuration
+SERVICE_TYPE=LOGICAL_DNS
+SERVICE_ADDRESS=host.docker.internal
+SERVICE_PORT=8020
+ENVOY_ADMIN_PORT=15000
+PROXY_PORT=10000
+
 # OAuth
 CLIENT_ID=htg-auth-layer
 CLIENT_SECRET=0cyYtDVVbVvaZjrDViiw4p2kegTy9Q5X