Merge pull request #79 from Axway-API-Management-Plus/group-not-specified

API_MANAGER parameter parsing refactored and unit tests added

Author: Chris Wiechmann

CHANGELOG.md

@@ -4,6 +4,10 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](http://keepachangelog.com/)
 and this project adheres to [Semantic Versioning](http://semver.org/).
 
+## Unreleased
+### Fixed
+- Parse error when using multiple API_MANAGER configuration [#76](https://github.com/Axway-API-Management-Plus/apigateway-openlogging-elk/issues/76)
+
 ## [2.1.1] 2021-02-05
 ### Fixed
 - Race-Condition, causing wrong organization assigned to API under heavy load [#75](https://github.com/Axway-API-Management-Plus/apigateway-openlogging-elk/issues/75)

UPDATE.md

@@ -42,6 +42,7 @@ On the other hand, the API builder Docker image, as a central component of the s
 | 2.0.2 | [X](#api-builderlogstashmemcached) | -                                  | -                                  | -             | -               | -               | -               | -                  | 7.10.0  |            |
 | 2.1.0 | [X](#api-builderlogstashmemcached) | [X](#api-builderlogstashmemcached) | -                                  | -             | -               | -               | [X](#parameters)|[X](#elastic-config)| 7.10.0  |            |
 | 2.1.1 | [X](#api-builderlogstashmemcached) | -                                  | -                                  | -             | -               | -               | -               |-                   | 7.10.0  |            |
+| 2.1.2 | [X](#api-builderlogstashmemcached) | -                                  | -                                  | -             | -               | -               | -               |-                   | 7.10.0  |            |
 
 ### Update from Version 1.0.0
 

apibuilder4elastic/custom_flow_nodes/api-builder-plugin-axway-api-management/package-lock.json

@@ -29,7 +29,8 @@
 		"decache": "^4.6.0",
 		"dotenv": "^8.2.0",
 		"mocha": "^7.1.1",
-		"nock": "^13.0.4"
+		"nock": "^13.0.4",
+		"simple-mock": "^0.8.0"
 	},
 	"scripts": {
 		"test": "mocha ./test --recursive -R spec",

apibuilder4elastic/custom_flow_nodes/api-builder-plugin-axway-api-management/package.json

@@ -364,7 +364,6 @@ async function _getGroupRegionFilename(basefilename, groupId, region) {
 }
 
 async function _getCurrentGWUser(requestHeaders) {
-	debugger;
 	var options = {
 		path: '/api/rbac/currentuser',
 		headers: requestHeaders,

apibuilder4elastic/custom_flow_nodes/api-builder-plugin-axway-api-management/src/actions.js

@@ -3,7 +3,7 @@ const { SDK } = require('@axway/api-builder-sdk');
 const { lookupCurrentUser, lookupAPIDetails, getCustomPropertiesConfig, isIgnoreAPI, lookupApplication } = require('./actions');
 const { mergeCustomProperties } = require('./customProperties');
 const NodeCache = require( "node-cache" );
-const { sendRequest, _getSession, getManagerConfig } = require('./utils');
+const { checkAPIManagers, parseAPIManagerConfig } = require('./utils');
 const https = require('https');
 
 /**
@@ -32,44 +32,11 @@ async function getPlugin(pluginConfig, options) {
 		if(!pluginConfig.apigateway.url) {
 			throw new Error(`Required parameter: apigateway.url is not set.`);
 		}
-		if(!pluginConfig.apimanager.url) {
-			// If no API-Manager URL is given, use the Admin-Node-Manager URL
-			const managerURL = new URL(pluginConfig.apigateway.url);
-			managerURL.port = 8075;
-			pluginConfig.apimanager.url = managerURL.toString();
-		} else {
-			// Check, if multiple API-Manager URLs based on the groupId and regions are given (Format: groupId|managerUrl or groupId|region|managerUrl)
-			if(pluginConfig.apimanager.url.indexOf('|')!=-1) {
-				pluginConfig.apimanager.perGroupAndRegion = true;
-				// Looks like manager URLs are given based on groupIds and regions
-				pluginConfig.apimanager.url.split(',').forEach(groupRegionAndURL => {
-					groupRegionAndURL = groupRegionAndURL.trim().toLowerCase().split('|');
-					if(groupRegionAndURL.length == 1) {
-						// The default API-Manager
-						pluginConfig.apimanager.url = groupRegionAndURL[0]
-					} else if(groupRegionAndURL.length == 2) {
-						// Just the Group-ID is given
-						pluginConfig.apimanager[groupRegionAndURL[0]] = { url: groupRegionAndURL[1] };
-					} else if(groupRegionAndURL.length == 3) {
-						// Group-ID and region is given (Just create a map with a special key)
-						pluginConfig.apimanager[`${groupRegionAndURL[0]}###${groupRegionAndURL[1]}`] = { url: groupRegionAndURL[2] };
-					} else {
-						return Promise.reject(`Unexpected API-Manager format: ${groupRegionAndURL}`);
-
-					}
-				});
-			}
-		}
-		if(!pluginConfig.apimanager.username) {
-			throw new Error(`Required parameter: apimanager.username is not set.`)
-		}
-		if(!pluginConfig.apimanager.password) {
-			throw new Error(`Required parameter: apimanager.password is not set.`)
-		}
+		await parseAPIManagerConfig(pluginConfig, options);
 		if(pluginConfig.validateConfig==true) {
-			var isAdmin = await isAPIManagerUserAdmin(pluginConfig.apimanager, options.logger);
-			if(!isAdmin) {
-				throw new Error(`Configured API-Manager user: ${pluginConfig.apimanager.username} is either incorrect or has no Admin-Role.`);
+			var result = await checkAPIManagers(pluginConfig.apimanager, options);
+			if(!result.isValid) {
+				throw new Error(`Error checking configured API-Manager(s). ${JSON.stringify(result)}`);
 			} else {
 				options.logger.info("Connection to API-Manager successfully validated.");
 			}
@@ -82,65 +49,6 @@ async function getPlugin(pluginConfig, options) {
 	return sdk.getPlugin();
 }
 
-async function isAPIManagerUserAdmin(apiManagerConfig, logger) {
-	let groupIds = [];
-	if(apiManagerConfig.url.indexOf('#') != -1) {
-		apiManagerConfig.url.split(',').forEach(groupAndURL => {
-			groupAndURL = groupAndURL.trim().split();
-			groupIds.push(getManagerConfig(apiManagerConfig, groupAndURL[0]));
-		});
-	} else {
-		// The groupId doesn't matter if we don't have multiple configured
-		groupIds[0] = "NOT_SPECIFIED";
-	}
-	for (var i = 0; i < groupIds.length; ++i) {
-		var groupId = groupIds[i].trim();	
-		let config = getManagerConfig(apiManagerConfig, groupId);
-		try {
-			var data = `username=${config.username}&password=${config.password}`;
-			var options = {
-				path: `/api/portal/v1.3/login`,
-				method: 'POST',
-				headers: {
-					'Content-Type': 'application/x-www-form-urlencoded',
-					'Content-Length': data.length
-				},
-				agent: new https.Agent({ rejectUnauthorized: false })
-			};
-			const result = await sendRequest(config.url, options, data, 303)
-				.then(response => {
-					return response;
-				})
-				.catch(err => {
-					throw new Error(`Cannot login to API-Manager: '${config.url}'. Got error: ${err}`);
-				});
-			const session = _getSession(result.headers);
-			var options = {
-				path: `/api/portal/v1.3/currentuser`,
-				headers: {
-					'Cookie': `APIMANAGERSESSION=${session}`
-				},
-				agent: new https.Agent({ rejectUnauthorized: false })
-			};
-			const currentUser = await sendRequest(apiManagerConfig.url, options)
-				.then(response => {
-					return response;
-				})
-				.catch(err => {
-					throw new Error(`Cant get current user: ${err}`);
-				});
-			if(currentUser.body.role!='admin') {
-				logger.error(`User: ${currentUser.body.loginName} has no admin role.`);
-				return false;
-			}
-			return true;
-		} catch (ex) {
-			logger.error(ex);
-			throw ex;
-		}
-	}
-}
-
 /**
  * This adds a number of Keys into the cache that are triggered 
  * by the Logstash-Pipeline tests. 

apibuilder4elastic/custom_flow_nodes/api-builder-plugin-axway-api-management/src/index.js

@@ -85,32 +85,140 @@ function isDeveloperMode() {
 	}
 }
 
+async function parseAPIManagerConfig(pluginConfig, options) {
+	if(!pluginConfig.apimanager.username) {
+		throw new Error(`Required parameter: apimanager.username is not set.`)
+	}
+	if(!pluginConfig.apimanager.password) {
+		throw new Error(`Required parameter: apimanager.password is not set.`)
+	}
+	if(!pluginConfig.apimanager.url) {
+		// If no API-Manager URL is given, use the Admin-Node-Manager URL
+		const managerURL = new URL(pluginConfig.apigateway.url);
+		managerURL.port = 8075;
+		options.logger.info(`Parameter API_MANAGER not set. Expect API-Manager on URL: ${managerURL.toString()}`);
+		pluginConfig.apimanager.default = {
+				url: managerURL.toString(),
+				username: pluginConfig.apimanager.username,
+				password: pluginConfig.apimanager.password
+		}
+	} else {
+		// Check, if multiple API-Manager URLs based on the groupId and regions are given (Format: groupId|managerUrl or groupId|region|managerUrl)
+		if(pluginConfig.apimanager.url.indexOf('|')!=-1) {
+			pluginConfig.apimanager.perGroupAndRegion = true;
+			options.logger.info(`Parse group/region based API_MANAGER: ${pluginConfig.apimanager.url}.`);
+			// Looks like manager URLs are given based on groupIds and regions
+			pluginConfig.apimanager.url.split(',').forEach(groupRegionAndURL => {
+				groupRegionAndURL = groupRegionAndURL.trim().toLowerCase().split('|');
+				if(groupRegionAndURL.length == 1) {
+					// The default API-Manager
+					options.logger.debug(`Found default API-Manager URL: ${groupRegionAndURL[0]}`);
+					pluginConfig.apimanager.default = { url: groupRegionAndURL[0], username: pluginConfig.apimanager.username, password: pluginConfig.apimanager.password } 
+				} else if(groupRegionAndURL.length == 2) {
+					// Only the Group-ID is given
+					options.logger.debug(`Found API-Manager URL: ${groupRegionAndURL[1]} for group: ${groupRegionAndURL[0]}`);
+					pluginConfig.apimanager[groupRegionAndURL[0]] = { url: groupRegionAndURL[1], username: pluginConfig.apimanager.username, password: pluginConfig.apimanager.password } 
+				} else if(groupRegionAndURL.length == 3) {
+					// Group-ID and region is given (Just create a map with a special key)
+					options.logger.debug(`Found API-Manager URL: ${groupRegionAndURL[2]} for group: ${groupRegionAndURL[1]} and region: ${groupRegionAndURL[1]}`);
+					pluginConfig.apimanager[`${groupRegionAndURL[0]}###${groupRegionAndURL[1]}`] = { url: groupRegionAndURL[2], username: pluginConfig.apimanager.username, password: pluginConfig.apimanager.password} 
+				} else {
+					return Promise.reject(`Unexpected API-Manager format: ${groupRegionAndURL}`);
+				}
+			});
+		} else { // If not, create a default API-Manager
+			options.logger.info(`Using only default API_MANAGER: ${pluginConfig.apimanager.url}.`);
+			pluginConfig.apimanager.default = {
+				url: pluginConfig.apimanager.url,
+				username: pluginConfig.apimanager.username,
+				password: pluginConfig.apimanager.password
+			}
+		}
+	}
+}
+
 function getManagerConfig(apiManagerConfig, groupId, region) {
 	if(groupId == undefined && region == undefined) {
-		return apiManagerConfig;
+		if(apiManagerConfig.default == undefined) {
+			throw new Error(`Cannot return API-Manager config without groupId and region as no default API-Manager is configured.`);
+		} else {
+			return apiManagerConfig.default;
+		}
 	}
 	var key = groupId;
 	if(region != undefined) {
 		key = `${groupId}###${region}`.toLowerCase();
 	}
+	// Check if the requested combination based on groupId and region exists and return it directly
 	if (apiManagerConfig[key]) {
-		if (!apiManagerConfig[key].password) {
-			apiManagerConfig[key].password = apiManagerConfig.password;
-			apiManagerConfig[key].username = apiManagerConfig.username;
-		}
 		return apiManagerConfig[key];
 	} else {
-		if (apiManagerConfig.perGroupAndRegion) {
-			throw new Error(`You have configured API-Manager URLs based on groupIds (e.g. group-a|https://manager-host.com:8075), but the groupId: ${groupId} is NOT configured. Please check the configuration parameter: API_MANAGER`);
+	// 
+		if (apiManagerConfig.perGroupAndRegion && !apiManagerConfig.default) {
+			throw new Error(`You have configured API-Manager URLs based on groupIds (e.g. group-a|https://manager-host.com:8075), but the groupId: ${groupId} is NOT configured and no default is configured. Please check the configuration parameter: API_MANAGER`);
+		}
+		return apiManagerConfig.default;
+	}
+}
+
+async function checkAPIManagers(apiManagerConfig, options) {
+	var finalResult = { isValid: true };
+	for (const [key, config] of Object.entries(apiManagerConfig)) {
+		if(typeof config != 'object') continue;
+		finalResult[key] = config;
+		try {
+			var data = `username=${config.username}&password=${config.password}`;
+			var reqOptions = {
+				path: `/api/portal/v1.3/login`,
+				method: 'POST',
+				headers: {
+					'Content-Type': 'application/x-www-form-urlencoded',
+					'Content-Length': data.length
+				},
+				agent: new https.Agent({ rejectUnauthorized: false })
+			};
+			const result = await sendRequest(config.url, reqOptions, data, 303)
+				.then(response => {
+					return response;
+				})
+				.catch(err => {
+					throw new Error(`Cannot login to API-Manager: '${config.url}'. Got error: ${err}`);
+				});
+			const session = _getSession(result.headers);
+			var reqOptions = {
+				path: `/api/portal/v1.3/currentuser`,
+				headers: {
+					'Cookie': `APIMANAGERSESSION=${session}`
+				},
+				agent: new https.Agent({ rejectUnauthorized: false })
+			};
+			const currentUser = await sendRequest(config.url, reqOptions)
+				.then(response => {
+					return response;
+				})
+				.catch(err => {
+					throw new Error(`Cant get current user: ${err}`);
+				});
+			if(currentUser.body.role!='admin') {
+				options.logger.error(`User: ${currentUser.body.loginName} has no admin role on API-Manager: ${config.url}.`);
+				finalResult.isValid = false;
+				finalResult[key].isValid = false;
+			} else {
+				finalResult[key].isValid = true;
+			}
+		} catch (ex) {
+			options.logger.error(ex);
+			throw ex;
 		}
-		return apiManagerConfig;
 	}
+	return finalResult;
 }
 
 module.exports = {
     sendRequest, 
     _getCookie, 
-    _getSession, 
 	isDeveloperMode, 
-	getManagerConfig
+	getManagerConfig,
+	checkAPIManagers,
+	parseAPIManagerConfig
 }

apibuilder4elastic/custom_flow_nodes/api-builder-plugin-axway-api-management/src/utils.js

@@ -28,15 +28,19 @@ describe('Test group based API lookup', () => {
 
 	describe('#lookupAPIDetails', () => {
 		// This only fails, if really multiple API-Manager are configured (for that the parameter-value of API_MANAGER is checked if it contains a #)
-		it('should return an error for a given groupId: group-unknown, which is not configured', async () => {
-			
+		it('should use the default API-Manager for the given unknown group', async () => {
+			// default
+			nock('https://mocked-api-manager-0:8075').get('/api/portal/v1.3/proxies?field=name&op=eq&value=Petstore HTTPS').replyWithFile(200, './test/testReplies/apimanager/manager-1/apiProxyManager1.json');
+			nock('https://mocked-api-manager-0:8075').get(`/api/portal/v1.3/organizations/2bfaa1c2-49ab-4059-832d-team-a`).replyWithFile(200, './test/testReplies/apimanager/manager-1/orgTeamA.json');
 			const { value, output } = await flowNode.lookupAPIDetails({ 
 				apiName: 'Petstore HTTPS', apiPath: '/v1/petstore', groupId: 'group-unknown'
 			});
 
-			expect(value).to.be.instanceOf(Error)
-				.and.to.have.property('message', 'You have configured API-Manager URLs based on groupIds (e.g. group-a|https://manager-host.com:8075), but the groupId: group-unknown is NOT configured. Please check the configuration parameter: API_MANAGER');
-			expect(output).to.equal('error');
+			expect(value.organizationName).to.equal(`Team A`);
+			expect(value.name).to.equal(`Petstore HTTPS`);
+			expect(value.path).to.equal(`/v1/petstore`);
+			expect(value.version).to.equal(`1.0.5 Manager 1`);
+			expect(output).to.equal('next');
 		});
 
 		it('should return the API-Details from the correct API-Manager based on the given groupId', async () => {

apibuilder4elastic/custom_flow_nodes/api-builder-plugin-axway-api-management/test/test-grp-based-apilookup.js

@@ -92,7 +92,7 @@ describe('Configuration parameter tests', () => {
 				expect(output).to.equal('error');
 			} catch(e) {
 				expect(e).to.be.an('Error')
-				.and.to.have.property('message', 'Configured API-Manager user: user is either incorrect or has no Admin-Role.');
+				.and.to.have.property('message', 'Error checking configured API-Manager(s). {"isValid":false,"default":{"url":"https://mocked-api-gateway:8175","username":"user","password":"invalid","isValid":false}}');
 			}
 			nock.cleanAll();
 		});