Release/0.9.0 (#129)

* Added support of the YAML configuration file

* Added support of the endpoint-related response actions

* Replaced the Logrus logging library with ZeroLog

Author: afr1ka

Makefile

@@ -1,4 +1,4 @@
-VERSION := 0.8.9
+VERSION := 0.9.0
 NAMESPACE := github.com/wallarm/api-firewall
 
 .DEFAULT_GOAL := build
@@ -43,7 +43,7 @@ stop_k6_tests:
 
 run_k6_tests: stop_k6_tests
 	@docker compose -f resources/test/docker-compose-api-mode.yml up --build --detach --force-recreate
-	docker run --rm -i --network host grafana/k6 run -v - <resources/test/specification/script.js || true
+	docker run --rm -i --network host grafana/k6 run --vus 100 --iterations 1200 -v - <resources/test/specification/script.js || true
 	$(MAKE) stop_k6_tests
 
 .PHONY: lint tidy test fmt build genmocks vulncheck run_k6_tests stop_k6_tests

cmd/api-firewall/internal/handlers/api/app.go

@@ -11,8 +11,8 @@ import (
 	"syscall"
 
 	"github.com/google/uuid"
+	"github.com/rs/zerolog"
 	"github.com/savsgio/gotils/strconv"
-	"github.com/sirupsen/logrus"
 	"github.com/valyala/fasthttp"
 
 	"github.com/wallarm/api-firewall/internal/platform/router"
@@ -31,7 +31,7 @@ var (
 // data/logic on this App struct
 type App struct {
 	Routers     map[int]*router.Mux
-	Log         *logrus.Logger
+	Log         zerolog.Logger
 	passOPTIONS bool
 	shutdown    chan os.Signal
 	mw          []web.Middleware
@@ -40,7 +40,7 @@ type App struct {
 }
 
 // NewApp creates an App value that handle a set of routes for the set of application.
-func NewApp(lock *sync.RWMutex, passOPTIONS bool, storedSpecs storage.DBOpenAPILoader, shutdown chan os.Signal, logger *logrus.Logger, mw ...web.Middleware) *App {
+func NewApp(lock *sync.RWMutex, passOPTIONS bool, storedSpecs storage.DBOpenAPILoader, shutdown chan os.Signal, logger zerolog.Logger, mw ...web.Middleware) *App {
 
 	schemaIDs := storedSpecs.SchemaIDs()
 
@@ -136,10 +136,10 @@ func (a *App) APIModeMainHandler(ctx *fasthttp.RequestCtx) {
 	// handle panic
 	defer func() {
 		if r := recover(); r != nil {
-			a.Log.Errorf("panic: %v", r)
+			a.Log.Error().Msgf("panic: %v", r)
 
 			// Log the Go stack trace for this panic'd goroutine.
-			a.Log.Debugf("%s", debug.Stack())
+			a.Log.Debug().Msgf("%s", debug.Stack())
 			return
 		}
 	}()
@@ -151,22 +151,22 @@ func (a *App) APIModeMainHandler(ctx *fasthttp.RequestCtx) {
 	if err != nil {
 		defer web.LogRequestResponseAtTraceLevel(ctx, a.Log)
 
-		a.Log.WithFields(logrus.Fields{
-			"error":      err,
-			"host":       strconv.B2S(ctx.Request.Header.Host()),
-			"path":       strconv.B2S(ctx.Path()),
-			"method":     strconv.B2S(ctx.Request.Header.Method()),
-			"request_id": ctx.UserValue(web.RequestID),
-		}).Error("error while getting schema ID")
+		a.Log.Error().
+			Err(err).
+			Bytes("host", ctx.Request.Header.Host()).
+			Bytes("path", ctx.Path()).
+			Bytes("method", ctx.Request.Header.Method()).
+			Interface("request_id", ctx.UserValue(web.RequestID)).
+			Msg("error while getting schema ID")
 
 		if err := web.RespondError(ctx, fasthttp.StatusInternalServerError, ""); err != nil {
-			a.Log.WithFields(logrus.Fields{
-				"error":      err,
-				"host":       strconv.B2S(ctx.Request.Header.Host()),
-				"path":       strconv.B2S(ctx.Path()),
-				"method":     strconv.B2S(ctx.Request.Header.Method()),
-				"request_id": ctx.UserValue(web.RequestID),
-			}).Error("error while sending response")
+			a.Log.Error().
+				Err(err).
+				Bytes("host", ctx.Request.Header.Host()).
+				Bytes("path", ctx.Path()).
+				Bytes("method", ctx.Request.Header.Method()).
+				Interface("request_id", ctx.UserValue(web.RequestID)).
+				Msg("error while sending response")
 		}
 
 		return
@@ -196,22 +196,23 @@ func (a *App) APIModeMainHandler(ctx *fasthttp.RequestCtx) {
 			// OPTIONS methods are passed if the passOPTIONS is set to true
 			if a.passOPTIONS && strconv.B2S(ctx.Method()) == fasthttp.MethodOptions {
 				ctx.SetUserValue(keyStatusCode, fasthttp.StatusOK)
-				a.Log.WithFields(logrus.Fields{
-					"host":       strconv.B2S(ctx.Request.Header.Host()),
-					"path":       strconv.B2S(ctx.Path()),
-					"method":     strconv.B2S(ctx.Request.Header.Method()),
-					"request_id": ctx.UserValue(web.RequestID),
-				}).Debug("Pass request with OPTIONS method")
+				a.Log.Debug().
+					Bytes("host", ctx.Request.Header.Host()).
+					Bytes("path", ctx.Path()).
+					Bytes("method", ctx.Request.Header.Method()).
+					Interface("request_id", ctx.UserValue(web.RequestID)).
+					Msg("pass request with OPTIONS method")
 				continue
 			}
 
 			// Method or Path were not found
-			a.Log.WithFields(logrus.Fields{
-				"host":       strconv.B2S(ctx.Request.Header.Host()),
-				"path":       strconv.B2S(ctx.Path()),
-				"method":     strconv.B2S(ctx.Request.Header.Method()),
-				"request_id": ctx.UserValue(web.RequestID),
-			}).Debug("Method or path were not found")
+			a.Log.Debug().
+				Bytes("host", ctx.Request.Header.Host()).
+				Bytes("path", ctx.Path()).
+				Bytes("method", ctx.Request.Header.Method()).
+				Interface("request_id", ctx.UserValue(web.RequestID)).
+				Msg("method or path were not found")
+
 			ctx.SetUserValue(keyValidationErrors, []*validator.ValidationError{{Message: validator.ErrMethodAndPathNotFound.Error(), Code: validator.ErrCodeMethodAndPathNotFound, SchemaID: &schemaID}})
 			ctx.SetUserValue(keyStatusCode, fasthttp.StatusForbidden)
 			continue
@@ -221,13 +222,13 @@ func (a *App) APIModeMainHandler(ctx *fasthttp.RequestCtx) {
 		ctx.SetUserValue(router.RouteCtxKey, rctx)
 
 		if err := handler(ctx); err != nil {
-			a.Log.WithFields(logrus.Fields{
-				"error":      err,
-				"host":       strconv.B2S(ctx.Request.Header.Host()),
-				"path":       strconv.B2S(ctx.Path()),
-				"method":     strconv.B2S(ctx.Request.Header.Method()),
-				"request_id": ctx.UserValue(web.RequestID),
-			}).Error("error in the request handler")
+			a.Log.Error().
+				Err(err).
+				Bytes("host", ctx.Request.Header.Host()).
+				Bytes("path", ctx.Path()).
+				Bytes("method", ctx.Request.Header.Method()).
+				Interface("request_id", ctx.UserValue(web.RequestID)).
+				Msg("error in the request handler")
 		}
 	}
 
@@ -286,13 +287,13 @@ func (a *App) APIModeMainHandler(ctx *fasthttp.RequestCtx) {
 	}
 
 	if err := web.Respond(ctx, validator.ValidationResponse{Summary: responseSummary, Errors: responseErrors}, fasthttp.StatusOK); err != nil {
-		a.Log.WithFields(logrus.Fields{
-			"request_id": ctx.UserValue(web.RequestID),
-			"host":       strconv.B2S(ctx.Request.Header.Host()),
-			"path":       strconv.B2S(ctx.Path()),
-			"method":     strconv.B2S(ctx.Request.Header.Method()),
-			"error":      err,
-		}).Error("respond error")
+		a.Log.Error().
+			Err(err).
+			Bytes("host", ctx.Request.Header.Host()).
+			Bytes("path", ctx.Path()).
+			Bytes("method", ctx.Request.Header.Method()).
+			Interface("request_id", ctx.UserValue(web.RequestID)).
+			Msg("respond error")
 	}
 }
 

cmd/api-firewall/internal/handlers/api/handler.go

@@ -4,8 +4,7 @@ import (
 	"runtime/debug"
 	strconv2 "strconv"
 
-	"github.com/savsgio/gotils/strconv"
-	"github.com/sirupsen/logrus"
+	"github.com/rs/zerolog"
 	"github.com/valyala/fasthttp"
 	"github.com/valyala/fastjson"
 
@@ -19,7 +18,7 @@ import (
 type RequestValidator struct {
 	CustomRoute   *loader.CustomRoute
 	OpenAPIRouter *loader.Router
-	Log           *logrus.Logger
+	Log           zerolog.Logger
 	Cfg           *config.APIMode
 	ParserPool    *fastjson.ParserPool
 	SchemaID      int
@@ -31,10 +30,10 @@ func (s *RequestValidator) Handler(ctx *fasthttp.RequestCtx) error {
 	// handle panic
 	defer func() {
 		if r := recover(); r != nil {
-			s.Log.Errorf("panic: %v", r)
+			s.Log.Error().Msgf("panic: %v", r)
 
 			// Log the Go stack trace for this panic'd goroutine.
-			s.Log.Debugf("%s", debug.Stack())
+			s.Log.Debug().Msgf("%s", debug.Stack())
 			return
 		}
 	}()
@@ -44,26 +43,28 @@ func (s *RequestValidator) Handler(ctx *fasthttp.RequestCtx) error {
 
 	// Route not found
 	if s.CustomRoute == nil {
-		s.Log.WithFields(logrus.Fields{
-			"host":       strconv.B2S(ctx.Request.Header.Host()),
-			"path":       strconv.B2S(ctx.Path()),
-			"method":     strconv.B2S(ctx.Request.Header.Method()),
-			"request_id": ctx.UserValue(web.RequestID),
-		}).Debug("Method or path were not found")
+		s.Log.Debug().
+			Interface("request_id", ctx.UserValue(web.RequestID)).
+			Bytes("host", ctx.Request.Header.Host()).
+			Bytes("path", ctx.Path()).
+			Bytes("method", ctx.Request.Header.Method()).
+			Msg("method or path were not found")
+
 		ctx.SetUserValue(keyValidationErrors, []*validator.ValidationError{{Message: validator.ErrMethodAndPathNotFound.Error(), Code: validator.ErrCodeMethodAndPathNotFound, SchemaID: &s.SchemaID}})
 		ctx.SetUserValue(keyStatusCode, fasthttp.StatusForbidden)
 		return nil
 	}
 
 	validationErrors, err := apiMode.APIModeValidateRequest(ctx, s.ParserPool, s.CustomRoute, s.Cfg.UnknownParametersDetection)
 	if err != nil {
-		s.Log.WithFields(logrus.Fields{
-			"error":      err,
-			"host":       strconv.B2S(ctx.Request.Header.Host()),
-			"path":       strconv.B2S(ctx.Path()),
-			"method":     strconv.B2S(ctx.Request.Header.Method()),
-			"request_id": ctx.UserValue(web.RequestID),
-		}).Error("request validation error")
+		s.Log.Error().
+			Err(err).
+			Interface("request_id", ctx.UserValue(web.RequestID)).
+			Bytes("host", ctx.Request.Header.Host()).
+			Bytes("path", ctx.Path()).
+			Bytes("method", ctx.Request.Header.Method()).
+			Msg("request validation error")
+
 		ctx.SetUserValue(keyStatusCode, fasthttp.StatusInternalServerError)
 		return nil
 	}
@@ -76,13 +77,13 @@ func (s *RequestValidator) Handler(ctx *fasthttp.RequestCtx) error {
 			r.SchemaVersion = s.OpenAPIRouter.SchemaVersion
 		}
 
-		s.Log.WithFields(logrus.Fields{
-			"error":      validationErrors,
-			"host":       strconv.B2S(ctx.Request.Header.Host()),
-			"path":       strconv.B2S(ctx.Path()),
-			"method":     strconv.B2S(ctx.Request.Header.Method()),
-			"request_id": ctx.UserValue(web.RequestID),
-		}).Debug("request validation error")
+		s.Log.Debug().
+			Interface("error", validationErrors).
+			Interface("request_id", ctx.UserValue(web.RequestID)).
+			Bytes("host", ctx.Request.Header.Host()).
+			Bytes("path", ctx.Path()).
+			Bytes("method", ctx.Request.Header.Method()).
+			Msg("request validation error")
 
 		ctx.SetUserValue(keyValidationErrors, validationErrors)
 		ctx.SetUserValue(keyStatusCode, fasthttp.StatusForbidden)

cmd/api-firewall/internal/handlers/api/health.go

@@ -3,15 +3,13 @@ package api
 import (
 	"os"
 
-	"github.com/sirupsen/logrus"
 	"github.com/valyala/fasthttp"
 	"github.com/wallarm/api-firewall/internal/platform/storage"
 	"github.com/wallarm/api-firewall/internal/platform/web"
 	"github.com/wallarm/api-firewall/internal/version"
 )
 
 type Health struct {
-	Logger    *logrus.Logger
 	OpenAPIDB storage.DBOpenAPILoader
 }
 

cmd/api-firewall/internal/handlers/api/routes.go

@@ -1,13 +1,14 @@
 package api
 
 import (
+	"github.com/rs/zerolog"
 	"net/url"
 	"os"
 	"runtime/debug"
 	"sync"
 
 	"github.com/corazawaf/coraza/v3"
-	"github.com/sirupsen/logrus"
+	"github.com/rs/zerolog/log"
 	"github.com/valyala/fasthttp"
 	"github.com/valyala/fastjson"
 
@@ -19,15 +20,15 @@ import (
 	"github.com/wallarm/api-firewall/internal/platform/web"
 )
 
-func Handlers(lock *sync.RWMutex, cfg *config.APIMode, shutdown chan os.Signal, logger *logrus.Logger, storedSpecs storage.DBOpenAPILoader, AllowedIPCache *allowiplist.AllowedIPsType, waf coraza.WAF) fasthttp.RequestHandler {
+func Handlers(lock *sync.RWMutex, cfg *config.APIMode, shutdown chan os.Signal, logger zerolog.Logger, storedSpecs storage.DBOpenAPILoader, AllowedIPCache *allowiplist.AllowedIPsType, waf coraza.WAF) fasthttp.RequestHandler {
 
 	// handle panic
 	defer func() {
 		if r := recover(); r != nil {
-			logger.Errorf("panic: %v", r)
+			log.Error().Msgf("panic: %v", r)
 
 			// Log the Go stack trace for this panic'd goroutine.
-			logger.Debugf("%s", debug.Stack())
+			log.Debug().Msgf("%s", debug.Stack())
 			return
 		}
 	}()
@@ -61,13 +62,13 @@ func Handlers(lock *sync.RWMutex, cfg *config.APIMode, shutdown chan os.Signal,
 		if servers != nil {
 			var err error
 			if serverURLStr, err = servers.BasePath(); err != nil {
-				logger.Errorf("getting server URL from OpenAPI specification: %v", err)
+				log.Error().Msgf("getting server URL from OpenAPI specification: %v", err)
 			}
 		}
 
 		serverURL, err := url.Parse(serverURLStr)
 		if err != nil {
-			logger.Errorf("parsing server URL from OpenAPI specification: %v", err)
+			log.Error().Msgf("parsing server URL from OpenAPI specification: %v", err)
 		}
 
 		if serverURL.Path == "" {
@@ -77,35 +78,36 @@ func Handlers(lock *sync.RWMutex, cfg *config.APIMode, shutdown chan os.Signal,
 		// get new router
 		newSwagRouter, err := loader.NewRouterDBLoader(storedSpecs.SpecificationVersion(schemaID), storedSpecs.Specification(schemaID))
 		if err != nil {
-			logger.WithFields(logrus.Fields{"error": err}).Error("New router creation failed")
+			log.Fatal().Err(err).Msg("new router creation failed")
 		}
 
 		for i := 0; i < len(newSwagRouter.Routes); i++ {
 
 			s := RequestValidator{
 				CustomRoute:   &newSwagRouter.Routes[i],
-				Log:           logger,
 				Cfg:           cfg,
 				ParserPool:    &parserPool,
 				OpenAPIRouter: newSwagRouter,
 				SchemaID:      schemaID,
 			}
 			updRoutePathEsc, err := url.JoinPath(serverURL.Path, newSwagRouter.Routes[i].Path)
 			if err != nil {
-				s.Log.Errorf("url parse error: Schema ID %d: OpenAPI version %s: Loaded path %s - %v", schemaID, storedSpecs.SpecificationVersion(schemaID), newSwagRouter.Routes[i].Path, err)
+				log.Error().Msgf("url parse error: Schema ID %d: openAPI version %s: loaded path %s - %v", schemaID, storedSpecs.SpecificationVersion(schemaID), newSwagRouter.Routes[i].Path, err)
 				continue
 			}
 
 			updRoutePath, err := url.PathUnescape(updRoutePathEsc)
 			if err != nil {
-				s.Log.Errorf("url unescape error: Schema ID %d: OpenAPI version %s: Loaded path %s - %v", schemaID, storedSpecs.SpecificationVersion(schemaID), newSwagRouter.Routes[i].Path, err)
+				log.Error().Msgf("url unescape error: schema ID %d: openAPI version %s: loaded path %s - %v", schemaID, storedSpecs.SpecificationVersion(schemaID), newSwagRouter.Routes[i].Path, err)
 				continue
 			}
 
-			s.Log.Debugf("handler: Schema ID %d: OpenAPI version %s: Loaded path %s - %s", schemaID, storedSpecs.SpecificationVersion(schemaID), newSwagRouter.Routes[i].Method, updRoutePath)
+			log.Debug().Msgf("handler: schema ID %d: openAPI version %s: loaded path %s - %s", schemaID, storedSpecs.SpecificationVersion(schemaID), newSwagRouter.Routes[i].Method, updRoutePath)
 
 			if err := apps.Handle(schemaID, newSwagRouter.Routes[i].Method, updRoutePath, s.Handler); err != nil {
-				logger.WithFields(logrus.Fields{"error": err, "schema_id": schemaID}).Errorf("The OAS endpoint registration failed: method %s, path %s", newSwagRouter.Routes[i].Method, updRoutePath)
+				log.Error().Err(err).
+					Int("schema_id", schemaID).
+					Msgf("the OAS endpoint registration failed: method %s, path %s", newSwagRouter.Routes[i].Method, updRoutePath)
 			}
 		}